Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04673524A4C811EF91B2D5BE762E951A.roa
File: 04673524A4C811EF91B2D5BE762E951A.roa (raw, json)
Hash identifier: JacWi3zR6li+xA98AO5vwViJj41mO14gBDGY9FNR/R4=
Subject key identifier: 17:5F:43:E6:A7:BF:9F:D4:4F:32:83:1F:35:D1:13:D2:FC:AA:4C:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D49D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04673524A4C811EF91B2D5BE762E951A.roa
Signing time: Sun 17 Nov 2024 09:40:45 +0000
ROA not before: Sun 17 Nov 2024 09:40:41 +0000
ROA not after: Mon 25 Nov 2024 09:40:41 +0000
asID: 399989
IP address blocks: 45.196.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54429 (0xd49d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 09:40:41 2024 GMT
Not After : Nov 25 09:40:41 2024 GMT
Subject: CN=6739ba1c-9f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:dd:31:dc:99:57:a4:0f:51:cf:2b:4e:7c:cc:
a5:31:d6:34:2c:d7:95:2f:b4:86:e2:b9:ba:23:09:
e9:6b:30:d3:0b:12:74:fd:10:cd:3f:1c:8e:a4:49:
9a:7b:93:7d:13:ca:9f:a2:e3:5d:f7:3a:e1:65:5f:
29:c8:56:94:e3:b8:55:90:6c:69:07:30:a2:55:a8:
15:e6:ff:35:d3:e4:8d:8b:ce:f5:ea:67:8d:15:67:
b2:fd:73:13:e5:d9:3a:f5:9f:f7:63:43:fa:80:b0:
e8:71:81:df:0e:8c:b9:eb:ff:dc:28:2d:f7:09:30:
2c:ff:fd:76:61:b2:e8:74:e5:ef:7b:3d:43:b1:bc:
3f:77:4f:9c:fe:72:e1:cb:c8:83:21:a1:24:cc:f1:
f3:72:2d:11:b5:97:d6:89:86:7a:d6:13:26:3d:04:
a5:ea:90:3f:a9:a7:bd:c0:3d:3b:f3:41:ad:d9:8b:
5b:70:52:cd:00:59:a3:83:e5:57:6c:bb:79:01:bc:
74:0a:2f:03:3c:c0:1b:83:a5:b2:80:8a:5e:9f:2d:
fb:81:27:9f:d8:49:55:28:20:92:29:1d:e8:58:48:
87:a7:5e:b4:a4:4d:a7:c5:0e:00:1c:55:f1:fd:43:
8d:95:84:bb:12:6a:f5:87:62:5d:84:86:ba:ac:2f:
71:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5F:43:E6:A7:BF:9F:D4:4F:32:83:1F:35:D1:13:D2:FC:AA:4C:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04673524A4C811EF91B2D5BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.40.0/22
Signature Algorithm: sha256WithRSAEncryption
68:2d:43:fb:d5:ed:90:96:3d:44:09:bb:db:0c:ad:af:fb:7b:
99:0b:27:22:a7:f0:7d:00:31:1a:92:42:67:16:00:6c:03:1a:
ad:79:4b:55:10:2e:86:f2:bd:d9:eb:59:fd:b3:a6:30:0f:11:
b9:69:a6:0a:61:f2:26:54:26:31:b4:ce:2c:d6:06:a6:81:6b:
c8:f0:0a:e7:bd:48:07:68:27:fe:69:7e:30:42:21:e3:05:58:
82:22:8d:23:02:14:1a:34:4d:83:f2:e0:ba:51:90:e2:e1:c4:
82:83:8c:ac:1c:bb:91:7c:1e:51:3a:b1:b5:a2:8d:40:6b:2e:
ef:a7:99:cf:55:b0:c5:7a:aa:6d:a8:8a:9b:63:bf:0b:90:7f:
bc:ab:97:73:2f:28:02:67:04:7e:5a:63:a0:bc:5b:0d:ca:15:
91:d3:b3:81:81:4e:62:90:38:c0:f4:03:d7:7d:31:40:20:46:
46:e0:0c:23:a7:0f:6a:16:25:61:84:70:5a:52:d5:02:d0:96:
3b:6a:7c:4a:39:4f:a5:82:0a:e2:6b:68:e6:65:aa:d4:42:8b:
c4:27:a5:a1:0d:48:91:15:7b:4e:67:fe:03:0a:0d:81:2b:a9:
91:25:ce:ea:98:be:e6:d6:92:6d:18:d2:dc:1a:fa:88:8f:c6:
e3:c1:01:28
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANSdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTE3MDk0MDQxWhcNMjQxMTI1MDk0MDQxWjAYMRYw
FAYDVQQDEw02NzM5YmExYy05ZjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+N0x3JlXpA9RzytOfMylMdY0LNeVL7SG4rm6IwnpazDTCxJ0/RDNPxyO
pEmae5N9E8qfouNd9zrhZV8pyFaU47hVkGxpBzCiVagV5v810+SNi8716meNFWey
/XMT5dk69Z/3Y0P6gLDocYHfDoy56//cKC33CTAs//12YbLodOXvez1Dsbw/d0+c
/nLhy8iDIaEkzPHzci0RtZfWiYZ61hMmPQSl6pA/qae9wD0780Gt2YtbcFLNAFmj
g+VXbLt5Abx0Ci8DPMAbg6WygIpeny37gSef2ElVKCCSKR3oWEiHp160pE2nxQ4A
HFXx/UONlYS7Emr1h2JdhIa6rC9xbQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBdf
Q+anv5/UTzKDHzXRE9L8qkz+MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wNDY3MzUyNEE0QzgxMUVGOTFCMkQ1QkU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcQoMA0GCSqGSIb3DQEBCwUA
A4IBAQBoLUP71e2Qlj1ECbvbDK2v+3uZCycip/B9ADEakkJnFgBsAxqteUtVEC6G
8r3Z61n9s6YwDxG5aaYKYfImVCYxtM4s1gamgWvI8ArnvUgHaCf+aX4wQiHjBViC
Io0jAhQaNE2D8uC6UZDi4cSCg4ysHLuRfB5ROrG1oo1Aay7vp5nPVbDFeqptqIqb
Y78LkH+8q5dzLygCZwR+WmOgvFsNyhWR07OBgU5ikDjA9APXfTFAIEZG4Awjpw9q
FiVhhHBaUtUC0JY7anxKOU+lggria2jmZarUQovEJ6WhDUiRFXtOZ/4DCg2BK6mR
Jc7qmL7m1pJtGNLcGvqIj8bjwQEo
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:18 2024 by rpki-client on console-ams.rpki-client.org