Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5CD44B82B78A11EF81B06C64762E951A.roa
File: 5CD44B82B78A11EF81B06C64762E951A.roa (raw, json)
Hash identifier: Qtg+XxxYpwgM1cHJH6aBrdWJwFfl7YEYvR5/gfQ8ryQ=
Subject key identifier: DB:A9:D2:DD:39:96:EE:72:A3:8E:F3:4C:81:C9:1D:E2:0D:93:F0:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E27F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5CD44B82B78A11EF81B06C64762E951A.roa
Signing time: Wed 11 Dec 2024 06:37:16 +0000
ROA not before: Wed 11 Dec 2024 06:37:13 +0000
ROA not after: Thu 16 Jan 2025 06:37:13 +0000
asID: 6079
IP address blocks: 45.205.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57983 (0xe27f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 11 06:37:13 2024 GMT
Not After : Jan 16 06:37:13 2025 GMT
Subject: CN=6759331c-7b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6d:0d:13:62:09:83:4a:0b:c7:34:cb:05:5e:
73:b1:81:23:ba:47:84:d7:85:96:87:3d:07:df:aa:
ed:6c:7a:c5:7c:9e:f9:ff:25:f6:7d:89:a9:8d:7e:
f9:02:71:f4:af:66:77:e8:99:c8:24:bb:03:c5:54:
4c:66:f5:cd:1e:fe:57:66:05:ac:52:63:84:7a:22:
20:0b:f5:b5:d5:dd:08:cf:c6:9c:19:42:68:96:a5:
5e:86:b4:da:71:2e:91:d6:e2:01:bc:37:e4:f5:70:
2d:c5:3c:f2:5a:44:4e:10:f1:79:3f:d0:2d:f0:c1:
a4:51:48:9a:c5:62:7b:59:58:99:52:85:6b:f4:de:
93:5a:ac:53:c3:14:b9:7e:ac:af:63:7a:3f:01:f9:
25:38:81:68:dc:da:aa:23:6a:af:3d:b8:1a:bb:5e:
c0:b5:0a:d2:4c:ab:8d:85:eb:53:45:61:bb:57:74:
80:fe:83:61:ad:ae:96:54:81:5c:fe:38:a5:a4:3e:
17:02:df:45:33:fe:64:1d:8e:11:d0:52:3c:5f:c7:
54:8e:82:95:24:e5:0c:d6:0f:de:d1:e9:f4:5a:9d:
e5:7d:b4:f6:5c:3a:f7:49:eb:dc:dd:01:24:89:5e:
07:c0:c9:85:77:cb:c6:bb:9c:d0:ed:7b:ea:26:b8:
8f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A9:D2:DD:39:96:EE:72:A3:8E:F3:4C:81:C9:1D:E2:0D:93:F0:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5CD44B82B78A11EF81B06C64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.160.0/23
Signature Algorithm: sha256WithRSAEncryption
57:89:96:1a:2d:06:0d:a7:8c:e6:40:5a:51:b9:38:1d:32:0e:
df:1f:53:f8:70:16:64:a5:f3:af:bd:4a:c8:95:c8:23:21:c5:
25:95:90:e9:0c:7a:6a:d0:47:86:2d:b4:3b:5e:6e:42:56:94:
29:67:c7:93:04:80:bc:a4:33:9b:a1:e6:9c:db:d6:f7:68:2e:
0c:90:a2:5f:b4:a1:1d:da:47:9f:83:68:6a:78:75:92:a9:47:
1f:eb:92:62:16:2a:36:45:ac:ea:5d:0e:41:9b:61:1c:06:22:
81:93:f4:23:42:bd:eb:13:34:99:14:4a:f7:60:ef:b8:8b:21:
4a:d4:4a:fb:2f:a5:75:f1:95:6c:ba:ed:ec:9c:4e:77:ee:ae:
2e:07:f0:b5:bb:c9:d9:78:21:30:f0:27:32:06:54:54:ee:2a:
ae:8a:eb:c5:97:cc:56:4e:70:e0:b4:b3:ec:95:3d:20:b3:d9:
b8:0b:6b:d2:45:c9:5e:93:2e:83:e0:a1:35:1d:25:ed:6f:a0:
c5:58:0a:0d:3e:ce:68:ff:30:fb:0c:9e:63:cc:38:2e:4b:ea:
d2:3c:5a:13:a8:8d:dc:22:d9:bb:92:11:e7:3d:5d:93:8b:9e:
0e:9d:50:70:42:8a:b8:ec:8c:76:d8:8b:df:51:21:1f:f8:83:
d8:65:a2:0f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOJ/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjExMDYzNzEzWhcNMjUwMTE2MDYzNzEzWjAYMRYw
FAYDVQQDEw02NzU5MzMxYy03YjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsm0NE2IJg0oLxzTLBV5zsYEjukeE14WWhz0H36rtbHrFfJ75/yX2fYmp
jX75AnH0r2Z36JnIJLsDxVRMZvXNHv5XZgWsUmOEeiIgC/W11d0Iz8acGUJolqVe
hrTacS6R1uIBvDfk9XAtxTzyWkROEPF5P9At8MGkUUiaxWJ7WViZUoVr9N6TWqxT
wxS5fqyvY3o/AfklOIFo3NqqI2qvPbgau17AtQrSTKuNhetTRWG7V3SA/oNhra6W
VIFc/jilpD4XAt9FM/5kHY4R0FI8X8dUjoKVJOUM1g/e0en0Wp3lfbT2XDr3Sevc
3QEkiV4HwMmFd8vGu5zQ7XvqJriP3QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNup
0t05lu5yo47zTIHJHeINk/BxMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81Q0Q0NEI4MkI3OEExMUVGODFCMDZDNjQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLc2gMA0GCSqGSIb3DQEBCwUA
A4IBAQBXiZYaLQYNp4zmQFpRuTgdMg7fH1P4cBZkpfOvvUrIlcgjIcUllZDpDHpq
0EeGLbQ7Xm5CVpQpZ8eTBIC8pDOboeac29b3aC4MkKJftKEd2kefg2hqeHWSqUcf
65JiFio2RazqXQ5Bm2EcBiKBk/QjQr3rEzSZFEr3YO+4iyFK1Er7L6V18ZVsuu3s
nE537q4uB/C1u8nZeCEw8CcyBlRU7iquiuvFl8xWTnDgtLPslT0gs9m4C2vSRcle
ky6D4KE1HSXtb6DFWAoNPs5o/zD7DJ5jzDguS+rSPFoTqI3cItm7khHnPV2Ti54O
nVBwQoq47Ix22IvfUSEf+IPYZaIP
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:46 2025 by rpki-client