Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12D97E9A1F0911EF9005B1F07CDC24C2.roa
File: 12D97E9A1F0911EF9005B1F07CDC24C2.roa (raw, json)
Hash identifier: N1HfPIV7CuTjdlH/2zXYE2JtkX/B9iYFLMevgl/rwhw=
Subject key identifier: 7F:8C:73:B8:D8:AE:03:8E:92:F9:97:8D:D4:64:10:57:31:A8:AF:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8DEF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12D97E9A1F0911EF9005B1F07CDC24C2.roa
Signing time: Fri 31 May 2024 04:48:50 +0000
ROA not before: Fri 31 May 2024 04:48:47 +0000
ROA not after: Wed 04 Jun 2025 04:48:47 +0000
asID: 201411
IP address blocks: 45.195.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36335 (0x8def)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 04:48:47 2024 GMT
Not After : Jun 4 04:48:47 2025 GMT
Subject: CN=665956b2-9a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:8d:0d:cb:4d:63:69:e2:89:62:50:3f:bf:
11:99:18:86:8e:74:c4:70:aa:76:0a:af:b5:41:b2:
63:5c:8c:f7:92:94:82:c9:ad:73:21:88:42:3e:bb:
bf:78:d1:8d:c1:0d:2c:3f:fb:bb:a0:6f:23:63:dc:
49:9e:de:78:6e:f6:11:fc:2b:23:d2:d3:57:23:cf:
7a:c1:e1:c1:d2:45:93:a2:4a:19:d6:06:3f:58:83:
91:78:92:62:9b:a3:c0:12:da:d9:39:62:da:a0:99:
6e:37:6d:f4:f9:d5:7e:23:4b:7a:4c:a4:68:4a:0c:
8f:c4:63:ad:f5:a7:cb:31:53:0b:a3:48:15:01:ad:
06:59:02:fb:75:a9:de:d9:02:66:02:db:c0:cc:e4:
df:ff:e4:f4:b3:9e:7a:58:60:96:bb:8e:59:5e:1a:
d1:4b:8a:d0:b4:6f:1a:c4:98:e0:78:0c:6c:37:75:
b3:4f:bd:66:28:71:42:71:c6:32:39:85:40:57:29:
41:58:ea:27:27:f4:7a:dd:e1:d8:5d:84:bd:3c:20:
c0:bf:c7:98:cd:f6:69:78:92:58:07:5c:75:0f:4a:
1c:1f:87:f6:08:f6:23:0f:a5:8a:2d:58:13:4b:d6:
9b:21:3f:bc:51:75:6d:36:d3:a9:3e:e0:fe:29:88:
c3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8C:73:B8:D8:AE:03:8E:92:F9:97:8D:D4:64:10:57:31:A8:AF:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12D97E9A1F0911EF9005B1F07CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.225.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:27:31:cb:9a:1c:eb:e1:6a:5d:04:cf:45:95:58:13:64:20:
cc:b6:56:7f:9b:8e:51:0c:a0:63:ea:d4:c3:8a:89:ae:99:b3:
42:86:ab:00:20:93:bc:e9:b9:af:34:58:52:f6:85:92:f6:09:
f0:32:c8:1e:bc:71:f4:4f:0e:7f:dd:b9:63:c9:bd:8e:31:c1:
ee:af:ca:11:e8:79:d3:67:d3:30:0b:21:84:71:c5:70:db:91:
7e:58:02:29:86:21:f2:af:fb:c5:54:b8:55:47:67:46:27:c6:
cd:a4:b8:1c:5c:28:40:08:f3:be:f1:e0:35:d7:d4:53:d0:82:
38:bd:43:51:a9:1b:12:4d:ed:2c:26:8a:ba:7b:e0:26:a5:9c:
86:4e:ec:67:c6:5c:22:b7:dc:d1:24:52:2b:a1:50:8b:8e:af:
ec:ec:fd:99:f0:03:b6:b6:f3:02:ea:36:d2:fa:af:6b:95:2b:
5b:74:ef:19:ee:80:3e:49:73:fc:a6:e9:17:37:52:c7:2e:68:
fb:3c:84:fe:60:b1:7a:6f:83:a2:0c:bc:0b:c3:5c:60:38:c2:
c8:93:10:81:ab:b3:bd:b0:19:50:e2:9e:c0:8f:a1:7c:61:c2:
de:f4:67:49:03:bd:8f:74:d4:33:46:c8:f6:46:92:88:76:36:
8e:02:b2:bb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAI3vMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNTMxMDQ0ODQ3WhcNMjUwNjA0MDQ0ODQ3WjAYMRYw
FAYDVQQDEw02NjU5NTZiMi05YTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp9aNDctNY2niiWJQP78RmRiGjnTEcKp2Cq+1QbJjXIz3kpSCya1zIYhC
Pru/eNGNwQ0sP/u7oG8jY9xJnt54bvYR/Csj0tNXI896weHB0kWTokoZ1gY/WIOR
eJJim6PAEtrZOWLaoJluN230+dV+I0t6TKRoSgyPxGOt9afLMVMLo0gVAa0GWQL7
dane2QJmAtvAzOTf/+T0s556WGCWu45ZXhrRS4rQtG8axJjgeAxsN3WzT71mKHFC
ccYyOYVAVylBWOonJ/R63eHYXYS9PCDAv8eYzfZpeJJYB1x1D0ocH4f2CPYjD6WK
LVgTS9abIT+8UXVtNtOpPuD+KYjDewIDAQABo4ICojCCAp4wHQYDVR0OBBYEFH+M
c7jYrgOOkvmXjdRkEFcxqK/ZMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xMkQ5N0U5QTFGMDkxMUVGOTAwNUIxRjA3Q0RDMjRDMi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcPhMA0GCSqGSIb3DQEBCwUA
A4IBAQCzJzHLmhzr4WpdBM9FlVgTZCDMtlZ/m45RDKBj6tTDiomumbNChqsAIJO8
6bmvNFhS9oWS9gnwMsgevHH0Tw5/3bljyb2OMcHur8oR6HnTZ9MwCyGEccVw25F+
WAIphiHyr/vFVLhVR2dGJ8bNpLgcXChACPO+8eA119RT0II4vUNRqRsSTe0sJoq6
e+AmpZyGTuxnxlwit9zRJFIroVCLjq/s7P2Z8AO2tvMC6jbS+q9rlStbdO8Z7oA+
SXP8pukXN1LHLmj7PIT+YLF6b4OiDLwLw1xgOMLIkxCBq7O9sBlQ4p7Aj6F8YcLe
9GdJA72PdNQzRsj2RpKIdjaOArK7
-----END CERTIFICATE-----
Generated at Wed Jun 26 02:45:21 2024 by rpki-client on console-fra.rpki-client.org