Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4B994104BEE11EEAB7442574AD9E6FC.roa
File: F4B994104BEE11EEAB7442574AD9E6FC.roa (raw, json)
Hash identifier: G3nJDyZFe+3TPsmJx8rYG4H8YNCMFeEmTn3ZX1A/puI=
Subject key identifier: 6C:6F:D7:A1:80:4B:D7:11:39:6F:4B:00:14:5B:4C:7F:36:2D:D9:3A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 37ED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4B994104BEE11EEAB7442574AD9E6FC.roa
Signing time: Tue 05 Sep 2023 13:20:18 +0000
ROA not before: Tue 05 Sep 2023 13:20:14 +0000
ROA not after: Thu 08 Aug 2024 13:20:14 +0000
asID: 133199
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14317 (0x37ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:20:14 2023 GMT
Not After : Aug 8 13:20:14 2024 GMT
Subject: CN=64f72b11-0563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ba:3f:59:48:09:15:80:43:d7:fc:30:2b:60:
a1:a2:0a:7b:b3:88:86:ab:fa:6d:22:a3:63:67:4a:
7c:61:9c:2e:fd:d6:14:0f:18:21:94:d7:16:ce:44:
82:c6:9d:0f:19:77:88:bf:09:88:7a:6b:dc:f7:6d:
6b:bd:31:3e:68:ef:8b:44:2f:c5:de:c7:ee:56:e1:
bf:86:18:3b:e0:7d:1f:6c:a1:51:a8:22:1c:0b:6f:
39:14:e2:d5:d4:06:fa:ba:0d:3b:51:6d:83:49:0c:
56:23:13:bd:46:76:81:f1:93:cf:75:3d:c4:14:d0:
c4:72:52:b6:df:be:98:c8:0c:0d:6d:91:ef:42:be:
66:40:ac:e7:3e:d7:7a:42:9d:dc:22:32:51:df:fe:
03:b8:48:8f:d4:5f:82:08:28:85:af:93:63:6b:8a:
d5:b2:53:95:a5:20:36:1d:38:6f:b6:d7:d5:17:23:
93:67:48:ea:3f:64:d0:95:5d:59:ff:0b:75:05:da:
2d:33:6b:ff:01:41:4c:88:13:9f:87:69:07:81:4a:
fb:3e:7a:23:62:13:ad:a5:7f:e3:0d:7b:46:51:9e:
8b:1d:de:e6:f2:3f:25:87:02:86:bc:45:cb:87:8e:
68:f3:f1:ad:9b:2e:4d:ef:c1:85:9d:e5:f8:bf:25:
10:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6F:D7:A1:80:4B:D7:11:39:6F:4B:00:14:5B:4C:7F:36:2D:D9:3A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4B994104BEE11EEAB7442574AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f5:48:4a:c1:b3:e7:36:23:cf:3a:9e:99:9f:04:d3:cc:bf:
d7:05:aa:35:12:8f:60:21:72:d6:1e:46:dd:21:1d:f7:e2:31:
35:79:3b:3f:4b:97:26:76:dd:8e:e3:c0:ec:20:c0:6d:85:ce:
1b:2b:a1:f7:f4:2b:65:e7:11:ef:55:4f:94:9a:01:bf:7b:24:
3e:f9:16:38:43:c3:d8:2e:93:5b:05:a8:12:82:f0:ec:89:0f:
32:75:8e:29:c6:86:79:2a:02:55:fb:a0:c8:20:0e:42:c8:71:
6c:4b:b9:d6:67:f5:3e:50:42:9f:63:a4:1f:7c:a5:5b:f1:cd:
1b:dd:22:52:76:d0:18:46:73:1e:c0:b6:e8:eb:11:a8:23:e3:
49:a4:ad:3d:c8:c4:3d:f4:16:05:3c:4b:c6:cc:26:6d:c1:49:
b7:9b:67:79:82:c2:88:0e:33:9a:fe:bf:e6:cb:db:be:16:80:
a5:44:e7:76:18:44:70:34:11:c9:a7:0e:c2:6e:90:a9:f1:35:
78:b7:df:22:e3:66:f4:aa:f5:26:12:18:e1:a8:f1:fc:71:f3:
e4:3f:3d:08:75:fb:6a:80:be:8b:c1:85:42:73:4f:2d:52:2e:
45:e8:90:ec:40:13:b2:48:ab:2b:ba:b9:35:c9:bb:27:88:e5:
d7:8a:1b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:39:19 2025 by rpki-client