Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8DC1C60C99D11EFABF57DB5762E951A.roa
File: A8DC1C60C99D11EFABF57DB5762E951A.roa (raw, json)
Hash identifier: SeSyqwxMQT/zJLGECPPHb0hddllkta4nketJNhgchL8=
Subject key identifier: 41:2B:9B:2D:54:29:8A:A5:B5:0A:94:E6:0F:D7:E4:07:56:F0:79:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F651
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8DC1C60C99D11EFABF57DB5762E951A.roa
Signing time: Fri 03 Jan 2025 06:40:45 +0000
ROA not before: Fri 03 Jan 2025 06:40:42 +0000
ROA not after: Fri 17 Jan 2025 06:40:42 +0000
asID: 142032
IP address blocks: 45.207.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63057 (0xf651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 06:40:42 2025 GMT
Not After : Jan 17 06:40:42 2025 GMT
Subject: CN=6777866d-c841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b2:69:dc:e6:16:37:d8:35:0f:04:2b:bc:ee:
8a:35:29:58:2e:e5:33:dd:4b:db:50:d3:6a:e5:d2:
a6:8e:75:4d:e1:a0:43:62:33:90:7c:5d:dd:16:6d:
25:5f:10:66:0b:5e:41:de:57:dc:71:a8:c2:56:71:
88:cd:b4:cf:f5:6d:e5:c5:80:7d:da:e4:10:aa:2b:
2d:e7:14:67:f8:99:ca:db:a0:90:9c:76:2c:64:f4:
9d:9e:c8:92:cb:b7:c0:a7:02:bb:49:15:5d:ed:0c:
bf:2e:51:71:23:37:b6:72:b0:a5:74:19:18:56:20:
65:7b:e3:20:59:34:24:01:62:00:80:fa:bc:44:f2:
36:23:35:a2:56:50:7b:38:f0:00:f9:51:30:6c:6b:
1d:3c:da:d2:ae:81:02:27:c9:f4:d1:69:57:a6:a9:
2c:6d:11:5c:52:b7:6a:3a:8a:e3:65:65:53:fd:4a:
46:ba:00:38:86:8e:93:87:f0:db:6a:dc:97:1a:4f:
1f:0a:65:5d:65:a6:2b:22:dd:23:6f:9e:bf:16:48:
75:1b:ed:f8:dc:f8:5e:b6:73:62:9f:b5:51:68:d2:
38:1a:47:f4:d1:b6:cc:4e:8b:d4:f9:9b:f9:11:94:
9e:b9:f9:ac:7c:e5:25:a1:1b:8e:56:f8:60:bb:90:
08:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2B:9B:2D:54:29:8A:A5:B5:0A:94:E6:0F:D7:E4:07:56:F0:79:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8DC1C60C99D11EFABF57DB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
34:b2:53:62:fb:4a:d3:7c:fa:cf:41:53:7e:8a:29:ec:72:69:
ae:2c:63:87:22:54:7c:33:c6:14:da:54:c1:3b:70:ce:15:81:
38:15:64:05:8d:0f:5d:3c:44:c0:93:4d:94:e3:e7:fc:d4:c4:
8c:31:5c:02:aa:23:ca:a4:3c:c2:69:aa:b1:32:23:b7:6a:47:
c2:f2:ae:17:80:03:d8:70:0b:df:25:01:30:c8:b6:18:49:a2:
55:3e:e3:bc:53:7e:7d:fb:f8:02:1f:21:37:0d:39:19:5d:76:
5b:55:14:e5:61:5d:32:b4:51:bc:16:e7:55:43:ea:92:4e:6f:
28:98:43:96:8d:3d:e3:e5:e3:8e:b4:d5:22:01:95:dd:55:0e:
40:2f:b1:8e:af:37:f7:bc:21:ec:0b:8d:2b:cd:a4:84:6c:a4:
77:a3:75:5a:dd:38:2c:d9:d3:3f:a3:49:e5:06:5a:2f:d6:21:
b4:52:54:55:69:6c:ab:92:35:c4:24:65:ac:80:9f:61:c1:0b:
75:85:1a:01:bf:80:54:3d:3b:ba:35:e3:4d:49:85:36:ff:7a:
fb:dd:10:f5:b5:a4:44:b8:6a:2f:01:6a:3d:f2:30:a1:5a:9a:
bb:85:8c:9f:ba:09:0f:51:18:b0:c8:bf:39:a1:59:41:b5:14:
d2:22:eb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:13 2025 by rpki-client