Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5EA7E36C47311EF8FDDF657762E951A.roa
File: F5EA7E36C47311EF8FDDF657762E951A.roa (raw, json)
Hash identifier: zzoLlZnz2MASruKmy6QdXEVz0KoYifQkO3gvgCTK6aQ=
Subject key identifier: 31:CD:BD:FF:7E:62:3A:AA:B8:3B:C1:E7:32:46:01:82:C3:7E:AE:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F0CE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5EA7E36C47311EF8FDDF657762E951A.roa
Signing time: Fri 27 Dec 2024 16:59:40 +0000
ROA not before: Fri 27 Dec 2024 16:59:36 +0000
ROA not after: Sat 01 Feb 2025 16:59:36 +0000
asID: 203020
IP address blocks: 45.198.48.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61646 (0xf0ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 16:59:36 2024 GMT
Not After : Feb 1 16:59:36 2025 GMT
Subject: CN=676edcfc-0b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9c:2a:40:4a:2b:d9:3f:12:a1:0b:2b:2a:99:
09:1e:53:7b:04:5b:ec:c4:ec:49:39:f4:e9:45:19:
24:5a:df:0d:65:6f:fa:ce:96:bf:e7:68:21:8f:6d:
57:d3:02:bd:d2:b5:29:88:70:ef:4d:53:4b:72:1d:
ee:58:e9:eb:68:03:7c:f2:40:d6:fe:ff:1e:51:8f:
a7:5a:52:2e:f4:4f:7e:c9:f1:24:1a:ad:42:cd:48:
db:88:f9:f3:e3:56:3f:28:e7:e5:10:da:9f:80:db:
26:c7:3c:49:b2:87:ed:65:46:a2:af:be:e4:74:70:
a2:1e:11:2b:ec:96:f5:88:3f:fc:9f:e8:01:1f:e9:
e4:23:61:fc:4a:5b:c5:11:0f:e2:d8:ca:50:c5:40:
ea:9c:fb:f8:45:3b:34:3d:4d:bc:b2:fa:07:69:a2:
56:58:76:62:4e:0d:8c:fb:b3:a4:b2:b7:89:dd:6e:
dd:dd:91:e3:17:1f:80:33:69:e7:13:66:1c:1b:52:
97:82:4c:bd:9b:e3:ef:01:61:bf:e4:e0:18:af:73:
b3:6c:4e:fd:24:1a:04:01:74:8b:2e:7f:c3:c7:c4:
97:d1:d2:3a:6a:e9:0e:1f:80:31:ef:b6:cc:76:11:
b5:42:a3:2a:c1:ba:57:cc:52:a9:4f:b4:c6:57:c6:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CD:BD:FF:7E:62:3A:AA:B8:3B:C1:E7:32:46:01:82:C3:7E:AE:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5EA7E36C47311EF8FDDF657762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.48.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:38:23:1e:12:58:5b:e6:c3:0c:8c:54:bb:dc:a7:a1:52:b2:
85:be:d0:54:8c:60:a5:4b:76:c8:64:1f:2b:b5:ca:12:65:23:
4f:be:f5:b7:74:13:b3:45:15:60:29:42:af:1c:5c:9a:ea:82:
c7:86:2a:35:7c:9d:60:6d:f3:10:2d:c5:ad:2c:13:ff:7d:4c:
3a:25:17:8a:e5:c0:97:22:8c:ea:85:6f:2c:65:29:6d:ad:f1:
93:a1:2c:41:c5:88:28:ad:b0:60:0e:59:95:f4:76:0a:d4:13:
6d:10:df:d2:53:79:89:5c:8a:5f:6f:46:be:e0:d2:4b:37:36:
0f:df:d9:59:f3:ab:d1:7c:4b:b8:74:f0:d2:76:71:b2:2d:23:
fb:7e:16:29:fa:54:d7:ac:c8:10:96:eb:e9:f3:14:c1:9b:36:
0c:72:dd:28:d9:16:63:8a:b6:27:14:63:87:d3:64:87:e3:cb:
24:e2:25:56:40:a9:be:68:4f:32:2d:2e:ef:83:e4:73:f3:e0:
b7:2c:41:73:9f:6e:ac:0e:0a:b4:24:cb:48:6e:de:38:3c:84:
02:5c:1e:d5:0a:57:c8:be:a8:63:99:29:d2:a9:56:9e:1f:dd:
49:f8:bc:6e:d9:a0:01:7d:6a:a6:7a:ca:52:a0:23:d8:64:d4:
6e:28:89:a5
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPDOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI3MTY1OTM2WhcNMjUwMjAxMTY1OTM2WjAYMRYw
FAYDVQQDEw02NzZlZGNmYy0wYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtJwqQEor2T8SoQsrKpkJHlN7BFvsxOxJOfTpRRkkWt8NZW/6zpa/52gh
j21X0wK90rUpiHDvTVNLch3uWOnraAN88kDW/v8eUY+nWlIu9E9+yfEkGq1CzUjb
iPnz41Y/KOflENqfgNsmxzxJsoftZUair77kdHCiHhEr7Jb1iD/8n+gBH+nkI2H8
SlvFEQ/i2MpQxUDqnPv4RTs0PU28svoHaaJWWHZiTg2M+7OksreJ3W7d3ZHjFx+A
M2nnE2YcG1KXgky9m+PvAWG/5OAYr3OzbE79JBoEAXSLLn/Dx8SX0dI6aukOH4Ax
77bMdhG1QqMqwbpXzFKpT7TGV8a3JQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDHN
vf9+YjqquDvB5zJGAYLDfq5cMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GNUVBN0UzNkM0NzMxMUVGOEZEREY2NTc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcYwMA0GCSqGSIb3DQEBCwUA
A4IBAQC6OCMeElhb5sMMjFS73KehUrKFvtBUjGClS3bIZB8rtcoSZSNPvvW3dBOz
RRVgKUKvHFya6oLHhio1fJ1gbfMQLcWtLBP/fUw6JReK5cCXIozqhW8sZSltrfGT
oSxBxYgorbBgDlmV9HYK1BNtEN/SU3mJXIpfb0a+4NJLNzYP39lZ86vRfEu4dPDS
dnGyLSP7fhYp+lTXrMgQluvp8xTBmzYMct0o2RZjirYnFGOH02SH48sk4iVWQKm+
aE8yLS7vg+Rz8+C3LEFzn26sDgq0JMtIbt44PIQCXB7VClfIvqhjmSnSqVaeH91J
+Lxu2aABfWqmespSoCPYZNRuKIml
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:56 2025 by rpki-client