![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B65CB0E1E7F11EFAF01B54C7DDC24C2.roa
File: 9B65CB0E1E7F11EFAF01B54C7DDC24C2.roa (raw, json)
Hash identifier: 9d0efBMIAeMm64kG+2xVMGU84jy8QakrIjRllhWtGVg=
Subject key identifier: F6:A8:71:D2:55:22:5B:71:27:36:7F:34:DE:61:F9:AB:74:D4:4B:9C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8D96
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B65CB0E1E7F11EFAF01B54C7DDC24C2.roa
Signing time: Thu 30 May 2024 12:24:49 +0000
ROA not before: Thu 30 May 2024 12:24:45 +0000
ROA not after: Thu 05 Sep 2024 12:24:45 +0000
asID: 26617
IP address blocks: 45.195.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36246 (0x8d96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 12:24:45 2024 GMT
Not After : Sep 5 12:24:45 2024 GMT
Subject: CN=66587011-cf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:55:7e:a2:9d:49:f1:46:82:d9:08:be:7d:
68:88:3c:a0:93:df:75:59:1d:fa:b5:b0:89:6d:4c:
25:90:65:f1:22:7c:be:e7:90:b0:4a:ec:ec:7d:d6:
cf:bf:fc:0d:32:ff:cf:42:ca:5f:e2:1e:a7:bc:1b:
30:12:f8:26:8e:c6:c4:03:11:90:a3:4f:c2:9e:51:
b3:d1:b9:5e:52:3d:e3:16:c3:12:a1:93:e8:a0:49:
a2:ca:82:d0:82:5d:13:3f:ee:fd:83:03:fa:66:16:
19:8a:91:55:1b:95:e6:e7:85:05:8f:ac:d5:9e:5e:
37:1e:5f:da:38:30:20:92:0f:54:2f:0c:48:f4:7e:
c2:e5:fa:1d:f9:99:3f:37:a5:f4:df:d2:2e:07:44:
ae:e3:f9:52:b5:cf:60:ce:22:08:94:f2:c9:99:77:
db:90:75:59:b8:f3:a5:46:0f:46:6c:d9:f0:87:f0:
fc:6c:47:cf:ad:1a:8a:45:b7:d5:95:03:d3:a1:44:
3b:02:16:32:3a:30:f4:4a:bd:07:a8:c8:2f:64:05:
0a:7c:9c:5c:ad:80:45:08:f9:66:55:94:10:48:93:
c2:5e:55:d6:3a:9a:39:b4:b6:43:2a:a8:af:07:db:
c2:66:5c:a6:c4:38:e0:7d:cf:34:7c:8c:4f:8f:72:
b0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A8:71:D2:55:22:5B:71:27:36:7F:34:DE:61:F9:AB:74:D4:4B:9C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B65CB0E1E7F11EFAF01B54C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.146.0/24
Signature Algorithm: sha256WithRSAEncryption
98:06:c6:45:07:9d:33:44:27:e1:50:80:5d:42:55:9f:8c:a7:
1d:7d:d6:30:1f:c7:97:ff:e1:57:f4:60:bd:9f:1d:c0:63:98:
6c:18:59:bf:32:b1:3f:0c:a2:29:12:45:6a:55:35:86:a3:dd:
e1:b2:db:89:47:68:d8:72:22:55:97:d5:07:7e:1f:b3:bf:8c:
68:22:18:a2:31:10:11:c4:93:4b:2e:67:33:a6:56:4c:eb:e6:
e1:fc:f1:14:a4:4b:d5:f0:bd:72:88:20:a5:ca:50:0e:d6:68:
11:12:da:22:32:bf:1d:26:ab:81:50:1d:51:b2:85:33:b7:d0:
5a:da:08:c2:40:ce:ef:4e:7f:ff:77:31:2f:e4:50:5a:c5:70:
e3:fe:15:94:56:8f:31:95:8e:b8:3c:15:22:ee:36:c1:4d:56:
4e:b0:99:a1:34:d8:6f:e0:57:27:55:03:52:ec:86:95:3d:97:
e0:3b:e2:c5:97:1c:36:c4:74:ce:e1:27:1a:21:3d:2e:6d:44:
b6:f4:79:a9:fd:36:b7:8a:49:79:56:19:e6:39:49:5b:c8:e6:
1e:84:0b:3c:6a:64:73:73:89:c9:37:ea:51:44:f4:d7:4e:3d:
42:1e:80:ea:68:8e:a0:a2:b8:23:51:3f:81:11:4c:f7:d5:d1:
cd:4a:75:5a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAI2WMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNTMwMTIyNDQ1WhcNMjQwOTA1MTIyNDQ1WjAYMRYw
FAYDVQQDEw02NjU4NzAxMS1jZjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt0JVfqKdSfFGgtkIvn1oiDygk991WR36tbCJbUwlkGXxIny+55CwSuzs
fdbPv/wNMv/PQspf4h6nvBswEvgmjsbEAxGQo0/CnlGz0bleUj3jFsMSoZPooEmi
yoLQgl0TP+79gwP6ZhYZipFVG5Xm54UFj6zVnl43Hl/aODAgkg9ULwxI9H7C5fod
+Zk/N6X039IuB0Su4/lStc9gziIIlPLJmXfbkHVZuPOlRg9GbNnwh/D8bEfPrRqK
RbfVlQPToUQ7AhYyOjD0Sr0HqMgvZAUKfJxcrYBFCPlmVZQQSJPCXlXWOpo5tLZD
KqivB9vCZlymxDjgfc80fIxPj3KwrwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPao
cdJVIltxJzZ/NN5h+at01EucMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QjY1Q0IwRTFFN0YxMUVGQUYwMUI1NEM3RERDMjRDMi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcOSMA0GCSqGSIb3DQEBCwUA
A4IBAQCYBsZFB50zRCfhUIBdQlWfjKcdfdYwH8eX/+FX9GC9nx3AY5hsGFm/MrE/
DKIpEkVqVTWGo93hstuJR2jYciJVl9UHfh+zv4xoIhiiMRARxJNLLmczplZM6+bh
/PEUpEvV8L1yiCClylAO1mgREtoiMr8dJquBUB1RsoUzt9Ba2gjCQM7vTn//dzEv
5FBaxXDj/hWUVo8xlY64PBUi7jbBTVZOsJmhNNhv4FcnVQNS7IaVPZfgO+LFlxw2
xHTO4ScaIT0ubUS29Hmp/Ta3ikl5VhnmOUlbyOYehAs8amRzc4nJN+pRRPTXTj1C
HoDqaI6gorgjUT+BEUz31dHNSnVa
-----END CERTIFICATE-----
Generated at Wed Jun 26 09:29:33 2024 by rpki-client on console-fra.rpki-client.org