Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54DE6E04B92811EF81C69F8E762E951A.roa
File: 54DE6E04B92811EF81C69F8E762E951A.roa (raw, json)
Hash identifier: o11RxuHu5p+RCC4YUTNawf+JkUmoZk7ZLVdzJzEFHC0=
Subject key identifier: F4:EA:2E:A6:C7:86:5D:36:29:EA:68:96:2F:65:F8:71:0C:A3:D3:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E323
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54DE6E04B92811EF81C69F8E762E951A.roa
Signing time: Fri 13 Dec 2024 08:00:35 +0000
ROA not before: Fri 13 Dec 2024 08:00:31 +0000
ROA not after: Sat 25 Jan 2025 08:00:31 +0000
asID: 44559
IP address blocks: 45.199.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58147 (0xe323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 13 08:00:31 2024 GMT
Not After : Jan 25 08:00:31 2025 GMT
Subject: CN=675be9a2-4e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:3b:08:61:62:89:8b:3e:9a:1d:5a:77:3c:
a7:42:3e:79:04:6f:79:5e:fd:60:51:2f:f8:01:b9:
1f:76:ff:76:88:37:a6:40:10:a2:88:f2:c1:15:be:
35:49:3a:94:f4:2a:ca:b4:7e:c8:b5:bd:e4:a9:10:
32:5d:21:05:d9:f2:fb:ee:d9:72:90:96:6c:3a:ac:
47:e5:e6:cf:e7:cb:2d:d0:5e:60:44:f0:7f:16:4e:
98:4d:9b:67:0d:05:06:ee:d4:cb:9a:eb:65:70:0f:
5c:45:de:3e:ff:d9:79:2a:94:32:cf:eb:9b:db:db:
8c:1d:81:24:61:36:79:69:b9:ed:35:59:ff:fd:7b:
ab:95:94:46:db:a9:a0:97:1d:60:86:00:84:ec:b2:
cc:a8:94:97:ee:43:9a:7d:10:ac:02:c8:e3:f7:30:
68:bd:50:fb:ef:b2:93:05:5c:7c:d8:58:54:4a:f2:
66:0b:2a:91:e6:33:c0:c6:61:6e:41:68:1e:b8:0c:
07:b4:37:5b:9a:cd:88:6a:76:ba:a7:2e:98:e7:d5:
16:44:5e:42:a8:f6:57:5e:be:96:93:15:97:48:8d:
03:47:2f:b8:3c:d6:cc:42:2e:8c:6e:64:4a:1f:84:
9d:c4:b9:a3:eb:e7:21:83:1d:b7:3f:90:0a:2a:df:
21:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EA:2E:A6:C7:86:5D:36:29:EA:68:96:2F:65:F8:71:0C:A3:D3:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54DE6E04B92811EF81C69F8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.218.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:f2:b0:10:2f:97:b4:b3:23:dc:c1:67:1b:db:bf:58:e0:23:
04:ff:18:a3:4b:ec:f8:ca:ad:f1:9d:c6:13:6f:88:1d:70:98:
a1:45:1e:ad:62:1a:ad:02:06:82:61:90:d1:60:c8:61:04:f7:
9a:18:a9:48:fd:70:0f:3e:01:50:3b:2c:c6:81:7d:10:71:e1:
21:b6:99:fe:28:c1:d8:20:13:da:51:b3:c9:ab:c8:68:4d:a2:
24:a3:c0:03:e3:a7:c2:a8:b9:9c:a3:b1:ea:e4:03:23:73:a2:
68:86:1e:32:2f:cc:7f:d2:dc:5e:a7:a1:c9:03:c3:2c:f9:e4:
04:44:c5:77:9a:55:9c:4c:c1:d4:f0:a7:d5:fb:53:09:85:f1:
6f:cc:9d:2a:8e:2e:01:c0:98:b9:8e:d1:65:e0:de:a6:06:e5:
1a:cc:ed:d2:56:2f:ef:42:aa:a4:31:d4:c1:2c:97:ae:10:e8:
ed:e4:45:47:18:09:04:b5:2b:5c:c5:31:31:39:cd:4c:ad:72:
52:62:d5:20:19:24:12:c2:90:0e:ac:f8:93:5b:67:c2:a4:89:
5c:b7:46:f8:d0:23:bc:c7:2f:75:6b:f4:e8:9c:9f:fc:98:dc:
b7:0c:f4:1c:b4:74:75:c0:80:3f:6c:31:40:1d:e9:91:17:b4:
64:ee:10:d4
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOMjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjEzMDgwMDMxWhcNMjUwMTI1MDgwMDMxWjAYMRYw
FAYDVQQDEw02NzViZTlhMi00ZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuBE7CGFiiYs+mh1adzynQj55BG95Xv1gUS/4Abkfdv92iDemQBCiiPLB
Fb41STqU9CrKtH7Itb3kqRAyXSEF2fL77tlykJZsOqxH5ebP58st0F5gRPB/Fk6Y
TZtnDQUG7tTLmutlcA9cRd4+/9l5KpQyz+ub29uMHYEkYTZ5abntNVn//XurlZRG
26mglx1ghgCE7LLMqJSX7kOafRCsAsjj9zBovVD777KTBVx82FhUSvJmCyqR5jPA
xmFuQWgeuAwHtDdbms2Iana6py6Y59UWRF5CqPZXXr6WkxWXSI0DRy+4PNbMQi6M
bmRKH4SdxLmj6+chgx23P5AKKt8h7QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPTq
LqbHhl02Kepoli9l+HEMo9PoMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NERFNkUwNEI5MjgxMUVGODFDNjlGOEU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcfaMA0GCSqGSIb3DQEBCwUA
A4IBAQAK8rAQL5e0syPcwWcb279Y4CME/xijS+z4yq3xncYTb4gdcJihRR6tYhqt
AgaCYZDRYMhhBPeaGKlI/XAPPgFQOyzGgX0QceEhtpn+KMHYIBPaUbPJq8hoTaIk
o8AD46fCqLmco7Hq5AMjc6Johh4yL8x/0txep6HJA8Ms+eQERMV3mlWcTMHU8KfV
+1MJhfFvzJ0qji4BwJi5jtFl4N6mBuUazO3SVi/vQqqkMdTBLJeuEOjt5EVHGAkE
tStcxTExOc1MrXJSYtUgGSQSwpAOrPiTW2fCpIlct0b40CO8xy91a/TonJ/8mNy3
DPQctHR1wIA/bDFAHemRF7Rk7hDU
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:45 2025 by rpki-client