Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/259F80AEA73711EFA6292A84762E951A.roa
File: 259F80AEA73711EFA6292A84762E951A.roa (raw, json)
Hash identifier: VEW1fwSOlc8VjeA8mg994BynTsQ8oWznGNEvb2MIi9U=
Subject key identifier: 53:63:44:F6:F1:88:84:44:2D:78:2B:9C:2D:B0:69:C8:C5:62:E2:64
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5F9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/259F80AEA73711EFA6292A84762E951A.roa
Signing time: Wed 20 Nov 2024 12:01:17 +0000
ROA not before: Wed 20 Nov 2024 12:01:13 +0000
ROA not after: Tue 24 Dec 2024 12:01:13 +0000
asID: 138195
IP address blocks: 45.202.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54777 (0xd5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:01:13 2024 GMT
Not After : Dec 24 12:01:13 2024 GMT
Subject: CN=673dcf8d-6dfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b6:64:15:0a:44:ba:85:96:71:a6:fb:3b:ec:
31:fd:9b:b1:33:8a:9b:75:fa:f2:4f:e2:81:83:2e:
5c:49:38:5c:3a:82:35:d8:02:fc:a0:08:0b:1a:26:
d2:2f:63:80:02:0f:bd:44:27:98:79:bf:6d:07:0b:
9d:09:2e:0e:f7:b6:ea:7f:77:23:b0:06:52:7f:c1:
9c:89:61:81:dc:b3:e4:00:15:93:ac:99:36:be:8e:
d3:cf:8a:10:71:69:5e:b5:97:3d:50:02:e6:ce:69:
6b:27:c7:0e:c5:b1:aa:a2:bf:fd:a1:4a:90:4e:c2:
4f:ab:07:4a:be:41:6a:44:cb:93:df:80:96:e2:39:
d5:85:46:89:bc:5f:6c:11:ea:25:8a:19:22:f1:b0:
c1:09:c3:05:00:6e:fa:86:60:a1:65:50:a8:9a:c5:
fd:23:b6:27:59:05:0f:03:a2:ac:d2:0e:6e:f1:b8:
39:55:71:7e:85:1e:7d:60:62:04:4a:15:86:42:07:
a0:f9:90:27:4e:c1:6a:f5:29:0b:45:17:cd:94:d7:
e3:d1:13:c0:aa:7a:b0:37:d3:fe:02:b8:db:7c:4d:
44:33:9b:be:7c:22:ba:7c:d0:4b:d6:b3:4a:03:c9:
3a:b8:7d:3e:c7:76:a9:de:6b:2c:92:89:71:2f:26:
c6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:63:44:F6:F1:88:84:44:2D:78:2B:9C:2D:B0:69:C8:C5:62:E2:64
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/259F80AEA73711EFA6292A84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.205.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5e:40:b7:ae:0f:bf:95:16:08:b5:2c:98:53:14:1a:d4:58:
76:09:1f:6f:0c:55:f9:37:ec:4f:b0:4c:fa:61:82:0c:48:6b:
9f:f9:9e:d8:ea:34:f7:6e:6e:36:29:8a:f8:b0:23:9b:c3:27:
15:c7:b1:9a:a8:03:0e:81:c2:7c:1a:c8:64:54:0f:08:d6:72:
8c:39:a3:b6:e3:de:4d:d0:63:eb:0c:5d:f3:6b:77:76:5b:5f:
ff:8a:cd:1c:e9:6c:f2:5a:1d:fa:e4:fa:de:73:29:14:e8:84:
3f:17:cc:dd:0a:00:7f:2f:cf:07:b5:8b:10:4b:e3:6e:0b:5c:
32:8a:73:f4:12:81:35:49:c9:0a:63:83:a1:92:1d:a5:c5:b8:
e7:5c:d1:82:01:8d:b7:f5:1c:f0:fd:e6:1d:d7:51:24:ff:ab:
ef:d9:78:eb:4a:6d:86:d5:7e:bb:97:83:00:4f:cb:1f:22:03:
f3:be:e4:77:a4:0f:d9:27:ce:10:03:50:b4:d3:83:ca:bc:c2:
9d:94:56:02:4d:cc:41:54:42:2a:05:cb:37:6f:99:44:06:8f:
50:db:57:f8:ae:00:5a:3c:9f:2f:13:02:5e:ad:b9:4e:e2:c0:
27:6a:8c:32:f3:be:0f:8e:8a:b3:7a:87:26:5b:9e:72:0c:bb:
9c:f1:03:85
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANX5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMTIwMTEzWhcNMjQxMjI0MTIwMTEzWjAYMRYw
FAYDVQQDEw02NzNkY2Y4ZC02ZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5bZkFQpEuoWWcab7O+wx/ZuxM4qbdfryT+KBgy5cSThcOoI12AL8oAgL
GibSL2OAAg+9RCeYeb9tBwudCS4O97bqf3cjsAZSf8GciWGB3LPkABWTrJk2vo7T
z4oQcWletZc9UALmzmlrJ8cOxbGqor/9oUqQTsJPqwdKvkFqRMuT34CW4jnVhUaJ
vF9sEeolihki8bDBCcMFAG76hmChZVComsX9I7YnWQUPA6Ks0g5u8bg5VXF+hR59
YGIEShWGQgeg+ZAnTsFq9SkLRRfNlNfj0RPAqnqwN9P+ArjbfE1EM5u+fCK6fNBL
1rNKA8k6uH0+x3ap3msskolxLybGcwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFNj
RPbxiIRELXgrnC2wacjFYuJkMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yNTlGODBBRUE3MzcxMUVGQTYyOTJBODQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcrNMA0GCSqGSIb3DQEBCwUA
A4IBAQCiXkC3rg+/lRYItSyYUxQa1Fh2CR9vDFX5N+xPsEz6YYIMSGuf+Z7Y6jT3
bm42KYr4sCObwycVx7GaqAMOgcJ8GshkVA8I1nKMOaO2495N0GPrDF3za3d2W1//
is0c6WzyWh365PrecykU6IQ/F8zdCgB/L88HtYsQS+NuC1wyinP0EoE1SckKY4Oh
kh2lxbjnXNGCAY239Rzw/eYd11Ek/6vv2XjrSm2G1X67l4MAT8sfIgPzvuR3pA/Z
J84QA1C004PKvMKdlFYCTcxBVEIqBcs3b5lEBo9Q21f4rgBaPJ8vEwJerblO4sAn
aowy874PjoqzeocmW55yDLuc8QOF
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:21 2024 by rpki-client on console-fra.rpki-client.org