Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/844CEED8088C11EFBF08430F017001B1.roa
File: 844CEED8088C11EFBF08430F017001B1.roa (raw, json)
Hash identifier: 6nqLkIsFxDH22y0fAS5MD60Btc2tTBGhRp3zvcVwZck=
Subject key identifier: 31:5E:49:AA:DA:95:52:4B:70:EE:E6:8B:36:2C:CD:BB:C5:EF:D1:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 875C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/844CEED8088C11EFBF08430F017001B1.roa
Signing time: Thu 02 May 2024 14:01:48 +0000
ROA not before: Thu 02 May 2024 14:01:45 +0000
ROA not after: Sat 11 May 2024 14:01:45 +0000
asID: 39600
IP address blocks: 45.203.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34652 (0x875c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 14:01:45 2024 GMT
Not After : May 11 14:01:45 2024 GMT
Subject: CN=66339ccc-70e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2d:a8:cc:77:e7:10:78:16:ae:da:49:2a:52:
82:2e:2d:bf:d5:6f:8c:ad:89:8a:20:3c:98:c0:46:
83:6e:16:de:b0:5b:7b:a7:d5:95:5d:f8:f2:bf:b3:
0a:a2:ea:e8:aa:31:4a:75:84:c4:55:00:29:7b:69:
9b:d1:c1:22:c4:59:85:29:0d:9d:24:8c:99:20:00:
d8:3a:de:73:86:dc:2d:bf:3e:01:9d:9e:93:90:e4:
57:50:b0:9c:bc:4e:dc:3b:56:c8:98:6d:a2:26:fc:
89:80:1b:0d:2e:59:f7:8e:ee:5e:e0:be:c9:45:99:
08:98:10:0a:36:4e:e5:ea:f9:d7:9a:e4:46:6d:e6:
98:c5:54:22:db:92:3f:26:7c:6b:7a:04:18:50:92:
6b:bd:1a:f7:76:06:3f:db:93:fe:00:5e:a7:cc:a4:
2c:e9:16:cf:cc:9d:38:8e:c3:f5:26:1c:4f:78:aa:
57:b6:b5:ac:f1:32:66:79:10:83:ef:c4:3c:c2:1c:
c4:bb:77:b6:a3:6c:44:42:59:8f:ca:be:26:ae:e0:
4c:31:88:ce:79:58:4a:bd:ea:35:94:71:39:37:73:
1e:c5:a5:d8:20:45:a8:e1:2c:50:9e:81:b3:0f:df:
a9:c8:11:ac:4e:98:0b:6b:ba:e4:16:a2:91:1b:ce:
de:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5E:49:AA:DA:95:52:4B:70:EE:E6:8B:36:2C:CD:BB:C5:EF:D1:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/844CEED8088C11EFBF08430F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.60.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d0:55:73:4f:b9:13:73:84:79:f9:7c:93:ff:a4:71:d2:a1:
e6:61:3e:13:7c:1d:c6:6b:3e:a6:99:03:43:5f:f8:f7:27:51:
1c:ce:1b:a4:a8:a4:13:d4:5f:d1:f5:a3:84:84:53:f0:b2:f6:
fd:d3:7b:38:2d:b5:f4:21:5e:14:0c:02:77:6a:03:d6:a1:d6:
2a:19:36:06:2d:af:63:19:b6:84:bb:dc:0e:4b:1c:39:92:cb:
fb:84:21:6d:98:ea:0a:06:21:0c:b0:62:ee:53:06:09:99:ba:
a5:bb:ca:53:36:ec:a0:5c:f9:26:9f:38:ff:99:bc:ed:8e:93:
9b:23:31:fe:f8:c0:29:e9:35:3c:bb:67:5d:27:e1:52:9c:c0:
2d:fc:b1:53:8f:9f:da:75:eb:8f:9a:72:6f:55:c4:f2:22:56:
fe:b9:4b:16:92:ea:2d:a0:80:d8:c3:52:80:03:86:78:66:3e:
93:cb:34:fe:50:d5:cc:39:6a:a3:80:ac:75:a4:f4:dc:3f:c7:
e0:be:50:16:cf:6c:50:be:f2:17:fe:12:1a:9d:d5:10:39:dd:
a4:0c:98:07:13:22:ea:82:f8:2a:9a:18:10:22:a4:20:33:41:
6c:21:02:96:68:7c:da:c8:40:88:9b:c2:39:aa:c6:5c:ca:12:
1d:49:50:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:22 2024 by rpki-client on console-ams.rpki-client.org