Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6F3020CBEAE11EF9D23904B762E951A.roa
File: D6F3020CBEAE11EF9D23904B762E951A.roa (raw, json)
Hash identifier: BwM/DRF+wC+5zwKiX4YIh5tVDKpQDyH0YCLDCGy/Ej4=
Subject key identifier: 08:1E:C9:BD:57:DD:3D:5E:09:1C:6D:1F:08:84:49:EE:59:5F:0F:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E733
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6F3020CBEAE11EF9D23904B762E951A.roa
Signing time: Fri 20 Dec 2024 08:46:01 +0000
ROA not before: Fri 20 Dec 2024 08:45:57 +0000
ROA not after: Sat 25 Jan 2025 08:45:57 +0000
asID: 6079
IP address blocks: 45.198.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59187 (0xe733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 08:45:57 2024 GMT
Not After : Jan 25 08:45:57 2025 GMT
Subject: CN=67652ec9-86d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ae:cb:52:77:81:45:df:af:1e:9a:56:32:a0:
1f:61:0d:70:d5:5a:b1:e3:d0:71:32:1e:55:22:48:
f0:76:d8:49:df:70:79:7e:3d:c0:c6:ab:36:ce:1d:
b3:44:4b:f8:42:7f:d0:37:1a:cb:ab:79:88:84:6f:
1f:0e:86:d1:13:be:3c:4f:4e:22:7d:ed:de:91:42:
00:47:57:46:18:17:97:b8:9e:5e:76:4d:5d:40:60:
46:0e:2e:0a:96:bb:a0:d6:8b:d0:97:a0:33:b2:5d:
f4:c5:96:a4:9e:f1:f4:c4:f9:df:ba:d9:ac:63:d2:
16:b3:ef:8e:5b:67:3d:5e:28:8c:20:c2:25:29:e0:
d2:1e:3d:24:43:fa:82:bc:d7:e3:db:26:1f:74:66:
87:1c:a6:dc:cb:55:56:ca:e3:88:78:d0:89:f8:cc:
08:f4:1e:5f:37:73:fc:7f:16:29:31:ca:f6:d0:1d:
17:89:2a:8d:23:50:88:0b:bf:05:40:8b:a0:24:d0:
a4:38:18:89:0b:b4:d1:90:8c:82:93:d8:ad:63:6e:
34:8a:98:d2:a6:1f:cc:c5:90:97:05:16:38:80:81:
6c:0e:50:f2:82:da:8f:1f:07:eb:c2:a7:d2:c3:7a:
25:db:c0:1e:6b:e2:0a:04:9c:a4:63:35:b9:2e:15:
83:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1E:C9:BD:57:DD:3D:5E:09:1C:6D:1F:08:84:49:EE:59:5F:0F:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D6F3020CBEAE11EF9D23904B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.185.0/24
Signature Algorithm: sha256WithRSAEncryption
72:61:46:e5:81:de:d9:d0:4a:31:9c:48:f4:bd:8c:50:ee:28:
e0:4e:5e:df:b0:e7:4f:80:aa:51:96:b1:dd:32:d6:0a:17:e3:
6c:c2:3d:7e:92:15:0e:bf:42:f1:ee:bf:eb:e6:d7:75:0a:14:
41:a7:b1:13:5c:4c:03:75:8a:ac:9d:da:b6:05:05:65:45:84:
f2:fc:a5:06:94:ed:2d:a1:9c:a9:1a:9e:b1:76:3f:cb:73:02:
cd:e5:a5:41:ca:92:6e:df:8a:e6:ab:17:50:fc:e5:d4:5b:27:
38:10:3e:1c:09:58:61:ac:77:bc:ad:da:d5:8a:fa:52:12:5a:
1a:35:7a:bf:2d:28:47:4e:ce:94:28:b3:31:61:54:36:de:58:
9f:33:40:65:52:6d:3e:a9:24:3f:ae:fd:0b:32:81:db:03:e9:
e3:80:ea:a7:ac:06:e6:f8:c0:51:e0:dd:6d:99:59:f6:6f:7d:
54:b8:bb:f8:77:78:17:2f:4d:31:35:44:1c:5c:6c:ad:45:d0:
fb:58:cb:52:c6:c1:59:36:e7:67:53:13:c5:7f:77:db:e5:a7:
9d:24:57:8f:db:c5:0c:7b:d0:78:1d:05:82:3e:2e:75:14:39:
de:fa:58:d7:31:2a:34:08:73:4d:fa:1a:cf:2f:f7:5e:93:04:
c6:f2:f4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:10 2025 by rpki-client