Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3479442CE9311EF9F2DF442762E951A.roa
File: E3479442CE9311EF9F2DF442762E951A.roa (raw, json)
Hash identifier: oK90xSTQEe6nfnGmSKml5g7NDP7iBABBX7Mmi0vmsSw=
Subject key identifier: F0:11:8C:94:B9:34:9D:5C:F9:FE:6C:A7:93:14:EC:6C:94:A4:DA:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010402
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3479442CE9311EF9F2DF442762E951A.roa
Signing time: Thu 09 Jan 2025 14:13:24 +0000
ROA not before: Thu 09 Jan 2025 14:13:20 +0000
ROA not after: Wed 22 Jan 2025 14:13:20 +0000
asID: 39600
IP address blocks: 45.194.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66562 (0x10402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 14:13:20 2025 GMT
Not After : Jan 22 14:13:20 2025 GMT
Subject: CN=677fd984-b922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2c:c8:54:8b:2a:ab:86:0b:0a:f3:1a:d5:a3:
b6:bb:d5:ad:5e:36:55:dc:dd:34:e8:4a:a5:7d:a6:
26:a6:0e:48:e0:8d:eb:78:78:44:fa:5d:12:6a:0b:
82:0e:b7:bf:11:4f:a9:c7:01:27:fa:d2:5e:54:81:
39:df:24:c5:1b:61:d7:01:64:56:26:55:53:9d:d5:
a1:57:3d:8a:68:c4:79:ce:d2:49:86:4c:e4:de:ae:
b0:3d:0a:37:87:04:c4:bc:c0:d9:e4:6a:19:fd:b2:
e2:41:84:57:33:a4:9b:03:20:63:96:f5:41:c6:ab:
45:f3:9b:47:68:83:64:4a:c7:40:0b:14:8d:fd:6e:
1c:68:e7:32:90:67:dc:49:21:f2:74:9c:1e:0a:64:
42:b6:f7:0b:fe:aa:9a:26:51:55:97:3b:01:ab:a4:
94:a0:a5:64:8b:b8:5e:c6:7d:66:bf:22:54:15:b9:
61:87:a9:50:20:3f:aa:1c:53:56:82:cf:fb:92:fb:
99:b0:b4:29:eb:03:a7:53:56:d9:c4:4d:68:eb:4e:
68:3a:07:b9:81:8b:93:2f:3e:cb:13:1a:ea:28:dc:
da:f1:36:4c:aa:ad:83:e2:b4:eb:74:10:d1:9f:cd:
70:4e:be:9f:28:84:38:e6:a1:40:6c:a4:59:24:52:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:11:8C:94:B9:34:9D:5C:F9:FE:6C:A7:93:14:EC:6C:94:A4:DA:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3479442CE9311EF9F2DF442762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.68.0/22
Signature Algorithm: sha256WithRSAEncryption
af:bb:92:8b:6c:26:2a:e8:11:68:17:6e:7b:58:15:45:e4:d3:
e4:b0:b1:50:47:e5:93:08:be:bc:7d:5b:c6:17:39:a6:31:4b:
31:d6:f5:4a:30:39:5c:92:8c:98:77:e6:c5:30:e7:db:5a:4b:
cd:c9:f0:5f:b3:34:c6:45:35:e3:70:00:5a:46:e2:16:64:8c:
13:97:15:05:f2:c6:13:30:ff:1e:bf:e1:9b:c0:0a:c6:88:c3:
8a:8e:82:08:dd:ca:68:59:31:31:b9:09:af:e5:99:26:7b:fa:
e4:3c:1b:37:b9:05:ae:94:31:39:01:80:0a:bc:b6:81:f9:de:
b0:b7:42:69:fd:cf:a0:5d:2c:aa:e0:4a:b5:2b:4d:67:98:13:
17:d2:d8:6f:af:8f:6b:e0:33:90:8b:a0:de:ed:68:81:15:38:
a1:09:6e:45:e3:75:1c:80:02:a9:d0:b9:da:12:74:90:28:2d:
56:d5:7d:a1:73:b8:a6:12:e4:29:a1:84:23:04:cc:48:56:3d:
6a:94:ec:c4:9e:56:b8:00:73:20:e8:8a:33:88:12:a6:67:75:
37:13:a1:d1:30:29:33:57:65:8c:ed:c2:bc:1d:5d:f7:ee:2c:
20:05:56:ad:cd:25:ee:30:73:6d:9f:4b:4a:2b:57:e8:ba:b7:
65:ca:68:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:55:21 2025 by rpki-client