Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB9AF37CEF9811ED9B4915104AD9E6FC.roa
File: EB9AF37CEF9811ED9B4915104AD9E6FC.roa (raw, json)
Hash identifier: plzgAFW0anBGlx3ClO7KYagJq3GdvjGHrppj+HJz5GA=
Subject key identifier: BE:57:85:8A:AE:4A:28:37:2A:1A:0A:1E:22:3A:A9:8B:AF:C2:4D:48
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2041
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB9AF37CEF9811ED9B4915104AD9E6FC.roa
Signing time: Thu 11 May 2023 01:12:39 +0000
ROA not before: Thu 11 May 2023 01:12:35 +0000
ROA not after: Thu 25 Apr 2024 01:12:35 +0000
asID: 26617
IP address blocks: 45.195.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8257 (0x2041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 01:12:35 2023 GMT
Not After : Apr 25 01:12:35 2024 GMT
Subject: CN=645c4106-4e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:fd:6b:ce:d5:1c:e3:bc:e6:35:da:14:a7:
78:91:4e:b2:e9:72:fc:78:e7:ce:e8:c8:92:01:8f:
cf:f5:61:bf:32:21:b6:73:ed:bc:3a:8c:0b:02:2c:
bc:65:9e:91:ff:56:39:f1:ed:88:65:e8:86:1a:ad:
c1:e7:bc:7d:97:b8:70:ce:e2:6e:9c:a2:32:d7:fa:
6a:7a:be:0c:d7:4c:1c:98:42:37:a7:23:78:ea:29:
a2:55:5c:a9:86:a8:2c:fc:6b:d8:ce:80:c2:5d:9c:
96:19:cb:40:32:ea:6f:49:b0:c3:55:f0:fd:94:3d:
dc:9b:5b:2a:52:54:e7:fc:4c:4a:19:8f:5c:29:68:
70:76:19:22:ec:e3:99:be:55:ae:9a:ff:be:0e:03:
e4:1b:fb:46:75:60:1f:f9:8f:76:5c:97:4a:97:02:
bf:10:f5:92:83:fb:1c:8e:43:3c:ec:d2:8f:9a:82:
79:d9:e2:fa:7c:2f:39:44:24:53:0e:ec:56:c5:e7:
ed:6c:e8:7e:4c:dd:65:1d:19:1c:b3:e4:20:f6:f5:
42:40:ba:e4:53:72:b2:b1:42:d2:b2:62:58:5c:cb:
f3:8f:2e:3b:f5:04:37:0a:ec:32:43:f0:cf:b2:4e:
e2:ae:a5:bd:79:e6:21:0a:f0:08:32:48:dd:25:f6:
07:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:57:85:8A:AE:4A:28:37:2A:1A:0A:1E:22:3A:A9:8B:AF:C2:4D:48
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB9AF37CEF9811ED9B4915104AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.207.0/24
Signature Algorithm: sha256WithRSAEncryption
76:73:90:a4:8a:fc:8a:a0:20:85:18:b0:c0:45:d0:b2:73:39:
55:21:29:0b:98:7b:76:fb:d9:6b:16:3a:c7:7d:f9:8b:5b:17:
a5:07:5b:17:a7:eb:05:ad:b9:65:6e:bc:fb:7c:46:a3:51:c8:
3d:89:96:d2:78:4a:ce:c2:be:2b:1d:44:cd:c4:29:08:c6:5a:
32:55:02:32:ee:e8:6a:56:7c:7d:64:49:28:08:7d:af:e8:eb:
36:b2:ee:03:24:e8:9c:56:f7:b7:be:df:2b:74:0d:66:fe:dd:
0a:ed:b7:32:b6:a6:54:03:95:58:43:11:2f:ac:e2:ac:0b:37:
b2:4f:30:be:c2:11:7e:8f:f0:99:da:4c:ac:38:10:ff:30:17:
04:f5:39:de:19:7d:07:f0:88:50:94:f4:67:08:30:4a:c6:c3:
31:3b:4a:66:02:39:aa:5b:b2:fe:cb:ec:68:56:58:86:be:b3:
63:b1:41:69:1c:10:75:df:a6:4c:c3:c7:2f:6b:98:92:0e:48:
85:88:52:b5:b1:4b:be:9d:e2:92:75:4d:d3:7b:d4:c5:31:a8:
a4:3f:3c:4b:28:0f:97:f0:86:2c:89:29:8a:6a:84:51:bb:2f:
8b:38:1a:c2:4e:42:30:b7:9c:48:b2:38:9f:86:36:2d:6b:92:
13:ab:78:14
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICIEEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MTEwMTEyMzVaFw0yNDA0MjUwMTEyMzVaMBgxFjAU
BgNVBAMTDTY0NWM0MTA2LTRlOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDeaP1rztUc47zmNdoUp3iRTrLpcvx4587oyJIBj8/1Yb8yIbZz7bw6jAsC
LLxlnpH/Vjnx7Yhl6IYarcHnvH2XuHDO4m6cojLX+mp6vgzXTByYQjenI3jqKaJV
XKmGqCz8a9jOgMJdnJYZy0Ay6m9JsMNV8P2UPdybWypSVOf8TEoZj1wpaHB2GSLs
45m+Va6a/74OA+Qb+0Z1YB/5j3Zcl0qXAr8Q9ZKD+xyOQzzs0o+agnnZ4vp8LzlE
JFMO7FbF5+1s6H5M3WUdGRyz5CD29UJAuuRTcrKxQtKyYlhcy/OPLjv1BDcK7DJD
8M+yTuKupb155iEK8AgySN0l9gcPAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUvleF
iq5KKDcqGgoeIjqpi6/CTUgwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0VCOUFGMzdDRUY5ODExRUQ5QjQ5MTUxMDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtw88wDQYJKoZIhvcNAQELBQAD
ggEBAHZzkKSK/IqgIIUYsMBF0LJzOVUhKQuYe3b72WsWOsd9+YtbF6UHWxen6wWt
uWVuvPt8RqNRyD2JltJ4Ss7CvisdRM3EKQjGWjJVAjLu6GpWfH1kSSgIfa/o6zay
7gMk6JxW97e+3yt0DWb+3QrttzK2plQDlVhDES+s4qwLN7JPML7CEX6P8JnaTKw4
EP8wFwT1Od4ZfQfwiFCU9GcIMErGwzE7SmYCOapbsv7L7GhWWIa+s2OxQWkcEHXf
pkzDxy9rmJIOSIWIUrWxS76d4pJ1TdN71MUxqKQ/PEsoD5fwhiyJKYpqhFG7L4s4
GsJOQjC3nEiyOJ+GNi1rkhOreBQ=
-----END CERTIFICATE-----
Generated at Sun May 11 21:39:07 2025 by rpki-client