Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5920DB4BEB311EFA60E8869762E951A.roa
File: C5920DB4BEB311EFA60E8869762E951A.roa (raw, json)
Hash identifier: HM4z/JzOii6HYquzUE/b2UgzA2ajIq7C4ksQ2OcLmzU=
Subject key identifier: 97:34:5E:4A:53:C9:02:D8:EC:4A:D1:85:62:92:17:8E:AF:72:3B:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E75B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5920DB4BEB311EFA60E8869762E951A.roa
Signing time: Fri 20 Dec 2024 09:21:19 +0000
ROA not before: Fri 20 Dec 2024 09:21:16 +0000
ROA not after: Sat 25 Jan 2025 09:21:16 +0000
asID: 6079
IP address blocks: 45.197.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59227 (0xe75b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 09:21:16 2024 GMT
Not After : Jan 25 09:21:16 2025 GMT
Subject: CN=6765370f-6605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8f:36:ac:f7:bc:d2:c2:7d:dc:76:ac:36:4d:
83:cc:ef:55:70:a9:4c:ac:bb:7e:64:6c:dd:f6:ff:
c3:93:35:fb:4d:9f:ad:9e:33:26:f4:30:e2:3e:75:
36:ce:62:39:67:8b:64:60:1d:58:e2:89:4b:f6:9f:
18:3a:92:a6:55:6d:e3:2a:79:69:b1:35:4b:87:0e:
ec:15:92:12:47:2d:ef:c7:12:67:e4:89:8b:86:ab:
41:b8:d9:79:5e:a3:68:84:4d:43:e0:50:6d:da:0a:
b7:b1:28:02:06:6a:a5:56:1b:d2:89:dd:58:0f:10:
5f:2a:27:0e:15:a8:b3:85:f8:4b:30:99:a5:a4:28:
25:da:26:49:b4:ab:52:ec:41:99:07:4e:52:18:b2:
53:df:69:0d:ff:66:a0:e1:3c:92:4b:03:00:1c:be:
d4:7a:d2:7e:d9:51:dd:09:10:b9:80:63:e9:48:73:
eb:ac:b4:ff:a6:fd:82:0a:f3:c8:41:f8:1b:18:85:
6a:91:4f:92:27:b1:59:d4:c9:9f:f2:6b:11:db:03:
70:22:62:74:11:2c:2b:06:2e:b6:c9:e3:27:e6:bf:
9c:1b:11:a0:19:9c:f6:39:94:62:63:25:d1:97:3f:
a1:c0:ec:91:f1:f6:d4:87:83:d5:37:88:d6:26:9a:
9a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:34:5E:4A:53:C9:02:D8:EC:4A:D1:85:62:92:17:8E:AF:72:3B:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5920DB4BEB311EFA60E8869762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.240.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:e0:d3:fa:c2:07:71:c6:3f:e2:e2:e8:dc:70:4e:37:c5:cc:
39:1b:a9:f7:9c:99:81:33:b8:c2:69:e3:e9:11:47:d9:65:af:
73:9a:14:a1:dd:78:eb:38:c7:f7:12:98:7b:90:bd:82:b3:0a:
40:f3:ee:96:01:12:72:14:b3:a9:e0:11:bf:99:b5:40:9e:bf:
ee:ba:e7:1c:60:1f:44:d4:8c:cb:9a:90:8a:4f:b1:d9:fc:fc:
fb:30:fc:94:1c:fc:a8:b6:4a:c9:c9:d4:aa:c0:3e:b3:25:3c:
4d:3f:71:0b:08:6b:a4:4d:16:9d:a8:8d:57:6f:f3:49:2a:21:
6a:c0:6d:b2:15:ef:73:6b:1a:03:ba:9c:e6:fc:79:4f:58:d6:
c5:f0:fc:fc:2b:aa:f4:36:2d:61:00:23:53:51:36:ba:95:ff:
d9:69:aa:ea:e9:71:a1:88:95:9d:8d:1b:93:53:50:16:d7:16:
d5:04:7d:1e:ea:b9:f5:cd:aa:4b:92:f0:9b:8b:e5:7b:27:b3:
83:9b:52:21:04:05:3f:15:ca:41:9f:ae:61:db:cd:cc:4a:30:
66:7d:1e:d7:c5:e1:e6:57:7c:c8:0b:c0:da:ba:16:dc:4f:72:
de:fa:d8:2d:b1:8f:da:0c:eb:07:a0:f6:16:dd:04:d2:5d:d0:
9f:fc:c9:bd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOdbMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjIwMDkyMTE2WhcNMjUwMTI1MDkyMTE2WjAYMRYw
FAYDVQQDEw02NzY1MzcwZi02NjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4482rPe80sJ93HasNk2DzO9VcKlMrLt+ZGzd9v/DkzX7TZ+tnjMm9DDi
PnU2zmI5Z4tkYB1Y4olL9p8YOpKmVW3jKnlpsTVLhw7sFZISRy3vxxJn5ImLhqtB
uNl5XqNohE1D4FBt2gq3sSgCBmqlVhvSid1YDxBfKicOFaizhfhLMJmlpCgl2iZJ
tKtS7EGZB05SGLJT32kN/2ag4TySSwMAHL7UetJ+2VHdCRC5gGPpSHPrrLT/pv2C
CvPIQfgbGIVqkU+SJ7FZ1Mmf8msR2wNwImJ0ESwrBi62yeMn5r+cGxGgGZz2OZRi
YyXRlz+hwOyR8fbUh4PVN4jWJpqagwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJc0
XkpTyQLY7ErRhWKSF46vcjuRMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DNTkyMERCNEJFQjMxMUVGQTYwRTg4Njk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcXwMA0GCSqGSIb3DQEBCwUA
A4IBAQBr4NP6wgdxxj/i4ujccE43xcw5G6n3nJmBM7jCaePpEUfZZa9zmhSh3Xjr
OMf3Eph7kL2CswpA8+6WARJyFLOp4BG/mbVAnr/uuuccYB9E1IzLmpCKT7HZ/Pz7
MPyUHPyotkrJydSqwD6zJTxNP3ELCGukTRadqI1Xb/NJKiFqwG2yFe9zaxoDupzm
/HlPWNbF8Pz8K6r0Ni1hACNTUTa6lf/Zaarq6XGhiJWdjRuTU1AW1xbVBH0e6rn1
zapLkvCbi+V7J7ODm1IhBAU/FcpBn65h283MSjBmfR7XxeHmV3zIC8DauhbcT3Le
+tgtsY/aDOsHoPYW3QTSXdCf/Mm9
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:35 2025 by rpki-client