Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B27BC9ACEB2A11EEA00D1AC2775412E6.roa
File: B27BC9ACEB2A11EEA00D1AC2775412E6.roa (raw, json)
Hash identifier: Tn6LcjHpkoatxEhmhy95+9YgpMcrPUigtbZOlC9YZZc=
Subject key identifier: 87:94:B2:17:67:C7:91:9F:C2:70:CC:31:B0:49:7A:03:87:48:30:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8041
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B27BC9ACEB2A11EEA00D1AC2775412E6.roa
Signing time: Tue 26 Mar 2024 04:38:31 +0000
ROA not before: Tue 26 Mar 2024 04:38:28 +0000
ROA not after: Mon 29 Apr 2024 04:38:28 +0000
asID: 149440
IP address blocks: 45.195.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32833 (0x8041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 26 04:38:28 2024 GMT
Not After : Apr 29 04:38:28 2024 GMT
Subject: CN=66025147-c8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:10:e8:87:52:9f:15:0b:88:d5:ee:c3:68:7e:
ec:1c:2c:b0:40:fe:a7:f4:d8:26:d9:de:24:e8:42:
bf:46:88:f1:30:4e:9a:51:6a:f3:53:fd:94:1e:94:
6e:a2:4d:d1:a8:07:8e:6a:2a:d3:cd:ec:b0:27:91:
4b:fc:45:ab:a5:97:1d:53:4b:ba:df:99:77:96:c6:
7f:73:d7:99:05:08:40:55:f7:ea:50:04:55:d0:98:
63:62:0f:5e:87:8b:ff:53:74:bd:2b:b7:71:86:cd:
f0:3e:22:9d:78:d1:f3:87:9f:ce:ce:87:a2:b6:55:
2b:d3:7d:a7:55:ae:76:db:8a:41:92:94:cc:d7:80:
cc:5a:fa:99:30:17:d5:47:36:a3:cc:96:72:7c:34:
8b:80:37:4e:b9:50:83:1f:d3:34:d4:d9:0f:f1:0c:
d7:f4:a5:52:ef:d8:b1:48:a1:05:1b:1c:ac:93:99:
98:b8:17:27:da:fa:e5:59:91:1e:ab:f5:14:6e:d1:
53:01:46:8c:4c:06:c4:03:16:71:d1:15:97:a3:98:
79:7e:27:f1:64:2b:d1:c6:1f:da:db:21:a9:cf:6d:
da:13:05:8d:0c:68:1e:12:cf:1c:5d:5c:70:c9:e1:
6e:86:21:27:a8:6d:06:53:19:93:bd:42:12:75:b4:
8e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:94:B2:17:67:C7:91:9F:C2:70:CC:31:B0:49:7A:03:87:48:30:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B27BC9ACEB2A11EEA00D1AC2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.69.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:a3:4b:4a:61:d8:08:57:ed:cb:86:5e:0d:91:9b:97:b6:a0:
cc:8b:10:c1:83:7d:2e:9f:ee:bb:ea:34:48:8f:02:dd:c8:8f:
29:e6:5f:20:60:f2:20:bb:db:29:68:8b:85:db:d9:88:0a:8a:
cd:ec:8c:31:bd:80:36:c1:f9:25:f1:2f:3d:97:a9:1e:d5:c5:
cd:fa:f8:29:9d:98:f4:d2:5e:6e:1e:0b:1b:b9:54:bf:49:52:
99:de:4b:78:1f:98:96:6c:d1:bf:eb:d3:3b:e8:6e:bb:e2:b4:
f6:3d:71:16:4a:1e:b9:15:aa:f8:7e:8e:0d:31:e0:e2:22:db:
70:1a:b2:a4:2e:b5:2f:dd:c4:7f:dd:ed:87:3f:07:f1:de:ca:
09:76:58:f3:83:d2:0e:63:0b:17:2f:c7:84:b9:c6:95:bf:b6:
56:21:2d:bd:6e:1b:a9:5f:ae:7c:bf:82:1a:0c:4b:64:d5:34:
43:55:75:87:f2:20:9b:1b:41:e0:a0:0f:07:3a:61:f0:03:90:
74:13:48:29:47:c1:bd:cf:9a:90:3a:44:57:34:ab:a0:5a:29:
59:87:11:2d:1a:d9:8c:3f:06:f6:5f:79:b0:9d:e8:11:10:b8:
a4:80:1a:51:65:7e:2d:d7:53:2c:9b:a4:d4:aa:cf:17:9c:d0:
1d:95:57:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 05:25:40 2024 by rpki-client on console-ams.rpki-client.org