Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1779CB48F86811EEA5D4B770017001B1.roa
File: 1779CB48F86811EEA5D4B770017001B1.roa (raw, json)
Hash identifier: mdo1EXc6z1HcjZZ5LSN+04p1Gw8Y172hkVt06vDSXQw=
Subject key identifier: 1F:DC:E5:C7:D9:6C:E9:7B:8B:7E:06:A3:0D:71:59:40:3C:8B:07:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8237
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1779CB48F86811EEA5D4B770017001B1.roa
Signing time: Fri 12 Apr 2024 01:00:45 +0000
ROA not before: Fri 12 Apr 2024 01:00:42 +0000
ROA not after: Tue 14 May 2024 01:00:42 +0000
asID: 141718
IP address blocks: 45.195.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33335 (0x8237)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 12 01:00:42 2024 GMT
Not After : May 14 01:00:42 2024 GMT
Subject: CN=661887bd-585c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3e:7c:cf:07:0e:0e:9a:fd:80:91:5b:da:be:
fc:74:0e:8c:93:db:d0:61:97:f9:f5:77:11:c8:26:
6e:14:3c:31:6c:6b:f4:f9:02:d2:c6:89:d2:54:15:
db:01:64:05:ff:f4:be:79:24:dd:44:3c:d4:74:f0:
c8:1a:13:70:da:35:f1:71:aa:78:4d:21:56:29:9c:
12:b6:1b:49:36:ba:42:87:c9:bf:30:4e:7e:c8:01:
3c:b7:9f:97:27:16:39:b8:4f:2f:2e:97:d7:97:36:
65:aa:11:52:ee:60:24:c0:f1:6d:ad:80:45:f9:01:
75:2a:d6:6e:64:40:20:83:b0:7d:7b:4d:48:5c:34:
02:c5:83:15:1b:1e:a1:a9:ca:02:26:e1:d3:92:e1:
d2:20:55:45:52:22:9a:72:93:e9:e0:be:30:ee:80:
49:12:8d:20:e6:d2:4b:ae:f4:3e:cc:60:95:bb:cf:
85:ac:a6:62:1f:7c:ee:03:0d:da:a6:c7:87:42:e3:
7e:8a:d6:05:b2:d0:71:34:1c:1f:e5:35:1f:1b:82:
24:00:5a:6e:c0:ce:7e:56:0c:d2:af:08:b8:76:7f:
68:24:d3:31:6e:ff:9c:77:bc:cb:74:01:6a:77:6a:
40:29:11:3e:0f:83:ed:a3:d0:e6:eb:15:09:82:ec:
9e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DC:E5:C7:D9:6C:E9:7B:8B:7E:06:A3:0D:71:59:40:3C:8B:07:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1779CB48F86811EEA5D4B770017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:74:92:cf:75:57:84:b6:5a:ce:51:f3:21:02:22:43:dd:af:
d8:9a:b3:82:d8:8c:8c:34:28:a3:56:f1:2e:3f:fc:81:48:73:
30:e3:d3:96:7c:f5:1f:51:dc:13:6e:0a:c7:91:b6:f6:86:af:
0b:e2:76:1d:b4:0c:d5:35:d1:44:f8:7a:15:bf:84:26:1c:73:
81:ba:14:6d:c2:7c:c7:2b:72:26:9f:32:dd:6c:da:1e:f4:c7:
de:19:f7:35:0a:13:24:1c:18:ea:1e:dd:83:b5:f5:27:9d:79:
5e:d6:07:49:c1:95:e0:8d:1f:35:aa:08:95:4a:33:7f:f7:a1:
e8:28:d6:84:af:d1:71:07:b7:ad:a5:da:7e:a1:0a:f8:b9:da:
39:71:8e:fa:00:29:ad:73:3d:41:80:e2:d3:87:6e:c9:54:61:
46:7b:f9:84:56:ce:d6:6b:63:05:76:40:ba:29:c3:c7:02:17:
b4:e6:3b:e2:db:52:ab:5c:6d:98:d8:d2:8c:e8:c0:9b:08:ac:
d4:e1:c5:34:1c:f4:e5:58:5e:9e:9f:01:b8:2b:74:d9:de:39:
f5:8a:6a:c5:e2:ed:03:b6:f3:0e:4b:06:c6:71:50:21:0d:ec:
87:d4:8b:c0:c7:61:70:57:1e:15:d3:a9:61:70:ee:76:73:a5:
a2:26:48:f8
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAII3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDEyMDEwMDQyWhcNMjQwNTE0MDEwMDQyWjAYMRYw
FAYDVQQDEw02NjE4ODdiZC01ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtT58zwcODpr9gJFb2r78dA6Mk9vQYZf59XcRyCZuFDwxbGv0+QLSxonS
VBXbAWQF//S+eSTdRDzUdPDIGhNw2jXxcap4TSFWKZwSthtJNrpCh8m/ME5+yAE8
t5+XJxY5uE8vLpfXlzZlqhFS7mAkwPFtrYBF+QF1KtZuZEAgg7B9e01IXDQCxYMV
Gx6hqcoCJuHTkuHSIFVFUiKacpPp4L4w7oBJEo0g5tJLrvQ+zGCVu8+FrKZiH3zu
Aw3apseHQuN+itYFstBxNBwf5TUfG4IkAFpuwM5+VgzSrwi4dn9oJNMxbv+cd7zL
dAFqd2pAKRE+D4Pto9Dm6xUJguyenwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFB/c
5cfZbOl7i34Gow1xWUA8iwctMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xNzc5Q0I0OEY4NjgxMUVFQTVENEI3NzAwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcPQMA0GCSqGSIb3DQEBCwUA
A4IBAQA/dJLPdVeEtlrOUfMhAiJD3a/YmrOC2IyMNCijVvEuP/yBSHMw49OWfPUf
UdwTbgrHkbb2hq8L4nYdtAzVNdFE+HoVv4QmHHOBuhRtwnzHK3ImnzLdbNoe9Mfe
Gfc1ChMkHBjqHt2DtfUnnXle1gdJwZXgjR81qgiVSjN/96HoKNaEr9FxB7etpdp+
oQr4udo5cY76ACmtcz1BgOLTh27JVGFGe/mEVs7Wa2MFdkC6KcPHAhe05jvi21Kr
XG2Y2NKM6MCbCKzU4cU0HPTlWF6enwG4K3TZ3jn1imrF4u0DtvMOSwbGcVAhDeyH
1IvAx2FwVx4V06lhcO52c6WiJkj4
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org