Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D647C0FB9511EEB4C9F061017001B1.roa
File: B8D647C0FB9511EEB4C9F061017001B1.roa (raw, json)
Hash identifier: t+qz8rQR6RatojYotkhqyIilgYyP6lULJi6xeGjMzAs=
Subject key identifier: 29:23:07:67:91:D2:BE:16:D8:00:5B:4C:37:17:75:7B:2F:8A:E4:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8285
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D647C0FB9511EEB4C9F061017001B1.roa
Signing time: Tue 16 Apr 2024 02:04:56 +0000
ROA not before: Tue 16 Apr 2024 02:04:53 +0000
ROA not after: Mon 29 Apr 2024 02:04:53 +0000
asID: 141883
IP address blocks: 45.201.214.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33413 (0x8285)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 02:04:53 2024 GMT
Not After : Apr 29 02:04:53 2024 GMT
Subject: CN=661ddcc8-3dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8f:e3:f7:bc:19:7b:e6:08:4f:9b:20:17:0b:
fe:32:a7:3e:7d:0b:4d:23:90:4e:e2:51:96:b6:a7:
0d:b4:db:f8:91:d4:87:6e:69:e3:ae:ce:a0:5a:9a:
b8:1b:2a:68:85:60:7b:02:67:33:8f:74:50:bc:c6:
5d:4d:70:d4:df:80:bf:f3:58:90:e7:ff:62:2e:b5:
62:3d:42:d9:44:9e:e2:27:97:32:ee:05:a7:f4:ae:
46:ae:4e:5e:aa:5b:5a:98:b7:38:c2:f2:2a:34:2b:
40:bf:af:89:a5:7d:59:07:4b:e8:3f:37:85:de:5d:
83:77:f9:f3:0e:43:b4:ab:c7:3c:1e:3f:7c:46:83:
c3:91:44:0c:4d:30:40:cc:0b:4a:48:68:95:1f:2a:
dc:d3:92:f7:8d:b2:82:79:fd:72:55:c9:07:4b:b0:
c8:19:dd:77:d6:38:cf:40:77:c4:2e:f0:8c:b1:d8:
2d:3c:39:d3:2e:cf:9e:69:6c:ca:d5:39:5f:4e:50:
86:28:2c:04:1a:41:e9:06:9b:4b:42:47:2f:31:d3:
27:84:3b:f2:d9:d8:fa:25:89:e0:a0:3c:e7:77:74:
87:a3:4c:4f:b3:43:08:ce:45:7c:3f:51:6c:64:2e:
ff:a2:b7:b1:6c:4a:36:aa:b8:53:d2:46:80:0e:7c:
8e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:23:07:67:91:D2:BE:16:D8:00:5B:4C:37:17:75:7B:2F:8A:E4:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D647C0FB9511EEB4C9F061017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.214.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:88:4e:2c:11:cf:12:19:53:b8:2c:e9:9c:dd:17:b7:31:5c:
67:e8:15:33:81:68:18:94:2c:6a:35:ee:1f:a5:aa:82:62:c8:
56:fb:dc:27:39:4e:cf:41:6b:32:3c:70:3b:08:d7:3a:f9:5a:
26:b1:0b:c2:bf:ad:23:2e:ce:3a:b5:56:60:f3:10:bd:80:42:
cd:16:54:9a:a8:5f:0d:fa:f9:61:10:37:cf:a9:8d:11:af:9d:
dd:8e:ca:59:cf:10:50:01:92:a3:0b:28:33:c9:bd:69:25:4e:
41:d2:5a:22:fc:ac:9f:3d:68:53:fd:d7:e6:eb:40:75:01:d7:
cd:b6:99:e9:e7:e0:0b:ed:0e:c0:24:93:76:62:e4:99:93:c9:
ee:19:cc:92:5d:2a:ae:9e:83:e3:ae:9e:b8:02:9d:5a:e8:85:
7b:83:b7:80:8b:ab:e4:79:93:6f:74:fe:db:1f:f8:58:5e:19:
b9:e8:66:09:01:5f:e6:c0:48:cd:bf:22:1d:fa:e2:9e:5f:28:
bf:2a:56:dc:52:8e:cc:0d:91:a8:07:63:91:95:82:a1:16:a8:
45:0d:68:e5:8e:22:c6:22:f6:fd:c5:2f:37:42:9a:5f:36:87:
90:ca:5a:a4:83:8a:a8:81:3a:99:5f:c6:e0:6d:d0:1d:da:b1:
73:be:8b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 04:17:23 2024 by rpki-client on console-fra.rpki-client.org