Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5020C030CE9311EFA9802ABD762E951A.roa
File: 5020C030CE9311EFA9802ABD762E951A.roa (raw, json)
Hash identifier: /601abPXjIbRnA/aMCvJYhpW8cvGvovu7O8PjgsxoF4=
Subject key identifier: E7:6F:A7:48:40:6B:FE:9A:85:2A:77:00:AD:37:F2:23:05:F6:8F:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0103FE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5020C030CE9311EFA9802ABD762E951A.roa
Signing time: Thu 09 Jan 2025 14:09:17 +0000
ROA not before: Thu 09 Jan 2025 14:09:14 +0000
ROA not after: Wed 22 Jan 2025 14:09:14 +0000
asID: 39600
IP address blocks: 45.197.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66558 (0x103fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 14:09:14 2025 GMT
Not After : Jan 22 14:09:14 2025 GMT
Subject: CN=677fd88d-e54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ab:53:96:8f:a3:c9:5b:35:32:f0:6e:61:c2:
e3:4a:be:00:06:96:f9:5b:77:49:91:4c:78:29:bc:
ab:b7:2a:a7:e6:4e:8f:eb:87:97:47:23:89:40:ac:
b7:81:db:c3:3e:83:4a:2b:c2:3b:f9:ac:60:1d:c4:
11:21:6a:9d:96:78:96:42:a4:99:03:cf:0a:63:b2:
75:e7:df:a3:e3:d8:9e:42:49:83:0e:12:d4:0f:cc:
91:f9:2e:1d:29:af:d7:8c:df:18:e5:9f:51:58:a9:
6a:35:71:71:8b:cb:6f:63:c6:37:64:f4:6c:3a:d0:
20:d7:1c:78:cd:f1:3e:87:b0:98:13:23:94:06:8b:
c2:12:36:43:85:73:71:1b:79:94:91:c2:d3:bd:6c:
0d:43:7c:5d:c3:0f:8f:55:9c:12:2d:a8:86:16:e5:
85:43:d5:a8:96:9f:cb:1d:66:d4:af:f7:c6:91:f9:
3e:4b:95:1d:af:41:f3:fe:aa:44:fd:4f:18:6e:3c:
e2:da:bc:8b:b4:34:7d:08:8a:a0:fd:2e:ba:08:2c:
0f:35:e4:4c:0c:4c:44:30:db:ee:91:fb:9a:10:a7:
0d:de:84:ec:1e:c7:41:c8:24:de:3e:cf:83:9f:3d:
1c:c0:58:ac:e3:68:56:6f:5a:6a:28:76:e4:a7:2e:
f2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6F:A7:48:40:6B:FE:9A:85:2A:77:00:AD:37:F2:23:05:F6:8F:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5020C030CE9311EFA9802ABD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.196.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:ba:55:33:d9:93:c4:7e:4d:b5:2d:82:9c:bd:a7:5a:81:e4:
ec:18:70:91:7a:99:be:f3:b8:05:67:fb:78:4c:9c:b9:29:0b:
3f:52:d4:42:12:eb:70:8a:28:81:c7:66:fe:e4:e8:34:f0:60:
36:f5:39:cc:9f:24:d8:8a:60:55:9a:a5:4f:b2:55:75:41:c0:
e7:52:f5:51:57:82:39:96:f4:41:fa:20:00:0c:14:5c:3d:2f:
e5:ea:3f:ed:64:15:5d:85:d8:9d:d0:c0:98:b4:b8:31:c3:c4:
2e:be:c5:21:76:27:18:05:02:ef:48:9c:eb:63:e3:5a:5a:0b:
15:ff:cd:b4:9a:cf:7c:83:f3:51:22:89:c0:85:64:38:87:78:
a3:ca:71:04:1e:7d:4e:5f:92:de:47:ac:f2:71:97:cc:88:53:
78:d1:bd:11:4b:9f:43:cd:53:a2:e2:32:a5:20:2f:0d:df:db:
7d:3a:94:ea:10:a7:16:52:6e:58:e3:2a:72:e5:ba:1e:7e:4f:
68:c5:29:d2:3e:74:ea:55:42:46:18:52:6d:1d:3a:88:5d:27:
f5:9d:81:41:af:96:71:26:6b:f5:2b:c3:fc:fe:39:fd:c8:1c:
c9:3d:e6:26:33:25:5c:13:3e:34:6e:02:13:36:be:9d:58:00:
bf:a4:fb:4f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQP+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA5MTQwOTE0WhcNMjUwMTIyMTQwOTE0WjAYMRYw
FAYDVQQDEw02NzdmZDg4ZC1lNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0KtTlo+jyVs1MvBuYcLjSr4ABpb5W3dJkUx4Kbyrtyqn5k6P64eXRyOJ
QKy3gdvDPoNKK8I7+axgHcQRIWqdlniWQqSZA88KY7J159+j49ieQkmDDhLUD8yR
+S4dKa/XjN8Y5Z9RWKlqNXFxi8tvY8Y3ZPRsOtAg1xx4zfE+h7CYEyOUBovCEjZD
hXNxG3mUkcLTvWwNQ3xdww+PVZwSLaiGFuWFQ9Wolp/LHWbUr/fGkfk+S5Udr0Hz
/qpE/U8Ybjzi2ryLtDR9CIqg/S66CCwPNeRMDExEMNvukfuaEKcN3oTsHsdByCTe
Ps+Dnz0cwFis42hWb1pqKHbkpy7yeQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOdv
p0hAa/6ahSp3AK038iMF9o8EMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MDIwQzAzMENFOTMxMUVGQTk4MDJBQkQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcXEMA0GCSqGSIb3DQEBCwUA
A4IBAQBbulUz2ZPEfk21LYKcvadageTsGHCRepm+87gFZ/t4TJy5KQs/UtRCEutw
iiiBx2b+5Og08GA29TnMnyTYimBVmqVPslV1QcDnUvVRV4I5lvRB+iAADBRcPS/l
6j/tZBVdhdid0MCYtLgxw8QuvsUhdicYBQLvSJzrY+NaWgsV/820ms98g/NRIonA
hWQ4h3ijynEEHn1OX5LeR6zycZfMiFN40b0RS59DzVOi4jKlIC8N39t9OpTqEKcW
Um5Y4ypy5boefk9oxSnSPnTqVUJGGFJtHTqIXSf1nYFBr5ZxJmv1K8P8/jn9yBzJ
PeYmMyVcEz40bgITNr6dWAC/pPtP
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:56:40 2025 by rpki-client