Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E96ED60CCE5F11EF83CEFC79762E951A.roa
File: E96ED60CCE5F11EF83CEFC79762E951A.roa (raw, json)
Hash identifier: B31v2zs4mC7nNtW3y07lKgAvaX4UQYS8qIFHUjXbiR0=
Subject key identifier: 2D:1A:40:4F:29:38:8E:72:68:A4:CA:A8:35:E9:E7:D4:EC:20:E9:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010314
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E96ED60CCE5F11EF83CEFC79762E951A.roa
Signing time: Thu 09 Jan 2025 08:01:20 +0000
ROA not before: Thu 09 Jan 2025 08:01:17 +0000
ROA not after: Wed 22 Jan 2025 08:01:17 +0000
asID: 5065
IP address blocks: 45.202.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66324 (0x10314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 08:01:17 2025 GMT
Not After : Jan 22 08:01:17 2025 GMT
Subject: CN=677f8250-94fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ac:0e:15:d9:a2:71:1f:dd:07:1a:95:e3:d5:
a9:07:23:cc:39:b7:62:5b:a0:07:2c:15:b0:a1:bb:
32:fd:ea:5a:6f:aa:2a:5e:b0:eb:7a:c5:0e:11:e4:
61:51:da:9e:73:e3:f8:57:ec:a2:5e:26:04:9f:f0:
26:c3:2b:9f:f6:48:74:55:54:a2:dc:6c:07:63:70:
9a:80:51:ac:3b:65:23:c0:44:58:91:b4:3f:90:16:
1c:54:1e:ee:6d:9c:4c:e2:b4:80:50:10:d2:83:29:
8d:2d:63:c1:9b:d7:66:5e:70:65:ce:a9:cb:23:77:
36:42:f5:29:b4:2d:5c:45:81:d5:82:da:a2:78:01:
0d:27:37:7b:1b:40:48:a7:5d:94:03:73:c9:c8:9c:
ed:3b:7e:5f:d1:d6:87:35:58:f4:48:d2:76:02:b4:
f1:30:e4:c9:52:d7:07:21:65:d3:13:09:99:1e:94:
b4:4a:51:7f:a0:90:f4:4a:4f:bd:1a:1e:4c:e0:06:
b8:9b:39:25:75:f3:0e:ce:f3:1a:cc:37:b2:1d:5a:
29:e8:63:6a:51:52:9d:a7:b5:a2:13:d0:72:e7:d6:
53:32:15:71:72:91:2a:0c:c4:a5:fa:56:4e:39:1b:
74:5a:b4:57:c1:08:7e:78:be:b7:92:e7:96:d2:4b:
7d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1A:40:4F:29:38:8E:72:68:A4:CA:A8:35:E9:E7:D4:EC:20:E9:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E96ED60CCE5F11EF83CEFC79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.4.0/22
Signature Algorithm: sha256WithRSAEncryption
33:ae:c2:96:c4:61:84:1b:79:2b:2e:ea:e1:0a:0b:11:7c:a5:
10:1d:35:54:34:de:22:c5:6c:f3:df:bf:90:f9:4b:38:a6:08:
b0:d2:56:51:d0:a8:b5:72:54:a0:60:58:ec:e4:83:66:55:51:
0c:2b:a1:91:47:13:10:93:6a:89:36:9b:90:2d:85:e0:8b:d0:
77:2e:7a:af:2d:ba:b8:74:82:0b:cc:4e:3d:cd:86:53:84:83:
d5:00:d6:93:ab:14:50:f4:52:1d:3f:30:32:f0:5c:49:e4:a6:
86:4a:2f:3a:77:66:42:3a:1d:3e:02:ad:dd:2f:08:1c:67:48:
1b:e5:a9:06:99:45:4c:8a:17:30:c6:57:93:32:00:9e:93:6b:
d8:a6:f3:18:f8:7a:b1:3e:c8:2c:73:db:51:a9:f2:f9:ea:18:
a6:0f:3b:2c:7c:f8:1e:b0:fa:38:86:1b:59:a6:dc:39:fa:25:
d1:28:3e:7d:20:05:40:ff:f8:b4:cf:dd:70:f7:fd:d7:14:0a:
f4:1d:6a:c6:57:83:7e:55:43:48:11:a5:c9:25:16:14:cb:cf:
11:ac:1c:6c:4f:0b:a3:cd:4c:a8:ad:c1:7e:9d:66:12:bc:99:
c6:91:94:18:66:f0:77:13:8b:b2:14:ae:e6:ba:a2:0e:97:18:
6b:9b:46:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:35 2025 by rpki-client