Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/521A4FFA74CA11EF84825CB1762E951A.roa
File: 521A4FFA74CA11EF84825CB1762E951A.roa (raw, json)
Hash identifier: R3jw0KU393azSz6CxpgqIat0PTgDNefEswnpVpi3sAw=
Subject key identifier: 0A:25:BA:F1:21:4B:2C:A2:5C:CB:4F:73:7F:F4:61:0C:26:0F:83:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B7B4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/521A4FFA74CA11EF84825CB1762E951A.roa
Signing time: Tue 17 Sep 2024 07:56:18 +0000
ROA not before: Tue 17 Sep 2024 07:56:15 +0000
ROA not after: Tue 15 Oct 2024 07:56:15 +0000
asID: 50580
IP address blocks: 45.200.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47028 (0xb7b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 17 07:56:15 2024 GMT
Not After : Oct 15 07:56:15 2024 GMT
Subject: CN=66e93622-745f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ef:8c:03:d0:ca:37:17:3e:94:a1:53:fb:10:
5f:1e:53:c4:31:45:fe:d8:85:f2:c0:2f:1b:25:b6:
04:03:d9:16:00:d2:db:55:ad:82:f0:28:44:9c:60:
a7:9b:0a:8d:27:2a:b1:1e:e2:8f:68:15:ab:35:85:
47:a7:d3:1a:40:6f:1a:cb:9e:d5:91:0c:c8:b7:52:
70:5f:52:7d:96:f5:86:ae:03:31:57:13:4e:24:19:
4d:3c:e3:42:4c:b8:95:18:1f:c5:24:97:c2:f0:5e:
7a:df:c2:df:8b:82:e1:b3:04:a3:83:0b:e6:40:f8:
4a:f3:9a:30:25:e5:2a:dc:66:7a:3c:cc:38:0a:6b:
f6:41:ad:b3:7d:c2:63:af:44:00:28:c6:2f:31:22:
f8:49:7e:51:a0:96:29:28:7c:76:74:1b:86:0e:4c:
d8:44:cd:67:3b:df:f9:c4:9b:06:a0:c3:d2:ff:30:
74:5e:df:58:7a:4e:e3:df:3e:85:86:30:f8:90:b5:
31:12:3f:8e:74:1b:62:17:73:8e:ad:4f:26:3a:f9:
cd:68:7d:42:83:3d:b5:d0:3d:c2:14:18:ff:b8:4a:
27:af:e6:45:1e:13:9c:3a:20:c8:bb:4f:da:93:56:
f9:23:70:4c:44:51:d2:dd:1d:f5:ce:74:05:c2:5c:
5c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:25:BA:F1:21:4B:2C:A2:5C:CB:4F:73:7F:F4:61:0C:26:0F:83:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/521A4FFA74CA11EF84825CB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.148.0/24
Signature Algorithm: sha256WithRSAEncryption
12:be:fe:9e:b2:dc:e1:cd:a6:eb:51:78:73:ad:b8:9a:40:62:
00:a8:1e:3f:25:4a:a7:a1:8b:50:48:a0:ec:0c:7b:af:de:a2:
56:d8:a2:b0:5e:1b:0f:7b:37:68:df:d1:48:ee:35:bd:9a:41:
00:a1:2d:60:0a:ce:ca:0c:db:56:29:1c:b9:89:79:d3:4c:18:
c8:d3:47:fd:8b:ea:6f:4d:e1:48:ec:8b:eb:4e:ec:32:9a:a7:
b6:e4:d3:ca:77:61:fd:49:16:7a:22:b6:15:d4:97:6b:a0:8e:
03:c0:99:b4:16:93:a8:a8:01:83:02:1f:ae:30:c3:d1:b1:4c:
f4:fe:99:eb:3e:a5:d5:9a:c1:49:46:88:80:51:85:79:b0:64:
c7:a2:49:74:45:00:fc:c5:74:2e:45:35:02:73:5a:4a:fa:df:
61:20:e1:c1:12:c2:62:de:14:5c:85:8b:e4:91:20:3a:06:36:
8f:b4:0b:26:69:31:8d:dc:83:8a:04:26:e0:72:18:a1:a9:b7:
8e:84:c7:6a:87:7b:d6:f3:df:48:26:4a:3c:56:78:8d:60:c3:
8f:80:4a:0b:0f:6a:2f:47:98:66:b1:48:b6:5f:19:84:7a:ef:
16:54:21:7d:0f:20:d1:d7:13:7f:22:e8:ce:4f:2c:89:ca:67:
40:44:cf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 10:34:59 2024 by rpki-client on console-fra.rpki-client.org