![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FECB17A221411EF8D5D5DED7CDC24C2.roa
File: 1FECB17A221411EF8D5D5DED7CDC24C2.roa (raw, json)
Hash identifier: y++Bk+pJ3/uX6ejdF8QBPEi/ZiWjqu69ITWD/YQ5n5A=
Subject key identifier: F4:B9:AA:1D:82:7B:AE:EB:BD:4C:60:AD:E9:BC:51:9F:E0:5A:27:BE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8EB6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FECB17A221411EF8D5D5DED7CDC24C2.roa
Signing time: Tue 04 Jun 2024 01:45:30 +0000
ROA not before: Tue 04 Jun 2024 01:45:25 +0000
ROA not after: Mon 24 Jun 2024 01:45:25 +0000
asID: 272854
IP address blocks: 45.195.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36534 (0x8eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 01:45:25 2024 GMT
Not After : Jun 24 01:45:25 2024 GMT
Subject: CN=665e71ba-70c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0d:e3:dc:08:a8:bb:be:b4:df:d0:a6:6c:28:
ff:18:d2:9b:ca:a4:25:10:aa:f1:12:cc:7b:c8:4e:
24:70:d7:6d:98:0b:fc:61:29:72:9e:f2:e1:32:5e:
3b:02:b7:f8:a9:f3:6b:71:13:81:da:6d:f9:24:7c:
06:7f:8e:59:32:39:62:8a:dc:dd:46:18:96:d7:20:
3c:85:77:41:a6:34:9e:db:72:ea:72:31:d7:76:5c:
e4:70:3a:9a:43:7e:d6:12:7c:65:67:64:42:b6:25:
b0:76:49:39:f6:f5:13:7e:33:62:de:18:ae:87:db:
db:54:81:9d:59:9e:33:9c:55:75:38:89:a2:61:d6:
f6:23:d4:3f:24:32:12:c4:02:1f:e0:a3:6d:fc:e2:
c7:4f:f8:ad:4f:35:c2:5d:af:f5:e4:05:34:4c:5a:
98:db:de:4b:6a:ec:e3:df:df:ae:16:58:3a:81:8d:
8a:e9:d0:a3:80:a1:7d:b9:5a:d0:24:f7:61:cc:4c:
7f:8c:08:62:61:3f:26:c0:2a:ba:ca:d6:1c:f2:80:
2c:6f:b7:cb:8c:ec:f6:21:ee:84:5c:64:64:15:5c:
cd:69:13:ec:59:de:c7:42:e1:69:9b:5f:21:59:88:
28:49:0b:94:ec:2e:72:cf:5e:aa:52:8e:15:f1:15:
9d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B9:AA:1D:82:7B:AE:EB:BD:4C:60:AD:E9:BC:51:9F:E0:5A:27:BE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FECB17A221411EF8D5D5DED7CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.12.0/23
Signature Algorithm: sha256WithRSAEncryption
51:68:30:7d:91:0b:7f:61:34:a8:59:05:37:49:57:17:c5:c6:
4f:47:7d:bf:7b:11:e5:dc:61:a3:76:ec:c4:29:d1:0c:c8:a5:
d0:20:b1:af:e9:ae:b9:82:4b:f4:e4:f4:52:95:97:1d:2a:52:
ac:ae:4a:3a:83:00:a2:77:68:3c:55:4b:fd:62:ff:f8:0c:93:
5d:30:07:f4:c3:cc:d6:58:f3:ab:f2:48:f7:49:36:44:00:d1:
47:87:9f:77:bc:0b:0e:e7:ac:75:a6:66:90:e9:6f:2c:9d:1d:
a7:3d:f2:ec:fb:b1:82:94:25:9c:b2:b4:c4:54:33:97:0b:fe:
6a:08:65:2c:31:94:fe:4d:c7:7d:c0:15:47:c8:b0:7a:93:fe:
e3:2c:e8:db:26:6f:91:ae:94:a8:a8:9a:36:d2:4c:e1:ae:f5:
b8:8d:44:45:ae:8e:19:50:c9:02:a8:b8:c1:e9:de:e3:5f:c9:
1e:2b:6c:4d:ef:09:3b:ae:cf:0e:24:47:c7:ea:5a:f2:a2:05:
b8:fa:98:4b:3e:ec:ea:38:ed:5f:80:3c:08:54:aa:9a:39:d0:
56:0a:ee:6a:d7:63:de:0a:2e:8a:02:19:1a:06:74:75:28:e6:
eb:b9:94:7e:75:86:bc:0a:f3:64:90:a7:8d:f6:ed:4a:7d:06:
fa:39:32:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 12:53:22 2024 by rpki-client on console-ams.rpki-client.org