Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EC3728FB9611EEA8C9C667017001B1.roa
File: 45EC3728FB9611EEA8C9C667017001B1.roa (raw, json)
Hash identifier: YlvKwOMrF/Km0BdKukQNwjAf55xgzDjnSqRcbIMxg9I=
Subject key identifier: 6E:92:8E:63:DE:0C:80:AB:6B:DC:A5:E7:F5:4C:C1:0C:3D:5F:BD:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 828D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EC3728FB9611EEA8C9C667017001B1.roa
Signing time: Tue 16 Apr 2024 02:08:53 +0000
ROA not before: Tue 16 Apr 2024 02:08:50 +0000
ROA not after: Mon 29 Apr 2024 02:08:50 +0000
asID: 141883
IP address blocks: 45.200.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33421 (0x828d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 02:08:50 2024 GMT
Not After : Apr 29 02:08:50 2024 GMT
Subject: CN=661dddb5-3c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:f7:ed:35:b8:d9:41:10:0f:08:f3:0f:8f:
51:06:7b:b8:4e:c2:ff:c1:aa:d0:ce:06:42:e7:43:
6d:ef:6e:78:fe:27:39:dc:3b:05:84:86:f0:16:64:
c7:5c:45:aa:87:01:dd:20:77:f6:d2:3a:36:09:d1:
76:f2:a2:fb:61:96:77:21:44:c3:e7:fc:45:0d:da:
20:90:94:12:13:c7:b3:16:ad:5a:d3:32:a4:67:41:
1c:51:eb:06:55:49:17:f9:04:9f:b5:ca:9d:74:a9:
f1:56:c4:c5:77:9e:f8:79:cd:49:c3:08:3a:5f:fa:
bc:83:c9:0c:95:3e:40:07:95:24:14:41:64:b4:f5:
ab:e0:5b:09:2d:89:19:cf:70:3d:44:10:83:16:bd:
9e:7a:ac:5a:ca:12:ce:00:54:23:bc:42:28:94:cd:
cf:7a:69:45:43:66:49:ee:3e:e6:84:e0:a4:08:c5:
e7:45:89:79:51:43:a0:fa:f1:b8:85:ba:82:11:7f:
3b:2d:97:b1:9d:29:93:b1:c0:40:44:a1:84:e6:46:
d9:5f:1c:9b:90:15:5e:0e:03:d9:30:f9:d2:22:d0:
71:fe:7b:5e:0e:2e:b4:26:1d:ac:86:32:be:30:49:
d3:af:86:c7:36:e2:71:08:c7:20:3b:e6:5c:4f:74:
6a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:92:8E:63:DE:0C:80:AB:6B:DC:A5:E7:F5:4C:C1:0C:3D:5F:BD:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EC3728FB9611EEA8C9C667017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.18.0/23
Signature Algorithm: sha256WithRSAEncryption
59:26:a4:d8:db:9e:54:19:c9:b7:c9:c8:92:21:d6:75:79:49:
cb:16:9d:c0:e5:59:2c:bd:e3:aa:a1:27:4c:a1:cd:50:6b:32:
f1:39:e1:5d:53:9c:9c:a1:a6:44:c6:54:f9:ce:64:58:3b:a1:
d4:63:f8:4f:8b:61:23:8f:fb:d0:6d:53:ab:d9:a2:3e:a7:d8:
1b:45:5c:b0:20:45:ba:77:97:f1:6f:08:2a:6e:7c:0c:02:7a:
4d:d3:99:c9:c6:40:bc:09:8c:aa:a2:06:dc:4d:0c:d2:63:9e:
6a:0f:56:f7:04:fa:7a:ac:0c:e8:b3:2d:bf:8a:7b:50:41:f3:
ba:d5:f4:be:59:84:aa:b8:f5:04:70:3d:d3:34:5a:0c:23:ea:
d0:25:00:dd:18:cc:45:a2:dc:2d:94:c3:9f:76:58:58:0f:cd:
fa:2c:99:fd:2c:ff:b3:07:f6:6a:c0:35:d3:8c:8d:02:38:87:
1c:79:48:20:0e:da:02:9e:12:b8:01:0d:16:50:a5:9d:b7:fc:
1d:89:9a:33:49:69:44:1d:5a:c0:75:91:02:ba:e1:c2:2a:df:
31:f7:5f:45:de:cd:30:d4:b2:54:75:5f:f2:73:17:0f:37:3a:
8f:5f:d0:4d:1b:f4:96:1a:a5:fa:52:2f:b7:bf:f5:1b:cb:d5:
13:e7:c0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 04:17:23 2024 by rpki-client on console-fra.rpki-client.org