Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC725762B78A11EFB8EC8868762E951A.roa
File: DC725762B78A11EFB8EC8868762E951A.roa (raw, json)
Hash identifier: g1I2zYXiRFoge/FDxPUinUmWizv5JPHpamm/6JQbTBA=
Subject key identifier: 8C:CF:41:A8:2A:03:A4:5F:0A:B7:24:3B:AF:AD:E7:3F:35:0F:1B:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E285
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC725762B78A11EFB8EC8868762E951A.roa
Signing time: Wed 11 Dec 2024 06:40:50 +0000
ROA not before: Wed 11 Dec 2024 06:40:47 +0000
ROA not after: Thu 16 Jan 2025 06:40:47 +0000
asID: 6079
IP address blocks: 45.205.96.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57989 (0xe285)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 11 06:40:47 2024 GMT
Not After : Jan 16 06:40:47 2025 GMT
Subject: CN=675933f2-5dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:19:7a:6b:be:b4:a1:cc:26:64:e6:e3:55:0f:
d7:6d:6f:10:a1:ed:9d:53:b4:84:3b:52:b8:78:35:
92:36:05:37:cb:ef:7a:07:bc:59:d4:a3:7c:a6:b7:
f9:04:a1:0f:fd:ef:6f:07:15:55:90:ac:0b:20:16:
0d:ff:e4:e2:00:08:98:d6:f3:45:1c:a9:e8:40:85:
e0:98:40:6d:0b:b6:28:38:8a:e0:0c:ab:6e:d9:cb:
d3:dd:ad:89:7f:38:66:76:a5:56:c4:81:a4:9d:03:
ae:f5:eb:9f:a1:ea:30:7b:af:d6:c7:34:c4:68:a7:
c0:54:4b:32:99:3c:74:b3:61:23:dc:f4:4d:29:ba:
8e:b8:46:bb:91:40:21:3b:01:93:50:bc:73:b6:a3:
81:c4:4d:81:60:60:a6:fe:6f:90:df:61:69:2c:79:
d3:a7:9b:63:82:9e:25:ba:64:8e:bb:1d:8b:ae:55:
f6:b3:9f:a7:b0:b2:ee:52:25:d7:f6:42:03:2d:82:
6c:24:bb:d6:45:6f:bf:e3:ea:5b:2b:12:e8:2c:9d:
30:28:ea:7b:2c:20:ac:e3:a1:14:ec:d9:4c:73:f6:
f9:36:aa:40:fd:71:4e:16:58:12:82:60:e4:ec:a3:
50:ef:83:3d:b8:78:19:7f:ed:95:fa:cf:59:87:17:
e3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CF:41:A8:2A:03:A4:5F:0A:B7:24:3B:AF:AD:E7:3F:35:0F:1B:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC725762B78A11EFB8EC8868762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.96.0/23
Signature Algorithm: sha256WithRSAEncryption
39:12:8b:76:5a:52:b5:af:9f:af:84:24:f1:b3:cb:49:82:4d:
e3:ad:49:75:c7:7a:0b:2b:6a:20:cf:f9:8f:fc:39:14:19:10:
33:dd:aa:5a:f0:f9:f7:16:89:bd:d8:f1:f9:f8:20:1b:29:82:
a7:48:68:2b:8f:25:ee:e7:b7:13:e6:50:01:52:6b:ee:ed:eb:
4a:32:e2:a5:ea:dc:fa:e2:03:6a:b8:79:d2:24:fa:da:96:d8:
0a:de:56:d4:71:b1:b5:e6:a0:c4:43:40:ad:d3:2a:17:f3:05:
cd:f2:db:95:30:73:17:51:86:9a:1a:71:3c:de:3e:64:f9:f5:
28:25:9b:e5:f7:45:73:68:6e:1f:34:f4:7d:6a:44:21:ba:65:
9e:bf:c7:00:15:e5:7d:15:55:61:db:51:4b:7b:05:89:9f:56:
9b:c7:a4:9a:4a:59:05:0e:8a:63:29:c6:a1:5c:47:b9:af:84:
b1:20:23:3e:40:ce:46:68:71:27:7e:26:3c:50:bc:49:09:42:
6b:08:b5:5c:a7:43:73:9c:e7:e7:af:a1:95:9d:ba:76:b9:25:
a0:e8:49:f5:4e:4a:d4:f9:e8:e6:c9:44:ac:7e:87:9d:92:e0:
bb:a1:56:d2:67:a4:7b:c5:e9:d8:2a:e7:02:58:c8:cd:4a:aa:
06:95:46:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:45:41 2025 by rpki-client