Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D154AC8A02FA11EFB60F2A2E017001B1.roa
File: D154AC8A02FA11EFB60F2A2E017001B1.roa (raw, json)
Hash identifier: Gl5FwLPX7adk4Gqr254As9ZTX1Bvo6mndEJMgA2nwco=
Subject key identifier: A3:C4:79:12:80:58:B3:53:08:24:02:ED:E2:E5:7A:2F:36:72:C4:00
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 852B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D154AC8A02FA11EFB60F2A2E017001B1.roa
Signing time: Thu 25 Apr 2024 11:56:15 +0000
ROA not before: Thu 25 Apr 2024 11:56:11 +0000
ROA not after: Sun 05 May 2024 11:56:11 +0000
asID: 39600
IP address blocks: 45.204.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34091 (0x852b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 25 11:56:11 2024 GMT
Not After : May 5 11:56:11 2024 GMT
Subject: CN=662a44df-807f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:39:f5:75:81:d9:da:91:d4:74:3a:f0:04:b5:
02:8f:3f:0f:2b:d6:78:6a:ce:ef:91:40:6d:da:d4:
9c:05:e4:23:7a:bc:5f:0d:e3:4b:39:43:1c:df:17:
2c:46:db:48:6a:a1:20:47:0e:0c:c0:97:a4:75:6f:
f5:e4:95:76:be:5f:5d:0a:7a:e8:93:62:3a:52:92:
cf:49:b0:8b:5c:51:0c:e8:9b:e4:a7:c1:da:f5:25:
5b:02:8a:61:96:e3:1d:c1:a2:ec:f1:43:01:88:ae:
ba:cd:27:ef:47:3c:ce:f9:4a:b4:f5:69:99:02:1e:
19:4e:67:80:9d:cf:b1:31:8c:f9:59:9b:b3:49:42:
33:8f:55:fc:79:c2:5e:d8:63:ca:f5:2b:c1:0f:b1:
4c:81:8e:f4:9a:ff:5f:05:e0:38:ca:b5:d2:7e:7d:
ae:5a:65:43:11:5f:4e:63:ca:52:d4:c3:7e:d1:cd:
1d:8a:7f:9b:57:7d:91:cd:08:3a:cd:74:a5:f8:3b:
dc:15:b4:01:dd:26:b3:2f:8f:32:85:ca:90:20:64:
c7:ad:e7:97:72:cc:c4:1f:2b:60:00:28:86:41:35:
4c:0c:f3:43:5b:56:e0:46:71:e5:fe:bb:9d:c1:8a:
26:9c:b3:6e:0d:67:6b:6e:42:46:dc:5c:fa:d6:39:
bc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C4:79:12:80:58:B3:53:08:24:02:ED:E2:E5:7A:2F:36:72:C4:00
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D154AC8A02FA11EFB60F2A2E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.28.0/22
Signature Algorithm: sha256WithRSAEncryption
33:62:2f:be:35:3c:93:5b:1d:77:50:a1:6f:d1:e0:b3:c2:87:
84:72:8b:4a:f2:e2:34:01:03:90:7f:63:7c:1b:ad:91:94:57:
a9:a4:11:66:c7:f9:80:e5:ee:ba:58:4c:af:c1:b8:3a:41:ad:
bd:f4:92:f9:07:fe:91:7e:5b:cd:b4:cc:c6:5d:11:fb:22:b4:
13:e6:12:38:d1:e6:d4:1f:bf:df:c2:52:75:69:d7:59:e5:16:
6b:94:e4:b1:8f:80:67:95:a2:a6:28:7c:7f:84:34:5e:bb:ea:
45:10:6d:ec:cf:8a:dc:77:63:41:32:72:5e:dd:13:04:79:b2:
cb:9a:0b:66:7e:50:2a:8a:45:bd:a5:4b:4c:e9:d5:00:d6:8e:
d6:89:74:21:a5:28:7e:0e:9a:98:55:1e:73:df:5e:75:d3:07:
01:6e:eb:8e:82:cd:d8:c0:53:69:e0:1f:6d:dd:14:fa:7e:a3:
19:10:e9:5f:98:04:41:fd:17:9c:e2:f6:2a:33:1e:11:4d:59:
b2:1e:2f:90:41:a9:01:04:e9:05:38:4f:37:74:45:90:19:e7:
6a:15:69:c9:4f:90:e7:df:34:4c:0e:89:c1:cf:19:9b:39:cb:
90:cc:62:ee:0f:88:fb:33:77:85:41:a3:52:7b:bb:7c:27:d0:
67:82:fc:7a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIUrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI1MTE1NjExWhcNMjQwNTA1MTE1NjExWjAYMRYw
FAYDVQQDEw02NjJhNDRkZi04MDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuDn1dYHZ2pHUdDrwBLUCjz8PK9Z4as7vkUBt2tScBeQjerxfDeNLOUMc
3xcsRttIaqEgRw4MwJekdW/15JV2vl9dCnrok2I6UpLPSbCLXFEM6Jvkp8Ha9SVb
AophluMdwaLs8UMBiK66zSfvRzzO+Uq09WmZAh4ZTmeAnc+xMYz5WZuzSUIzj1X8
ecJe2GPK9SvBD7FMgY70mv9fBeA4yrXSfn2uWmVDEV9OY8pS1MN+0c0din+bV32R
zQg6zXSl+DvcFbQB3SazL48yhcqQIGTHreeXcszEHytgACiGQTVMDPNDW1bgRnHl
/rudwYomnLNuDWdrbkJG3Fz61jm8SQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKPE
eRKAWLNTCCQC7eLlei82csQAMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EMTU0QUM4QTAyRkExMUVGQjYwRjJBMkUwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcwcMA0GCSqGSIb3DQEBCwUA
A4IBAQAzYi++NTyTWx13UKFv0eCzwoeEcotK8uI0AQOQf2N8G62RlFeppBFmx/mA
5e66WEyvwbg6Qa299JL5B/6RflvNtMzGXRH7IrQT5hI40ebUH7/fwlJ1addZ5RZr
lOSxj4BnlaKmKHx/hDReu+pFEG3sz4rcd2NBMnJe3RMEebLLmgtmflAqikW9pUtM
6dUA1o7WiXQhpSh+DpqYVR5z31510wcBbuuOgs3YwFNp4B9t3RT6fqMZEOlfmARB
/Rec4vYqMx4RTVmyHi+QQakBBOkFOE83dEWQGedqFWnJT5Dn3zRMDonBzxmbOcuQ
zGLuD4j7M3eFQaNSe7t8J9Bngvx6
-----END CERTIFICATE-----
Generated at Mon May 6 02:29:26 2024 by rpki-client on console-fra.rpki-client.org