Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44FEA6CCE9A11EFA4E3226C762E951A.roa
File: A44FEA6CCE9A11EFA4E3226C762E951A.roa (raw, json)
Hash identifier: UHWNq/ZY4ucrlpdxIc64giRuOpp3vYVdLIqz3RglzS4=
Subject key identifier: 83:E7:F4:EA:7E:51:D3:4D:B8:CC:DE:9E:3F:2A:CB:91:33:E0:DB:16
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010418
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44FEA6CCE9A11EFA4E3226C762E951A.roa
Signing time: Thu 09 Jan 2025 15:01:45 +0000
ROA not before: Thu 09 Jan 2025 15:01:41 +0000
ROA not after: Fri 24 Jan 2025 15:01:41 +0000
asID: 21859
IP address blocks: 45.196.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66584 (0x10418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 15:01:41 2025 GMT
Not After : Jan 24 15:01:41 2025 GMT
Subject: CN=677fe4d9-f8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:37:15:5c:43:37:4d:7e:56:81:3f:2b:a8:10:
e5:9c:43:46:45:fc:04:29:4f:f7:59:44:ac:a7:d6:
5c:dd:ef:23:74:55:dc:4b:7d:0f:cd:59:9b:9d:4a:
42:6e:39:b5:ae:e6:c4:68:9a:f8:fe:bf:5c:ea:15:
58:d3:a1:fc:1d:ad:6a:2c:e3:a1:1a:a6:b6:18:0b:
c1:e9:5b:2b:cf:b1:ed:cb:f0:65:49:61:4b:f5:dc:
ed:92:cc:36:15:34:b8:e5:8d:ec:2e:61:dc:2d:1f:
e5:46:1e:5d:df:a6:ac:9a:6b:4c:f2:a0:60:62:6f:
15:94:36:78:7f:90:49:50:b2:6e:df:57:a3:ca:d6:
d1:b0:ed:14:ec:ff:68:dd:1e:a0:da:8e:5b:12:6a:
ae:23:02:52:76:db:68:d6:e1:53:a0:8b:0a:c3:aa:
7b:0a:dc:68:6c:eb:7a:ac:96:36:b9:71:49:ac:20:
f7:ea:ff:f0:31:a4:41:d5:c6:96:d0:2f:64:78:38:
50:8a:69:bc:bd:4e:bb:f4:e1:6f:d8:ea:8e:19:e4:
ad:8f:f6:de:3a:47:f4:0a:8f:05:af:13:e9:17:33:
3b:bd:e0:8d:d7:04:06:be:75:ea:28:82:5a:67:d6:
25:be:6f:3f:0a:52:9b:6c:77:db:a4:c4:ea:2d:3f:
6a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:F4:EA:7E:51:D3:4D:B8:CC:DE:9E:3F:2A:CB:91:33:E0:DB:16
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A44FEA6CCE9A11EFA4E3226C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.137.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f0:a7:79:18:3a:d1:7b:c6:b4:e9:e1:8e:4b:89:45:ff:90:
0c:b5:6c:00:80:ff:13:77:88:92:5e:84:0e:e9:47:9d:42:c0:
2b:b1:80:01:42:23:10:fe:27:39:c6:4e:81:48:8f:f2:7f:71:
a8:6a:ee:18:f4:73:91:ca:cc:cd:5a:26:4a:2e:25:d7:df:1d:
91:2f:2f:dc:43:5f:02:a2:bc:fb:a5:69:49:c7:80:4a:df:76:
64:c3:51:e7:eb:e3:b8:7c:0e:aa:fa:b9:eb:57:d9:1f:96:ac:
cd:b8:90:13:b0:62:76:7d:43:46:dc:ef:08:88:43:77:9e:2f:
d4:f5:f7:d8:df:0c:28:37:45:8a:3f:9f:ed:27:f0:17:65:a9:
87:b0:bb:df:62:2b:1a:ff:83:cd:7f:36:5d:cc:2e:86:35:ce:
39:c1:e8:48:e7:57:d8:61:b5:e0:14:e0:3d:2b:02:da:c7:f0:
24:e1:b6:63:b6:5a:2b:eb:43:bf:6c:15:64:ef:1b:6f:50:61:
74:32:8c:d0:58:10:0b:5d:76:e3:f3:a5:2f:b0:9b:df:68:00:
e2:20:ce:4b:9d:40:ee:7b:45:ea:8a:3e:b1:0c:66:13:92:b5:
31:cc:51:4a:6e:31:d3:c2:f1:13:80:08:e8:e0:28:f7:75:6a:
db:53:9d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:47 2025 by rpki-client