Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/8E545E26D6D111EE9DA36E96775412E6.roa
File: 8E545E26D6D111EE9DA36E96775412E6.roa (raw, json)
Hash identifier: b5cJmF73GB5Z6o/xH2F4YIMXX0yBFvv6Ldd/B3dZJm4=
Subject key identifier: FB:A7:97:31:89:61:05:AF:38:01:BA:10:71:3A:5C:FB:06:10:42:D0
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04CD
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/8E545E26D6D111EE9DA36E96775412E6.roa
Signing time: Thu 29 Feb 2024 07:10:02 +0000
ROA not before: Thu 29 Feb 2024 07:09:58 +0000
ROA not after: Tue 28 Feb 2034 07:09:58 +0000
asID: 20011
IP address blocks: 168.210.44.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1229 (0x4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:09:58 2024 GMT
Not After : Feb 28 07:09:58 2034 GMT
Subject: CN=65e02dca-9dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9b:ca:f8:ce:65:d8:91:c3:d1:f1:bc:ab:38:
9f:f8:46:96:8a:94:10:94:04:c2:6c:0d:d0:92:bc:
2f:56:93:3c:4f:85:f5:3d:ba:1e:b8:cc:19:f1:0f:
9d:f7:b6:fd:8f:13:2d:99:ba:eb:c2:16:61:c6:94:
26:5f:ee:bd:71:5a:b5:2e:7b:7e:5a:2c:f8:0b:08:
be:50:9f:f9:2d:7b:46:fd:93:00:91:7d:42:84:9e:
58:58:d1:7d:9a:ac:de:91:9a:ce:08:3a:df:70:f7:
3d:e1:23:db:51:69:a6:e5:f0:ce:8b:3f:b9:d3:9f:
04:6d:ed:f8:38:27:b9:0e:3f:61:62:b8:a8:78:54:
60:29:ec:e1:b7:32:44:1f:b9:64:93:a0:dd:45:6a:
6b:31:06:51:c3:c5:b2:62:1c:70:14:eb:b0:3b:73:
98:db:3d:66:49:fe:e9:7f:5e:13:73:f6:1a:62:e6:
7a:a6:a8:d8:52:c5:70:ff:76:81:38:df:0d:fe:30:
d2:92:0e:de:02:d4:03:d1:62:43:fe:db:a8:5b:28:
06:2b:1b:02:a1:9f:61:65:56:b3:a8:c0:ca:59:13:
15:02:43:61:0e:d6:d5:57:ab:aa:f6:d1:38:3b:53:
12:f3:4e:c2:ac:8a:ac:a5:ff:f7:00:72:1c:e8:cd:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A7:97:31:89:61:05:AF:38:01:BA:10:71:3A:5C:FB:06:10:42:D0
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/8E545E26D6D111EE9DA36E96775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.44.0/22
Signature Algorithm: sha256WithRSAEncryption
80:db:c6:86:c2:4f:3f:22:d9:4a:ee:e4:d1:5c:10:1a:ab:de:
10:60:d4:bd:53:dd:bb:ae:fd:41:af:5b:df:c4:b0:14:20:ed:
35:97:a5:9a:65:30:75:10:9d:1e:7e:3b:a2:bc:ee:cd:70:e6:
19:45:e2:0f:5c:38:19:4f:f4:e0:fd:43:c8:78:79:74:a2:b4:
1c:b3:62:fe:eb:02:1e:26:cb:a7:c4:68:be:9f:0a:e8:67:38:
64:0b:70:f4:97:51:60:f0:37:e3:e6:2f:c7:a4:45:ab:37:8f:
61:4b:35:cf:96:d3:c6:21:d5:8d:d3:ea:f3:85:53:42:57:78:
8b:69:11:46:55:35:f4:2c:92:db:99:99:eb:32:f3:fc:06:dc:
49:29:b1:ed:60:b1:c3:53:a8:5e:dc:60:1f:98:bd:8e:9a:9e:
b0:f4:27:55:6b:1d:ee:13:97:fe:8f:bf:14:c5:d3:2c:1a:d0:
df:f5:ff:79:3e:50:b9:fe:c2:5a:e7:a1:c7:61:05:94:91:34:
d4:16:c4:99:21:33:bb:43:66:82:4f:1d:05:1a:f4:86:7b:80:
36:96:84:71:40:e1:31:55:05:9b:6a:bb:0f:85:7e:77:47:62:
12:45:cb:3b:a0:51:66:d7:d1:a4:74:83:38:04:3e:7e:34:9b:
c8:fb:53:ab
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBUjExMC8GA1UEBRMoNkM2MDJBMjZGQjJDNDY2NzA3MjJERkM3M0Y3MkZD
NEI2QTczRUJDNDAeFw0yNDAyMjkwNzA5NThaFw0zNDAyMjgwNzA5NThaMBgxFjAU
BgNVBAMTDTY1ZTAyZGNhLTlkYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDim8r4zmXYkcPR8byrOJ/4RpaKlBCUBMJsDdCSvC9WkzxPhfU9uh64zBnx
D533tv2PEy2ZuuvCFmHGlCZf7r1xWrUue35aLPgLCL5Qn/kte0b9kwCRfUKEnlhY
0X2arN6Rms4IOt9w9z3hI9tRaabl8M6LP7nTnwRt7fg4J7kOP2FiuKh4VGAp7OG3
MkQfuWSToN1FamsxBlHDxbJiHHAU67A7c5jbPWZJ/ul/XhNz9hpi5nqmqNhSxXD/
doE43w3+MNKSDt4C1APRYkP+26hbKAYrGwKhn2FlVrOowMpZExUCQ2EO1tVXq6r2
0Tg7UxLzTsKsiqyl//cAchzozQ1TAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU+6eX
MYlhBa84AboQcTpc+wYQQtAwHwYDVR0jBBgwFoAUbGAqJvssRmcHIt/HP3L8S2pz
68QwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVBMjI4L2JHQXFK
dnNzUm1jSEl0X0hQM0w4UzJwejY4US5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JHQXFKdnNzUm1jSEl0X0hQM0w4UzJwejY4US5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVB
MjI4LzhFNTQ1RTI2RDZEMTExRUU5REEzNkU5Njc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo0iwwDQYJKoZIhvcNAQELBQAD
ggEBAIDbxobCTz8i2Uru5NFcEBqr3hBg1L1T3buu/UGvW9/EsBQg7TWXpZplMHUQ
nR5+O6K87s1w5hlF4g9cOBlP9OD9Q8h4eXSitByzYv7rAh4my6fEaL6fCuhnOGQL
cPSXUWDwN+PmL8ekRas3j2FLNc+W08Yh1Y3T6vOFU0JXeItpEUZVNfQsktuZmesy
8/wG3Ekpse1gscNTqF7cYB+YvY6anrD0J1VrHe4Tl/6PvxTF0ywa0N/1/3k+ULn+
wlrnocdhBZSRNNQWxJkhM7tDZoJPHQUa9IZ7gDaWhHFA4TFVBZtquw+FfndHYhJF
yzugUWbX0aR0gzgEPn40m8j7U6s=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:22 2024 by rpki-client on console-ams.rpki-client.org