Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581E2BA07AD11EF996A1CFF007001B1.roa
File: E581E2BA07AD11EF996A1CFF007001B1.roa (raw, json)
Hash identifier: L/JF0LJAbn8SMJpsbO68UfT26BTSHfbSnWxsA7lG5Og=
Subject key identifier: 27:68:AB:FA:AD:38:71:FD:0F:B4:8A:A2:76:13:CA:71:29:E4:BD:FB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8737
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581E2BA07AD11EF996A1CFF007001B1.roa
Signing time: Wed 01 May 2024 11:28:13 +0000
ROA not before: Wed 01 May 2024 11:28:10 +0000
ROA not after: Thu 16 May 2024 11:28:10 +0000
asID: 142062
IP address blocks: 45.204.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34615 (0x8737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 11:28:10 2024 GMT
Not After : May 16 11:28:10 2024 GMT
Subject: CN=6632274d-7b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8d:e1:c1:37:aa:84:bf:6f:13:09:6d:68:5b:
8e:ee:79:46:ee:a9:90:fb:9c:1b:36:91:84:3c:68:
8a:08:45:46:6f:d6:b8:9c:be:ac:6f:f0:6e:1f:66:
80:7d:cf:8f:95:f3:66:fb:f7:92:c3:31:ee:f3:94:
1e:7c:54:09:8c:ce:f5:75:60:6c:ba:a9:94:64:5b:
b0:33:c1:aa:b2:bf:b8:13:39:26:37:82:22:39:38:
1e:8d:76:59:67:2d:0b:10:b4:18:56:b8:04:69:83:
11:ac:cb:e4:b2:61:7e:02:3a:7d:3b:60:fa:12:d9:
2f:b6:9f:c6:52:30:7e:fd:22:66:ea:7c:65:b7:42:
a9:df:b9:6e:1b:10:21:7e:8f:e0:36:5f:b2:46:ff:
3f:63:ef:e7:7f:73:bd:b9:0d:95:eb:ea:35:39:1d:
c1:75:b9:c8:f2:fd:96:db:c1:d4:6e:ae:27:f2:99:
a2:47:59:9a:70:8f:d8:88:c7:d1:74:db:f1:a2:0d:
50:bc:6a:96:d4:7f:d9:c2:39:ac:07:99:39:21:14:
10:c9:a8:24:eb:32:7f:10:dd:f6:70:32:5e:a3:38:
ce:60:f8:8c:44:66:91:8d:c7:fa:da:cb:6c:e0:4d:
12:e9:17:96:82:a4:ba:e3:59:ec:5d:ff:d9:95:71:
f8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:68:AB:FA:AD:38:71:FD:0F:B4:8A:A2:76:13:CA:71:29:E4:BD:FB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E581E2BA07AD11EF996A1CFF007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.94.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:3d:96:9b:8e:c3:38:97:55:5b:24:51:68:f9:74:69:f5:74:
aa:54:7e:3c:05:c1:13:22:cd:83:ac:14:0e:1f:f8:3b:ec:4a:
a5:0b:2c:02:05:c5:f1:3e:00:e9:91:39:6a:84:6a:ed:7b:00:
54:e4:c4:d6:65:7d:b4:01:f1:f0:d1:5b:cf:b7:67:8c:75:1d:
82:52:ab:1c:7e:0d:da:9c:c9:f5:cf:ed:9f:cd:dc:c2:9d:fa:
07:f1:06:ae:07:e9:8e:09:eb:bd:2e:6b:18:f7:2b:34:97:ea:
bd:11:ac:9e:7d:21:23:43:38:61:22:d2:56:3f:cf:91:13:20:
96:cf:37:a9:35:b2:ff:b5:78:b5:79:1c:f6:b4:ff:d2:b0:21:
d0:8c:6c:59:0b:99:e6:5d:b0:0a:bd:30:42:cf:c3:69:40:6b:
fb:5f:6e:12:9d:bd:18:cf:2e:02:a6:2d:0f:90:da:6d:26:16:
7c:e2:a2:3a:0e:6e:e3:6d:e9:65:bb:c1:8a:91:73:81:74:d0:
b9:fc:44:90:d1:61:e5:76:cd:dd:9e:9a:d2:5c:40:c5:f1:68:
5c:da:a4:40:4b:e0:b3:81:22:74:22:64:1b:e7:cc:d6:2d:54:
72:67:ce:c4:46:fd:a7:61:e8:99:e8:a5:02:87:86:a1:54:54:
65:cd:33:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:22:09 2024 by rpki-client on console-ams.rpki-client.org