Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB2BCBE2B92711EFA0209B8A762E951A.roa
File: DB2BCBE2B92711EFA0209B8A762E951A.roa (raw, json)
Hash identifier: sNqxTPSoGURBgxQC7NfjE5c1btJH2+mR5kgtC3+I4vo=
Subject key identifier: A6:E2:C4:2A:FA:B6:F2:8A:1F:7D:78:D8:88:72:BA:DD:C5:2D:92:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E31D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB2BCBE2B92711EFA0209B8A762E951A.roa
Signing time: Fri 13 Dec 2024 07:57:10 +0000
ROA not before: Fri 13 Dec 2024 07:57:07 +0000
ROA not after: Sat 25 Jan 2025 07:57:07 +0000
asID: 44559
IP address blocks: 45.199.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58141 (0xe31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 07:57:07 2024 GMT
Not After : Jan 25 07:57:07 2025 GMT
Subject: CN=675be8d6-dad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8c:dd:fd:e8:6f:33:c3:f4:a0:4b:96:6a:f1:
9e:65:32:b1:a5:ca:ef:d0:41:09:6f:0e:f2:f6:cf:
d8:70:21:f3:54:8a:f2:29:15:c3:e5:9f:f4:b4:9b:
f4:9b:61:15:03:7f:9d:2f:eb:1d:4c:46:06:d2:bc:
23:d9:41:5a:eb:93:e9:3f:31:0b:ea:8e:6d:18:30:
4c:08:1a:f6:d1:1e:c2:bd:aa:e4:0b:4c:52:bb:0b:
7a:3b:fd:38:20:07:92:fc:9b:1b:8e:46:68:8c:e2:
cc:e2:78:2e:3c:e6:cd:2d:00:4e:d5:e4:16:fe:19:
8e:ac:7f:8c:e2:65:d5:d7:7d:c0:b0:16:93:cc:9c:
e0:65:84:f8:e6:26:82:72:cd:1e:97:2c:4b:2e:e3:
85:cd:5f:99:c2:78:36:e4:5a:10:43:cd:2e:77:5a:
ff:87:5e:ad:d9:d9:b5:e0:96:05:0c:2c:4d:ca:f0:
a7:de:69:ac:4e:16:ce:6e:4f:e4:3e:89:9a:0f:21:
a1:ec:10:c8:8f:3d:e9:75:67:af:76:5d:90:3a:ff:
ba:62:65:69:90:61:77:1b:2c:42:89:69:49:a0:fb:
d2:b9:7a:00:d5:ca:4c:ca:e9:61:4a:1e:61:fe:4f:
34:b8:90:1e:cd:47:53:31:0b:0e:83:14:60:73:8b:
66:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E2:C4:2A:FA:B6:F2:8A:1F:7D:78:D8:88:72:BA:DD:C5:2D:92:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB2BCBE2B92711EFA0209B8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.240.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cc:06:83:79:68:09:3d:97:49:66:31:4c:be:c9:4e:f3:00:
4a:61:0f:ff:b8:cd:2f:b4:63:61:90:45:dc:8a:5e:68:d0:c6:
4f:6c:c3:08:4a:85:65:41:a9:6e:7c:20:4f:2e:6e:79:06:2a:
9e:aa:bf:5b:3f:ed:f8:df:be:ef:42:5b:35:3b:f8:ce:1c:e7:
35:7a:cb:08:1e:d3:08:22:1f:c6:26:f8:7d:11:4a:da:2b:99:
73:4d:de:cd:96:b7:6b:61:85:96:71:e5:3f:5a:f3:d8:c0:38:
0d:ef:bb:5a:3d:d5:fd:35:2f:56:c9:99:86:06:b4:16:10:44:
36:54:40:fe:ec:10:59:ac:d3:ac:f0:57:1e:9a:35:12:05:10:
11:32:25:25:4e:10:55:ee:fb:18:3a:96:54:72:2e:05:9a:90:
e2:07:bf:3b:98:1f:55:d7:ac:1d:3d:0c:a6:6f:19:45:1b:dc:
f3:98:6c:6f:9d:4b:51:5f:f0:62:c6:a3:62:f4:93:14:9c:ab:
ba:ca:a7:d9:30:c3:2e:df:8c:50:e7:56:04:ed:6d:88:78:dc:
3a:1d:5d:3f:65:31:ea:5c:10:f3:d3:82:64:1e:76:2b:4b:76:
77:8e:ea:6f:4c:c8:44:05:f2:0b:1e:98:24:f4:d8:a5:b6:20:
0c:af:57:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:44 2025 by rpki-client