Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96BAA6C2FB9511EE95716F61017001B1.roa
File: 96BAA6C2FB9511EE95716F61017001B1.roa (raw, json)
Hash identifier: c5oknUtrPUtPISVTc9osZTmlYPLraEiTc20Brme5q34=
Subject key identifier: C7:A5:6A:C6:BF:A7:0D:83:7E:28:5D:D5:58:EC:64:BC:9F:83:79:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8283
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96BAA6C2FB9511EE95716F61017001B1.roa
Signing time: Tue 16 Apr 2024 02:03:59 +0000
ROA not before: Tue 16 Apr 2024 02:03:56 +0000
ROA not after: Mon 29 Apr 2024 02:03:56 +0000
asID: 141883
IP address blocks: 45.201.216.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33411 (0x8283)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 02:03:56 2024 GMT
Not After : Apr 29 02:03:56 2024 GMT
Subject: CN=661ddc8f-3b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:cb:47:ed:d9:fe:9a:95:74:59:df:5b:20:
b3:7b:ef:3d:df:36:94:c7:37:14:08:b1:af:78:ef:
2e:65:9b:1b:06:ea:fb:04:74:6a:2f:99:06:c6:2e:
18:ac:29:1d:d4:27:33:5e:a6:f9:73:09:b4:21:30:
c0:2e:f7:f9:83:c8:8a:3a:7d:e8:3e:43:74:18:b7:
66:54:6c:a9:01:0c:ec:c1:91:80:10:7c:af:d6:86:
de:d7:52:1e:f7:ab:56:ae:c2:5e:6c:8a:1e:49:9f:
4b:2c:dd:b7:3d:13:58:db:eb:d7:d6:ed:ea:d7:61:
38:f4:3a:87:c1:4c:a2:51:98:e7:5d:b1:b8:0a:87:
58:00:88:99:31:43:2a:04:07:29:a2:6f:eb:a2:f8:
78:7f:8a:1a:9c:d5:45:ef:17:70:f1:14:ba:ca:12:
e3:ac:03:02:10:bc:35:6d:57:ec:c7:a7:b7:c4:99:
96:e7:9d:1b:3c:85:e3:23:d2:cd:40:cc:59:02:b3:
44:dd:7f:d8:ef:2e:2d:eb:32:e5:d6:15:62:14:60:
5b:9f:be:13:58:27:69:26:34:fe:ad:a2:83:48:19:
08:39:53:56:1c:bd:64:e3:4d:e5:b6:90:b8:be:ab:
a0:c0:42:cd:34:6a:b4:b3:3a:ad:96:b2:9d:b3:2b:
44:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A5:6A:C6:BF:A7:0D:83:7E:28:5D:D5:58:EC:64:BC:9F:83:79:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96BAA6C2FB9511EE95716F61017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.216.0/21
Signature Algorithm: sha256WithRSAEncryption
89:f0:40:08:ae:4d:c7:1d:ba:da:26:34:46:24:2d:5d:95:11:
64:ba:c0:ca:40:28:7b:1f:5d:2a:fc:ee:e7:c6:8d:f8:d5:e4:
dd:dd:dc:3e:78:ab:b4:72:48:81:9d:db:e8:d6:34:15:43:af:
6f:94:df:39:fb:91:e5:4e:3b:cc:9a:46:e6:8f:62:fe:71:35:
6d:67:a8:08:95:b2:93:0d:51:87:9d:08:fc:25:1b:2c:78:df:
4e:a5:8c:28:3e:58:08:a8:18:8a:22:a2:ed:50:d8:3f:08:5e:
b3:e7:4f:98:5a:4e:a7:b9:f9:e5:f2:f0:3a:ad:70:00:c9:0b:
12:1e:dc:a4:05:d6:ff:6f:02:cb:bf:dd:37:da:93:cd:47:04:
16:dc:e2:dd:b4:8f:eb:db:27:1a:bf:85:3f:93:8d:b9:83:22:
f5:8a:41:2e:42:5e:8c:20:05:e5:39:3f:5b:f4:1f:d4:c4:85:
6f:2a:5b:6e:0d:b8:e3:c4:93:32:56:8b:4c:cf:15:ea:35:87:
31:b4:63:4f:d8:df:ec:bd:b7:de:9c:94:2d:f0:77:1b:24:7d:
23:32:e9:3a:ab:a5:6b:be:21:d3:6e:f7:a2:60:df:95:95:88:
04:d3:3c:11:3a:cf:82:cc:22:f1:3e:1c:e9:14:45:b5:d9:6d:
0c:71:df:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 04:17:23 2024 by rpki-client on console-fra.rpki-client.org