Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14F4D276BE7B11EFAB991981762E951A.roa
File: 14F4D276BE7B11EFAB991981762E951A.roa (raw, json)
Hash identifier: Se8uYB0sw+/8jXBFxLkefAo+Rt/6IjxlBI2WjHIKZhM=
Subject key identifier: 05:EA:47:17:CC:56:94:A2:17:63:0F:BA:7A:B1:22:9F:F9:8C:46:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E65C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14F4D276BE7B11EFAB991981762E951A.roa
Signing time: Fri 20 Dec 2024 02:35:31 +0000
ROA not before: Fri 20 Dec 2024 02:35:28 +0000
ROA not after: Wed 10 Dec 2025 02:35:28 +0000
asID: 984
IP address blocks: 45.206.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58972 (0xe65c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 20 02:35:28 2024 GMT
Not After : Dec 10 02:35:28 2025 GMT
Subject: CN=6764d7f3-a8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7f:ee:75:bc:57:43:88:7d:47:4e:fc:1c:21:
58:6f:ff:48:0f:b9:b1:27:5c:4e:6e:86:e9:d9:5f:
b8:9d:68:f3:1e:8c:b8:b7:b2:ba:1c:ba:c0:f8:ea:
03:c5:dd:aa:eb:41:f1:cd:28:be:5c:15:c2:d6:fb:
cb:a9:d1:19:94:1d:62:c8:1c:b5:ad:6e:c3:f9:ca:
f9:73:c8:e1:1a:68:41:a0:2a:6b:44:af:2c:ff:61:
86:10:25:98:cd:55:f7:8b:e3:db:f2:3a:fc:2d:f7:
5c:16:3a:51:12:0e:ea:c0:df:cf:7b:7c:e6:b4:fc:
9b:a4:92:2f:35:41:4d:f3:5c:1d:68:c2:e0:9b:85:
96:19:77:11:fa:df:91:2f:0a:4f:8d:01:1e:2f:22:
99:ca:1e:80:1b:05:cc:96:30:be:79:fa:94:df:0c:
fb:09:f6:56:d0:ff:78:e7:aa:e7:f8:59:3b:26:f4:
72:e9:56:cf:d4:95:1f:0a:f2:38:0f:c2:2b:4c:91:
16:70:68:5d:4a:54:8d:42:2f:0b:32:98:f2:6c:30:
6f:1d:14:90:17:d7:12:31:78:e0:f6:96:fd:dd:e6:
bb:5d:3e:ac:66:d8:57:91:62:70:e3:95:f1:94:d5:
55:b4:35:3a:5e:69:a0:92:80:dc:50:3a:3f:c5:36:
ea:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:EA:47:17:CC:56:94:A2:17:63:0F:BA:7A:B1:22:9F:F9:8C:46:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14F4D276BE7B11EFAB991981762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:40:fe:4d:15:57:c7:ce:e6:46:93:a9:e2:04:7f:db:aa:cc:
a5:2b:c5:6a:aa:6e:57:f6:10:92:44:71:d8:b5:89:f7:c7:ca:
d7:cb:be:b0:33:91:ad:64:cc:a8:53:58:51:e8:50:47:a7:15:
ea:0b:a4:b8:41:cd:80:e1:d5:07:69:8e:8a:30:67:78:3e:ea:
c2:30:bb:a9:8c:c9:46:86:82:77:af:af:cc:d0:ec:0a:45:6c:
77:86:f9:9b:d7:9b:01:a6:1b:b7:8f:2f:6a:e6:36:60:80:b3:
2f:b7:18:11:40:08:45:e2:ad:a8:62:ac:38:70:0a:ad:d1:74:
9e:67:19:b8:11:db:63:a4:9c:c0:c9:e6:c6:d6:d5:0f:e7:90:
6b:93:fe:91:9a:82:a4:09:7a:06:cc:28:2d:7b:e9:88:cb:2c:
d4:d4:50:fe:d7:7a:a2:cd:1b:ab:21:7b:96:f0:98:6d:db:a1:
cf:f3:41:34:fc:d7:59:76:23:19:db:6e:0c:e1:13:3e:ee:de:
1d:41:3e:c6:a2:76:a7:ad:e1:82:2f:83:13:6f:2a:a6:f0:c5:
6a:5d:43:7c:1d:2b:8d:5d:93:ac:4e:ac:f8:82:d2:33:63:e6:
ee:9c:45:27:9a:b0:33:9e:34:60:2e:46:02:46:90:6e:ef:52:
e3:5e:85:6f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOZcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjIwMDIzNTI4WhcNMjUxMjEwMDIzNTI4WjAYMRYw
FAYDVQQDEw02NzY0ZDdmMy1hOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtX/udbxXQ4h9R078HCFYb/9ID7mxJ1xObobp2V+4nWjzHoy4t7K6HLrA
+OoDxd2q60HxzSi+XBXC1vvLqdEZlB1iyBy1rW7D+cr5c8jhGmhBoCprRK8s/2GG
ECWYzVX3i+Pb8jr8LfdcFjpREg7qwN/Pe3zmtPybpJIvNUFN81wdaMLgm4WWGXcR
+t+RLwpPjQEeLyKZyh6AGwXMljC+efqU3wz7CfZW0P9456rn+Fk7JvRy6VbP1JUf
CvI4D8IrTJEWcGhdSlSNQi8LMpjybDBvHRSQF9cSMXjg9pb93ea7XT6sZthXkWJw
45XxlNVVtDU6XmmgkoDcUDo/xTbqDwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAXq
RxfMVpSiF2MPunqxIp/5jEYcMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xNEY0RDI3NkJFN0IxMUVGQUI5OTE5ODE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc6wMA0GCSqGSIb3DQEBCwUA
A4IBAQCzQP5NFVfHzuZGk6niBH/bqsylK8Vqqm5X9hCSRHHYtYn3x8rXy76wM5Gt
ZMyoU1hR6FBHpxXqC6S4Qc2A4dUHaY6KMGd4PurCMLupjMlGhoJ3r6/M0OwKRWx3
hvmb15sBphu3jy9q5jZggLMvtxgRQAhF4q2oYqw4cAqt0XSeZxm4EdtjpJzAyebG
1tUP55Brk/6RmoKkCXoGzCgte+mIyyzU1FD+13qizRurIXuW8Jht26HP80E0/NdZ
diMZ224M4RM+7t4dQT7GonanreGCL4MTbyqm8MVqXUN8HSuNXZOsTqz4gtIzY+bu
nEUnmrAznjRgLkYCRpBu71LjXoVv
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:46:37 2025 by rpki-client