Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36145DB/7A6622D4CA2811ED8C0AD095F1222468/4C3C4572CA2911ED9DF34E98F1222468.roa
File: 4C3C4572CA2911ED9DF34E98F1222468.roa (raw, json)
Hash identifier: nv+IxgBLo19opSxQVLYHtGPSbsQskCDk8N8DuABjveg=
Subject key identifier: 0A:E6:E9:49:4B:0C:05:29:41:D0:C2:0C:71:A1:B1:45:02:53:A6:D4
Certificate issuer: /CN=F36145DBAR/serialNumber=AB551D108450608EBDF540CA1219B2B847F65EBD
Certificate serial: 02
Authority key identifier: AB:55:1D:10:84:50:60:8E:BD:F5:40:CA:12:19:B2:B8:47:F6:5E:BD
Authority info access: rsync://rpki.afrinic.net/repository/arin/q1UdEIRQYI699UDKEhmyuEf2Xr0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36145DB/7A6622D4CA2811ED8C0AD095F1222468/4C3C4572CA2911ED9DF34E98F1222468.roa
Signing time: Fri 24 Mar 2023 09:50:24 +0000
ROA not before: Fri 24 Mar 2023 09:50:13 +0000
ROA not after: Sun 24 Mar 2024 09:50:13 +0000
asID: 327906
IP address blocks: 169.255.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36145DBAR/serialNumber=AB551D108450608EBDF540CA1219B2B847F65EBD
Validity
Not Before: Mar 24 09:50:13 2023 GMT
Not After : Mar 24 09:50:13 2024 GMT
Subject: CN=641d7260-35a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:22:ed:23:9e:24:6d:95:e1:b4:a3:22:97:
6e:ea:f5:51:3d:28:f3:60:54:7e:6c:15:c5:87:91:
cb:5c:58:62:9e:46:cb:d5:d7:a0:7e:ea:f8:f7:37:
fd:6f:c8:48:47:b4:13:1a:54:13:9c:12:9e:c7:12:
36:27:48:c8:40:77:e3:83:a5:c9:01:f8:75:a1:6c:
3e:a7:5f:1a:eb:13:ca:cb:7a:3c:ec:9c:93:53:fb:
a3:b4:e2:3f:e9:c7:0f:75:5e:40:27:a7:55:55:ee:
f6:5e:52:c7:c6:06:47:b0:8b:22:0f:dd:0d:ae:1f:
37:5a:4f:32:1e:2b:64:06:95:22:7d:31:11:ac:07:
2b:88:bf:ec:8f:5d:9a:af:b9:4d:13:53:16:49:71:
75:9e:0f:fe:20:0a:3b:eb:e4:79:e4:c0:f3:1d:31:
1f:fc:9d:3b:11:50:d5:52:c4:97:75:f7:57:a1:40:
29:4d:34:0f:0d:8d:08:95:64:28:5c:8c:b3:4a:76:
30:7d:ec:ba:86:92:d2:8c:bf:81:c2:81:86:04:72:
44:8e:45:63:d8:e6:1a:37:6d:e9:67:e1:fe:df:0b:
64:9c:2d:68:e0:a8:18:2a:99:65:ae:38:db:07:e4:
e8:87:8b:86:c4:65:f1:a4:15:f3:06:26:fc:9a:5f:
6c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E6:E9:49:4B:0C:05:29:41:D0:C2:0C:71:A1:B1:45:02:53:A6:D4
X509v3 Authority Key Identifier:
keyid:AB:55:1D:10:84:50:60:8E:BD:F5:40:CA:12:19:B2:B8:47:F6:5E:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36145DB/7A6622D4CA2811ED8C0AD095F1222468/q1UdEIRQYI699UDKEhmyuEf2Xr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/q1UdEIRQYI699UDKEhmyuEf2Xr0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36145DB/7A6622D4CA2811ED8C0AD095F1222468/4C3C4572CA2911ED9DF34E98F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.104.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:31:db:6a:dc:63:f7:54:e9:c0:ef:89:92:54:38:60:c4:a5:
eb:38:e7:9f:04:97:ae:64:5a:47:f9:a2:c4:d0:95:08:7d:b3:
e8:ad:56:63:44:4e:3c:06:bf:d4:9c:9d:69:2a:b0:20:8d:d8:
2a:9c:58:12:66:c5:82:71:70:7a:83:2b:8e:6f:53:d0:f6:c7:
cd:82:4a:e4:a8:29:a7:51:aa:04:34:bf:22:04:23:c6:41:95:
a0:3f:8f:4c:63:e4:f0:82:87:44:a0:a8:cf:07:26:3c:ae:7f:
0e:56:00:71:a7:d3:d9:10:c7:f0:f1:13:4f:cf:72:f3:af:64:
08:62:64:f4:8c:bb:2d:bd:df:0d:60:c1:4a:d5:51:9f:9a:97:
3f:4f:fc:7e:e4:60:91:fa:5a:ef:0c:e9:39:86:b7:60:44:03:
9c:c4:b9:36:fa:d5:b4:67:49:14:ce:ce:b6:01:cc:ee:fb:e6:
5e:1b:21:15:98:6a:80:ad:18:d0:d9:6b:58:4c:c2:7e:17:6d:
3c:cb:d6:f7:ec:01:ab:93:46:d7:e3:5f:fc:5e:cb:8d:4a:b4:
f5:0b:e9:bd:98:d3:b5:86:a8:cf:03:60:09:06:9c:72:68:b0:
3c:20:31:b2:3c:67:09:ad:d7:35:51:36:e1:47:93:6f:34:97:
c5:19:44:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 04:10:49 2024 by rpki-client on console-fra.rpki-client.org