Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7BE018F0BA11EEA8180AC0775412E6.roa
File: 5E7BE018F0BA11EEA8180AC0775412E6.roa (raw, json)
Hash identifier: Ybku39ERnyqJLHDw+ny/va/7xKpBDKRAKTo+m94PDxw=
Subject key identifier: 8D:35:4A:E7:F7:93:56:2F:CD:2A:CB:48:92:30:F2:AF:EB:22:B5:16
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8126
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7BE018F0BA11EEA8180AC0775412E6.roa
Signing time: Tue 02 Apr 2024 06:29:34 +0000
ROA not before: Tue 02 Apr 2024 06:29:30 +0000
ROA not after: Mon 29 Apr 2024 06:29:30 +0000
asID: 141883
IP address blocks: 45.200.14.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33062 (0x8126)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 06:29:30 2024 GMT
Not After : Apr 29 06:29:30 2024 GMT
Subject: CN=660ba5cd-f42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3f:65:ec:cf:26:0f:d6:b5:bf:da:47:40:09:
60:f3:3d:d0:34:ac:43:e0:d1:db:85:6c:07:ff:d8:
51:1e:69:80:9a:c4:a3:b8:bb:97:44:ab:1f:af:7b:
a6:31:3a:7c:9a:93:8a:1b:9f:47:f8:58:9a:31:7f:
55:b5:4d:76:db:14:cc:f3:31:dc:42:df:12:37:a6:
55:29:07:9a:f8:62:08:e7:fc:68:6b:f6:2d:84:d5:
f7:d1:86:aa:d9:d5:12:63:d9:9c:9f:27:1e:6f:2d:
15:67:86:51:8d:bc:a1:1c:ff:dd:0d:ec:21:e1:9e:
e7:44:de:39:47:b3:50:d4:e3:e0:a0:3f:61:25:a9:
2b:c4:30:4c:e0:1c:09:4d:0b:70:52:94:e6:fd:83:
1c:b6:1d:3c:98:ec:cb:c7:65:78:63:5f:0b:51:c6:
3c:ad:80:60:a1:b6:8e:ee:30:30:08:ad:b5:1e:47:
52:04:87:98:63:6c:73:32:8f:68:35:df:c3:4e:9e:
02:fc:71:c4:47:1a:7e:e3:a6:51:ac:42:7e:8c:5b:
75:a3:b7:66:49:87:69:0b:12:29:78:d0:4d:34:68:
46:61:b1:ee:88:7d:bb:83:ec:b1:c0:00:aa:fb:02:
31:28:e9:7f:cc:8f:fe:a4:98:6f:cb:23:d2:bb:54:
ca:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:35:4A:E7:F7:93:56:2F:CD:2A:CB:48:92:30:F2:AF:EB:22:B5:16
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E7BE018F0BA11EEA8180AC0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.14.0/23
Signature Algorithm: sha256WithRSAEncryption
89:34:35:82:5b:e2:83:a3:8a:fb:47:7d:b2:d8:a5:2d:54:19:
a1:68:a1:dc:4b:59:9c:df:db:e9:b0:85:0f:dd:ec:04:4d:00:
b8:40:0f:d5:da:98:8e:71:fc:f5:40:46:c7:4b:45:ec:52:0a:
be:ce:32:f1:81:53:66:3b:6c:b7:27:61:28:19:e7:fb:73:71:
e4:91:67:1e:65:34:9b:0d:4e:98:6d:cc:d7:29:6c:19:bc:f7:
da:89:59:bc:88:32:80:68:c7:2a:b2:8b:5c:d2:99:7f:6a:d7:
b1:77:39:c0:7e:16:80:23:7b:cd:57:2d:1a:f0:ab:bc:19:6d:
ea:4f:a8:73:b1:09:0a:90:da:09:c5:48:29:20:f5:7d:77:5b:
df:91:38:89:49:58:bb:2f:8c:71:3d:e4:ac:fb:41:3b:89:03:
ae:e2:58:0b:e9:b1:3f:6d:62:f5:08:ab:ee:11:96:a7:4c:8b:
cc:bf:9c:c9:33:9f:dc:2b:d5:2e:d2:a5:02:9a:58:d1:79:3a:
8d:83:30:33:c8:02:20:34:14:d7:9f:24:18:11:2b:49:3d:fe:
64:7b:1c:90:1e:bf:5a:60:d6:fe:dd:ba:e7:87:df:0c:68:57:
60:e0:57:bc:36:15:9c:d1:d5:62:41:db:ed:7a:7e:46:a7:96:
eb:f4:cc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 11:06:49 2024 by rpki-client on console-fra.rpki-client.org