Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A029D4441B11EFBDB8D26E762E951A.roa
File: 57A029D4441B11EFBDB8D26E762E951A.roa (raw, json)
Hash identifier: rmaZhimI1r6F4fd9jht+RQTblMl50mggz+HPJKgPYVo=
Subject key identifier: BE:26:9C:BE:30:CC:DA:95:52:94:85:5D:28:2B:D4:09:6F:E7:54:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9D3E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A029D4441B11EFBDB8D26E762E951A.roa
Signing time: Wed 17 Jul 2024 09:02:50 +0000
ROA not before: Wed 17 Jul 2024 09:02:46 +0000
ROA not after: Sat 27 Jul 2024 09:02:46 +0000
asID: 7018
IP address blocks: 45.199.152.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40254 (0x9d3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 09:02:46 2024 GMT
Not After : Jul 27 09:02:46 2024 GMT
Subject: CN=669788ba-b985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2a:ab:52:19:54:a2:8d:1d:17:78:88:2a:6a:
bc:0d:02:ea:a2:f1:0d:bc:de:4c:49:45:74:d8:e0:
06:76:44:2e:13:69:7d:79:fe:c7:23:4c:ed:0e:54:
7d:0b:a9:a2:ba:44:c2:67:1f:0a:08:79:41:23:96:
a4:b5:1f:65:f6:82:f9:71:40:78:6f:c0:e0:99:d9:
ce:f9:9f:00:c4:6d:8d:9d:13:01:14:fb:ad:df:c7:
85:a7:0b:a2:40:22:af:6e:94:ea:51:91:60:cd:b6:
e8:97:39:85:6c:d5:51:b5:70:00:0f:55:3e:6a:d2:
e5:88:34:d8:a1:2b:5a:21:c3:e6:82:cf:2f:c5:69:
3f:8d:d0:cd:2a:03:95:1f:08:82:7e:02:7a:04:34:
9b:aa:30:8f:f1:9e:a0:e9:cc:bf:9b:e2:25:29:ee:
52:0c:46:36:d2:48:6a:38:6c:02:79:76:07:9e:d2:
cd:00:ef:25:5a:52:3d:2f:77:29:de:fd:4e:c4:fa:
7e:3a:02:13:d7:13:29:99:86:45:4c:76:bf:c5:ff:
33:27:c4:33:1a:0c:e9:7a:40:1a:3c:ca:e7:d0:27:
96:6c:af:06:17:ab:53:6a:d6:80:81:37:95:69:0b:
20:eb:b7:e5:f7:50:55:b1:83:97:c1:53:a0:06:4d:
d3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:26:9C:BE:30:CC:DA:95:52:94:85:5D:28:2B:D4:09:6F:E7:54:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A029D4441B11EFBDB8D26E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.152.0/23
Signature Algorithm: sha256WithRSAEncryption
01:70:44:da:ab:11:b6:6d:9a:b9:cb:ba:84:c9:42:50:02:34:
e9:c2:21:51:fa:47:4f:1d:92:5f:ef:5b:90:a2:d7:c3:98:b6:
b3:51:fa:96:d6:82:33:5d:52:30:c0:79:b6:6b:ef:a7:5d:ef:
db:11:9c:68:fb:a1:9a:2d:2f:cf:14:cb:fc:15:71:8f:2b:aa:
cc:b0:68:bf:47:55:d9:ce:ad:55:0d:68:84:65:20:bc:82:db:
7a:7f:f0:d1:21:f8:27:58:df:f2:9f:3e:9d:9c:3b:b7:f9:ad:
93:e5:bc:90:70:a2:cc:33:46:70:c7:d4:d8:38:0c:dc:8d:ea:
e3:28:e6:62:40:67:15:23:07:fb:e2:96:2e:82:c1:5b:84:a0:
b5:b4:64:e8:47:54:0c:77:d4:b9:41:e1:2d:46:7b:36:87:74:
72:1e:14:bd:13:91:4a:6d:8d:ab:b1:52:0c:68:44:9c:07:d8:
1f:38:fa:2b:33:af:06:a3:99:ac:00:d3:ad:db:2c:67:6f:0f:
dc:55:e1:c0:95:09:28:0f:cc:d3:87:cd:c9:de:a2:ac:e3:dd:
ca:35:0d:d1:c8:e4:1d:c2:60:35:0a:00:22:dc:32:2e:d4:22:
1e:48:04:b2:c9:64:a7:f1:b5:00:e8:49:9b:fc:b7:de:cf:7a:
c3:30:68:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:41 2024 by rpki-client on console-fra.rpki-client.org