Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D973A812CE7E11EF82261FBD762E951A.roa
File: D973A812CE7E11EF82261FBD762E951A.roa (raw, json)
Hash identifier: GzOMGOJXIKTAQRHH3uoiRHdidINqj2WWqNTw4+v2QAk=
Subject key identifier: 4C:3A:14:59:F3:01:1E:21:93:D8:0E:68:FE:AC:40:82:53:BC:55:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010380
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D973A812CE7E11EF82261FBD762E951A.roa
Signing time: Thu 09 Jan 2025 11:42:48 +0000
ROA not before: Thu 09 Jan 2025 11:42:44 +0000
ROA not after: Sat 01 Feb 2025 11:42:44 +0000
asID: 17561
IP address blocks: 45.203.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66432 (0x10380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 11:42:44 2025 GMT
Not After : Feb 1 11:42:44 2025 GMT
Subject: CN=677fb638-7dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:90:89:23:00:d7:0c:4d:f8:59:66:b1:87:cd:
5c:db:6d:25:98:ca:51:21:9e:98:03:eb:c8:08:c6:
51:09:be:cb:59:b5:93:f8:8f:80:85:ec:55:1d:d2:
70:72:d2:ac:2d:e0:fd:77:99:8f:5e:36:a1:5e:3a:
b3:6b:16:3c:47:f8:7c:da:a5:54:d7:e9:b3:3a:04:
dd:33:9d:5f:21:a1:ef:ad:c8:de:1e:69:2e:6e:4b:
49:56:73:4a:72:79:6e:88:3c:26:75:e7:09:35:43:
a6:e0:0a:e2:21:41:08:b9:33:ba:8a:56:41:cd:56:
d2:e1:ac:71:9f:c6:eb:33:fb:21:43:8d:ff:f4:03:
3c:20:cd:08:fc:4a:e9:d7:8b:5f:4d:61:9e:18:2b:
0b:b0:32:95:93:fd:57:38:40:ea:07:da:98:c9:eb:
50:e1:b9:0b:c9:3a:c0:d3:e1:a6:e0:87:e7:58:3e:
8b:c0:4a:f3:06:34:cb:79:33:aa:a6:09:78:b3:ce:
4e:ba:87:04:39:44:2e:2f:7e:45:eb:da:b5:b1:6d:
24:0d:dc:a8:c8:5e:c4:03:2e:7e:45:2d:86:ee:0f:
e5:23:cf:1b:2c:3c:09:c5:3b:e6:dc:d4:1d:c6:bf:
e8:a1:5c:d9:f8:b4:24:f1:2a:ed:ee:31:92:80:d1:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3A:14:59:F3:01:1E:21:93:D8:0E:68:FE:AC:40:82:53:BC:55:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D973A812CE7E11EF82261FBD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:78:16:b3:bd:3c:cb:85:29:b7:38:73:20:11:b1:05:01:62:
4d:9c:69:c7:16:67:c8:cc:3e:ac:e2:6a:76:a5:eb:44:96:9b:
cf:60:d5:4e:7c:36:da:f8:a7:1c:79:3d:17:e2:1b:82:d8:94:
0e:8f:0a:ad:73:33:28:48:b0:29:b5:48:4e:3e:72:18:1c:0f:
cb:30:05:17:92:fc:77:93:5d:e5:69:cf:18:98:18:90:21:fe:
95:cf:17:28:66:f7:70:2d:07:97:15:59:b5:1c:f1:c3:6c:ff:
5d:b7:63:60:4f:87:2a:7d:c4:dd:15:1a:de:57:00:2a:a3:85:
2a:59:65:24:9f:01:64:2a:eb:19:b6:c8:de:4b:ff:05:50:c9:
de:04:51:5b:54:89:ac:3b:97:e6:f7:19:b3:3f:72:29:8c:b2:
53:ac:cb:4e:d1:60:a4:2d:7d:56:f9:bb:a3:c5:7c:c7:9d:09:
fb:26:cb:55:d6:46:60:6c:ae:57:23:d7:12:a1:d5:5e:5e:f4:
6f:04:81:80:ef:06:8e:8b:95:2f:2d:3a:b8:ce:5a:4b:a4:30:
05:b0:67:e0:1b:3a:09:44:eb:06:ad:8d:f1:c2:d7:3b:18:55:
74:40:4f:e2:b1:55:62:24:7f:9d:86:eb:cc:0a:a2:59:ae:57:
d9:87:1f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:34 2025 by rpki-client