Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FDE901EC16A11EEA3F757C4775412E6.roa
File: 1FDE901EC16A11EEA3F757C4775412E6.roa (raw, json)
Hash identifier: KuumTLN0GLvVyiuSWbHIkNMEjB3LiEDCoRLbjqkAfbc=
Subject key identifier: 94:0D:88:1A:67:F0:20:15:5A:17:51:D0:DE:40:E2:21:36:89:0C:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C6D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FDE901EC16A11EEA3F757C4775412E6.roa
Signing time: Fri 02 Feb 2024 01:26:44 +0000
ROA not before: Fri 02 Feb 2024 01:26:41 +0000
ROA not after: Thu 08 Aug 2024 01:26:41 +0000
asID: 133199
IP address blocks: 45.207.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27757 (0x6c6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:26:41 2024 GMT
Not After : Aug 8 01:26:41 2024 GMT
Subject: CN=65bc44d4-a4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:74:27:2c:8b:3a:fa:8a:cf:09:02:ea:e2:6d:
e8:a3:f5:a1:03:24:3e:2d:de:3d:fd:56:1e:f1:36:
98:fc:29:ca:6a:57:c0:bb:32:95:40:69:6e:00:fe:
71:ff:f2:43:dc:a8:b2:d8:51:f0:87:c8:5c:55:39:
e7:56:0d:99:d5:88:b9:9d:32:1a:2a:2c:53:b2:1f:
8a:52:6b:bd:32:6c:e2:f8:4a:66:54:ad:2e:27:5e:
85:cb:a0:b0:7d:86:34:1d:a1:78:70:5a:0e:f8:6c:
ad:67:7f:93:7f:8e:b8:06:b8:5c:10:76:c5:f0:27:
f4:52:25:46:38:de:9a:45:e5:ca:86:eb:7e:98:11:
14:19:e7:c9:00:84:8a:0f:9e:54:4b:73:4f:13:9a:
b0:f8:12:49:b4:52:e0:c6:c0:4f:29:b8:b1:d4:c9:
47:49:ad:9f:35:db:d9:04:5b:42:e4:60:45:c8:b9:
59:98:e3:f8:28:57:b3:4a:99:eb:4c:33:b8:a3:43:
7a:92:32:ef:79:80:09:1d:32:c7:d2:bd:b4:1b:05:
b7:ad:de:2e:14:b3:c8:73:34:ad:9c:ea:7c:ad:e3:
68:83:6d:77:de:33:21:c3:ad:71:18:5d:6b:ee:ac:
7a:e1:4a:c3:a1:ba:38:fa:33:a1:28:f8:54:5d:88:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0D:88:1A:67:F0:20:15:5A:17:51:D0:DE:40:E2:21:36:89:0C:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1FDE901EC16A11EEA3F757C4775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.52.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4f:6d:77:ef:ec:60:86:df:5e:74:0a:64:dc:10:fc:b4:d0:
1a:81:c0:3b:86:88:d6:b5:17:e9:3b:e4:a8:08:4e:57:e4:49:
6a:06:8a:88:25:8e:92:b2:d8:85:d5:a4:e3:6f:3c:41:97:a8:
e5:b8:78:44:12:d1:9e:62:4b:2d:14:b0:3a:89:34:dc:7e:78:
00:07:d7:e6:ff:f0:8f:1f:c1:76:9e:1d:12:d3:68:a7:2b:5f:
a4:1e:da:0e:d2:bf:03:bd:07:66:3e:61:53:19:f8:fa:eb:d0:
86:26:35:34:7b:8a:4f:5a:a3:44:9b:27:32:d9:1b:88:99:6a:
33:d5:64:2f:40:60:86:8d:1b:1e:c3:e3:f2:85:93:47:c9:af:
a4:fb:88:33:97:94:12:a6:b1:2e:75:73:81:4d:80:14:45:00:
b4:f6:0f:60:11:4b:06:43:fa:34:5a:5a:13:6c:57:3a:ba:70:
56:26:e4:84:64:c3:bc:6e:fd:b5:b4:a0:93:9d:d6:55:02:d3:
9b:25:ca:39:ad:38:cc:d3:9f:ff:77:23:2a:c2:8d:10:86:cc:
0c:96:08:6b:93:c8:d2:47:9b:ac:51:38:f9:30:da:97:59:77:
42:ee:7d:6f:d3:7b:7d:46:06:6a:3a:e4:a4:27:02:15:cd:8b:
bd:a6:47:b6
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICbG0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDIwMTI2NDFaFw0yNDA4MDgwMTI2NDFaMBgxFjAU
BgNVBAMTDTY1YmM0NGQ0LWE0ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCsdCcsizr6is8JAuribeij9aEDJD4t3j39Vh7xNpj8KcpqV8C7MpVAaW4A
/nH/8kPcqLLYUfCHyFxVOedWDZnViLmdMhoqLFOyH4pSa70ybOL4SmZUrS4nXoXL
oLB9hjQdoXhwWg74bK1nf5N/jrgGuFwQdsXwJ/RSJUY43ppF5cqG636YERQZ58kA
hIoPnlRLc08TmrD4Ekm0UuDGwE8puLHUyUdJrZ8129kEW0LkYEXIuVmY4/goV7NK
metMM7ijQ3qSMu95gAkdMsfSvbQbBbet3i4Us8hzNK2c6nyt42iDbXfeMyHDrXEY
XWvurHrhSsOhujj6M6Eo+FRdiE13AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUlA2I
GmfwIBVaF1HQ3kDiITaJDHAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzFGREU5MDFFQzE2QTExRUVBM0Y3NTdDNDc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzzQwDQYJKoZIhvcNAQELBQAD
ggEBAHlPbXfv7GCG3150CmTcEPy00BqBwDuGiNa1F+k75KgITlfkSWoGiogljpKy
2IXVpONvPEGXqOW4eEQS0Z5iSy0UsDqJNNx+eAAH1+b/8I8fwXaeHRLTaKcrX6Qe
2g7SvwO9B2Y+YVMZ+Prr0IYmNTR7ik9ao0SbJzLZG4iZajPVZC9AYIaNGx7D4/KF
k0fJr6T7iDOXlBKmsS51c4FNgBRFALT2D2ARSwZD+jRaWhNsVzq6cFYm5IRkw7xu
/bW0oJOd1lUC05slyjmtOMzTn/93IyrCjRCGzAyWCGuTyNJHm6xROPkw2pdZd0Lu
fW/Te31GBmo65KQnAhXNi72mR7Y=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:05 2024 by rpki-client on console-fra.rpki-client.org