Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2175101608F011EEBD8532184AD9E6FC.roa
File: 2175101608F011EEBD8532184AD9E6FC.roa (raw, json)
Hash identifier: lUZWZ9CZQlkbv9MqoSBO4PjaXBnBw5+Cad8fic2Law4=
Subject key identifier: 43:57:EA:35:FC:E9:37:A9:2B:A0:C8:E4:73:69:CD:48:AC:35:57:F3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AC7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2175101608F011EEBD8532184AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:09:54 +0000
ROA not before: Mon 12 Jun 2023 07:09:51 +0000
ROA not after: Sat 25 May 2024 07:09:51 +0000
asID: 131178
IP address blocks: 45.201.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10951 (0x2ac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:09:51 2023 GMT
Not After : May 25 07:09:51 2024 GMT
Subject: CN=6486c4c2-0378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d0:78:03:f6:f6:94:63:3c:4e:dc:4d:0d:7c:
d5:16:59:49:ac:d0:c6:69:12:8e:b7:ad:a8:61:d5:
86:88:38:9b:d0:06:a7:82:dd:a6:2b:d7:60:58:ed:
4b:01:17:55:90:8d:2d:51:2f:49:73:3a:d6:23:4b:
d0:3c:67:6b:6d:25:46:94:5f:f4:d2:4c:71:c8:96:
6d:92:20:19:dc:39:c8:6b:bc:ae:dd:c6:e2:8b:6d:
dd:b0:bc:32:76:40:f2:cf:19:aa:dc:d5:d0:c4:05:
d2:1a:39:b9:e7:94:1f:94:1d:5b:6d:b9:3d:04:44:
bc:cc:f9:68:a3:1c:f0:04:b3:91:f8:bf:d4:27:20:
5b:2b:9c:95:d9:f7:0b:53:7c:a8:e8:dc:92:ce:55:
72:a1:d7:1e:f9:ba:fc:f9:96:b0:2c:cd:db:60:ab:
98:39:19:d4:d3:00:15:36:76:67:08:1e:d6:b0:bb:
a9:10:c0:9b:b2:2b:89:62:f7:0a:e9:81:d6:3c:8b:
95:d1:ca:d2:1a:c1:ff:a3:80:36:b4:1b:8d:1b:00:
e9:73:da:fc:c3:9c:ab:a6:f2:c9:29:af:ad:bf:20:
97:c1:93:1b:2f:00:c6:d6:5a:cb:2c:77:bd:8d:33:
10:4b:d3:fc:a4:92:fd:24:61:06:8d:b6:d4:fe:2b:
82:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:57:EA:35:FC:E9:37:A9:2B:A0:C8:E4:73:69:CD:48:AC:35:57:F3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2175101608F011EEBD8532184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.136.0/24
Signature Algorithm: sha256WithRSAEncryption
11:96:10:1f:a1:68:9d:db:ec:c9:fb:6a:91:11:ee:fc:2c:74:
57:20:b3:e3:b7:7b:f3:c3:b3:a8:ea:cf:b4:76:1b:b4:b0:ec:
03:74:bd:cb:09:6f:fd:29:b8:28:b0:2c:90:4b:91:93:2d:b8:
bc:4f:06:02:75:c2:6d:1b:f8:5b:29:33:62:5f:ea:11:2e:8c:
84:05:af:7f:7c:95:30:67:09:67:4d:0a:9d:50:8b:a0:80:72:
0b:d4:88:62:ec:ea:d7:83:f8:be:5f:4f:4e:4e:69:ee:2c:7c:
f8:6e:f9:7d:81:3f:3e:68:0c:57:05:a0:5f:da:31:4c:3f:8f:
3c:8d:de:3f:91:36:21:12:bb:af:3a:49:05:5f:64:38:5a:1c:
d4:12:a1:4d:bc:0f:fa:ea:5f:1e:df:42:5c:45:8e:13:ad:bb:
8d:d7:bc:23:fd:af:d2:44:5c:f5:85:de:30:d8:6e:17:d9:b5:
28:76:f0:54:cd:9d:75:1b:51:61:e8:17:a2:0a:bf:77:c9:1d:
d7:1d:8f:b4:d7:ae:b4:15:8a:be:d6:8f:30:c5:92:17:87:86:
7b:4c:f8:de:76:85:62:df:47:98:b7:15:ea:90:2e:0b:5c:79:
ab:01:82:c1:44:03:e4:b4:97:65:56:f9:7c:e3:5d:f2:2f:53:
6b:3c:91:d2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKscwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNzA5NTFaFw0yNDA1MjUwNzA5NTFaMBgxFjAU
BgNVBAMTDTY0ODZjNGMyLTAzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJ0HgD9vaUYzxO3E0NfNUWWUms0MZpEo63rahh1YaIOJvQBqeC3aYr12BY
7UsBF1WQjS1RL0lzOtYjS9A8Z2ttJUaUX/TSTHHIlm2SIBncOchrvK7dxuKLbd2w
vDJ2QPLPGarc1dDEBdIaObnnlB+UHVttuT0ERLzM+WijHPAEs5H4v9QnIFsrnJXZ
9wtTfKjo3JLOVXKh1x75uvz5lrAszdtgq5g5GdTTABU2dmcIHtawu6kQwJuyK4li
9wrpgdY8i5XRytIawf+jgDa0G40bAOlz2vzDnKum8skpr62/IJfBkxsvAMbWWsss
d72NMxBL0/ykkv0kYQaNttT+K4JZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUQ1fq
NfzpN6kroMjkc2nNSKw1V/MwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzIxNzUxMDE2MDhGMDExRUVCRDg1MzIxODRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyYgwDQYJKoZIhvcNAQELBQAD
ggEBABGWEB+haJ3b7Mn7apER7vwsdFcgs+O3e/PDs6jqz7R2G7Sw7AN0vcsJb/0p
uCiwLJBLkZMtuLxPBgJ1wm0b+FspM2Jf6hEujIQFr398lTBnCWdNCp1Qi6CAcgvU
iGLs6teD+L5fT05Oae4sfPhu+X2BPz5oDFcFoF/aMUw/jzyN3j+RNiESu686SQVf
ZDhaHNQSoU28D/rqXx7fQlxFjhOtu43XvCP9r9JEXPWF3jDYbhfZtSh28FTNnXUb
UWHoF6IKv3fJHdcdj7TXrrQVir7WjzDFkheHhntM+N52hWLfR5i3FeqQLgtceasB
gsFEA+S0l2VW+XzjXfIvU2s8kdI=
-----END CERTIFICATE-----
Generated at Fri May 3 01:30:11 2024 by rpki-client on console-fra.rpki-client.org