Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D61B6652C4F411EF8A2D2B8D762E951A.roa
File: D61B6652C4F411EF8A2D2B8D762E951A.roa (raw, json)
Hash identifier: xcvcZHh56W006dlCulurXH10PgoQkeESStZcmbsbV5A=
Subject key identifier: B9:3B:E4:8D:45:76:0E:0F:B5:ED:F3:B2:1F:18:D6:AC:F7:A5:97:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F117
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D61B6652C4F411EF8A2D2B8D762E951A.roa
Signing time: Sat 28 Dec 2024 08:22:11 +0000
ROA not before: Sat 28 Dec 2024 08:22:08 +0000
ROA not after: Wed 22 Jan 2025 08:22:08 +0000
asID: 138985
IP address blocks: 45.199.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61719 (0xf117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 28 08:22:08 2024 GMT
Not After : Jan 22 08:22:08 2025 GMT
Subject: CN=676fb533-5f17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:85:78:bb:a7:a7:47:6a:11:d6:84:7d:e9:07:
f1:9d:9c:6c:8e:05:44:7f:1e:ec:7e:b8:4c:88:0b:
f5:69:ae:42:e1:04:a9:cf:24:67:ad:c9:d8:00:5d:
6c:10:74:9e:e0:88:9b:51:43:45:fb:4c:e5:b3:62:
e0:e4:5e:4f:43:65:07:a2:f8:e0:87:31:f6:5c:e8:
b7:42:3a:21:10:eb:63:c9:1b:f8:fd:05:0e:0c:fa:
78:c8:e0:35:a9:2b:d2:a7:6c:d9:cf:3b:46:4e:ef:
9c:07:dd:87:4c:cd:41:5d:76:3d:74:1c:9a:92:8d:
ba:e1:26:2d:21:d1:35:bd:f3:06:e7:b9:cd:be:63:
f0:8a:02:27:a8:01:fc:93:a6:63:ab:ff:45:6c:48:
32:e8:da:ff:26:74:9a:e3:3e:27:16:d7:f5:1c:ab:
20:de:78:dd:0c:2d:82:a2:7d:bb:b3:2a:18:e6:28:
07:2e:1a:2e:d1:bf:ba:7a:c7:ec:51:7c:c8:e0:3e:
c3:c5:8b:78:53:0f:9b:7d:41:3e:d9:22:e7:86:5d:
46:de:f7:02:b0:13:67:8f:af:63:84:e9:97:3a:b1:
9f:91:3b:20:7e:77:f1:84:7f:18:ba:94:b6:e6:ea:
08:9f:bd:77:71:4f:e9:b9:04:c6:f3:6a:17:33:9f:
36:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3B:E4:8D:45:76:0E:0F:B5:ED:F3:B2:1F:18:D6:AC:F7:A5:97:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D61B6652C4F411EF8A2D2B8D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.187.0/24
Signature Algorithm: sha256WithRSAEncryption
17:89:26:2e:2b:aa:58:df:57:4d:c1:ec:5b:04:46:a4:98:2b:
24:9c:63:39:06:54:ab:76:3c:fc:2f:3d:20:ce:71:e8:23:a0:
55:e7:fe:e1:15:45:21:32:6e:73:51:3c:97:1e:59:34:f8:0b:
2c:b8:99:ad:e2:6f:41:cf:34:6a:23:b7:a4:49:07:7e:6c:ef:
11:c1:3d:92:f2:5e:b3:03:dd:12:1f:89:dd:42:91:96:fb:f9:
c4:d1:6c:45:87:d8:12:8b:f7:c1:da:81:4f:5e:22:b6:af:2d:
f2:d7:b6:ab:31:79:51:20:60:7a:86:8d:13:06:2c:89:8c:2d:
16:03:39:d5:b5:c3:79:69:94:47:a3:c5:eb:cd:c2:ce:3d:ca:
8a:af:fe:4d:76:60:15:07:58:9c:e7:0e:20:83:41:85:50:8d:
e5:da:98:ba:71:f4:bb:48:22:18:0d:aa:67:0a:c0:c1:00:ba:
44:82:7e:cf:30:1b:60:ea:85:42:5b:e1:01:97:33:4f:94:c2:
c7:75:7f:89:eb:cd:61:4a:42:13:a5:19:4a:7f:af:af:eb:c7:
96:93:4a:02:a2:0a:2b:7d:92:ba:50:60:ad:4c:e6:f0:9e:b9:
18:a8:d0:cc:3b:34:1c:b8:0f:a8:d1:82:f2:aa:9f:b6:7d:d2:
f7:c8:01:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:11 2025 by rpki-client