Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D89BED9E240211F0B83A96E2DAE4EC9C.roa
File: D89BED9E240211F0B83A96E2DAE4EC9C.roa (raw, json)
Hash identifier: fk83WJnGhhXi/yWTZqtOq5ZzsuwnQ+Sr+/q7P62/sXU=
Subject key identifier: C0:2C:15:E8:EF:20:22:4E:D3:01:38:BB:F5:81:C6:6E:B5:49:77:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014EDA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D89BED9E240211F0B83A96E2DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 07:31:49 +0000
ROA not before: Mon 28 Apr 2025 07:31:45 +0000
ROA not after: Wed 07 May 2025 07:31:45 +0000
asID: 4809
IP address blocks: 45.195.6.0/24 maxlen: 24
45.195.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85722 (0x14eda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 07:31:45 2025 GMT
Not After : May 7 07:31:45 2025 GMT
Subject: CN=680f2ee5-1e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:52:8e:a8:cb:ba:06:be:2c:4a:e1:af:87:
54:81:3f:83:50:6e:de:22:ab:2a:76:59:5f:c3:3d:
69:0a:c7:4a:c9:ff:7b:49:05:3d:92:12:01:a3:d2:
c6:94:94:60:df:62:98:61:c4:79:18:24:af:12:48:
94:57:7d:52:4b:67:1e:5f:8b:3a:f8:6a:4b:c5:4c:
8f:05:d6:05:a3:a0:61:69:e5:67:64:ba:06:64:97:
0d:8f:5a:12:e8:19:01:5c:3a:cb:36:d6:68:2f:39:
9e:9b:4f:67:b9:2d:61:b9:5e:df:aa:a8:67:5b:8b:
1d:e6:09:8e:32:81:84:57:21:2a:31:42:a8:9b:0c:
83:cf:e0:a2:a2:fe:cb:43:46:bb:7b:38:ef:bc:37:
9a:c2:06:67:74:f0:b6:11:4e:c3:e0:d3:bb:64:26:
95:b0:56:e5:f1:c6:59:b9:9d:b2:25:a1:ba:bb:01:
e4:0b:6a:4a:76:a6:76:91:0a:77:70:a0:09:31:18:
fa:5a:ec:99:f3:96:52:d8:a4:f8:a5:d4:b3:80:37:
bc:f8:93:32:a0:83:e8:52:1a:3c:39:0c:b3:4f:ec:
08:0f:44:48:53:76:ee:de:84:98:f1:f9:f3:9d:d4:
74:be:a4:b1:a8:68:6f:cc:0f:89:cd:52:a5:b0:8a:
74:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2C:15:E8:EF:20:22:4E:D3:01:38:BB:F5:81:C6:6E:B5:49:77:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D89BED9E240211F0B83A96E2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.6.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:f2:aa:db:0b:e3:9d:ef:2e:a9:51:f4:b7:9b:af:63:e5:b8:
8a:f3:d0:b5:28:c2:fa:96:66:e5:65:dd:2b:f7:ba:fd:a1:98:
55:82:ff:d7:35:70:88:a7:9f:a2:e5:de:81:ee:02:e3:d3:cd:
ef:40:95:32:1a:b5:40:df:3a:3e:fe:6e:b3:1a:14:17:6c:b7:
73:42:5b:35:08:48:4c:d7:1b:93:65:54:8b:af:0e:67:f5:54:
f8:11:80:a5:00:11:3d:6b:01:c2:dd:51:2e:40:e4:5d:4c:c5:
53:ef:23:14:77:c5:c5:48:f8:8f:1c:62:3c:dd:7a:b3:f0:9c:
c6:19:26:49:2b:18:5b:e6:34:af:30:7d:44:81:ea:c2:82:71:
78:8c:72:6a:4d:e2:2f:b9:02:0d:dc:77:52:7a:8a:e9:57:96:
ab:e6:24:bb:51:93:01:c0:a8:69:6e:59:74:0f:6f:c3:9b:98:
05:48:4e:ad:d4:f3:2f:02:16:60:fe:1c:c3:a1:f4:cc:67:c5:
db:a4:dc:80:26:70:95:e5:81:14:e3:29:22:43:b1:94:c2:71:
6e:8f:24:11:3d:56:ab:30:b4:70:58:b7:ea:5d:11:1d:03:66:
c0:1f:be:7a:a4:36:c3:57:ae:59:fa:d1:97:8c:37:95:ba:25:
b6:36:60:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:22:39 2025 by rpki-client