Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/EC96145A968911EC9C2DBF765A40D577.roa
File: EC96145A968911EC9C2DBF765A40D577.roa (raw, json)
Hash identifier: rZ2zghSthGwjah4U82jQn70hPYlgY4nH96fwg0UnePY=
Subject key identifier: A3:1F:BE:EB:A4:AB:CF:63:A7:A2:45:07:6D:6E:8E:6B:47:A4:70:CD
Certificate issuer: /CN=F361D299AR/serialNumber=F6871E389AEA43DFB531D14D4BF6C011D3A6D480
Certificate serial: 0788
Authority key identifier: F6:87:1E:38:9A:EA:43:DF:B5:31:D1:4D:4B:F6:C0:11:D3:A6:D4:80
Authority info access: rsync://rpki.afrinic.net/repository/arin/9oceOJrqQ9-1MdFNS_bAEdOm1IA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/EC96145A968911EC9C2DBF765A40D577.roa
Signing time: Fri 25 Feb 2022 22:26:07 +0000
ROA not before: Sat 26 Feb 2022 22:26:03 +0000
ROA not after: Wed 26 Feb 2025 22:26:03 +0000
asID: 37199
IP address blocks: 45.221.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/9oceOJrqQ9-1MdFNS_bAEdOm1IA.crl
rsync://rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/9oceOJrqQ9-1MdFNS_bAEdOm1IA.mft
rsync://rpki.afrinic.net/repository/arin/9oceOJrqQ9-1MdFNS_bAEdOm1IA.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1928 (0x788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361D299AR/serialNumber=F6871E389AEA43DFB531D14D4BF6C011D3A6D480
Validity
Not Before: Feb 26 22:26:03 2022 GMT
Not After : Feb 26 22:26:03 2025 GMT
Subject: CN=6219577e-1469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:aa:e4:21:cc:5c:57:b7:22:77:79:6b:48:3f:
3e:1b:9e:6b:8e:4f:c4:fb:52:a7:51:ab:b1:44:49:
ae:08:b2:ac:14:cd:85:0a:c9:85:7a:46:2d:60:dc:
62:6a:70:f1:6f:88:a5:a7:1b:87:22:3b:6e:5d:35:
61:ec:06:57:0f:d7:4c:93:81:cc:44:22:68:64:fa:
34:60:6b:5e:9e:37:a8:22:bf:84:ff:65:66:3b:b4:
2e:5e:20:09:25:ad:1e:d9:72:5a:b9:52:83:61:d6:
9c:42:28:79:45:bd:df:94:8e:a2:f2:c9:75:20:59:
a4:83:b4:7c:c0:94:89:71:62:07:8e:f2:9c:f3:1b:
b0:5d:58:9d:59:1b:03:a8:6f:b8:85:fd:33:26:4b:
5c:7e:d4:37:97:ec:7f:24:72:5d:d6:a4:3f:09:ee:
bb:f3:7d:15:d9:48:5a:8b:20:09:89:2e:e3:05:b6:
52:ac:fe:40:fd:07:76:01:b4:74:8b:8a:46:08:87:
93:6a:05:06:9c:fb:0c:91:e5:2e:a6:ab:89:eb:a8:
ee:56:6c:96:67:7f:78:63:9e:a0:28:bc:98:2d:59:
99:2d:16:66:95:bd:7b:c2:6d:1d:77:6e:0e:83:15:
da:c7:47:26:68:2e:82:75:e9:d2:8c:96:17:50:0f:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1F:BE:EB:A4:AB:CF:63:A7:A2:45:07:6D:6E:8E:6B:47:A4:70:CD
X509v3 Authority Key Identifier:
keyid:F6:87:1E:38:9A:EA:43:DF:B5:31:D1:4D:4B:F6:C0:11:D3:A6:D4:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/9oceOJrqQ9-1MdFNS_bAEdOm1IA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/9oceOJrqQ9-1MdFNS_bAEdOm1IA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/9D80DF78C85B11E6B829DA67F8AEA228/EC96145A968911EC9C2DBF765A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.128.0/18
