Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E66B2ACECBED11EFB2ED3E60762E951A.roa
File: E66B2ACECBED11EFB2ED3E60762E951A.roa (raw, json)
Hash identifier: 3wYK242Ed//jK3NKRPXtnUoRlI6wVo47ljFsvEQqxOA=
Subject key identifier: 98:A7:AF:77:D1:A0:1E:4C:97:9A:8A:7B:92:92:05:AA:64:2C:8E:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F836
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E66B2ACECBED11EFB2ED3E60762E951A.roa
Signing time: Mon 06 Jan 2025 05:20:10 +0000
ROA not before: Mon 06 Jan 2025 05:20:07 +0000
ROA not after: Thu 16 Jan 2025 05:20:07 +0000
asID: 5065
IP address blocks: 45.207.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63542 (0xf836)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 6 05:20:07 2025 GMT
Not After : Jan 16 05:20:07 2025 GMT
Subject: CN=677b680a-1d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:61:a7:17:d6:29:14:9d:59:fc:70:52:00:01:
84:d6:5b:4b:59:81:b9:75:17:41:8f:43:20:40:d3:
59:22:7d:ed:4f:01:b3:ab:2f:f0:63:69:1c:10:f4:
f1:35:aa:55:50:88:5d:79:cb:ca:de:55:41:0d:9e:
31:04:04:f9:04:92:b4:3d:65:3f:28:78:00:f6:64:
cb:ab:86:13:01:c3:37:34:89:61:9f:26:9d:18:12:
1d:0c:10:aa:93:fc:30:50:94:bb:ac:98:12:c6:9e:
5a:5b:43:b1:b9:3c:22:fe:69:1f:95:bd:ed:7d:7b:
a5:a9:b6:55:83:f2:e4:63:89:3c:8a:12:ed:d7:15:
c3:08:2c:b0:97:7a:07:4a:bd:11:07:95:55:9f:79:
68:8f:ec:cd:80:3b:33:05:31:c4:d7:77:e8:cb:e4:
ca:f1:7a:f8:52:e1:92:65:0d:21:ac:66:42:b2:7b:
2e:23:c5:f2:d9:89:4e:34:c7:c2:a6:d8:b1:7f:8d:
79:ac:76:08:34:ff:35:99:cd:c2:11:3e:cd:03:83:
13:d3:f0:c1:e3:41:a7:22:fa:34:1d:dc:34:8e:f2:
30:07:b4:05:2e:7b:13:09:7a:80:72:57:34:2c:a9:
25:e7:71:d4:1c:8e:5e:53:75:0a:b5:b2:34:15:0d:
c5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A7:AF:77:D1:A0:1E:4C:97:9A:8A:7B:92:92:05:AA:64:2C:8E:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E66B2ACECBED11EFB2ED3E60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.24.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:84:6d:8d:3e:a1:c4:f1:78:34:86:2d:8b:2b:cd:10:61:31:
c1:fb:e7:75:1e:82:5d:f7:b2:e2:40:22:01:4e:cd:3f:df:58:
b1:53:14:72:58:19:2a:7f:d9:62:be:8c:b8:12:2b:af:b2:5a:
27:e9:89:bb:7c:01:8e:93:9e:4e:01:1a:02:96:1e:eb:45:62:
6e:b1:a0:50:91:6c:9c:be:ac:28:b2:1f:8e:e4:37:f0:18:c0:
40:d2:66:f6:55:a6:23:6c:88:30:89:71:c1:a7:56:91:aa:9f:
16:81:aa:fd:02:58:83:05:07:87:3e:92:62:91:32:51:6f:26:
3a:04:d4:e1:55:d7:8a:b6:f0:ba:71:44:32:1a:b1:a9:1b:a2:
42:a2:ee:a7:55:9e:ae:3a:23:b6:4c:c3:f5:02:fa:55:64:06:
ea:0e:be:9f:bf:c1:e7:c5:1a:01:f3:65:e2:06:d0:0d:2b:8a:
10:16:13:01:92:f9:9c:83:5b:7e:9c:a5:e7:21:17:52:b5:e8:
9a:16:32:70:dc:d6:ee:aa:13:62:fa:39:98:dd:89:4c:11:48:
f7:18:ce:96:22:7b:9d:bf:56:1b:b2:c8:13:6c:80:72:1c:c5:
61:6e:28:76:5c:d1:6c:6e:f8:cd:39:48:d6:a4:5c:dd:3a:8f:
5e:f8:f3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:51 2025 by rpki-client