Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA8CECCAFD4611EEAB382133017001B1.roa
File: AA8CECCAFD4611EEAB382133017001B1.roa (raw, json)
Hash identifier: PFKjmi+8D7BhVCPrAVbNjQQ2cDJPpQp8QOLf+kIfzkQ=
Subject key identifier: 06:E9:66:F8:73:22:E7:50:06:D1:B6:2B:A6:60:FD:98:02:5A:B3:1F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8347
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA8CECCAFD4611EEAB382133017001B1.roa
Signing time: Thu 18 Apr 2024 05:44:05 +0000
ROA not before: Thu 18 Apr 2024 05:44:01 +0000
ROA not after: Fri 26 Apr 2024 05:44:01 +0000
asID: 5065
IP address blocks: 45.204.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33607 (0x8347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 05:44:01 2024 GMT
Not After : Apr 26 05:44:01 2024 GMT
Subject: CN=6620b325-715b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b5:4a:82:04:a1:32:1d:29:8d:5e:02:cc:d6:
35:d7:31:23:bc:54:5b:28:19:51:a0:9c:19:72:11:
15:27:33:3a:79:d6:b5:f4:28:6b:4d:a2:fc:03:4c:
d9:4e:ba:21:cc:b6:be:fb:23:b5:33:09:f5:8d:b2:
6c:e3:44:23:39:65:92:1b:d0:a3:6e:b6:03:e1:7f:
d6:be:1b:60:a3:45:b2:1b:16:72:e2:4e:fa:d0:ec:
ab:89:96:2c:0e:95:78:c1:8d:d5:f1:1b:da:c4:82:
e0:7e:93:28:d9:d5:34:40:e0:9e:54:b1:3c:d9:d0:
8a:14:09:ae:2a:43:76:1f:94:2a:25:83:8a:c7:89:
a4:50:18:8b:d6:57:8c:37:0d:38:1d:64:b6:c5:4c:
cf:f2:f3:b3:d6:ab:d6:9f:94:05:6e:2e:89:da:43:
08:9c:b9:02:5b:80:3f:94:e5:17:74:0b:b2:da:2e:
55:5e:18:e2:9b:8a:74:04:e5:a7:9a:ef:90:02:b5:
c8:ad:d4:3f:56:71:9d:1b:42:a9:4d:7b:ff:f0:7a:
1b:35:a6:a4:c6:42:d3:e3:d4:33:1d:55:70:ef:e5:
f6:52:95:b9:ed:16:51:4f:ed:2c:da:40:64:22:51:
cc:b0:69:64:e1:9b:ed:36:ab:7f:f9:46:29:9a:72:
53:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E9:66:F8:73:22:E7:50:06:D1:B6:2B:A6:60:FD:98:02:5A:B3:1F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA8CECCAFD4611EEAB382133017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5b:92:64:e8:12:57:cf:c1:bd:d0:4c:7a:b4:57:4f:ec:b2:
dc:f8:dd:dd:20:2d:6d:16:ba:be:e5:f2:63:37:10:87:ef:82:
a0:54:6f:0e:9e:39:16:33:0f:37:01:ed:d1:23:8c:99:68:83:
1a:bd:09:92:4e:21:a3:79:86:7b:1e:4d:94:e9:82:e6:da:f8:
45:cb:3f:15:49:51:f6:e8:d2:52:ed:18:fe:b7:73:8d:37:65:
4f:da:00:fc:73:44:d6:06:14:d7:e3:d9:84:9c:72:38:b1:6c:
fc:8b:f3:8d:d0:13:ab:f1:5b:0c:a4:34:3f:04:cc:f5:c3:9f:
de:b1:40:3e:ea:83:1c:28:e3:6e:0b:ec:0b:ee:d7:c2:7a:97:
e3:bc:89:80:af:a3:b5:aa:47:8e:ec:68:e0:04:55:bb:3a:17:
ca:08:8c:0b:88:9a:7f:ce:05:cc:ac:35:7a:cf:75:6b:46:82:
41:b4:c8:a1:70:91:eb:c9:ad:2d:51:5e:e5:80:39:fa:1d:0e:
a9:92:8b:78:47:33:05:1a:7e:a9:68:04:30:bd:30:19:93:f0:
af:e4:96:51:cb:d7:e6:8f:f1:ee:9e:2b:17:ef:05:59:25:16:
9e:d3:6e:8f:16:77:2f:60:00:69:8d:52:91:d5:bf:0a:fb:37:
e7:99:dc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:09:04 2024 by rpki-client on console-ams.rpki-client.org