Signature Algorithm: sha256WithRSAEncryption
6a:cb:bd:45:a2:7e:e2:24:0e:4a:60:27:74:f6:85:71:77:5a:
73:aa:df:46:f7:cd:8c:31:ac:3a:86:f6:ac:c8:f2:36:26:d1:
40:7b:2a:67:6d:eb:aa:87:69:39:53:fc:b4:35:96:e9:3c:67:
ab:6f:29:08:a7:33:56:3e:01:dc:73:1f:d2:ba:75:f5:44:fa:
27:7a:8b:8f:e1:fa:20:f6:60:a8:9d:13:04:1b:e3:d2:1a:88:
df:71:d3:7e:e3:da:60:9f:cb:d1:86:05:53:3d:eb:aa:d6:93:
fd:9d:e3:0e:9c:9e:a6:21:96:df:2e:b8:61:a2:02:23:1c:2d:
fc:6a:9c:08:8c:0f:df:a0:1c:a9:79:8d:f7:45:2c:54:56:3c:
a4:ca:da:74:3b:84:57:cd:77:bb:d9:87:8a:d8:f7:04:27:81:
11:d7:72:52:5a:01:92:11:67:67:dd:d4:7d:a3:0e:2b:57:52:
c3:b5:80:5d:9b:b0:88:80:6c:2b:9a:56:37:4a:3a:ce:18:7e:
68:c1:08:cd:08:8d:10:27:64:4d:3f:5b:7a:0b:2e:51:b0:2c:
0b:3f:d3:50:c0:64:e8:d3:46:00:38:14:93:dd:b5:f8:75:29:
63:f3:3b:07:7e:7d:21:53:12:c3:c3:40:91:5b:1c:5f:ad:cb:
83:92:9b:75
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MUQyOTlBUjExMC8GA1UEBRMoRjY4NzFFMzg5QUVBNDNERkI1MzFEMTRENEJGNkMw
MTFEM0E2RDQ4MDAeFw0yMjAyMjYyMjI2MDNaFw0yNTAyMjYyMjI2MDNaMBgxFjAU
BgNVBAMMDTYyMTk1NzdlLTE0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDqquQhzFxXtyJ3eWtIPz4bnmuOT8T7UqdRq7FESa4IsqwUzYUKyYV6Ri1g
3GJqcPFviKWnG4ciO25dNWHsBlcP10yTgcxEImhk+jRga16eN6giv4T/ZWY7tC5e
IAklrR7Zclq5UoNh1pxCKHlFvd+UjqLyyXUgWaSDtHzAlIlxYgeO8pzzG7BdWJ1Z
GwOob7iF/TMmS1x+1DeX7H8kcl3WpD8J7rvzfRXZSFqLIAmJLuMFtlKs/kD9B3YB
tHSLikYIh5NqBQac+wyR5S6mq4nrqO5WbJZnf3hjnqAovJgtWZktFmaVvXvCbR13
bg6DFdrHRyZoLoJ16dKMlhdQD7CTAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUox++
66Srz2OnokUHbW6Oa0ekcM0wHwYDVR0jBBgwFoAU9oceOJrqQ9+1MdFNS/bAEdOm
1IAwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjFEMjk5LzlEODBERjc4Qzg1QjExRTZCODI5REE2N0Y4QUVBMjI4LzlvY2VP
SnJxUTktMU1kRk5TX2JBRWRPbTFJQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
LzlvY2VPSnJxUTktMU1kRk5TX2JBRWRPbTFJQS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjFEMjk5LzlEODBERjc4Qzg1QjExRTZCODI5REE2N0Y4QUVB
MjI4L0VDOTYxNDVBOTY4OTExRUM5QzJEQkY3NjVBNDBENTc3LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYt3YAwDQYJKoZIhvcNAQELBQAD
ggEBAGrLvUWifuIkDkpgJ3T2hXF3WnOq30b3zYwxrDqG9qzI8jYm0UB7Kmdt66qH
aTlT/LQ1luk8Z6tvKQinM1Y+AdxzH9K6dfVE+id6i4/h+iD2YKidEwQb49IaiN9x
037j2mCfy9GGBVM966rWk/2d4w6cnqYhlt8uuGGiAiMcLfxqnAiMD9+gHKl5jfdF
LFRWPKTK2nQ7hFfNd7vZh4rY9wQngRHXclJaAZIRZ2fd1H2jDitXUsO1gF2bsIiA
bCuaVjdKOs4YfmjBCM0IjRAnZE0/W3oLLlGwLAs/01DAZOjTRgA4FJPdtfh1KWPz
Owd+fSFTEsPDQJFbHF+ty4OSm3U=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:51 2024 by rpki-client on console-fra.rpki-client.org