Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D94896B653C511EE84CB2B564AD9E6FC.roa
File: D94896B653C511EE84CB2B564AD9E6FC.roa (raw, json)
Hash identifier: 6Sq9wSEjkAFfQ3FYz1RdRUorzejlXWOuhdw3vKGTlqk=
Subject key identifier: 79:DF:8B:61:03:6E:8B:54:FF:25:B1:49:0B:40:C9:77:98:44:BD:BF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 39AC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D94896B653C511EE84CB2B564AD9E6FC.roa
Signing time: Fri 15 Sep 2023 12:46:11 +0000
ROA not before: Fri 15 Sep 2023 12:46:08 +0000
ROA not after: Sat 28 Oct 2023 12:46:08 +0000
asID: 9009
IP address blocks: 45.195.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14764 (0x39ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 12:46:08 2023 GMT
Not After : Oct 28 12:46:08 2023 GMT
Subject: CN=65045213-c148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:b3:c3:8d:f9:58:58:b6:dd:f1:96:93:8c:
ca:6a:d7:03:ac:ed:b3:13:b7:a1:f4:c0:8b:8b:18:
94:a0:9d:08:69:73:0c:3f:f7:b7:95:4b:fa:bc:8c:
d0:e6:03:d0:11:d7:37:ce:1d:05:70:4f:37:d2:ff:
b3:86:b5:90:7f:73:71:90:61:59:a0:08:d6:4a:31:
c4:21:93:23:e6:cf:55:bb:25:c9:50:f4:e1:22:f9:
69:17:31:75:69:92:ba:27:f4:8e:53:8a:0b:11:76:
c5:00:86:d4:12:93:23:6c:e6:3d:35:45:2e:d2:07:
9a:ca:df:6e:d6:fe:da:a9:84:d6:7b:a5:e9:ba:a0:
8d:79:d1:1e:3b:fc:fd:ce:45:f5:98:ea:29:e3:60:
0c:bd:a9:8d:3a:14:24:84:b0:f7:7a:2a:1b:3f:bf:
08:65:28:82:30:28:91:61:8b:49:12:77:2e:40:98:
11:60:b6:31:e8:37:31:c7:51:88:8e:c5:76:83:a6:
98:ff:d3:03:9b:90:5f:26:42:f2:c5:32:18:c2:db:
ea:25:39:39:33:fd:f7:fc:ae:57:d8:56:90:c0:eb:
df:a9:59:59:87:f5:f1:49:66:7f:ae:c0:13:e9:01:
8c:22:bc:d4:06:b8:f3:7d:58:07:13:48:e9:62:ee:
ec:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DF:8B:61:03:6E:8B:54:FF:25:B1:49:0B:40:C9:77:98:44:BD:BF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D94896B653C511EE84CB2B564AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.66.0/24
Signature Algorithm: sha256WithRSAEncryption
38:bf:8c:69:4e:bd:fe:50:01:0b:e4:79:26:56:48:63:76:eb:
38:22:73:85:31:1d:f3:d6:32:fe:d8:54:d1:37:55:77:50:95:
9c:66:f4:73:62:99:5b:a8:7e:a3:69:6c:61:bd:5a:69:84:1d:
82:15:40:7b:a1:b8:50:0f:00:27:24:36:93:91:cf:d0:a2:25:
0f:8d:b3:5d:bb:11:b2:bc:e9:6a:6c:d7:41:c6:f5:63:08:b9:
55:3b:f8:7b:06:19:01:07:18:0e:02:c2:76:0e:e6:fa:b5:92:
c2:87:5b:46:1d:a9:65:76:a5:10:db:ce:ab:2e:9a:56:47:95:
c6:cb:ea:41:ae:94:db:0a:ed:96:59:9e:49:ff:aa:9a:e9:e1:
a3:c4:f4:d6:b0:b5:49:b1:3a:46:35:cc:6b:d9:ca:17:c0:ab:
91:e0:70:21:c0:b8:d3:0e:55:34:e4:91:3f:78:d3:fe:23:50:
5d:30:96:89:24:05:5a:4f:ef:6c:62:71:74:a1:ee:cb:4e:9e:
76:6a:37:8c:a4:23:53:d2:2e:e4:03:9f:ab:d1:3e:32:81:31:
4b:58:92:5e:69:9c:80:20:0a:f4:d3:8d:ef:36:8a:8d:9a:6f:
65:02:5b:d8:34:5d:93:d2:86:e9:54:23:95:d0:6e:7e:49:4f:
e7:14:56:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 10:47:15 2025 by rpki-client