Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AE5C0A6CE0311EEB31E2299775412E6.roa
File: 0AE5C0A6CE0311EEB31E2299775412E6.roa (raw, json)
Hash identifier: GwR0ALEYAWl1NXZbiwvjZiXAmMgJncm1Z3AmsoGupRQ=
Subject key identifier: EB:2A:E5:9A:6E:7F:AF:DD:79:DF:F8:6E:D9:F5:7E:C4:41:89:0C:B9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 71BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AE5C0A6CE0311EEB31E2299775412E6.roa
Signing time: Sun 18 Feb 2024 02:11:36 +0000
ROA not before: Sun 18 Feb 2024 02:11:32 +0000
ROA not after: Thu 08 Aug 2024 02:11:32 +0000
asID: 133199
IP address blocks: 45.207.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29117 (0x71bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 18 02:11:32 2024 GMT
Not After : Aug 8 02:11:32 2024 GMT
Subject: CN=65d16758-bbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9a:4e:7b:0d:ee:58:73:2b:53:99:3d:19:37:
13:a1:9c:86:2a:71:3a:04:90:9f:1c:f2:de:90:95:
71:3e:53:09:bc:5d:bc:a7:73:a2:3a:e3:53:c5:b6:
04:88:26:eb:91:22:70:c4:a9:2c:0d:82:1a:85:cf:
11:eb:27:1a:b2:85:9e:23:a2:d0:59:93:2e:de:0d:
75:4c:c2:aa:40:cb:9b:64:08:6b:c6:e5:ec:50:3b:
b0:d5:72:76:9b:bd:8b:fb:e1:12:15:6a:d8:2c:18:
cf:ac:19:28:c0:76:e2:0b:9e:62:1a:4a:81:06:ea:
3f:c9:94:b1:8d:d9:9e:4b:83:52:79:4c:b0:ae:2c:
b2:6d:ae:b2:91:86:6a:05:1c:fc:f7:c3:33:03:19:
93:07:ae:c7:81:3a:08:99:5b:99:56:62:4d:86:fb:
2c:fa:94:5e:12:bb:2b:13:46:00:a5:b8:f6:7c:a1:
13:df:b3:b5:22:07:f8:66:30:a3:20:8b:6a:9c:1b:
16:ae:79:d3:50:1b:9c:68:2a:9b:fc:c1:15:69:11:
8e:c1:dd:21:00:ca:9c:22:bf:77:8e:ff:3b:77:8d:
c7:c2:b4:f3:21:38:aa:77:73:26:d0:0d:2a:44:1d:
2f:1e:ab:6b:5d:fd:dc:c1:d0:43:b7:5a:33:e6:96:
f4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2A:E5:9A:6E:7F:AF:DD:79:DF:F8:6E:D9:F5:7E:C4:41:89:0C:B9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AE5C0A6CE0311EEB31E2299775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.35.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1b:e1:5b:6f:fa:43:fd:1a:1a:95:61:75:b0:0f:6c:66:b7:
da:61:6a:c8:9d:39:5f:19:e2:d3:9f:35:10:92:3e:9c:fc:b7:
b8:93:4e:ab:1d:43:85:65:a7:a1:f8:cf:28:be:1b:5a:bd:7c:
81:1e:21:a1:e3:d4:b1:ba:5e:f3:14:25:af:d9:15:b0:65:2b:
90:7a:48:94:77:f5:09:5b:d7:bf:e1:47:ee:51:81:d4:28:91:
96:18:0d:68:9c:12:34:85:ce:9d:6e:9f:f4:51:43:ae:ee:00:
f5:4f:45:a5:c6:f9:9f:59:0d:89:16:e2:05:57:c4:8b:01:cb:
45:c7:ae:89:ba:51:31:aa:13:07:f2:37:36:a1:75:20:88:e4:
4b:72:14:55:e5:3f:e9:54:4b:7b:b0:c0:b0:d1:d4:c0:ef:ef:
3e:df:0c:c0:03:b1:10:7d:d1:27:59:48:95:c8:c5:52:bb:3b:
0f:00:51:87:f9:57:46:1b:d6:26:f0:fd:d1:bc:f1:b1:64:cc:
98:6c:a5:2c:7a:b0:24:52:1c:42:fa:51:9d:49:d2:df:5b:3e:
5d:7b:84:19:1a:e2:1c:2e:60:5a:c3:28:d8:86:f9:b5:52:d7:
97:a7:86:fd:6e:af:e7:7b:51:42:8c:82:13:e9:73:a2:b9:e0:
ee:94:c0:ef
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICcb0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMTgwMjExMzJaFw0yNDA4MDgwMjExMzJaMBgxFjAU
BgNVBAMTDTY1ZDE2NzU4LWJiZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWmk57De5YcytTmT0ZNxOhnIYqcToEkJ8c8t6QlXE+Uwm8Xbync6I641PF
tgSIJuuRInDEqSwNghqFzxHrJxqyhZ4jotBZky7eDXVMwqpAy5tkCGvG5exQO7DV
cnabvYv74RIVatgsGM+sGSjAduILnmIaSoEG6j/JlLGN2Z5Lg1J5TLCuLLJtrrKR
hmoFHPz3wzMDGZMHrseBOgiZW5lWYk2G+yz6lF4SuysTRgCluPZ8oRPfs7UiB/hm
MKMgi2qcGxauedNQG5xoKpv8wRVpEY7B3SEAypwiv3eO/zt3jcfCtPMhOKp3cybQ
DSpEHS8eq2td/dzB0EO3WjPmlvT7AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU6yrl
mm5/r9153/hu2fV+xEGJDLkwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzBBRTVDMEE2Q0UwMzExRUVCMzFFMjI5OTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzyMwDQYJKoZIhvcNAQELBQAD
ggEBAB8b4Vtv+kP9GhqVYXWwD2xmt9phasidOV8Z4tOfNRCSPpz8t7iTTqsdQ4Vl
p6H4zyi+G1q9fIEeIaHj1LG6XvMUJa/ZFbBlK5B6SJR39Qlb17/hR+5RgdQokZYY
DWicEjSFzp1un/RRQ67uAPVPRaXG+Z9ZDYkW4gVXxIsBy0XHrom6UTGqEwfyNzah
dSCI5EtyFFXlP+lUS3uwwLDR1MDv7z7fDMADsRB90SdZSJXIxVK7Ow8AUYf5V0Yb
1ibw/dG88bFkzJhspSx6sCRSHEL6UZ1J0t9bPl17hBka4hwuYFrDKNiG+bVS15en
hv1ur+d7UUKMghPpc6K54O6UwO8=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:04 2024 by rpki-client on console-fra.rpki-client.org