Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA6B3724D00311EF825BF165762E951A.roa
File: BA6B3724D00311EF825BF165762E951A.roa (raw, json)
Hash identifier: Vxdjs9rqjyVrCkKXGyZRLXZ96BE7qz24aLi7YWADPSE=
Subject key identifier: 00:A3:99:38:31:2B:B9:C5:89:D0:56:FC:B6:14:2A:0A:EA:82:DF:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01059C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA6B3724D00311EF825BF165762E951A.roa
Signing time: Sat 11 Jan 2025 10:06:30 +0000
ROA not before: Sat 11 Jan 2025 10:06:27 +0000
ROA not after: Fri 24 Jan 2025 10:06:27 +0000
asID: 39600
IP address blocks: 45.195.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66972 (0x1059c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 11 10:06:27 2025 GMT
Not After : Jan 24 10:06:27 2025 GMT
Subject: CN=678242a6-58ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8e:89:b2:35:09:97:dd:88:e7:aa:1b:95:b8:
70:12:08:c2:f3:8d:42:f9:e7:81:66:12:84:f9:59:
2c:ff:6f:6e:d5:e1:46:e8:f5:4f:7e:ca:40:7a:ef:
23:14:e4:05:be:39:97:9b:46:43:f9:ed:ad:97:9e:
a6:c6:86:d8:e3:02:63:dd:36:53:3d:b1:5a:8a:e6:
0b:7b:32:bc:f4:eb:54:c2:bb:e0:85:aa:57:bb:b1:
64:3c:43:8b:ee:ff:ee:e3:a9:e5:b7:3d:39:02:64:
5e:62:d6:d3:89:a5:6e:d5:e2:8e:af:e0:70:44:65:
f9:42:13:6d:77:cd:46:c1:57:d1:23:25:92:5d:5f:
15:14:92:a0:e4:41:08:80:b6:de:20:ac:ec:9c:3a:
b7:1d:e1:85:57:52:48:20:7d:4e:f6:d7:77:22:50:
7f:ba:45:89:45:b1:cf:7c:ab:38:57:89:1b:5f:8b:
6c:2c:0e:77:67:89:03:e2:3b:2f:bf:29:dd:33:3d:
46:43:9c:c1:31:76:24:1c:be:65:f9:29:7b:83:47:
b4:a7:63:f7:b2:dd:66:2c:b0:9a:f0:5f:48:a0:dd:
7d:7a:1f:4a:45:a6:d0:bb:b2:5f:59:85:7d:25:11:
f7:f3:05:e8:20:8e:11:3f:2d:09:47:db:94:50:aa:
05:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A3:99:38:31:2B:B9:C5:89:D0:56:FC:B6:14:2A:0A:EA:82:DF:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA6B3724D00311EF825BF165762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:6e:ef:3b:48:62:96:b5:48:69:d9:3c:d2:e5:ae:00:51:f0:
9a:f5:e4:60:b7:a5:bf:dd:c6:3a:4b:3d:94:68:99:91:2c:20:
2f:c6:11:7c:4c:3b:f5:fc:54:f9:fc:25:1a:29:4b:ed:65:e0:
c4:e6:e5:8f:fe:d7:45:05:97:cd:ae:3d:f8:ee:43:63:03:f7:
3b:8d:33:63:42:de:65:78:61:46:a6:4f:46:40:37:65:fa:ab:
60:bb:fd:29:c7:54:78:ca:c3:8b:7d:9e:7e:b2:cf:1b:8c:1e:
6d:09:cb:88:fc:39:03:96:1e:c3:1b:9a:c7:d4:d2:17:a9:d8:
58:65:60:66:8b:8a:f2:3d:2c:4b:22:0d:b6:3b:98:e3:01:7e:
f8:4c:ea:9c:42:c8:df:5d:cf:b9:eb:6f:3e:67:35:3f:6b:55:
8d:f3:82:37:3f:4c:94:74:d9:a7:b5:9a:67:ce:da:09:cf:b9:
90:4c:b2:e1:e9:2d:48:78:f6:50:52:c5:c7:4f:fb:de:38:9f:
f6:c5:13:f8:e0:7a:4a:19:fc:b4:bf:a3:58:e8:38:58:90:c6:
03:74:b2:54:c8:45:f2:73:72:2b:fd:98:3d:0e:c9:3f:ad:15:
28:c2:17:20:86:66:38:c4:bb:9f:0d:56:b5:48:bd:61:8f:e2:
96:96:5d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:47 2025 by rpki-client