Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D932D6AFAC511EE8BDE4137017001B1.roa
File: 8D932D6AFAC511EE8BDE4137017001B1.roa (raw, json)
Hash identifier: rYlZBSL8s83KBCLxsZaFWFGg0myWJhyjtQ/mjnVTpuQ=
Subject key identifier: AF:65:61:55:09:45:FE:44:08:CA:AF:62:5D:54:E3:CB:0A:1B:51:BB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 825E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D932D6AFAC511EE8BDE4137017001B1.roa
Signing time: Mon 15 Apr 2024 01:14:49 +0000
ROA not before: Mon 15 Apr 2024 01:14:45 +0000
ROA not after: Wed 24 Apr 2024 01:14:45 +0000
asID: 136970
IP address blocks: 45.195.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33374 (0x825e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 01:14:45 2024 GMT
Not After : Apr 24 01:14:45 2024 GMT
Subject: CN=661c7f88-229b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:08:e8:0b:9c:bb:f9:3d:db:64:5a:00:40:ca:
24:19:f8:7d:e2:2e:08:bd:85:50:43:1e:2e:b7:fb:
e1:92:42:bf:fb:cd:4d:94:be:76:4e:c1:8b:12:ee:
c2:9e:8f:04:9d:f6:32:5a:dc:85:b6:40:a4:b1:b0:
05:60:2a:91:dc:33:28:11:4a:79:c7:bc:b5:a8:7c:
bd:fa:87:f5:97:40:f9:48:67:5a:13:68:73:1c:c2:
77:32:a2:de:32:31:fc:2d:b2:f8:af:26:6d:a0:64:
cd:43:2e:da:22:60:7d:16:cc:71:43:84:a3:bf:4b:
8c:f2:d3:ce:3c:df:ca:08:7b:d8:7c:e8:1d:21:2e:
c4:79:8c:a3:f9:ae:14:0d:07:12:31:72:c5:a4:d3:
a9:c0:14:89:a5:49:c1:14:5f:5f:7e:7a:33:ef:59:
e8:5e:eb:27:6a:a2:6e:07:81:6f:08:08:39:15:b9:
24:1d:71:83:fa:b1:6e:32:cd:7f:66:c0:1e:5b:e8:
18:55:fb:69:de:0c:2f:ff:24:db:d4:55:67:55:1d:
2e:44:e7:0b:c5:b5:c3:95:dd:55:ac:de:94:50:22:
a2:8d:97:0a:a9:9d:42:15:d9:75:05:14:f0:fa:97:
43:c2:22:f6:54:fb:fe:97:3f:02:ff:f3:f9:de:c3:
29:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:65:61:55:09:45:FE:44:08:CA:AF:62:5D:54:E3:CB:0A:1B:51:BB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8D932D6AFAC511EE8BDE4137017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.203.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:7e:b2:d4:50:25:f4:71:5c:65:de:46:0e:5d:3a:58:4f:0a:
69:93:88:21:f9:e4:59:7b:a2:20:2f:f3:ed:20:f3:9f:dc:cc:
c6:0b:b2:1f:81:b5:95:d5:2b:d6:85:b0:6f:c0:10:53:52:d1:
e6:c4:4f:f0:a2:35:56:f1:44:c3:b1:80:ba:41:41:36:58:66:
6f:10:80:21:04:ba:3b:13:df:e5:2b:5a:a4:b1:45:69:cc:6e:
89:57:c2:e8:b3:e2:57:7e:42:39:c7:45:80:01:bd:6a:27:12:
5f:c0:28:f2:dc:95:30:d6:a1:70:ba:9f:ed:08:24:b6:d0:0f:
ce:07:ea:1a:a9:68:a1:87:32:5e:e5:3d:d6:fb:57:16:00:30:
f3:ff:6f:41:bd:cc:1e:12:2a:31:08:e7:1e:fd:ea:a1:bc:c2:
c4:a1:68:d4:a3:82:48:68:18:68:ca:18:e5:c1:07:20:48:95:
d3:14:a2:e5:17:7c:51:34:54:a0:f3:5a:3b:21:0c:73:01:02:
61:1f:12:26:08:33:48:54:71:d4:bd:37:1e:62:bb:e7:21:27:
4c:ea:c9:31:e8:39:52:cb:0d:7e:58:5c:dc:b6:a0:75:59:5a:
0f:41:bb:40:84:4d:67:45:77:bc:66:b8:eb:a2:44:93:73:f0:
08:4c:78:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:12:04 2024 by rpki-client on console-fra.rpki-client.org