Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DDCD4E2C9B011EFBA6AFAA9762E951A.roa
File: 2DDCD4E2C9B011EFBA6AFAA9762E951A.roa (raw, json)
Hash identifier: 28xDSOdfM3uWbm5pKYZxBoOvw8TXXmBZ2qWHB1CEG24=
Subject key identifier: A6:DA:44:E0:72:89:36:5B:96:3E:48:36:0E:9B:98:BE:85:AA:2C:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F6AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DDCD4E2C9B011EFBA6AFAA9762E951A.roa
Signing time: Fri 03 Jan 2025 08:53:19 +0000
ROA not before: Fri 03 Jan 2025 08:53:16 +0000
ROA not after: Sat 18 Jan 2025 08:53:16 +0000
asID: 141883
IP address blocks: 45.201.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63149 (0xf6ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 08:53:16 2025 GMT
Not After : Jan 18 08:53:16 2025 GMT
Subject: CN=6777a57f-0f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2b:2a:2a:3e:fa:e1:43:67:e7:89:5c:34:46:
a6:ad:e7:de:30:f2:d2:17:5d:dd:65:f3:3c:b4:49:
0d:dd:e9:dc:98:7e:33:fa:38:e0:6f:bd:a7:8b:5d:
3f:fa:53:e4:ed:dc:f2:20:1f:fa:0a:0e:8f:64:e8:
b5:b4:e9:67:e7:f1:cd:7e:41:eb:cc:59:53:fb:b7:
b8:6c:ca:f1:30:c7:7a:7d:f8:76:92:cb:b1:0a:d8:
d5:35:15:41:18:3e:bc:42:6a:a5:87:cf:22:94:34:
18:ad:95:1e:ce:c1:d2:df:d6:a3:1f:5b:14:73:3b:
cb:c5:e8:90:b3:3c:33:6d:92:96:93:04:a5:0c:b2:
21:67:99:b9:63:03:5e:03:3f:45:4d:93:57:96:9a:
9a:ec:1b:ae:34:d6:c2:63:ea:48:b4:6a:df:b8:14:
e6:e5:e1:87:bd:b5:2b:cd:6c:7a:0e:78:70:a8:71:
38:bf:03:8c:56:ca:61:82:e9:0f:77:fb:90:3f:10:
f4:15:ce:71:fe:5a:6f:aa:2e:32:db:6b:79:bc:d0:
6c:17:fb:7c:0b:5c:96:2d:2a:ee:b7:b6:7e:db:3d:
cd:b6:42:55:c0:c4:cc:13:b3:23:0f:97:67:4d:f1:
b0:4c:41:12:45:6c:5e:40:f9:fc:30:e0:51:7c:ca:
3c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:DA:44:E0:72:89:36:5B:96:3E:48:36:0E:9B:98:BE:85:AA:2C:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DDCD4E2C9B011EFBA6AFAA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.240.0/20
Signature Algorithm: sha256WithRSAEncryption
51:02:c3:b6:af:79:3b:5b:9f:d2:42:f1:08:a1:6c:5c:e2:6e:
28:61:3b:e6:4d:57:55:ce:34:c4:9a:39:7a:5f:85:17:a7:e5:
26:0d:0c:cb:3b:d4:58:f8:49:4b:d6:40:6b:2e:1e:1a:96:16:
93:6b:1a:bb:37:ac:93:4f:cb:fb:9e:5c:a3:ca:f3:6b:be:6f:
44:e7:96:40:9e:6f:f0:53:8c:b1:08:54:bd:a1:64:b2:f6:2d:
4b:05:71:28:c7:39:b6:fb:28:76:a8:ad:39:52:eb:f4:3c:6e:
4f:d2:5d:0e:e7:d9:45:f0:95:37:04:e6:5f:93:db:bd:15:5d:
d4:bf:02:c5:ab:33:38:85:5b:fa:93:e8:75:33:7e:24:0a:87:
6b:d0:90:6e:6c:2d:df:80:2c:53:21:1e:3c:49:cd:7f:2e:39:
99:ac:b5:c6:04:44:06:59:da:75:0e:5f:25:ee:39:5d:2b:63:
6b:27:06:a8:46:6d:cf:f6:ad:56:6f:4a:ab:15:61:93:c0:f0:
e8:b0:21:36:92:3d:bc:e0:c3:48:b4:7a:0a:f7:d8:99:c6:a9:
17:17:6a:e7:40:2c:ce:2b:93:6d:dc:7d:f5:d9:ec:90:7d:d5:
8c:c4:54:ee:89:e9:7b:7f:9a:18:e7:4d:42:23:a8:39:0d:2a:
b3:c5:2a:06
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPatMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTAzMDg1MzE2WhcNMjUwMTE4MDg1MzE2WjAYMRYw
FAYDVQQDEw02Nzc3YTU3Zi0wZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmysqKj764UNn54lcNEamrefeMPLSF13dZfM8tEkN3encmH4z+jjgb72n
i10/+lPk7dzyIB/6Cg6PZOi1tOln5/HNfkHrzFlT+7e4bMrxMMd6ffh2ksuxCtjV
NRVBGD68Qmqlh88ilDQYrZUezsHS39ajH1sUczvLxeiQszwzbZKWkwSlDLIhZ5m5
YwNeAz9FTZNXlpqa7BuuNNbCY+pItGrfuBTm5eGHvbUrzWx6DnhwqHE4vwOMVsph
gukPd/uQPxD0Fc5x/lpvqi4y22t5vNBsF/t8C1yWLSrut7Z+2z3NtkJVwMTME7Mj
D5dnTfGwTEESRWxeQPn8MOBRfMo8vQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKba
ROByiTZblj5INg6bmL6FqixcMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yRERDRDRFMkM5QjAxMUVGQkE2QUZBQTk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcnwMA0GCSqGSIb3DQEBCwUA
A4IBAQBRAsO2r3k7W5/SQvEIoWxc4m4oYTvmTVdVzjTEmjl6X4UXp+UmDQzLO9RY
+ElL1kBrLh4alhaTaxq7N6yTT8v7nlyjyvNrvm9E55ZAnm/wU4yxCFS9oWSy9i1L
BXEoxzm2+yh2qK05Uuv0PG5P0l0O59lF8JU3BOZfk9u9FV3UvwLFqzM4hVv6k+h1
M34kCodr0JBubC3fgCxTIR48Sc1/LjmZrLXGBEQGWdp1Dl8l7jldK2NrJwaoRm3P
9q1Wb0qrFWGTwPDosCE2kj284MNItHoK99iZxqkXF2rnQCzOK5Nt3H312eyQfdWM
xFTuiel7f5oY501CI6g5DSqzxSoG
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:49 2025 by rpki-client