Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99CD7838C47811EFBEF81F74762E951A.roa
File: 99CD7838C47811EFBEF81F74762E951A.roa (raw, json)
Hash identifier: TfKnSWY0EWcqEmBopKWOD19ebfNrpwQO0aJLCP6MNxw=
Subject key identifier: 2E:66:8F:AB:9C:77:9E:6C:81:18:6C:9D:D4:7E:D8:93:49:6B:BE:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0F0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99CD7838C47811EFBEF81F74762E951A.roa
Signing time: Fri 27 Dec 2024 17:32:53 +0000
ROA not before: Fri 27 Dec 2024 17:32:49 +0000
ROA not after: Sat 01 Feb 2025 17:32:49 +0000
asID: 138995
IP address blocks: 45.192.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61680 (0xf0f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 17:32:49 2024 GMT
Not After : Feb 1 17:32:49 2025 GMT
Subject: CN=676ee4c5-c243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5e:fe:09:f0:b8:e8:5d:cf:47:a3:65:90:55:
b2:73:29:d6:0a:2a:cd:ad:76:02:69:a3:32:40:f8:
e2:98:08:23:28:42:f3:fc:46:60:fe:4a:1e:c7:b8:
b3:46:03:27:f2:f8:f0:89:2e:ba:48:1b:4d:a5:d3:
94:88:86:57:24:b1:b2:ac:1a:33:b3:88:4a:73:4a:
21:b1:8b:55:92:36:e6:cd:33:c5:88:4c:be:24:97:
31:50:83:11:28:a9:49:54:eb:78:61:8b:f9:c7:69:
27:b8:a1:f2:75:29:8f:17:7b:bd:94:5c:77:46:c5:
f2:3f:90:8d:78:86:cc:1a:a7:df:40:73:55:e8:9b:
ca:77:15:2a:c7:33:8a:91:9b:1b:65:4d:90:59:72:
55:28:75:d3:db:b0:49:76:82:e7:fe:e5:7a:18:ed:
4b:09:ca:40:98:4f:1e:81:80:a4:b3:ae:d4:c7:40:
c4:89:e0:8b:8a:14:1e:86:1e:9a:0b:14:ed:d3:f4:
19:3e:09:af:15:ab:62:c0:77:e8:c1:bf:b2:34:58:
af:47:df:fe:1b:75:89:bb:79:28:36:d1:26:46:9a:
f1:fc:2f:5b:e2:79:09:21:a9:a7:a8:f0:ab:0f:db:
be:88:b6:ca:f2:d3:86:32:f3:36:96:84:bb:46:59:
66:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:66:8F:AB:9C:77:9E:6C:81:18:6C:9D:D4:7E:D8:93:49:6B:BE:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99CD7838C47811EFBEF81F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.208.0/20
Signature Algorithm: sha256WithRSAEncryption
03:b0:ab:f3:b4:71:e1:64:f5:97:69:be:17:a8:47:ff:95:db:
b9:e1:4a:a7:e3:0f:02:3c:d6:5a:67:1a:12:f3:8e:0d:c0:c0:
53:d2:c2:56:05:7d:42:6f:02:76:09:7f:58:9f:a0:b4:fe:12:
e6:a3:7a:2a:f7:cc:67:4c:4d:f0:6c:1e:b6:73:ce:43:93:0f:
94:41:ec:e2:de:1a:8f:cb:61:7c:3b:ec:5f:ad:4e:06:8b:56:
68:e3:db:ab:f9:c1:da:5b:cf:4c:d3:8c:d0:27:ab:b4:14:69:
c8:75:73:e3:9a:ea:c3:0f:bc:b1:bc:16:f1:5e:70:ae:b7:e7:
a6:73:c8:12:f5:86:bb:27:45:67:17:ea:0e:e0:54:a6:06:6e:
49:af:f5:ac:f5:47:cb:c3:d2:58:02:ea:68:e1:61:f5:aa:c6:
74:75:69:bb:dd:8a:27:97:02:a1:c1:fa:1b:d1:ab:8f:9d:3e:
ad:c6:ac:6b:dc:2c:20:4f:6b:7a:65:b1:2d:11:7c:e8:87:ed:
32:1c:73:0f:6e:46:d3:4c:94:12:fe:94:04:63:e5:65:54:75:
10:4b:2b:28:c6:9f:8c:be:65:ec:16:80:99:49:35:22:bb:11:
60:29:8f:14:c1:58:9f:8d:34:d8:1c:e0:47:e3:70:5c:7b:38:
f4:ca:37:54
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPDwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI3MTczMjQ5WhcNMjUwMjAxMTczMjQ5WjAYMRYw
FAYDVQQDEw02NzZlZTRjNS1jMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxV7+CfC46F3PR6NlkFWycynWCirNrXYCaaMyQPjimAgjKELz/EZg/koe
x7izRgMn8vjwiS66SBtNpdOUiIZXJLGyrBozs4hKc0ohsYtVkjbmzTPFiEy+JJcx
UIMRKKlJVOt4YYv5x2knuKHydSmPF3u9lFx3RsXyP5CNeIbMGqffQHNV6JvKdxUq
xzOKkZsbZU2QWXJVKHXT27BJdoLn/uV6GO1LCcpAmE8egYCks67Ux0DEieCLihQe
hh6aCxTt0/QZPgmvFatiwHfowb+yNFivR9/+G3WJu3koNtEmRprx/C9b4nkJIamn
qPCrD9u+iLbK8tOGMvM2loS7Rllm6QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFC5m
j6ucd55sgRhsndR+2JNJa75PMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85OUNENzgzOEM0NzgxMUVGQkVGODFGNzQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcDQMA0GCSqGSIb3DQEBCwUA
A4IBAQADsKvztHHhZPWXab4XqEf/ldu54Uqn4w8CPNZaZxoS844NwMBT0sJWBX1C
bwJ2CX9Yn6C0/hLmo3oq98xnTE3wbB62c85Dkw+UQezi3hqPy2F8O+xfrU4Gi1Zo
49ur+cHaW89M04zQJ6u0FGnIdXPjmurDD7yxvBbxXnCut+emc8gS9Ya7J0VnF+oO
4FSmBm5Jr/Ws9UfLw9JYAupo4WH1qsZ0dWm73YonlwKhwfob0auPnT6txqxr3Cwg
T2t6ZbEtEXzoh+0yHHMPbkbTTJQS/pQEY+VlVHUQSysoxp+MvmXsFoCZSTUiuxFg
KY8UwVifjTTYHOBH43Bcezj0yjdU
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:31 2025 by rpki-client