Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA31EB722FA711F08E3314C6DAE4EC9C.roa
File: CA31EB722FA711F08E3314C6DAE4EC9C.roa (raw, json)
Hash identifier: 1EBKvdi4AcyfSV6QYQuGl7D2hMkSZaTOnZKl2VrsSU4=
Subject key identifier: FA:92:FA:11:5E:14:A8:89:D8:F6:49:3E:DF:53:43:5B:B5:C9:36:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0153C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA31EB722FA711F08E3314C6DAE4EC9C.roa
Signing time: Tue 13 May 2025 03:10:15 +0000
ROA not before: Tue 13 May 2025 03:10:10 +0000
ROA not after: Mon 02 Jun 2025 03:10:10 +0000
asID: 57043
IP address blocks: 45.198.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86978 (0x153c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 03:10:10 2025 GMT
Not After : Jun 2 03:10:10 2025 GMT
Subject: CN=6822b817-16e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:6b:31:a9:dc:31:38:be:6e:9f:56:a7:33:
dc:5f:4d:e9:4a:02:be:94:a7:1c:7f:1a:08:70:f9:
2f:10:f3:58:60:82:0c:6f:00:a1:e8:16:66:c8:9e:
16:18:d5:93:31:ad:b6:8d:93:0d:08:55:26:2b:6a:
bf:b9:5c:7e:6e:3e:ba:97:85:c0:94:8b:d5:55:93:
06:6f:33:aa:da:42:96:6a:b4:51:65:21:eb:49:e4:
b4:45:a3:b1:9c:19:b8:25:ec:e5:ba:cb:5f:b4:81:
51:bb:d5:d4:73:37:e0:0c:ab:5e:28:ca:b3:4f:fa:
e2:ae:78:e2:a9:0d:91:59:5d:7e:70:4d:b9:97:6a:
17:9e:2f:70:8e:2f:e3:b8:1e:f8:eb:2f:05:d6:f4:
37:2b:e0:e2:f0:1e:c8:d3:f0:9a:f1:c8:ad:7a:87:
95:60:83:e1:50:b4:ee:e4:d1:c1:a9:35:c1:b2:b0:
34:fd:d7:90:9a:b3:cb:5d:57:b9:1e:c6:d4:fd:35:
45:7f:6f:c0:b4:bc:2a:1c:92:dc:91:06:a5:28:6d:
f1:55:11:53:00:1e:e1:87:07:4d:28:fb:8b:b3:e6:
c1:f5:5b:1c:de:e1:0a:73:2d:15:97:be:c4:6b:e7:
f7:a2:f9:e3:e4:45:a8:23:69:80:99:35:19:89:b9:
ee:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:92:FA:11:5E:14:A8:89:D8:F6:49:3E:DF:53:43:5B:B5:C9:36:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA31EB722FA711F08E3314C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.65.0/24
Signature Algorithm: sha256WithRSAEncryption
95:5c:aa:e8:4b:71:ca:d3:c7:7d:eb:4a:cf:15:5a:7d:a9:74:
b7:d6:6d:c7:5f:91:14:ad:4d:07:d8:ed:ee:6e:32:27:ad:1f:
5a:c4:d7:b4:e0:b0:64:ba:77:e8:a0:32:7a:a4:3a:8e:eb:dc:
8a:41:52:e3:6b:24:a2:59:0b:c6:40:95:c2:3d:d0:2f:3b:4b:
0c:aa:78:91:cc:0b:e3:f5:44:31:bd:cf:6c:92:5f:66:1b:f0:
05:be:26:49:e2:57:4d:d5:2e:43:26:c4:c7:4f:8b:8e:e3:32:
13:b4:a9:a9:03:bf:5b:7e:c0:ca:7e:32:bf:87:6c:de:b3:9a:
61:e6:b9:60:28:ba:27:9a:ef:b2:28:00:64:99:49:99:d4:ea:
5d:42:56:a9:b3:df:a6:a0:fa:27:1c:10:d0:1a:9d:9a:42:03:
9a:09:9c:61:fe:73:52:1e:34:1f:55:39:2f:43:42:da:e1:cd:
d5:fa:e5:5c:9d:ed:24:40:b9:a8:cb:10:63:52:1f:62:c0:61:
7e:1b:69:e3:99:28:69:1d:44:87:49:73:0f:e7:e3:ec:59:01:
8e:ac:94:b8:30:b1:4c:d1:22:66:56:8e:01:b5:34:c6:c2:4c:
00:18:d3:b7:e1:ce:4d:f9:c5:96:4c:dd:4a:b3:39:42:11:dd:
7e:00:28:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 02:05:45 2025 by rpki-client