Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/522B7D603E9811EFA7710A46762E951A.roa
File: 522B7D603E9811EFA7710A46762E951A.roa (raw, json)
Hash identifier: lLIQ9dv5tHnTEmiywlTV2COk1eWnlNRAeY/B4avYKw4=
Subject key identifier: C2:4F:92:38:3A:D2:3D:D3:6A:41:68:A2:98:4C:09:59:55:4A:43:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9A4E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/522B7D603E9811EFA7710A46762E951A.roa
Signing time: Wed 10 Jul 2024 08:42:21 +0000
ROA not before: Wed 10 Jul 2024 08:42:16 +0000
ROA not after: Fri 02 Aug 2024 08:42:16 +0000
asID: 139646
IP address blocks: 45.200.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39502 (0x9a4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 10 08:42:16 2024 GMT
Not After : Aug 2 08:42:16 2024 GMT
Subject: CN=668e496d-6438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ac:03:15:6b:ab:3c:22:db:02:17:47:d7:8c:
84:00:95:09:b1:1d:4b:56:af:1f:68:a9:b7:a7:64:
1e:d6:af:89:72:91:87:b5:25:11:9a:74:7c:30:90:
52:99:50:5d:08:da:8e:5d:a1:6a:ab:f7:d4:fd:67:
09:24:ae:a6:6a:bb:e6:29:24:62:fc:fe:fd:0e:11:
9e:69:db:5f:48:55:92:3d:c6:4d:da:c2:da:cb:7c:
e1:a7:36:60:18:fc:f7:38:58:19:b1:d7:55:3f:5b:
d0:51:fe:d8:08:6a:db:86:d8:18:66:c7:45:df:2a:
07:ad:0c:c5:ba:e1:a8:e5:61:15:9f:66:92:79:72:
92:69:20:25:3c:af:d7:11:81:05:68:fc:9e:23:08:
04:6d:10:f3:39:f0:88:6e:98:15:8c:e2:ab:0c:5f:
16:0f:52:2b:46:19:6f:e2:e6:16:cb:33:56:40:fe:
cb:cd:e2:60:4d:2e:b8:f4:e5:8c:eb:a7:19:ac:2b:
9b:ba:cd:d7:76:b3:26:56:b3:69:37:f3:2a:04:68:
12:b4:9a:dc:08:be:97:39:54:44:75:1e:25:b8:c2:
68:5d:ab:38:6c:d4:02:51:a4:c0:d7:19:4a:bd:bf:
05:a9:7f:f3:9c:c2:a4:4f:76:04:51:47:53:e4:18:
e2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4F:92:38:3A:D2:3D:D3:6A:41:68:A2:98:4C:09:59:55:4A:43:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/522B7D603E9811EFA7710A46762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.20.0/22
Signature Algorithm: sha256WithRSAEncryption
41:5f:4e:d6:0b:1e:26:d8:2a:66:a3:ca:ec:a8:5c:ab:1b:ed:
cd:03:9d:31:b3:98:0d:0e:fb:ff:7f:ad:da:ff:32:5a:14:fb:
b1:03:ac:c3:e7:c5:c9:9c:63:3a:86:b0:c5:b3:ac:44:3d:da:
a8:74:61:8b:d0:4a:6d:c7:8a:6f:0a:d3:28:8c:31:83:75:d7:
0a:c9:af:ad:ca:fd:12:f8:d0:b9:a0:4c:8b:b9:a9:1b:1c:7f:
08:d1:52:c8:64:48:e9:cb:a9:0c:c8:40:c0:fe:ca:68:f8:c0:
49:75:54:e3:f3:3c:78:8a:65:05:7e:2b:40:66:e5:63:f7:be:
99:28:e1:78:85:84:b3:d2:8e:71:c6:90:b2:bf:ed:84:1c:a7:
db:6b:a7:a9:4e:b8:9d:3f:af:70:bb:39:04:6b:51:23:63:06:
2f:88:e8:a4:6a:eb:6c:1f:0f:cb:44:8e:b2:4d:10:e5:49:da:
a0:86:4c:f3:89:12:d4:7e:83:cb:e3:60:4a:40:03:b9:78:0d:
d6:f8:0e:33:ac:37:f1:72:65:be:9a:30:b4:8c:75:bb:89:4c:
50:b6:6f:60:80:7f:f1:e6:2d:54:5f:c6:3c:38:a3:a4:4c:60:
03:55:da:40:f3:5e:96:85:54:c1:ff:16:ec:18:b0:89:21:c0:
2b:dc:0f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:40:39 2024 by rpki-client on console-ams.rpki-client.org