Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EF8F884DCD11F09F2FB3DDDAE4EC9C.roa
File: 45EF8F884DCD11F09F2FB3DDDAE4EC9C.roa (raw, json)
Hash identifier: lvU8rI5F4/Cwc9qOGVmKBcG7iClob5Ym77xUkXxQD/o=
Subject key identifier: AE:F5:E4:E1:CF:45:71:21:29:F3:0B:0F:07:C2:7A:9D:60:5E:34:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015D53
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EF8F884DCD11F09F2FB3DDDAE4EC9C.roa
Signing time: Fri 20 Jun 2025 11:54:09 +0000
ROA not before: Fri 20 Jun 2025 11:54:04 +0000
ROA not after: Sun 29 Jun 2025 11:54:04 +0000
asID: 57043
IP address blocks: 45.198.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89427 (0x15d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 20 11:54:04 2025 GMT
Not After : Jun 29 11:54:04 2025 GMT
Subject: CN=68554be1-59f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e6:0e:e5:24:53:cb:e0:79:2d:4c:eb:fb:2a:
26:3f:85:ea:14:b7:1f:f3:6f:85:21:34:92:64:dd:
db:fe:15:39:04:a2:4c:5e:ba:1a:49:f9:2d:06:5b:
b2:9a:36:d5:65:82:4c:31:4c:0b:e1:9e:de:7a:c7:
e7:c7:5d:73:52:7a:fe:5d:4a:d4:3f:29:e1:7f:9b:
34:16:ee:a7:d4:86:69:70:7a:d9:a6:5f:b8:34:46:
7f:91:e9:d6:ee:46:cd:e8:2d:0e:10:98:e6:a0:89:
6d:1b:5d:2e:ef:52:fc:65:f6:f9:79:95:84:04:ff:
48:98:98:e8:9c:25:8b:5b:0b:ca:b4:49:bf:fe:0f:
fc:14:2d:76:23:09:0c:ac:ae:4b:13:b6:ab:5f:45:
be:5b:dd:74:9b:97:20:ad:18:e4:51:e5:3d:de:55:
ef:4f:04:fc:a2:b5:64:ee:90:1f:16:1c:1e:65:af:
c5:db:d0:6e:ed:44:8b:af:a5:e7:f1:e5:4d:2b:10:
32:6f:dd:bf:90:5b:4d:f9:b0:1b:98:cb:f3:07:e2:
cc:39:0d:64:4e:0e:bd:1c:df:8d:b0:f9:ed:25:5c:
3c:8a:a1:23:4f:1c:63:b6:40:98:36:57:bb:0e:fd:
8f:49:16:cf:e2:5f:c0:b4:57:ae:c6:d9:16:5a:6c:
54:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F5:E4:E1:CF:45:71:21:29:F3:0B:0F:07:C2:7A:9D:60:5E:34:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45EF8F884DCD11F09F2FB3DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.102.0/24
Signature Algorithm: sha256WithRSAEncryption
38:70:aa:bc:fa:f8:51:a8:c8:e2:77:5a:8e:d1:bf:40:87:10:
06:41:93:c3:71:43:8b:6b:02:84:ec:c8:38:bb:b4:a4:4e:f4:
04:cd:c7:23:e3:14:60:76:dc:4d:d0:12:a5:a1:10:5b:0b:f3:
b0:53:36:3e:ff:a2:54:cb:75:23:54:2e:da:3d:ba:6c:ff:6b:
bd:37:9c:42:85:f8:2e:f3:4f:37:04:06:34:dc:59:74:83:9c:
28:0f:39:de:4b:3d:3c:ad:4d:16:7f:16:5c:8a:32:b9:1c:2d:
b4:5b:2e:27:87:0b:ed:30:a1:a6:48:96:ee:45:21:4d:cb:02:
40:7b:41:79:ca:4d:50:31:a1:49:e3:aa:f8:8e:fd:1c:64:4d:
e0:99:02:d3:d3:f3:29:ee:df:5e:f0:ce:14:52:46:43:e4:57:
97:cf:e2:45:35:5c:ae:d2:6f:52:f4:42:c2:84:49:e5:b4:8f:
a0:ef:72:a4:9d:f9:5c:fc:f5:ff:8b:19:86:01:7d:99:25:37:
d9:a7:15:18:b6:80:8e:f4:b3:72:99:81:b1:7b:74:0d:78:18:
45:8b:aa:49:de:94:80:45:06:36:41:83:59:5b:1f:27:ce:1d:
5a:8f:a4:d9:cc:03:40:60:a4:d3:5a:a5:76:e8:79:2a:a5:ae:
0a:7f:cf:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 00:47:57 2025 by rpki-client