Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3DF29F4CE5911EFB7D25755762E951A.roa
File: E3DF29F4CE5911EFB7D25755762E951A.roa (raw, json)
Hash identifier: 8Cpw25ONO2XgKIRBXWsgozgBkhWx7lhiOLgBUCZJfDo=
Subject key identifier: B3:D3:DB:DC:66:6C:35:B3:7C:9A:FF:95:C8:00:FF:9B:18:44:0C:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0102F6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3DF29F4CE5911EFB7D25755762E951A.roa
Signing time: Thu 09 Jan 2025 07:18:14 +0000
ROA not before: Thu 09 Jan 2025 07:18:11 +0000
ROA not after: Wed 29 Jan 2025 07:18:11 +0000
asID: 17561
IP address blocks: 45.204.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66294 (0x102f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 9 07:18:11 2025 GMT
Not After : Jan 29 07:18:11 2025 GMT
Subject: CN=677f7836-42bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:02:d4:5c:fb:1d:85:0c:0e:87:e3:2d:5b:f7:
d0:65:2b:db:e7:0b:6d:4e:40:a3:e9:32:3c:97:e2:
7d:65:9f:99:12:7f:64:ca:79:9a:52:a6:0d:60:ed:
23:df:fd:b6:91:af:94:75:b1:9b:c2:70:53:4a:e8:
2f:0d:34:73:2a:7a:ae:51:f7:30:dc:69:d8:9d:d9:
88:25:1f:40:97:6e:13:76:75:fe:63:ba:55:de:2c:
e4:c1:65:1c:9b:3a:33:44:6c:c4:6f:87:c7:57:e8:
55:48:98:af:fc:c1:08:b5:bf:99:b4:b3:14:f9:43:
52:4f:48:28:f8:b5:09:72:91:74:52:ca:b4:e6:2e:
63:e2:85:4b:5f:8e:7f:64:f4:78:7f:a3:56:b7:19:
57:16:ab:9b:85:28:1d:10:39:f6:95:d9:50:82:c0:
fc:a2:17:45:41:5f:dd:92:13:b8:d3:97:07:80:ad:
14:5c:8e:43:aa:a8:96:6b:db:91:fb:d2:d4:9a:83:
eb:b9:ce:67:1a:cc:d4:8f:2f:d7:ec:b7:ca:a1:cd:
d6:fe:43:d4:04:83:40:08:85:e1:03:c3:c0:7d:32:
5c:ea:6d:af:a0:b3:82:64:23:12:fa:48:f2:21:bf:
4c:6d:b5:c2:93:20:78:97:f8:3d:60:dc:c2:0c:b8:
43:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D3:DB:DC:66:6C:35:B3:7C:9A:FF:95:C8:00:FF:9B:18:44:0C:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3DF29F4CE5911EFB7D25755762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.32.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:50:10:5f:27:ce:0b:c8:bd:3f:64:03:9d:e1:5d:dd:43:4c:
db:73:43:c4:67:79:4b:22:c6:ca:03:21:69:83:43:b1:57:66:
79:eb:53:56:b0:ef:d8:45:a2:93:87:72:da:77:60:a5:d1:8d:
b1:d7:48:22:71:91:aa:69:07:1d:2d:2b:c6:7b:37:70:19:88:
25:a5:7c:88:86:f0:35:73:e3:06:23:28:d6:96:d0:40:53:a1:
56:e5:90:6b:56:e2:62:a1:9e:4c:e3:21:4d:66:43:d3:e0:a5:
46:17:c2:a1:30:2c:2f:d9:2c:a7:75:62:e1:44:1f:41:42:97:
35:b7:92:a5:41:76:cb:36:7c:95:c8:ff:c3:59:7c:21:3b:0d:
20:94:33:0e:66:9d:11:90:37:a8:e1:03:25:22:51:50:ed:1b:
94:f3:04:6e:9f:49:f3:fc:a9:16:d1:30:5e:16:bc:21:b2:d3:
4b:7a:3e:cd:65:35:3b:1c:72:2a:73:be:ee:25:c8:19:0c:c3:
d3:e2:b1:e9:36:d5:e9:ca:87:1c:18:0b:fd:b6:04:ac:cf:57:
f3:be:07:d6:10:e8:42:60:5d:5a:37:56:fd:53:c2:99:de:5a:
d9:60:c0:79:28:c8:00:ad:64:cf:ef:8a:e5:a8:b3:be:58:cd:
74:7c:5e:69
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQL2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA5MDcxODExWhcNMjUwMTI5MDcxODExWjAYMRYw
FAYDVQQDEw02NzdmNzgzNi00MmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2ALUXPsdhQwOh+MtW/fQZSvb5wttTkCj6TI8l+J9ZZ+ZEn9kynmaUqYN
YO0j3/22ka+UdbGbwnBTSugvDTRzKnquUfcw3GnYndmIJR9Al24TdnX+Y7pV3izk
wWUcmzozRGzEb4fHV+hVSJiv/MEItb+ZtLMU+UNST0go+LUJcpF0Usq05i5j4oVL
X45/ZPR4f6NWtxlXFqubhSgdEDn2ldlQgsD8ohdFQV/dkhO405cHgK0UXI5DqqiW
a9uR+9LUmoPruc5nGszUjy/X7LfKoc3W/kPUBINACIXhA8PAfTJc6m2voLOCZCMS
+kjyIb9MbbXCkyB4l/g9YNzCDLhDowIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLPT
29xmbDWzfJr/lcgA/5sYRAwGMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FM0RGMjlGNENFNTkxMUVGQjdEMjU3NTU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFLcwgMA0GCSqGSIb3DQEBCwUA
A4IBAQAqUBBfJ84LyL0/ZAOd4V3dQ0zbc0PEZ3lLIsbKAyFpg0OxV2Z561NWsO/Y
RaKTh3Lad2Cl0Y2x10gicZGqaQcdLSvGezdwGYglpXyIhvA1c+MGIyjWltBAU6FW
5ZBrVuJioZ5M4yFNZkPT4KVGF8KhMCwv2SyndWLhRB9BQpc1t5KlQXbLNnyVyP/D
WXwhOw0glDMOZp0RkDeo4QMlIlFQ7RuU8wRun0nz/KkW0TBeFrwhstNLej7NZTU7
HHIqc77uJcgZDMPT4rHpNtXpyoccGAv9tgSsz1fzvgfWEOhCYF1aN1b9U8KZ3lrZ
YMB5KMgArWTP74rlqLO+WM10fF5p
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:49 2025 by rpki-client