Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99ACF6CBEAC11EFBC2F0DBD762E951A.roa
File: F99ACF6CBEAC11EFBC2F0DBD762E951A.roa (raw, json)
Hash identifier: Uc9o2xg5XH8DnS5kxyOJOrciIZgHs2Zr2WY5rS+Q1Cg=
Subject key identifier: 1E:A5:1C:C5:2C:F9:62:E7:9D:21:59:56:50:6E:C2:86:4C:88:F1:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E729
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99ACF6CBEAC11EFBC2F0DBD762E951A.roa
Signing time: Fri 20 Dec 2024 08:32:40 +0000
ROA not before: Fri 20 Dec 2024 08:32:36 +0000
ROA not after: Fri 24 Jan 2025 08:32:36 +0000
asID: 395793
IP address blocks: 45.198.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59177 (0xe729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 08:32:36 2024 GMT
Not After : Jan 24 08:32:36 2025 GMT
Subject: CN=67652ba8-d8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:20:d9:8b:de:9d:96:5c:92:5a:87:3e:e7:26:
f4:33:b0:fb:c5:48:5c:a7:eb:ad:14:41:fa:59:b7:
da:90:65:76:ee:ff:a3:4b:25:69:7d:f0:b4:23:c0:
48:3f:2c:82:e0:2d:bc:47:a1:e1:35:0c:36:f8:6a:
c8:1c:67:22:32:d0:03:5b:2d:26:0f:6b:f7:d8:7a:
4c:a2:7a:09:af:dd:21:0b:f5:5d:69:7c:a0:65:db:
08:1c:c1:a5:1c:90:0c:4d:13:99:07:f8:ed:3f:dd:
37:22:65:d3:b8:95:e5:91:34:a2:f7:66:54:e2:af:
38:d9:12:74:a7:73:ff:69:cc:5c:3b:ae:4a:c3:f4:
a7:f7:ff:08:e6:d0:81:7c:7a:75:69:6c:cf:e8:62:
aa:8f:e2:21:34:0e:2c:ab:48:cd:ea:d6:85:7e:f1:
54:b3:cb:9c:8a:53:52:00:7d:1d:3f:fd:80:62:b4:
5f:74:8f:23:6e:57:c5:69:0f:78:ae:20:eb:1d:7f:
df:67:37:53:00:a7:eb:99:0f:55:47:64:54:c6:d2:
d2:6a:34:e8:0c:2b:b4:4f:18:f5:9c:1a:6f:57:3d:
7f:b7:23:ff:73:55:1f:f8:4a:29:6c:d6:a4:96:ec:
29:2e:5b:58:6c:5f:93:f4:00:07:1f:c9:cb:12:0a:
c9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A5:1C:C5:2C:F9:62:E7:9D:21:59:56:50:6E:C2:86:4C:88:F1:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F99ACF6CBEAC11EFBC2F0DBD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.183.0/24
Signature Algorithm: sha256WithRSAEncryption
82:da:85:be:1b:4a:bc:99:51:9b:e5:c3:11:1c:77:a1:ae:81:
45:84:3a:6e:08:2a:26:8a:89:63:4d:f7:a6:61:35:b3:cf:01:
c3:8d:9b:15:d2:c2:91:ab:cb:47:91:83:df:de:e3:d5:30:97:
be:97:bd:45:2e:ec:59:0c:50:66:43:da:85:ee:70:3d:45:bd:
70:c5:73:76:65:ef:da:46:d2:42:18:37:2c:64:ac:c9:c6:d1:
e7:3e:95:88:f6:81:bf:c1:1f:44:3b:c3:9e:96:75:a4:f3:4b:
ba:49:06:e8:86:9d:40:75:09:3a:17:29:a9:09:40:a4:d6:49:
3e:29:9a:2f:bf:1b:af:0c:b1:7d:99:fb:f4:b8:d2:f6:ce:96:
29:75:38:d5:35:d0:61:a1:24:88:bb:ec:a4:79:78:cf:5f:76:
b5:3c:c0:5a:33:09:1b:fc:47:37:7d:66:3a:d0:fa:9a:bd:c3:
5b:8b:fe:bc:d2:87:41:ff:4a:3b:c1:fc:59:3d:14:3a:d6:db:
93:e1:d9:9b:0f:e5:0d:cd:e7:96:0b:18:e4:60:04:68:97:35:
2f:20:12:cd:68:6d:9d:c7:ec:43:a8:8f:ac:96:5a:59:d2:11:
34:29:7c:ce:3b:74:1a:03:5e:9b:0b:bb:ca:5e:83:36:f7:48:
be:ac:e3:d1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOcpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjIwMDgzMjM2WhcNMjUwMTI0MDgzMjM2WjAYMRYw
FAYDVQQDEw02NzY1MmJhOC1kOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+yDZi96dllySWoc+5yb0M7D7xUhcp+utFEH6WbfakGV27v+jSyVpffC0
I8BIPyyC4C28R6HhNQw2+GrIHGciMtADWy0mD2v32HpMonoJr90hC/VdaXygZdsI
HMGlHJAMTROZB/jtP903ImXTuJXlkTSi92ZU4q842RJ0p3P/acxcO65Kw/Sn9/8I
5tCBfHp1aWzP6GKqj+IhNA4sq0jN6taFfvFUs8ucilNSAH0dP/2AYrRfdI8jblfF
aQ94riDrHX/fZzdTAKfrmQ9VR2RUxtLSajToDCu0Txj1nBpvVz1/tyP/c1Uf+Eop
bNakluwpLltYbF+T9AAHH8nLEgrJyQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFB6l
HMUs+WLnnSFZVlBuwoZMiPEPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GOTlBQ0Y2Q0JFQUMxMUVGQkMyRjBEQkQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALca3MA0GCSqGSIb3DQEBCwUA
A4IBAQCC2oW+G0q8mVGb5cMRHHehroFFhDpuCComioljTfemYTWzzwHDjZsV0sKR
q8tHkYPf3uPVMJe+l71FLuxZDFBmQ9qF7nA9Rb1wxXN2Ze/aRtJCGDcsZKzJxtHn
PpWI9oG/wR9EO8OelnWk80u6SQbohp1AdQk6FympCUCk1kk+KZovvxuvDLF9mfv0
uNL2zpYpdTjVNdBhoSSIu+ykeXjPX3a1PMBaMwkb/Ec3fWY60PqavcNbi/680odB
/0o7wfxZPRQ61tuT4dmbD+UNzeeWCxjkYARolzUvIBLNaG2dx+xDqI+sllpZ0hE0
KXzOO3QaA16bC7vKXoM290i+rOPR
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:44 2025 by rpki-client