Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2660A3DCCADD11EFB6C83991762E951A.roa
File: 2660A3DCCADD11EFB6C83991762E951A.roa (raw, json)
Hash identifier: s9E2JzI+xa3bgRgf9uWZHdbaUNeOZwdIrEfRSA5N5UU=
Subject key identifier: B0:B5:03:4C:BD:93:F8:3D:67:FF:3D:C8:6C:2A:47:70:1E:6E:A4:97
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F7A8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2660A3DCCADD11EFB6C83991762E951A.roa
Signing time: Sat 04 Jan 2025 20:47:45 +0000
ROA not before: Sun 05 Jan 2025 20:47:41 +0000
ROA not after: Sun 09 Feb 2025 20:47:41 +0000
asID: 9304
IP address blocks: 45.204.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63400 (0xf7a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 5 20:47:41 2025 GMT
Not After : Feb 9 20:47:41 2025 GMT
Subject: CN=67799e71-4fe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5c:bb:e7:fd:c6:09:2b:e1:25:4e:bb:28:a4:
3a:7c:75:c3:d8:f0:82:20:6d:e6:bb:21:4c:3e:99:
2b:dd:f2:21:5e:26:06:ef:7a:e2:4b:0a:a9:5c:40:
5c:e1:57:f7:98:3a:42:85:74:40:d5:ac:fb:7d:8c:
14:00:41:73:a2:c1:2a:54:6c:1b:d6:a8:dc:27:37:
e0:db:c9:c8:34:58:35:af:76:c4:32:cf:e9:7e:ae:
bf:e5:d3:4f:7a:ee:55:f7:97:af:a8:78:7a:fa:88:
b9:0b:64:03:97:b9:73:a7:7c:75:72:50:4c:9d:b5:
08:15:08:a6:1d:71:eb:b9:a2:fe:c1:e0:2d:13:7a:
cc:94:4a:f0:ff:7a:da:e0:de:c9:a9:84:75:ae:23:
95:ce:fb:75:3a:02:75:d0:83:f0:5b:13:73:0d:15:
e9:2e:eb:42:75:49:59:68:04:16:b8:a3:2b:93:4f:
55:6c:6b:4b:30:d4:81:c8:cb:d1:8f:2e:09:c6:d5:
9a:42:cf:79:5a:5a:88:3c:5a:4e:fc:fd:45:4b:01:
54:4e:b6:47:03:5f:d9:84:86:ca:a7:33:bd:ad:88:
24:10:46:1e:fd:7f:0a:6d:90:ed:ec:99:4a:13:a0:
e7:b4:b0:1c:86:34:58:79:45:91:70:c0:db:e5:0a:
f0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B5:03:4C:BD:93:F8:3D:67:FF:3D:C8:6C:2A:47:70:1E:6E:A4:97
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2660A3DCCADD11EFB6C83991762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.141.0/24
Signature Algorithm: sha256WithRSAEncryption
19:91:83:eb:7c:b7:cd:81:ec:59:f1:09:d6:d0:ee:9d:c9:00:
d8:17:b2:08:6a:55:b9:87:b4:1c:59:be:69:7d:e7:a9:cf:b6:
a8:c4:ac:23:9b:08:0a:ef:d0:2c:9f:bb:ac:70:cf:3a:dd:b2:
08:ef:61:41:b4:29:81:75:88:3a:72:fa:80:eb:85:c4:1c:8b:
a9:09:f0:01:75:29:b4:12:17:4d:2e:bc:2e:28:15:e7:36:83:
ca:4e:29:d5:b5:98:7d:52:89:ac:15:2e:04:37:b9:c9:bd:c0:
e1:79:b4:4a:e1:bc:06:b7:e6:70:d7:39:25:2c:94:16:37:5a:
9e:83:82:4a:11:cf:4f:21:48:e0:ca:c2:a7:8d:01:ad:83:1d:
b6:16:e6:69:5d:5c:7b:a6:aa:d8:df:af:b5:8d:2c:b6:b6:de:
e1:e8:f6:39:05:93:6b:cb:ef:56:ba:92:e3:e3:34:98:96:f5:
87:a4:98:26:37:df:2d:16:4a:73:5e:86:e9:61:48:56:6e:ad:
7f:6b:0b:60:5c:97:b5:09:41:ca:28:70:2d:28:f7:3d:8e:c1:
b2:6c:3b:68:3d:63:ad:88:a2:5c:22:32:53:f3:fb:15:7c:bc:
95:37:3e:ad:b3:00:e2:a4:d2:6a:3c:ee:c2:96:73:d8:94:f3:
45:03:06:00
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPeoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA1MjA0NzQxWhcNMjUwMjA5MjA0NzQxWjAYMRYw
FAYDVQQDEw02Nzc5OWU3MS00ZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAl1y75/3GCSvhJU67KKQ6fHXD2PCCIG3muyFMPpkr3fIhXiYG73riSwqp
XEBc4Vf3mDpChXRA1az7fYwUAEFzosEqVGwb1qjcJzfg28nINFg1r3bEMs/pfq6/
5dNPeu5V95evqHh6+oi5C2QDl7lzp3x1clBMnbUIFQimHXHruaL+weAtE3rMlErw
/3ra4N7JqYR1riOVzvt1OgJ10IPwWxNzDRXpLutCdUlZaAQWuKMrk09VbGtLMNSB
yMvRjy4JxtWaQs95WlqIPFpO/P1FSwFUTrZHA1/ZhIbKpzO9rYgkEEYe/X8KbZDt
7JlKE6DntLAchjRYeUWRcMDb5QrwmwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLC1
A0y9k/g9Z/89yGwqR3AebqSXMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yNjYwQTNEQ0NBREQxMUVGQjZDODM5OTE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcyNMA0GCSqGSIb3DQEBCwUA
A4IBAQAZkYPrfLfNgexZ8QnW0O6dyQDYF7IIalW5h7QcWb5pfeepz7aoxKwjmwgK
79Asn7uscM863bII72FBtCmBdYg6cvqA64XEHIupCfABdSm0EhdNLrwuKBXnNoPK
TinVtZh9UomsFS4EN7nJvcDhebRK4bwGt+Zw1zklLJQWN1qeg4JKEc9PIUjgysKn
jQGtgx22FuZpXVx7pqrY36+1jSy2tt7h6PY5BZNry+9WupLj4zSYlvWHpJgmN98t
FkpzXobpYUhWbq1/awtgXJe1CUHKKHAtKPc9jsGybDtoPWOtiKJcIjJT8/sVfLyV
Nz6tswDipNJqPO7ClnPYlPNFAwYA
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:35 2025 by rpki-client