Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA2B4E0E08FE11EFB066543C017001B1.roa
File: DA2B4E0E08FE11EFB066543C017001B1.roa (raw, json)
Hash identifier: Xy8rho6CDoa/f8H0al51rQmjadOSCOn0p2tzfblHTUY=
Subject key identifier: CD:6E:29:DE:48:10:A3:75:CB:F6:C1:B5:26:31:E1:4E:32:0F:40:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 877D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA2B4E0E08FE11EFB066543C017001B1.roa
Signing time: Fri 03 May 2024 03:40:15 +0000
ROA not before: Fri 03 May 2024 03:40:11 +0000
ROA not after: Thu 16 May 2024 03:40:11 +0000
asID: 138630
IP address blocks: 45.204.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34685 (0x877d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 3 03:40:11 2024 GMT
Not After : May 16 03:40:11 2024 GMT
Subject: CN=66345c9f-5d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d3:60:ec:a3:89:12:00:f1:d4:3f:07:b3:8a:
3d:7d:85:e1:c0:94:9e:8f:53:ba:12:8f:55:3c:05:
d0:13:22:3c:b1:c5:2b:83:90:56:50:1f:21:5b:f3:
f4:10:55:1c:3c:8d:9c:7e:0c:7c:52:56:2f:97:cd:
11:9f:f5:6a:b6:ff:4a:47:8a:62:81:b7:13:eb:ca:
a7:01:94:21:6e:b6:7c:41:f9:e6:9d:a3:4f:ac:cc:
3b:d3:36:30:44:75:6d:71:26:9e:91:d0:f5:9b:ac:
80:7d:96:c8:61:2f:95:96:aa:24:24:44:d7:f7:a7:
32:f4:f6:f4:b5:bd:43:4b:90:86:55:89:23:bd:85:
4c:9c:7b:ee:fd:ba:01:fe:c4:64:2d:de:d9:aa:df:
d6:f3:f5:8d:58:2e:ec:03:d0:41:b6:36:80:52:e3:
2f:d4:06:9b:17:3b:a9:34:6d:f1:d5:35:f5:24:99:
70:96:80:6c:ea:0f:c3:3d:0e:88:ed:aa:22:95:21:
48:c5:18:ab:19:c2:17:ce:27:b3:2f:51:00:0a:d5:
e6:4a:2c:fc:62:54:d2:36:68:fa:b0:15:72:0d:fd:
60:d3:b1:0d:aa:ff:eb:0b:f8:0c:d6:d2:c8:fe:d0:
38:c0:e1:c8:ba:c8:79:9c:3c:2b:0a:ef:d8:ff:cc:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6E:29:DE:48:10:A3:75:CB:F6:C1:B5:26:31:E1:4E:32:0F:40:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA2B4E0E08FE11EFB066543C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.86.0/24
Signature Algorithm: sha256WithRSAEncryption
21:88:4f:2a:a8:9e:88:1e:c1:44:7b:f4:37:a2:fa:a9:2a:a7:
6e:35:fb:f8:40:8d:16:66:d2:76:c9:7b:61:94:7c:e1:bd:a6:
fc:0f:17:b3:6f:05:11:8a:41:38:8c:48:79:54:b7:eb:c7:04:
c0:89:7e:01:85:86:8d:8c:86:8e:5f:d7:b9:8d:b2:f1:26:4f:
b8:fa:76:2e:47:b5:65:d7:1e:00:2e:83:0f:43:d2:c7:b3:dd:
e6:24:c7:03:1f:02:87:54:8a:f9:86:6c:84:b5:21:03:5e:c1:
fb:5c:e8:77:8f:3e:6a:38:34:94:82:6d:c7:58:40:5d:8a:b5:
bd:e1:0a:00:bf:bf:e2:38:18:a7:b1:ae:5a:1f:e5:76:63:2e:
54:9c:07:0f:c7:9e:10:46:b5:35:b0:1b:da:5d:93:5c:c8:6d:
c9:01:1c:1d:c5:8f:78:19:cf:32:2e:0d:28:81:2b:b6:fe:6e:
cf:2a:9f:1c:84:da:6f:a1:5a:1d:32:2d:65:2a:3f:42:ec:13:
97:01:04:11:93:b3:12:0e:d0:3f:a9:a7:2e:84:9b:07:10:c2:
4d:80:7b:a9:e0:e6:bc:35:77:54:9e:6b:5c:43:37:45:19:52:
7f:f7:e4:d4:ea:64:8a:5b:ed:b0:16:11:73:15:39:f3:7d:84:
bf:e8:e6:6a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAId9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNTAzMDM0MDExWhcNMjQwNTE2MDM0MDExWjAYMRYw
FAYDVQQDEw02NjM0NWM5Zi01ZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzNNg7KOJEgDx1D8Hs4o9fYXhwJSej1O6Eo9VPAXQEyI8scUrg5BWUB8h
W/P0EFUcPI2cfgx8UlYvl80Rn/Vqtv9KR4pigbcT68qnAZQhbrZ8QfnmnaNPrMw7
0zYwRHVtcSaekdD1m6yAfZbIYS+VlqokJETX96cy9Pb0tb1DS5CGVYkjvYVMnHvu
/boB/sRkLd7Zqt/W8/WNWC7sA9BBtjaAUuMv1AabFzupNG3x1TX1JJlwloBs6g/D
PQ6I7aoilSFIxRirGcIXziezL1EACtXmSiz8YlTSNmj6sBVyDf1g07ENqv/rC/gM
1tLI/tA4wOHIush5nDwrCu/Y/8xwAQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFM1u
Kd5IEKN1y/bBtSYx4U4yD0CWMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EQTJCNEUwRTA4RkUxMUVGQjA2NjU0M0MwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcxWMA0GCSqGSIb3DQEBCwUA
A4IBAQAhiE8qqJ6IHsFEe/Q3ovqpKqduNfv4QI0WZtJ2yXthlHzhvab8DxezbwUR
ikE4jEh5VLfrxwTAiX4BhYaNjIaOX9e5jbLxJk+4+nYuR7Vl1x4ALoMPQ9LHs93m
JMcDHwKHVIr5hmyEtSEDXsH7XOh3jz5qODSUgm3HWEBdirW94QoAv7/iOBinsa5a
H+V2Yy5UnAcPx54QRrU1sBvaXZNcyG3JARwdxY94Gc8yLg0ogSu2/m7PKp8chNpv
oVodMi1lKj9C7BOXAQQRk7MSDtA/qacuhJsHEMJNgHup4Oa8NXdUnmtcQzdFGVJ/
9+TU6mSKW+2wFhFzFTnzfYS/6OZq
-----END CERTIFICATE-----
Generated at Thu May 16 07:46:21 2024 by rpki-client on console-ams.rpki-client.org