Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E5D0700CF3611EF84BE1F4F762E951A.roa
File: 5E5D0700CF3611EF84BE1F4F762E951A.roa (raw, json)
Hash identifier: bIYpcu/w367hLJsbtXoLru4L8rzR2pREY+cZeHxNlpg=
Subject key identifier: E7:B0:79:11:21:3A:E5:42:B8:7C:46:9E:77:E1:00:9C:00:08:4B:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01052F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E5D0700CF3611EF84BE1F4F762E951A.roa
Signing time: Fri 10 Jan 2025 09:36:29 +0000
ROA not before: Fri 10 Jan 2025 09:36:25 +0000
ROA not after: Sat 01 Feb 2025 09:36:25 +0000
asID: 39600
IP address blocks: 45.197.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66863 (0x1052f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 09:36:25 2025 GMT
Not After : Feb 1 09:36:25 2025 GMT
Subject: CN=6780ea1d-5dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:3b:48:44:a1:d9:1b:81:9b:bb:a2:5f:ab:
d4:78:ec:53:9e:36:1f:5b:0c:34:50:30:b8:85:57:
14:77:15:b3:00:09:fd:86:c1:50:ae:61:12:48:b5:
c8:67:70:e2:d9:b1:66:3d:50:48:2e:68:c8:04:8e:
6a:92:5f:9b:66:72:bd:73:16:30:09:39:ac:6b:e1:
fa:df:21:f2:4c:91:a5:1b:d9:84:99:65:92:13:4d:
1c:0e:50:96:96:5b:4c:dc:9a:a2:44:34:3e:43:d9:
93:6d:dd:9d:e0:9e:3c:7f:92:38:cc:c1:5a:e4:ed:
a5:3e:e3:ad:71:d0:e9:99:37:0a:f3:b7:c0:6e:2c:
db:6a:80:9a:14:89:57:68:56:9d:55:df:02:e6:5a:
90:8d:36:df:2e:f7:f0:d8:f1:2d:05:ca:10:ee:5c:
0b:d3:17:f5:93:f1:4e:9a:ef:6f:9e:47:cf:1d:97:
60:4d:e8:66:4b:92:4d:2f:09:7a:41:00:ab:e2:f4:
bd:6e:f0:8c:47:a9:9a:d0:1b:a6:0a:9c:87:9b:a3:
74:78:8e:db:34:27:ee:fb:24:4e:f4:8c:6a:9a:4f:
5b:b2:10:34:c1:22:c5:7c:63:89:7c:18:50:00:79:
22:68:41:44:81:a3:57:ce:aa:6d:0e:06:24:32:81:
a5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B0:79:11:21:3A:E5:42:B8:7C:46:9E:77:E1:00:9C:00:08:4B:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E5D0700CF3611EF84BE1F4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.200.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:83:04:75:5f:fa:4f:b0:00:a0:85:bd:38:2b:45:65:ae:38:
d3:75:28:ff:82:d4:d5:49:ad:ad:6a:e6:bf:3a:9a:53:d4:d3:
4f:d3:54:76:0a:3d:6d:be:b1:a8:ad:48:24:a7:4b:d1:95:f2:
fd:54:4d:1a:83:8b:d2:95:48:7f:ed:8c:ce:25:a6:70:68:1b:
5f:5c:3f:34:16:4f:b7:93:aa:7c:f6:a5:fc:13:72:67:25:34:
56:11:e9:df:f4:f9:be:21:42:e6:3e:98:25:9b:02:6a:e6:c2:
f1:58:1b:fd:b1:65:c5:d5:00:f5:a8:e4:19:a5:41:ba:6b:97:
fe:07:cf:c7:c4:7b:4a:f1:73:bd:1e:6a:ce:09:93:af:70:e6:
72:5e:ca:84:f5:a2:3f:27:95:3a:4e:ea:ed:4a:3a:58:28:a2:
48:7a:85:4c:69:9e:d6:f6:11:6c:a1:66:33:c4:0b:25:ae:d5:
3d:40:98:d5:c6:05:c4:31:2b:ad:b5:49:a2:c7:9c:b8:0c:41:
af:3b:0e:66:06:de:e4:ff:50:c4:6b:af:0e:21:5d:41:28:01:
0b:2d:62:42:f9:ed:2a:f0:3f:66:1b:52:95:05:b8:4c:e5:30:
30:76:f1:6c:42:5f:59:93:30:d2:61:c0:9a:62:82:a2:17:54:
3c:6e:cc:81
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQUvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTEwMDkzNjI1WhcNMjUwMjAxMDkzNjI1WjAYMRYw
FAYDVQQDEw02NzgwZWExZC01ZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsPo7SESh2RuBm7uiX6vUeOxTnjYfWww0UDC4hVcUdxWzAAn9hsFQrmES
SLXIZ3Di2bFmPVBILmjIBI5qkl+bZnK9cxYwCTmsa+H63yHyTJGlG9mEmWWSE00c
DlCWlltM3JqiRDQ+Q9mTbd2d4J48f5I4zMFa5O2lPuOtcdDpmTcK87fAbizbaoCa
FIlXaFadVd8C5lqQjTbfLvfw2PEtBcoQ7lwL0xf1k/FOmu9vnkfPHZdgTehmS5JN
Lwl6QQCr4vS9bvCMR6ma0BumCpyHm6N0eI7bNCfu+yRO9Ixqmk9bshA0wSLFfGOJ
fBhQAHkiaEFEgaNXzqptDgYkMoGl/QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOew
eREhOuVCuHxGnnfhAJwACEv1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81RTVEMDcwMENGMzYxMUVGODRCRTFGNEY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcXIMA0GCSqGSIb3DQEBCwUA
A4IBAQCtgwR1X/pPsACghb04K0VlrjjTdSj/gtTVSa2taua/OppT1NNP01R2Cj1t
vrGorUgkp0vRlfL9VE0ag4vSlUh/7YzOJaZwaBtfXD80Fk+3k6p89qX8E3JnJTRW
Eenf9Pm+IULmPpglmwJq5sLxWBv9sWXF1QD1qOQZpUG6a5f+B8/HxHtK8XO9HmrO
CZOvcOZyXsqE9aI/J5U6TurtSjpYKKJIeoVMaZ7W9hFsoWYzxAslrtU9QJjVxgXE
MSuttUmix5y4DEGvOw5mBt7k/1DEa68OIV1BKAELLWJC+e0q8D9mG1KVBbhM5TAw
dvFsQl9ZkzDSYcCaYoKiF1Q8bsyB
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:53 2025 by rpki-client