Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0878808BF9F11EFAE174DB0762E951A.roa
File: B0878808BF9F11EFAE174DB0762E951A.roa (raw, json)
Hash identifier: oC6WwnoenFmneJR2WWPHDdaAqOybURrfi4fUTHhXjyQ=
Subject key identifier: FE:49:B9:FF:90:1D:53:BA:13:6B:69:77:78:2A:72:23:9C:73:95:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E7CE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0878808BF9F11EFAE174DB0762E951A.roa
Signing time: Sat 21 Dec 2024 13:30:05 +0000
ROA not before: Sat 21 Dec 2024 13:30:02 +0000
ROA not after: Sat 25 Jan 2025 13:30:02 +0000
asID: 203020
IP address blocks: 45.198.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59342 (0xe7ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 21 13:30:02 2024 GMT
Not After : Jan 25 13:30:02 2025 GMT
Subject: CN=6766c2dd-f974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:68:ed:18:8b:8e:cd:3c:4b:bc:1b:ad:72:13:
07:69:54:6c:23:79:d7:a4:5f:d7:54:00:e2:eb:cd:
d1:a0:53:9b:87:8a:d5:a3:d8:5c:85:fa:83:aa:4c:
ef:59:92:b3:4f:47:cd:e1:1b:6c:e0:b8:10:38:5e:
82:60:99:4e:49:c4:ea:05:54:bc:1a:0a:de:3c:01:
c0:5e:84:9c:25:24:10:b5:3f:e8:4e:44:ae:f5:79:
4c:96:b5:f1:54:fb:16:44:30:67:b2:19:ec:d3:66:
25:aa:ef:e1:77:fd:d5:86:1d:b3:dd:e6:fd:08:76:
09:68:f1:ec:9b:75:d9:02:5b:d5:15:97:47:ac:30:
24:91:df:00:7e:69:40:f1:b8:ad:eb:7d:83:6d:7f:
ff:30:ab:4f:51:9b:b4:08:56:e3:2e:bf:3d:2f:af:
18:18:1a:f7:fd:67:f5:1b:aa:5e:26:71:b8:18:c8:
cf:4b:25:06:a9:0a:a3:13:7c:42:cb:31:20:c0:03:
14:32:e9:cb:68:dd:2b:f1:9e:d3:54:c3:5e:fa:4c:
39:06:3f:66:b3:bd:62:6e:45:d3:d4:07:15:74:76:
8f:83:a2:33:dd:c5:6a:70:87:33:76:c9:49:c0:0b:
59:13:72:0d:4a:48:08:98:ff:94:d7:1d:5f:86:49:
45:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:49:B9:FF:90:1D:53:BA:13:6B:69:77:78:2A:72:23:9C:73:95:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B0878808BF9F11EFAE174DB0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.194.0/23
Signature Algorithm: sha256WithRSAEncryption
09:9d:3a:bb:81:2b:cc:28:7e:44:37:1a:99:d0:85:f3:0f:e3:
b5:7e:69:16:f2:4b:d6:da:75:54:84:75:6a:b0:0a:25:cf:4d:
17:f7:7c:b1:f8:64:64:d1:39:ca:bd:56:e9:c6:9e:30:83:1f:
d0:1c:a4:e5:5b:b1:95:fa:95:e2:ca:60:4e:55:43:22:63:14:
b6:16:89:74:18:58:56:1d:bc:39:4a:d4:54:c2:94:3d:9a:a4:
97:50:e2:b2:b4:0e:b0:3f:89:bf:6a:bb:c9:fa:a5:e1:0a:48:
ba:38:32:a2:ed:7a:1c:21:01:ef:84:d4:af:d7:6f:c2:b0:f4:
a8:91:b6:c7:1c:9c:b8:bd:27:96:e2:ba:2b:ed:3c:ba:35:09:
f1:80:dc:6e:c4:21:de:7e:89:94:aa:91:92:3d:7f:d6:d5:a5:
91:d2:30:ca:90:5f:f5:72:d2:05:03:a4:33:fc:76:22:ca:ce:
db:80:b8:bb:cf:8b:1d:d7:d0:f4:8b:51:a0:15:34:79:3a:a7:
4a:84:ea:4c:16:1b:1c:9d:57:22:55:9e:b3:e7:a9:af:b4:85:
bc:a9:1f:6e:54:40:06:5a:82:a6:5a:1a:20:9d:c1:de:31:2e:
c3:98:ab:0f:b8:15:9a:f0:06:c9:53:04:49:56:6d:c8:13:fb:
2d:5e:02:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:00 2025 by rpki-client