Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACEF06D2BAF711EFBA02C166762E951A.roa
File: ACEF06D2BAF711EFBA02C166762E951A.roa (raw, json)
Hash identifier: CTQrYNHgrlrAc4JU1hKrllVZWTPvZqJv0tTTFQghJho=
Subject key identifier: 54:93:51:29:72:2F:B5:21:8E:7E:F4:99:6F:2E:BA:90:C3:F9:08:41
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E3EF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACEF06D2BAF711EFBA02C166762E951A.roa
Signing time: Sun 15 Dec 2024 15:17:19 +0000
ROA not before: Sun 15 Dec 2024 15:17:16 +0000
ROA not after: Mon 20 Jan 2025 15:17:16 +0000
asID: 142032
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58351 (0xe3ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 15 15:17:16 2024 GMT
Not After : Jan 20 15:17:16 2025 GMT
Subject: CN=675ef2ff-a392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5b:e1:69:4e:31:9b:4f:72:2e:b5:8f:5a:fc:
75:ee:07:c7:de:f8:98:7e:55:a8:8d:44:af:5a:61:
c5:6b:24:22:95:37:1d:be:7b:14:5f:5b:9b:5b:61:
f9:0a:96:03:46:0b:3f:e9:02:ef:61:20:18:c1:ea:
68:c4:83:54:68:bf:ca:06:7c:bb:2c:45:59:71:d6:
75:75:4e:08:c7:5c:71:4f:89:84:b9:4d:e3:6c:4e:
97:57:23:ac:37:18:be:ea:c0:52:bb:8c:9e:e9:b8:
99:06:be:4b:dc:d5:3a:3a:86:3d:b1:d6:23:11:e1:
08:a6:5a:14:42:47:93:4f:14:84:41:2e:48:41:e1:
f9:e0:06:ba:c4:e7:a2:8b:79:12:f8:60:af:48:76:
69:25:47:7c:ff:89:fd:0b:6c:fa:e0:dc:4f:dc:51:
bd:c5:39:55:14:c5:6d:88:dc:74:eb:31:2f:21:90:
5d:a1:47:c0:d5:49:a8:38:66:90:65:ea:d0:f7:a1:
61:e8:57:bc:bf:71:8f:4d:0f:22:a5:5f:6f:8b:d5:
07:d2:a4:41:ed:72:a0:2e:f3:54:1e:da:11:90:31:
5b:a0:23:37:88:0d:04:18:f7:af:68:26:e7:e4:11:
43:6c:5d:50:87:83:7f:7f:8e:40:f0:8c:9b:cd:65:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:93:51:29:72:2F:B5:21:8E:7E:F4:99:6F:2E:BA:90:C3:F9:08:41
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACEF06D2BAF711EFBA02C166762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
83:73:23:75:5d:32:a6:ee:2c:c6:3b:35:b8:53:91:1d:d5:03:
9f:1a:1e:85:16:58:1b:5f:38:38:da:38:a2:06:df:01:bb:e3:
97:b6:19:60:d7:08:50:9a:1b:2c:ab:a2:84:c3:9b:be:11:25:
18:ce:15:34:08:f2:66:41:8c:6d:85:b1:4e:c2:82:df:0f:2d:
26:09:36:82:f3:2e:c6:16:f3:f0:9d:72:00:d6:0e:66:d6:a8:
cb:d6:fe:10:5a:6c:05:58:93:9b:5c:6f:f7:5d:c6:1a:22:a4:
ec:df:f5:80:ac:03:ab:46:4f:b1:eb:a0:27:f6:7f:b3:5e:6d:
08:57:86:e5:cb:1c:45:12:f0:82:72:7f:07:69:8d:cd:7e:c7:
72:71:06:77:7a:bb:f0:91:03:2e:04:c5:38:52:fc:fb:39:09:
24:e8:cf:1d:3f:98:7d:66:be:d0:70:69:c9:b6:54:e6:cf:36:
c1:eb:ea:c5:d5:5b:86:68:bc:5c:8c:9a:8a:d1:1d:8d:4e:76:
af:49:68:c2:7a:cc:0c:54:09:8b:09:df:b8:b1:ec:11:54:31:
c6:60:e7:d1:36:c0:45:9d:fd:60:3f:aa:d0:73:de:06:47:8e:
40:84:06:58:be:b8:ff:cd:11:fe:50:04:b0:95:7d:dd:51:c5:
72:cb:9a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:43:36 2025 by rpki-client