Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B031FA78F0C411EE8AE2FE90775412E6.roa
File: B031FA78F0C411EE8AE2FE90775412E6.roa (raw, json)
Hash identifier: FN+dBvJyMLSHKT/EBpKUUbKYHZw8odtEWCmPJtBDx84=
Subject key identifier: D2:00:9B:0F:2A:24:6A:96:80:A5:28:97:65:BF:2C:E5:65:11:F8:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8148
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B031FA78F0C411EE8AE2FE90775412E6.roa
Signing time: Tue 02 Apr 2024 07:43:26 +0000
ROA not before: Tue 02 Apr 2024 07:43:22 +0000
ROA not after: Mon 29 Apr 2024 07:43:22 +0000
asID: 139646
IP address blocks: 45.201.220.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33096 (0x8148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 07:43:22 2024 GMT
Not After : Apr 29 07:43:22 2024 GMT
Subject: CN=660bb71d-4fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c6:b0:78:70:55:11:f1:80:58:dd:96:2b:f5:
08:20:19:16:51:6f:b6:ca:ed:dc:7e:df:fe:17:ec:
11:13:e3:21:69:b4:63:e5:73:cf:26:1c:fa:7a:c3:
c5:41:b4:95:e8:b5:d3:f6:55:09:35:a5:35:75:4b:
06:e4:59:da:62:c4:81:8c:d0:58:b4:98:57:95:49:
34:a5:a9:45:19:06:22:32:24:a3:cb:7e:64:35:a2:
cb:a9:41:99:64:71:38:08:52:26:53:c8:77:0a:c8:
9d:62:23:d7:4d:26:56:86:cc:57:0f:f2:de:7a:c5:
d3:e7:f0:aa:49:3d:ff:a6:97:11:2f:24:ea:ee:98:
d1:38:e6:e3:f1:1a:23:fc:bc:70:15:1a:cb:2b:95:
e0:e5:38:2e:f4:7a:9e:5e:12:e9:53:b3:17:d1:96:
00:c3:96:d9:d2:8f:de:16:6f:ef:4e:58:18:76:5e:
cd:b0:13:ef:c8:d6:0a:2a:fa:d3:06:f1:ba:ef:6c:
6b:b2:2f:14:52:45:0a:42:ce:14:16:b9:58:0a:05:
e0:5a:2c:82:f2:98:cb:02:6f:7c:47:88:54:8b:09:
8b:db:b2:60:8e:38:3c:89:0a:28:6c:f7:61:5d:0a:
2f:5d:f6:57:95:bd:04:0f:f3:00:b8:7b:bf:46:6d:
07:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:00:9B:0F:2A:24:6A:96:80:A5:28:97:65:BF:2C:E5:65:11:F8:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B031FA78F0C411EE8AE2FE90775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.220.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:94:cf:6c:07:27:39:00:ff:fc:d7:b6:0e:38:ce:9c:87:67:
a8:22:20:53:cb:4c:cb:08:88:55:53:e9:7c:34:2d:06:3f:a6:
59:88:0e:cb:e8:c8:e2:8f:ad:2d:e0:da:3e:80:36:f5:2b:fc:
f2:d9:db:83:f0:87:77:80:e3:0c:77:49:4d:70:cf:23:a6:63:
4a:e6:17:2c:62:6e:a9:09:6e:80:89:b3:87:79:63:b9:f9:8e:
78:d3:d8:93:c4:7f:9b:0e:d9:52:7d:71:22:fb:75:b3:d7:9e:
3a:c2:e0:a2:10:1b:d5:0e:0d:fa:86:49:ff:38:43:2c:0d:fc:
e5:c1:1a:7b:51:1c:63:c2:2d:10:19:65:fd:2e:2f:a9:d5:b8:
6f:f3:41:09:ff:1a:e8:f9:0c:88:73:7e:f9:9a:ef:d2:56:c7:
d0:99:cf:d0:59:4e:0d:18:f6:4f:69:ba:1a:54:62:3e:9d:fb:
b0:bf:8d:29:fc:78:36:56:3f:ff:ff:92:e5:9f:c6:73:46:6c:
07:0d:1c:27:5d:bf:4b:09:8d:82:15:24:f8:eb:7a:bf:19:dd:
f5:67:2b:5a:7c:34:d9:23:08:1a:1f:33:5e:79:5b:85:0d:ad:
e2:ae:85:49:a4:55:d0:fb:3e:ab:ea:db:8d:3c:01:b5:d8:90:
26:23:eb:28
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIFIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDAyMDc0MzIyWhcNMjQwNDI5MDc0MzIyWjAYMRYw
FAYDVQQDEw02NjBiYjcxZC00ZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA18aweHBVEfGAWN2WK/UIIBkWUW+2yu3cft/+F+wRE+MhabRj5XPPJhz6
esPFQbSV6LXT9lUJNaU1dUsG5FnaYsSBjNBYtJhXlUk0palFGQYiMiSjy35kNaLL
qUGZZHE4CFImU8h3CsidYiPXTSZWhsxXD/LeesXT5/CqST3/ppcRLyTq7pjROObj
8Roj/LxwFRrLK5Xg5Tgu9HqeXhLpU7MX0ZYAw5bZ0o/eFm/vTlgYdl7NsBPvyNYK
KvrTBvG672xrsi8UUkUKQs4UFrlYCgXgWiyC8pjLAm98R4hUiwmL27Jgjjg8iQoo
bPdhXQovXfZXlb0ED/MAuHu/Rm0HpwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNIA
mw8qJGqWgKUol2W/LOVlEfjrMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CMDMxRkE3OEYwQzQxMUVFOEFFMkZFOTA3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcncMA0GCSqGSIb3DQEBCwUA
A4IBAQBalM9sByc5AP/817YOOM6ch2eoIiBTy0zLCIhVU+l8NC0GP6ZZiA7L6Mji
j60t4No+gDb1K/zy2duD8Id3gOMMd0lNcM8jpmNK5hcsYm6pCW6AibOHeWO5+Y54
09iTxH+bDtlSfXEi+3Wz1546wuCiEBvVDg36hkn/OEMsDfzlwRp7URxjwi0QGWX9
Li+p1bhv80EJ/xro+QyIc375mu/SVsfQmc/QWU4NGPZPaboaVGI+nfuwv40p/Hg2
Vj///5Lln8ZzRmwHDRwnXb9LCY2CFST463q/Gd31ZytafDTZIwgaHzNeeVuFDa3i
roVJpFXQ+z6r6tuNPAG12JAmI+so
-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:25 2024 by rpki-client on console-fra.rpki-client.org