Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A95B511C038A11EFB4C2B942017001B1.roa
File: A95B511C038A11EFB4C2B942017001B1.roa (raw, json)
Hash identifier: Ob79s+akIyuc0ERh1WbIvYWz/+hfqiTCLipfAE/7SRA=
Subject key identifier: CF:AE:3C:FE:44:2D:2F:8A:F6:47:CA:60:92:ED:BE:1C:40:8E:36:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85CA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A95B511C038A11EFB4C2B942017001B1.roa
Signing time: Fri 26 Apr 2024 05:05:56 +0000
ROA not before: Fri 26 Apr 2024 05:05:52 +0000
ROA not after: Sun 05 May 2024 05:05:52 +0000
asID: 141883
IP address blocks: 45.201.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34250 (0x85ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 05:05:52 2024 GMT
Not After : May 5 05:05:52 2024 GMT
Subject: CN=662b3633-bb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e9:39:b7:e2:e2:db:2f:4f:fc:5c:32:4c:5c:
58:73:7f:0b:51:06:b3:ff:c6:f9:d5:cb:1a:7b:86:
44:1a:7c:4c:3f:6c:5e:db:f2:fc:a6:8f:2d:74:c3:
a8:86:9e:44:ee:13:ef:65:ea:af:d6:2e:ad:c1:fb:
d4:82:5d:e2:2c:bd:21:48:87:5e:de:d6:80:61:b7:
40:71:1d:19:f3:84:a0:9a:6f:22:77:32:ff:c3:5a:
ae:cc:64:e9:0a:6e:51:75:90:04:b2:3e:7a:d2:92:
60:c3:c6:d1:e7:ca:07:40:f5:af:30:bf:92:ba:3b:
b4:c0:90:0b:16:3a:96:a1:a0:2f:c7:d9:ea:99:17:
5c:46:f8:bb:48:01:72:7b:6d:5b:95:32:02:d5:70:
97:dc:6b:24:ba:dc:0a:04:a0:52:63:5b:f3:52:d1:
c0:46:39:83:9e:9e:a0:8d:54:22:64:eb:4e:89:1f:
b1:10:11:22:33:fe:e4:79:66:77:41:c4:6d:d0:6d:
e0:f7:84:75:1b:1c:73:c3:2b:af:55:91:00:6a:1c:
f6:1c:12:78:03:d1:d2:7b:b5:6a:95:94:60:4b:11:
05:b2:4f:bd:af:b4:fd:5c:30:c7:c4:93:2f:91:8f:
49:12:e5:12:22:ad:84:ac:81:25:ae:3a:4f:09:17:
fa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AE:3C:FE:44:2D:2F:8A:F6:47:CA:60:92:ED:BE:1C:40:8E:36:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A95B511C038A11EFB4C2B942017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.224.0/21
Signature Algorithm: sha256WithRSAEncryption
24:83:ac:1d:cf:53:19:0a:5d:9f:06:5d:d7:cb:d6:64:44:47:
8b:c8:1f:e9:d8:6f:a9:a5:33:f7:e5:4f:32:69:0c:4e:ab:24:
aa:dd:ab:76:f6:17:c3:ce:65:49:9c:42:d7:bc:c6:4c:95:60:
f4:60:a1:70:30:ca:ba:01:3a:75:c9:41:f8:9e:ed:1f:39:c1:
ea:a2:42:70:fb:5b:1a:e2:ae:7b:97:d4:6d:2d:ea:8e:93:15:
cc:69:7c:f5:27:e6:73:36:96:c8:54:b7:b6:bf:45:aa:d2:3e:
2e:9e:98:4e:62:e7:5a:b7:55:b8:95:74:77:5b:57:19:5f:2c:
c1:0e:2d:ad:42:64:33:e3:55:c4:c4:6a:41:b1:ae:1a:7a:03:
20:a6:50:4e:a0:83:ff:72:bb:cc:93:5f:c7:e2:4b:51:93:7f:
53:9b:0e:26:99:4a:98:b8:35:44:88:36:3b:a3:2e:b0:a4:e3:
ee:b4:a1:e3:dc:30:bf:a2:be:f5:db:a8:88:c7:23:03:c3:eb:
32:3b:0e:8b:46:6e:fe:75:45:bf:f5:bc:ce:39:ad:f6:66:24:
8a:56:90:e3:84:cb:6f:ff:42:ee:84:54:e9:b5:c8:c6:d0:6e:
5c:8c:d2:40:45:be:ff:1b:1f:92:b0:0c:d0:f2:41:16:e8:c9:
5f:d4:78:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:29:26 2024 by rpki-client on console-fra.rpki-client.org