Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C6A2FFC73F811EF9561F58B762E951A.roa
File: 0C6A2FFC73F811EF9561F58B762E951A.roa (raw, json)
Hash identifier: O5XQ8uvlfb+XJT6IVirDpDsn8dRC7eTBhcdrUPhKQp4=
Subject key identifier: 59:E4:50:C0:EB:6C:3A:56:D1:0B:58:84:4D:01:21:3B:3E:98:CA:C7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B739
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C6A2FFC73F811EF9561F58B762E951A.roa
Signing time: Mon 16 Sep 2024 06:51:07 +0000
ROA not before: Mon 16 Sep 2024 06:51:04 +0000
ROA not after: Fri 08 Aug 2025 06:51:04 +0000
asID: 133861
IP address blocks: 45.207.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46905 (0xb739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:51:04 2024 GMT
Not After : Aug 8 06:51:04 2025 GMT
Subject: CN=66e7d55b-83c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:3a:e8:c0:2d:18:cf:84:ab:f8:fd:9e:e5:
a6:19:3e:b7:d9:90:dd:1b:97:31:f6:a9:a7:60:42:
36:ff:9f:32:0a:0e:41:b0:b3:18:12:89:1c:c7:43:
d4:a5:5f:6b:82:5b:5f:a7:d3:5c:13:96:1e:a0:82:
ef:70:bc:fc:05:c7:2c:db:44:3e:2c:bf:b1:64:ac:
ce:29:d4:ec:b0:05:b0:44:6a:84:18:ae:9c:65:e1:
5a:a1:99:b1:a0:3c:c5:03:b0:03:ee:ff:81:3f:5f:
cb:4b:75:ec:fd:ba:e3:5a:28:fc:a8:4d:79:89:e9:
88:8c:3c:0b:6e:73:94:ef:10:b8:52:4d:e0:4d:b0:
10:35:b5:9d:78:e0:05:9a:f6:36:26:a7:e9:3c:6f:
b0:1d:a7:0f:5c:f7:8c:c2:c6:28:bf:15:2b:00:03:
4f:08:6c:63:cb:93:c4:75:33:bc:93:63:8b:c7:b2:
1a:46:c0:38:6e:78:a3:be:b1:b8:43:24:86:81:d0:
7e:8b:e0:85:77:93:b2:44:a8:8c:34:38:34:50:d1:
2d:f0:77:54:81:1f:b0:19:be:26:c6:0b:0e:bc:c5:
ee:54:3c:20:4a:d1:ec:93:cc:59:37:81:c0:f8:5e:
3b:7e:cf:5f:61:2b:2a:11:c7:70:d8:1a:2d:98:5c:
70:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E4:50:C0:EB:6C:3A:56:D1:0B:58:84:4D:01:21:3B:3E:98:CA:C7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C6A2FFC73F811EF9561F58B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
59:9d:da:a4:d4:9e:37:ce:d0:ab:10:40:8f:66:84:2e:97:1a:
43:5f:d8:1a:dd:82:0a:48:62:1b:0d:ad:1f:da:29:92:b2:5b:
4a:cc:12:88:51:3e:e0:74:87:fa:08:12:3b:94:d8:bd:43:01:
d2:bb:df:8a:93:5e:cb:df:ce:4b:7c:45:52:5c:dd:c0:ef:00:
b7:73:37:dd:e9:26:d8:24:cb:61:15:bd:ad:fb:3a:bb:f5:8d:
8a:53:bd:7b:79:86:80:a6:b1:1e:20:87:ec:bf:4c:2d:25:15:
70:20:dc:5b:08:5e:e2:44:02:8f:5d:4b:a1:80:4f:f7:ea:b4:
1c:70:54:41:ee:63:62:b2:94:b4:2d:7b:8c:79:90:42:2c:48:
76:26:cb:b7:ce:05:60:ca:66:8d:f4:7a:ed:b3:39:81:8e:cf:
a4:95:52:3f:3d:d6:58:0c:40:b6:49:ef:88:cd:34:ae:68:78:
ee:46:54:89:3d:6a:77:68:53:2b:80:71:2d:d4:c4:e8:d1:1a:
87:e9:60:15:b8:0b:75:a9:5e:41:5d:ba:89:71:c8:ab:e8:90:
fb:cd:a0:b2:24:b4:83:d8:72:3d:ba:b6:5d:24:1f:7a:02:5b:
e9:04:43:f1:c9:a8:91:85:36:ef:5a:f6:92:5b:d6:c4:1a:b2:
0b:b5:42:14
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALc5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE2MDY1MTA0WhcNMjUwODA4MDY1MTA0WjAYMRYw
FAYDVQQDEw02NmU3ZDU1Yi04M2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArX466MAtGM+Eq/j9nuWmGT632ZDdG5cx9qmnYEI2/58yCg5BsLMYEokc
x0PUpV9rgltfp9NcE5YeoILvcLz8Bccs20Q+LL+xZKzOKdTssAWwRGqEGK6cZeFa
oZmxoDzFA7AD7v+BP1/LS3Xs/brjWij8qE15iemIjDwLbnOU7xC4Uk3gTbAQNbWd
eOAFmvY2JqfpPG+wHacPXPeMwsYovxUrAANPCGxjy5PEdTO8k2OLx7IaRsA4bnij
vrG4QySGgdB+i+CFd5OyRKiMNDg0UNEt8HdUgR+wGb4mxgsOvMXuVDwgStHsk8xZ
N4HA+F47fs9fYSsqEcdw2BotmFxwIQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFnk
UMDrbDpW0QtYhE0BITs+mMrHMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wQzZBMkZGQzczRjgxMUVGOTU2MUY1OEI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLc8wMA0GCSqGSIb3DQEBCwUA
A4IBAQBZndqk1J43ztCrEECPZoQulxpDX9ga3YIKSGIbDa0f2imSsltKzBKIUT7g
dIf6CBI7lNi9QwHSu9+Kk17L385LfEVSXN3A7wC3czfd6SbYJMthFb2t+zq79Y2K
U717eYaAprEeIIfsv0wtJRVwINxbCF7iRAKPXUuhgE/36rQccFRB7mNispS0LXuM
eZBCLEh2Jsu3zgVgymaN9HrtszmBjs+klVI/PdZYDEC2Se+IzTSuaHjuRlSJPWp3
aFMrgHEt1MTo0RqH6WAVuAt1qV5BXbqJccir6JD7zaCyJLSD2HI9urZdJB96Alvp
BEPxyaiRhTbvWvaSW9bEGrILtUIU
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:17 2024 by rpki-client on console-fra.rpki-client.org