Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4631678C9B011EF80F245AE762E951A.roa
File: D4631678C9B011EF80F245AE762E951A.roa (raw, json)
Hash identifier: QUudD7mJFhrQLRR1JJ1wVR8RMCjGlooKInBb/7xJvFA=
Subject key identifier: DD:59:1A:6D:62:5B:69:BC:F6:FF:F6:E2:89:96:28:DA:C9:F7:86:DA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F6B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4631678C9B011EF80F245AE762E951A.roa
Signing time: Fri 03 Jan 2025 08:57:59 +0000
ROA not before: Fri 03 Jan 2025 08:57:55 +0000
ROA not after: Sat 18 Jan 2025 08:57:55 +0000
asID: 141883
IP address blocks: 45.200.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63155 (0xf6b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 08:57:55 2025 GMT
Not After : Jan 18 08:57:55 2025 GMT
Subject: CN=6777a697-25ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:4a:41:62:2f:29:dc:88:a0:c2:c6:81:1a:
33:ac:33:a8:bd:08:86:0d:be:a6:76:e7:49:18:e7:
3d:3b:dc:b7:f2:7f:5f:f3:fa:34:e3:bc:21:38:9f:
b6:f7:ab:30:e1:36:08:98:d7:d6:ed:33:f5:0f:cf:
b5:f3:f0:8d:ac:e6:fa:de:a7:b6:52:81:f5:e8:83:
3d:48:76:42:ea:e8:c7:8d:c8:35:3a:21:ab:db:31:
9d:24:f3:05:19:84:de:0f:b9:57:98:e9:85:9c:49:
9c:8b:e9:dd:f4:be:a7:1b:2f:8d:83:e2:2b:0f:00:
71:5c:ce:ae:81:8b:88:1e:71:2e:2b:a4:71:d9:e6:
3f:ba:dc:7c:a8:ba:27:38:7c:08:d3:77:75:a1:c6:
27:79:47:23:38:e7:bd:7a:10:c2:85:7a:c4:a1:df:
55:67:30:ec:a6:18:0b:46:a0:ed:ff:05:9f:05:39:
47:b0:63:37:74:6f:8b:e7:b5:d2:82:5a:72:42:00:
01:6b:23:f6:75:c5:03:dc:1e:39:b3:83:6b:85:3d:
88:25:bc:1f:a0:99:e0:5c:48:fb:1b:c8:91:2c:e0:
07:1a:ce:12:36:03:41:19:c3:b7:04:2b:e7:1b:66:
47:76:32:a7:d6:29:73:10:73:11:d5:eb:34:af:60:
72:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:59:1A:6D:62:5B:69:BC:F6:FF:F6:E2:89:96:28:DA:C9:F7:86:DA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D4631678C9B011EF80F245AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.32.0/19
Signature Algorithm: sha256WithRSAEncryption
77:6b:07:30:10:3d:3a:cd:df:a5:64:1f:e1:39:49:34:2b:25:
1d:6a:75:c2:66:b7:11:e0:c8:08:32:bf:ff:c6:d6:93:80:d5:
88:53:da:8f:18:3b:8c:2c:43:21:ca:b0:9a:e3:5b:6e:34:d3:
e8:53:19:16:f3:45:40:d3:3a:eb:ef:cd:aa:1e:db:6f:1c:58:
cb:5a:11:23:6a:ec:3d:1f:e0:fe:d0:93:98:a9:d5:69:a7:eb:
2b:ef:87:9b:92:d2:e8:f0:06:ee:d8:63:8d:8f:c6:cc:33:e1:
d1:34:09:53:d3:6a:ae:14:6a:f8:5a:5e:3d:d0:e0:57:4a:7e:
56:c3:12:d6:2e:58:9b:d1:9d:67:41:85:43:d6:b7:7d:2e:2c:
8a:99:30:a4:b4:1b:ca:55:52:c2:96:44:5e:2a:1a:a7:a8:bd:
44:de:0d:c6:ca:17:f8:97:3b:3e:99:07:ab:dc:5f:e1:a5:34:
3d:9a:cc:4d:b0:e3:94:65:a0:cc:68:f0:c9:72:0b:08:37:2f:
a6:f0:be:f9:9e:3f:05:a6:85:35:d5:9a:25:59:59:55:69:be:
c3:d0:19:fe:ae:34:09:83:b7:59:f1:30:73:1a:c7:72:3f:b6:
f9:46:44:17:24:4c:82:82:0d:3a:5e:3f:c6:7f:d3:fe:83:85:
ca:a9:03:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:33 2025 by rpki-client