Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/057C0DA2C9B411EF901A2643762E951A.roa
File: 057C0DA2C9B411EF901A2643762E951A.roa (raw, json)
Hash identifier: qVsXldx+krQHA/cmPNEJbLGCfWu0hZxcfuhQRyFLnQw=
Subject key identifier: F9:F7:5C:A8:67:87:1D:63:28:75:01:45:26:5D:AE:FD:4E:AB:15:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F6C5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/057C0DA2C9B411EF901A2643762E951A.roa
Signing time: Fri 03 Jan 2025 09:20:49 +0000
ROA not before: Fri 03 Jan 2025 09:20:46 +0000
ROA not after: Sat 18 Jan 2025 09:20:46 +0000
asID: 141883
IP address blocks: 45.200.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63173 (0xf6c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 09:20:46 2025 GMT
Not After : Jan 18 09:20:46 2025 GMT
Subject: CN=6777abf1-d4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:19:27:9b:9b:d3:f0:99:72:07:e0:e5:95:
73:1d:b0:d0:40:66:ee:1c:67:0b:4d:48:80:12:a7:
00:c1:24:ea:14:1d:5a:77:10:13:3a:f9:97:65:a0:
09:12:73:96:49:b3:ab:36:93:6b:82:13:63:8e:ae:
00:a9:c8:de:48:63:16:a4:99:10:2d:e7:56:36:85:
6b:b2:aa:a4:f1:e0:b5:7c:12:81:6e:96:2c:48:81:
67:c1:ab:d0:82:a6:77:ab:5c:49:84:ee:ad:2c:1f:
d9:50:65:6c:34:27:4a:6f:55:82:31:9e:b8:64:d4:
53:ff:7d:6d:f4:87:58:76:82:68:54:64:4f:6b:1d:
00:dd:01:ce:2c:3e:e9:98:47:6e:02:d5:fc:45:5d:
99:6a:9b:80:51:4a:b7:42:68:b1:a8:c6:4e:fb:c7:
04:ab:aa:19:ca:c9:75:e0:01:af:cf:7a:8e:64:9b:
1e:d5:dd:72:bf:79:f0:8b:e6:19:a9:d8:d6:d7:c8:
88:9b:47:77:f9:d3:0a:b8:43:67:9c:7c:06:d1:2d:
41:94:a5:40:51:e9:ec:f4:d4:17:a6:c7:4d:27:60:
d8:61:e1:5d:4d:53:c7:e8:86:bc:9a:08:89:62:6b:
48:54:ee:52:e1:50:75:a3:05:3b:50:26:38:05:98:
66:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F7:5C:A8:67:87:1D:63:28:75:01:45:26:5D:AE:FD:4E:AB:15:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/057C0DA2C9B411EF901A2643762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.24.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:ad:81:80:e9:00:e1:c9:26:b8:df:7f:68:6a:a8:8a:99:11:
a6:fa:75:b7:50:cd:4d:77:22:a8:b7:39:a0:38:58:0d:89:6a:
44:93:cb:64:87:cb:24:ae:47:6a:ba:00:c1:37:69:86:57:37:
de:c4:58:ea:73:0f:25:45:73:7e:fe:f1:6d:5a:ce:ab:98:e6:
aa:31:7f:92:b2:3b:c9:68:1e:87:1c:1a:67:59:f5:be:08:0e:
f0:5b:33:cd:37:e4:df:94:df:cb:9b:8f:c6:b4:95:f8:4d:49:
ec:72:6d:e6:1a:48:ad:f7:2b:10:48:f3:2d:5a:9f:76:13:1b:
5e:f2:f6:6f:9c:85:64:a1:5e:5e:bd:d6:08:8c:55:aa:1f:1c:
bf:6a:8a:25:91:3f:4b:b9:77:01:b6:2c:5f:86:a0:83:6d:7b:
fa:56:d9:e3:1d:76:5d:e2:27:f3:70:38:71:b5:7b:fb:bb:66:
80:95:90:e9:ab:f5:6c:f0:97:16:b2:c7:98:29:14:a6:c9:04:
6d:aa:be:18:70:92:e8:43:5a:43:29:43:3b:9e:7a:0b:9c:cc:
86:01:63:65:3f:c1:71:d1:78:07:33:55:d3:e3:f6:62:6f:f0:
e9:dc:3f:a6:cd:12:fd:b3:6b:98:85:24:49:40:15:5b:63:3a:
cf:f6:8e:c4
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPbFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTAzMDkyMDQ2WhcNMjUwMTE4MDkyMDQ2WjAYMRYw
FAYDVQQDEw02Nzc3YWJmMS1kNGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzVEZJ5ub0/CZcgfg5ZVzHbDQQGbuHGcLTUiAEqcAwSTqFB1adxATOvmX
ZaAJEnOWSbOrNpNrghNjjq4AqcjeSGMWpJkQLedWNoVrsqqk8eC1fBKBbpYsSIFn
wavQgqZ3q1xJhO6tLB/ZUGVsNCdKb1WCMZ64ZNRT/31t9IdYdoJoVGRPax0A3QHO
LD7pmEduAtX8RV2ZapuAUUq3QmixqMZO+8cEq6oZysl14AGvz3qOZJse1d1yv3nw
i+YZqdjW18iIm0d3+dMKuENnnHwG0S1BlKVAUens9NQXpsdNJ2DYYeFdTVPH6Ia8
mgiJYmtIVO5S4VB1owU7UCY4BZhmOQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPn3
XKhnhx1jKHUBRSZdrv1OqxVYMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wNTdDMERBMkM5QjQxMUVGOTAxQTI2NDM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcgYMA0GCSqGSIb3DQEBCwUA
A4IBAQBKrYGA6QDhySa4339oaqiKmRGm+nW3UM1NdyKotzmgOFgNiWpEk8tkh8sk
rkdqugDBN2mGVzfexFjqcw8lRXN+/vFtWs6rmOaqMX+SsjvJaB6HHBpnWfW+CA7w
WzPNN+TflN/Lm4/GtJX4TUnscm3mGkit9ysQSPMtWp92Exte8vZvnIVkoV5evdYI
jFWqHxy/aoolkT9LuXcBtixfhqCDbXv6VtnjHXZd4ifzcDhxtXv7u2aAlZDpq/Vs
8JcWsseYKRSmyQRtqr4YcJLoQ1pDKUM7nnoLnMyGAWNlP8Fx0XgHM1XT4/Zib/Dp
3D+mzRL9s2uYhSRJQBVbYzrP9o7E
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:48:11 2025 by rpki-client