Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B3AC9A4FB9511EE9722575C017001B1.roa
File: 2B3AC9A4FB9511EE9722575C017001B1.roa (raw, json)
Hash identifier: kTlHMmobCs/OPt3A+Lc90ZU8qnnsG/pb6P0gWV+T6jc=
Subject key identifier: 6F:5F:B3:3D:A1:1C:D3:B9:ED:1A:CD:2F:ED:10:D0:79:8F:7C:C1:7B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 827D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B3AC9A4FB9511EE9722575C017001B1.roa
Signing time: Tue 16 Apr 2024 02:00:59 +0000
ROA not before: Tue 16 Apr 2024 02:00:56 +0000
ROA not after: Mon 29 Apr 2024 02:00:56 +0000
asID: 141883
IP address blocks: 45.204.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33405 (0x827d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 02:00:56 2024 GMT
Not After : Apr 29 02:00:56 2024 GMT
Subject: CN=661ddbdb-5507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d0:71:2d:34:da:ea:9c:49:8a:b2:9d:62:6a:
8c:b9:9f:8d:95:84:44:d2:c3:2c:c3:53:8b:e6:39:
e5:31:4d:2a:9f:48:c4:73:2d:de:8f:d3:35:b7:20:
f8:1f:e9:08:09:e2:ed:13:e3:a6:e9:75:dc:e7:46:
d7:f6:bd:c8:ed:73:0e:77:95:2c:a8:a5:b4:74:f9:
dd:56:a8:74:77:19:51:d8:96:77:41:ab:29:ce:53:
c6:fe:b5:8d:2a:44:76:ad:7e:5e:0d:4c:5a:26:bb:
0c:12:37:57:39:45:9f:b7:15:b1:8d:00:c3:7b:4c:
6c:07:a3:b6:40:72:ca:de:87:a6:ad:5d:f1:a7:db:
b5:d5:63:b9:9d:a4:74:54:ee:6c:0b:3f:be:34:a8:
c0:8c:dc:16:e0:43:6a:d5:d8:d2:ed:59:79:b8:73:
42:5f:d9:a9:01:92:f5:52:d7:7c:8e:09:a1:2e:f8:
7a:ff:0a:5e:1e:7f:3e:7c:b2:10:6e:93:21:82:da:
3a:b6:b0:5c:48:6b:33:76:1b:15:ef:bf:74:2f:12:
80:9a:68:84:76:f5:60:e6:14:d5:9c:63:77:f8:66:
83:5b:6d:da:22:ab:10:de:f6:72:d9:d2:2b:d6:af:
5a:7e:ae:f5:5c:f4:99:e1:47:58:a7:78:d4:a3:e5:
d2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5F:B3:3D:A1:1C:D3:B9:ED:1A:CD:2F:ED:10:D0:79:8F:7C:C1:7B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B3AC9A4FB9511EE9722575C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.0.0/24
Signature Algorithm: sha256WithRSAEncryption
51:84:bb:6c:89:b0:5c:7f:b6:b4:e7:52:fd:31:86:1f:0b:77:
16:b1:c8:3d:66:71:22:73:c3:a1:4f:37:1c:ad:f2:eb:d8:79:
67:4f:62:6d:92:e7:68:50:75:f2:27:c1:be:04:e6:49:9f:3e:
f3:e7:7a:81:13:30:17:ef:5a:36:9a:40:1d:47:28:b2:57:93:
91:de:0c:82:eb:2d:00:cb:1a:14:d5:a7:50:47:c5:d6:4e:90:
3e:c1:49:6f:5b:48:00:c6:96:c2:59:2d:c8:1b:e7:e0:d7:86:
68:a8:81:b3:b0:40:c8:ac:6a:22:b4:28:1d:d6:d0:ef:76:2a:
a3:7b:94:90:71:6e:d8:82:a7:76:d7:38:cb:c9:6b:3e:c0:be:
91:c8:fb:2a:8e:7d:42:33:35:a0:68:29:e5:fc:9b:1f:9e:d1:
98:f8:3d:90:09:5e:c4:f1:f5:2d:9a:fa:7e:18:63:7d:9f:26:
44:51:fb:87:c5:58:3c:97:2f:25:3f:64:85:e6:c6:6f:26:bc:
33:fc:72:a3:d3:45:85:ab:00:01:2c:90:41:90:32:9d:71:64:
85:b2:ae:94:5b:f2:ba:20:47:fa:39:e2:f2:4c:db:c7:e9:1b:
53:f4:b3:81:07:af:79:db:59:e5:2f:33:1a:bb:4e:e4:ef:3f:
c0:2b:d1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 04:17:23 2024 by rpki-client on console-fra.rpki-client.org