Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AC4D5EE6C1C211EF9E2D7FAF762E951A.roa
File: AC4D5EE6C1C211EF9E2D7FAF762E951A.roa (raw, json)
Hash identifier: 1Ix/E1OGmr2JT30ZqzgVnkQ9OmEKbfnZYKjlgJiD8yc=
Subject key identifier: 9D:8F:9D:3F:1D:58:56:77:59:CE:E6:9B:7F:EB:32:B5:F9:4E:27:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E861
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AC4D5EE6C1C211EF9E2D7FAF762E951A.roa
Signing time: Tue 24 Dec 2024 06:45:33 +0000
ROA not before: Tue 24 Dec 2024 06:45:29 +0000
ROA not after: Tue 28 Jan 2025 06:45:29 +0000
asID: 398478
IP address blocks: 45.192.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59489 (0xe861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 24 06:45:29 2024 GMT
Not After : Jan 28 06:45:29 2025 GMT
Subject: CN=676a588d-e37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:97:84:2a:6a:c3:7c:42:e4:91:31:0d:2c:
69:fb:76:a9:ca:0e:fb:8e:5d:de:1d:6b:00:c6:43:
24:44:d8:f5:22:4e:62:ac:dc:02:d6:6a:ae:3a:f2:
c6:1d:d8:37:ac:c2:9e:ed:b5:bf:57:a8:e5:b6:32:
67:cf:b8:e1:fe:86:67:10:4f:72:79:b4:e1:ef:07:
81:97:b1:8f:6f:65:6d:5d:91:e4:15:d5:3a:bc:c6:
45:6e:73:3e:91:f9:ef:a9:ef:eb:c8:40:99:be:6f:
22:0a:7f:da:82:bd:c1:4a:53:39:ce:6f:1e:6f:f5:
ef:52:9c:f0:9a:c2:7b:28:3e:21:3a:16:5e:fe:52:
e0:8b:93:ff:c5:54:96:a1:b6:75:13:b9:03:8f:e6:
42:86:b4:31:fb:ec:55:27:b6:97:1a:db:b9:b3:b0:
98:38:44:f5:fd:43:fa:ac:e7:a2:ae:7a:2d:ed:05:
3c:f2:87:2a:69:3e:c5:6b:62:3d:12:34:41:d4:19:
d5:8d:de:79:49:2f:83:89:1b:5d:80:f5:ef:2e:a0:
44:2d:e0:0f:42:b7:59:1d:46:c3:23:ad:78:9b:e3:
40:72:60:86:21:e6:84:d3:ab:4c:d1:c0:67:7b:f0:
8f:79:8d:ec:98:05:b2:f4:02:a9:01:e0:f2:07:e2:
54:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8F:9D:3F:1D:58:56:77:59:CE:E6:9B:7F:EB:32:B5:F9:4E:27:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AC4D5EE6C1C211EF9E2D7FAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
Signature Algorithm: sha256WithRSAEncryption
0e:59:6c:20:48:d7:c5:d1:6d:92:01:0b:66:cd:b3:34:65:2d:
4a:9e:10:4d:a8:64:96:cb:84:eb:5f:a0:be:01:44:27:49:98:
91:c8:86:71:2d:7a:60:da:10:14:d2:2a:6e:7f:03:f9:e6:ae:
d5:c3:5f:25:bd:d4:24:bb:51:33:67:10:b3:bd:77:04:91:36:
15:47:76:f6:2f:e4:93:ab:2d:d4:22:5d:ad:a3:70:1a:58:fd:
8a:0a:04:04:03:a4:cc:6a:c5:2d:e0:51:f4:e5:2b:09:b9:fe:
16:8b:20:82:a7:47:c7:fb:9f:56:d9:05:7e:ff:22:6c:e0:d0:
f7:8b:b6:be:6d:b7:77:94:f7:f9:5c:4a:e1:68:53:2e:65:31:
28:48:93:ea:4d:22:6f:26:0c:84:cc:84:76:d1:d7:a8:9b:ac:
8b:d4:99:45:c9:0b:1d:12:b6:a4:ba:d1:2c:58:ed:ae:04:1c:
d7:79:6f:f2:27:86:70:25:7e:dc:80:ea:3b:c0:8f:43:15:e4:
7a:8a:78:f3:7e:aa:0d:28:7e:32:02:38:6e:cb:dc:18:63:1c:
c0:fd:89:f4:60:81:f2:f7:99:77:bd:3f:5d:75:93:c6:69:c5:
a6:40:d4:1a:13:59:c8:67:ab:e8:cf:08:66:52:e2:1c:a5:9e:
35:70:81:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:59 2025 by rpki-client