Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0325CB18CE9311EFB6DB36BB762E951A.roa
File: 0325CB18CE9311EFB6DB36BB762E951A.roa (raw, json)
Hash identifier: HeiVrrz+DhxNWRBs+eir08J6zutwZBK7lUaO8HeFiY4=
Subject key identifier: 7D:CC:48:A0:75:02:6A:53:A2:1E:D6:1A:C5:73:53:BC:5E:AA:7D:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0325CB18CE9311EFB6DB36BB762E951A.roa
Signing time: Thu 09 Jan 2025 14:07:08 +0000
ROA not before: Thu 09 Jan 2025 14:07:04 +0000
ROA not after: Wed 22 Jan 2025 14:07:04 +0000
asID: 39600
IP address blocks: 45.197.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66556 (0x103fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 14:07:04 2025 GMT
Not After : Jan 22 14:07:04 2025 GMT
Subject: CN=677fd80c-0382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:dc:83:0b:dd:e4:f1:43:c3:7f:89:b6:31:6f:
47:a1:9b:ca:5d:e9:36:98:b6:ad:19:e6:0b:21:ff:
e3:ee:79:6a:75:bd:80:00:2d:20:9a:74:9f:74:d0:
68:ed:57:89:56:c6:e3:86:15:10:49:8e:7b:d9:54:
00:55:41:9f:2d:50:6e:61:bc:35:2d:58:d8:b4:0d:
0c:57:e2:73:be:c8:06:47:53:d5:2d:5b:3a:9d:ca:
4c:ec:25:37:09:9a:95:9c:a2:59:63:f6:45:a5:b7:
08:2f:bc:b4:dc:58:db:d9:62:20:56:f2:fc:5e:c1:
6c:28:36:af:17:62:f5:7a:c0:da:59:06:23:21:a0:
53:2b:27:74:b5:68:3a:17:31:d7:a9:1f:62:60:16:
50:76:35:61:26:57:d3:5e:4d:79:d4:c0:8c:ad:bc:
e0:f9:2a:f4:15:26:e2:90:05:9a:9f:5f:46:3e:28:
bc:74:68:ac:e0:60:fb:27:7b:cd:e7:cb:6a:15:2f:
50:11:5e:0a:17:a5:92:58:b6:c9:79:cc:f2:6f:4b:
da:8e:16:21:f1:92:52:2d:b3:32:5d:67:02:10:40:
2a:29:5f:43:34:8a:71:69:16:84:4b:a3:20:69:7a:
01:3e:f5:9f:e5:d5:b9:61:22:7f:99:40:97:68:22:
16:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CC:48:A0:75:02:6A:53:A2:1E:D6:1A:C5:73:53:BC:5E:AA:7D:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0325CB18CE9311EFB6DB36BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.192.0/22
Signature Algorithm: sha256WithRSAEncryption
48:77:91:98:26:28:f3:f0:e9:02:6e:fe:13:46:5c:f7:cf:d8:
a0:56:2f:af:e3:35:9b:9e:79:1b:c4:a5:c3:c3:15:0f:cc:6c:
90:7e:3a:fd:eb:3a:20:82:3b:2b:72:9a:94:1f:5f:50:c7:e2:
b0:c4:24:a3:ab:ba:8b:2c:1b:3e:a4:79:5d:2f:40:66:b6:56:
55:15:60:ea:22:ef:96:ad:ea:3a:2a:aa:69:47:d3:f8:5b:d6:
6d:72:bd:be:e0:55:6b:32:4b:9a:0d:43:6b:6f:78:cd:7d:ab:
af:0c:e6:41:17:34:59:c4:c3:4d:b2:f3:7c:ff:38:0d:27:32:
cc:ac:a8:c1:8c:1d:08:1c:24:f7:12:d7:db:23:03:36:83:c1:
7e:ff:a2:93:ab:38:0f:34:8a:94:d2:da:e1:6e:23:97:34:9b:
37:50:66:ee:7e:24:7a:60:d7:0d:4a:8b:d6:0e:83:a1:30:f0:
d7:a2:0c:e3:44:ba:f5:80:bc:76:cf:c8:8e:d7:78:f9:7b:13:
e6:c7:f9:18:a1:31:0f:41:be:9a:cd:07:b9:c3:93:ce:26:30:
e5:1c:9e:23:1a:d2:ef:d4:59:0d:01:38:b3:f5:c7:22:16:cb:
5e:c9:1b:5b:e0:1f:88:b1:84:78:ed:ad:7b:60:96:22:6c:d2:
d1:22:8b:70
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQP8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA5MTQwNzA0WhcNMjUwMTIyMTQwNzA0WjAYMRYw
FAYDVQQDEw02NzdmZDgwYy0wMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy9yDC93k8UPDf4m2MW9HoZvKXek2mLatGeYLIf/j7nlqdb2AAC0gmnSf
dNBo7VeJVsbjhhUQSY572VQAVUGfLVBuYbw1LVjYtA0MV+JzvsgGR1PVLVs6ncpM
7CU3CZqVnKJZY/ZFpbcIL7y03Fjb2WIgVvL8XsFsKDavF2L1esDaWQYjIaBTKyd0
tWg6FzHXqR9iYBZQdjVhJlfTXk151MCMrbzg+Sr0FSbikAWan19GPii8dGis4GD7
J3vN58tqFS9QEV4KF6WSWLbJeczyb0vajhYh8ZJSLbMyXWcCEEAqKV9DNIpxaRaE
S6MgaXoBPvWf5dW5YSJ/mUCXaCIWfQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFH3M
SKB1AmpToh7WGsVzU7xeqn0yMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wMzI1Q0IxOENFOTMxMUVGQjZEQjM2QkI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcXAMA0GCSqGSIb3DQEBCwUA
A4IBAQBId5GYJijz8OkCbv4TRlz3z9igVi+v4zWbnnkbxKXDwxUPzGyQfjr96zog
gjsrcpqUH19Qx+KwxCSjq7qLLBs+pHldL0BmtlZVFWDqIu+Wreo6KqppR9P4W9Zt
cr2+4FVrMkuaDUNrb3jNfauvDOZBFzRZxMNNsvN8/zgNJzLMrKjBjB0IHCT3Etfb
IwM2g8F+/6KTqzgPNIqU0trhbiOXNJs3UGbufiR6YNcNSovWDoOhMPDXogzjRLr1
gLx2z8iO13j5exPmx/kYoTEPQb6azQe5w5POJjDlHJ4jGtLv1FkNATiz9cciFste
yRtb4B+IsYR47a17YJYibNLRIotw
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:17 2025 by rpki-client