Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DFA1F40DCE11EF93D32F6C017001B1.roa
File: B7DFA1F40DCE11EF93D32F6C017001B1.roa (raw, json)
Hash identifier: VwkSmpRYGJOLrtj/C/Nulo+DG4RAdZpT37MjKteQp+U=
Subject key identifier: A3:83:35:0C:16:6F:D1:07:E7:B4:75:90:83:A9:96:10:E3:EB:60:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 892D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DFA1F40DCE11EF93D32F6C017001B1.roa
Signing time: Thu 09 May 2024 06:38:17 +0000
ROA not before: Thu 09 May 2024 06:38:14 +0000
ROA not after: Wed 29 May 2024 06:38:14 +0000
asID: 141883
IP address blocks: 45.207.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35117 (0x892d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 06:38:14 2024 GMT
Not After : May 29 06:38:14 2024 GMT
Subject: CN=663c6f59-97f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a7:43:b6:0e:7c:65:cf:cf:13:b4:c1:94:00:
af:69:bb:2b:80:ca:d0:a2:cb:66:71:8a:e3:08:43:
1e:9a:0f:d5:c9:bb:46:6d:12:3f:3d:18:ea:6f:7d:
73:10:19:5b:24:95:dd:24:ec:7a:09:70:70:0d:2f:
b4:48:8d:60:69:b7:6d:e5:c0:31:26:91:30:48:db:
fa:c2:b4:87:17:b0:87:33:54:51:d6:54:bb:c3:18:
b0:24:4f:86:47:bb:b7:ce:9a:07:9a:b2:53:6e:e3:
52:d6:e1:7a:ff:8e:68:5d:b5:0d:be:f3:cb:b6:ee:
a6:fe:2f:a0:fa:7c:a2:19:0b:ad:25:a7:eb:29:b3:
70:a7:60:d1:61:27:18:40:50:4d:a5:00:59:ee:95:
a1:1e:18:df:69:b7:ec:e9:38:4b:ee:ef:58:19:af:
c9:16:3f:71:92:67:ad:42:a9:05:22:df:3c:e1:a8:
e9:32:5b:66:76:ca:cd:4c:0e:1d:69:af:32:1f:a4:
86:ab:1f:5e:d8:1d:71:7f:b2:49:4d:d4:f0:75:8d:
11:70:79:57:46:e1:47:c9:c2:8c:31:61:dc:67:4c:
4c:76:20:19:ea:f1:eb:56:8a:66:69:70:f0:d0:27:
d2:a3:89:94:bd:9f:39:a6:69:42:ef:82:e8:e4:23:
4e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:83:35:0C:16:6F:D1:07:E7:B4:75:90:83:A9:96:10:E3:EB:60:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B7DFA1F40DCE11EF93D32F6C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.224.0/19
Signature Algorithm: sha256WithRSAEncryption
66:b3:06:ea:a1:82:b1:fe:c8:21:91:44:b5:0e:cb:72:dd:d7:
c6:e7:71:39:36:ae:4f:a9:26:f1:8c:74:4e:dd:e2:55:7c:d5:
2e:80:f7:f0:df:ae:fd:35:4b:56:53:d3:1e:0c:c6:87:19:b2:
b3:9a:df:47:9f:82:eb:ea:ac:2d:08:af:40:72:6e:e8:d3:2a:
42:82:fa:36:9f:a2:39:e6:38:01:d3:8e:d4:53:c1:6b:03:df:
ea:55:a3:79:78:bf:71:d9:f3:9d:06:4a:b2:20:a6:49:02:a6:
ca:04:41:75:86:1c:ef:9d:18:54:2e:be:c8:24:ab:75:a5:ee:
9e:4d:ad:a2:ba:13:74:a0:be:df:0f:f5:a4:29:6a:78:7a:51:
9d:8c:22:fa:cd:06:20:63:c8:49:51:85:59:10:7f:a4:43:06:
39:d0:76:8b:00:9f:e5:48:de:5b:93:8f:e9:29:21:9a:b0:ff:
61:3f:f3:eb:dd:36:8e:07:5d:14:09:06:fb:7c:84:8d:21:15:
1b:57:79:ef:de:57:8a:48:3c:2b:f6:77:2e:03:9c:16:08:69:
44:6f:74:fb:20:55:7f:30:48:46:b1:5a:7d:17:96:07:38:58:
11:cd:55:21:14:26:d2:dc:40:28:8f:40:7d:00:bc:4c:25:d6:
50:2f:23:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:03:55 2024 by rpki-client on console-ams.rpki-client.org