Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7823A6607AA11EFAFC21F62017001B1.roa
File: B7823A6607AA11EFAFC21F62017001B1.roa (raw, json)
Hash identifier: QnRD4zxYQpoJ+EY3tQPqaYd0qGnevcL0comNi1RTkyk=
Subject key identifier: 30:12:27:20:E7:CA:AD:95:D1:0E:62:9A:47:95:65:D0:82:EB:B6:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8729
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7823A6607AA11EFAFC21F62017001B1.roa
Signing time: Wed 01 May 2024 11:05:28 +0000
ROA not before: Wed 01 May 2024 11:05:24 +0000
ROA not after: Thu 16 May 2024 11:05:24 +0000
asID: 136950
IP address blocks: 45.204.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34601 (0x8729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 11:05:24 2024 GMT
Not After : May 16 11:05:24 2024 GMT
Subject: CN=663221f8-5c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ed:39:4b:98:1c:f5:45:6a:2b:47:ab:28:e3:
2c:26:b3:97:8e:71:30:84:44:e3:a8:b2:01:5c:77:
57:7f:ac:82:3a:69:73:89:e1:5c:37:22:37:89:ac:
86:45:e1:6c:9a:48:db:1e:6e:01:96:eb:5e:0e:96:
62:60:43:4b:42:18:20:ab:33:3e:04:9e:8d:e8:22:
7d:61:41:63:0e:61:5d:d9:85:01:3e:5b:54:a3:4d:
ca:a0:52:d1:a3:f0:8f:62:e6:9d:10:93:d4:4f:94:
c8:8a:f9:77:2b:23:ab:12:39:fb:a8:da:b6:18:09:
4f:39:a0:e3:cf:0b:59:df:06:66:96:e1:79:d0:98:
2d:ef:24:34:26:ac:36:f7:f2:8e:3e:b3:28:21:11:
11:e9:d8:d5:71:37:d7:26:86:9a:9b:54:c3:47:0f:
6f:48:0f:88:82:2b:83:9f:55:78:22:62:dc:27:a1:
54:b9:68:ae:42:6a:74:04:c2:48:8e:79:10:3e:11:
e4:2a:27:54:76:90:af:a7:ce:75:57:95:de:24:dd:
76:17:b2:db:e3:b4:df:82:4d:47:c2:e8:ac:a3:1b:
e5:93:75:3c:19:7f:f2:ae:58:16:aa:23:e0:66:58:
8a:5f:97:69:5f:75:9e:5c:7c:16:19:9b:1d:f5:16:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:12:27:20:E7:CA:AD:95:D1:0E:62:9A:47:95:65:D0:82:EB:B6:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7823A6607AA11EFAFC21F62017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.85.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d8:9d:d3:19:d7:83:d9:8b:f2:86:09:5d:1b:d8:c9:d1:df:
b5:26:68:d6:4f:33:d1:d7:b6:ff:ae:0d:f6:36:b1:7c:35:43:
da:9e:46:fd:97:2b:7d:70:7c:00:5f:1c:7d:fd:82:71:3d:81:
a8:43:66:57:13:e6:c0:a8:f6:96:32:5e:d0:b2:a9:08:54:a6:
55:44:23:a3:39:89:77:2e:30:6e:dd:85:60:d3:31:e2:5d:59:
cb:4b:d9:0d:e8:05:ab:ad:c2:1f:3a:5a:12:4e:e9:72:10:ac:
ed:23:a5:29:28:f8:db:6a:98:c5:e6:73:04:86:71:b0:ad:8d:
17:0a:d1:6d:91:09:47:de:fd:19:5f:ff:ea:7d:a5:64:e4:ee:
f5:00:ab:c9:1c:13:fe:8f:bc:13:92:c5:0b:f3:2b:c8:0f:6e:
d4:85:c2:17:12:31:dc:52:da:a4:17:7a:72:29:04:9a:1f:79:
0a:d4:3b:ed:8b:3e:d2:72:18:ad:87:c2:0d:71:e4:0d:60:08:
85:f9:eb:16:58:6e:73:aa:71:14:a3:d4:5a:2d:5f:8a:b0:98:
74:39:66:d6:c8:d6:31:91:f9:9f:52:46:73:38:78:97:96:6c:
7f:22:5f:e6:0e:cb:b9:1e:5b:b6:ec:fb:30:32:c2:38:dc:57:
cb:11:41:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:22:09 2024 by rpki-client on console-ams.rpki-client.org