Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E08B5ACAC011EFBBB4A45E762E951A.roa
File: A8E08B5ACAC011EFBBB4A45E762E951A.roa (raw, json)
Hash identifier: qxCYKGH7NrltrP2YxBHKCslSlQGYL6GdhCgG6lF24tE=
Subject key identifier: DB:A1:82:37:07:5C:BF:AF:DA:C5:CC:5C:53:10:09:4E:A1:AF:B4:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F71C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E08B5ACAC011EFBBB4A45E762E951A.roa
Signing time: Sat 04 Jan 2025 17:23:49 +0000
ROA not before: Sun 05 Jan 2025 17:23:45 +0000
ROA not after: Thu 16 Jan 2025 17:23:45 +0000
asID: 395793
IP address blocks: 45.194.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63260 (0xf71c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 17:23:45 2025 GMT
Not After : Jan 16 17:23:45 2025 GMT
Subject: CN=67796ea5-dd5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:23:81:54:68:6c:7c:72:06:cd:fb:f8:77:7b:
82:b8:74:2a:e3:b7:8a:85:e6:b7:2a:4d:aa:c9:ec:
c8:2c:c6:90:70:77:00:1d:22:18:4f:18:eb:77:c8:
42:b2:56:af:6d:91:b0:5a:f2:66:cf:5a:13:18:85:
5e:82:47:7d:c4:06:29:06:8f:49:a7:7f:a5:fe:a2:
be:49:59:de:5a:6a:2d:51:84:86:cf:b0:bd:cf:17:
7e:41:bc:c4:83:cd:bc:4d:d2:42:65:b3:03:be:4f:
86:53:be:38:86:4f:75:7e:95:a3:ef:ee:4b:d9:52:
4b:ba:7f:cc:d6:95:ff:00:d1:ed:42:42:3c:42:8b:
38:30:8f:a1:2b:27:f4:f6:e1:3f:89:24:60:dc:9e:
d9:e3:fd:8c:7f:c7:ca:7a:c2:c5:3a:bd:c4:59:2c:
f1:f2:25:33:b3:cb:29:90:87:86:5a:32:53:28:f8:
15:fe:f4:33:66:81:36:43:98:55:32:a1:62:82:5c:
71:32:cb:8a:9e:f9:df:f2:c5:cd:26:df:13:9e:8f:
2f:03:94:ee:cc:8c:b9:0d:38:d8:de:9e:f0:8b:19:
7a:c6:3e:4c:a7:5e:ca:2f:e4:4b:82:4b:12:e5:61:
f2:82:a7:c0:41:16:10:8f:cc:d5:c8:b2:ae:17:ce:
1f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A1:82:37:07:5C:BF:AF:DA:C5:CC:5C:53:10:09:4E:A1:AF:B4:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8E08B5ACAC011EFBBB4A45E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.118.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:70:3d:f3:f0:25:2f:df:5d:fd:05:5c:27:8d:f7:50:25:51:
84:46:96:69:b1:54:1f:dc:8b:de:fe:90:2c:b2:3d:ec:98:1d:
ae:89:72:75:43:62:d7:08:27:14:4c:8e:02:24:53:d0:a5:52:
8a:4b:b8:37:56:fd:65:9e:ba:7c:78:6d:e2:4b:85:4b:70:ec:
d0:81:1a:7e:ea:4c:f7:64:df:8c:3b:6a:7d:f4:74:e1:c8:09:
46:e9:75:36:29:c7:de:5b:1c:1f:fb:f0:18:9b:70:eb:66:80:
65:4c:f8:f3:fe:43:35:e1:a1:cc:ca:ba:f3:94:46:c7:77:17:
23:97:6f:69:3e:68:c8:a0:0a:42:bf:61:49:ea:c1:b5:ff:c5:
5b:be:b0:c1:9a:48:6b:75:fe:99:e4:ba:82:bc:6b:eb:63:39:
2e:5c:26:e3:ec:4b:94:fd:7d:a5:5e:ca:77:5b:4a:8a:4e:4d:
36:21:f4:2b:23:68:18:af:c4:57:87:30:01:c8:51:0e:0a:aa:
16:5b:04:d0:b3:ae:ae:3d:74:d6:e3:6d:c7:21:1d:62:bd:34:
fd:94:2a:12:98:ab:98:4c:c1:76:eb:8d:1a:b2:70:10:d9:6e:
ee:17:e2:80:2f:79:c6:1a:2f:35:0c:11:1f:30:3f:dd:57:da:
d1:ef:01:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:14 2025 by rpki-client