Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/293BC3E48D2E11EF95DA6B5E762E951A.roa
File: 293BC3E48D2E11EF95DA6B5E762E951A.roa (raw, json)
Hash identifier: 7mfZuoA2eUfac0Gc1PuhAp9PChEHVCYpLlZoYz+cuPA=
Subject key identifier: 28:E4:5C:48:E6:CF:50:6A:D0:A8:7B:68:B9:0B:22:7E:12:2D:4B:47
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C680
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/293BC3E48D2E11EF95DA6B5E762E951A.roa
Signing time: Fri 18 Oct 2024 08:51:27 +0000
ROA not before: Fri 18 Oct 2024 08:51:24 +0000
ROA not after: Sat 23 Nov 2024 08:51:24 +0000
asID: 44559
IP address blocks: 45.192.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50816 (0xc680)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 08:51:24 2024 GMT
Not After : Nov 23 08:51:24 2024 GMT
Subject: CN=6712218f-fa25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:fe:07:2c:88:eb:59:0c:f6:69:6f:53:fc:
a6:af:86:9c:5b:26:84:54:0c:39:73:9e:e6:04:46:
0d:8e:26:aa:6b:2e:12:a5:86:08:ec:c9:a2:fc:c2:
b4:6e:22:40:3d:38:ef:c0:10:ee:be:65:55:e5:60:
21:98:f3:2c:75:a5:24:a0:28:7c:e6:38:2b:42:6a:
51:56:e9:b4:e0:f3:c9:b5:d5:79:a1:48:eb:ff:ff:
89:b2:8e:52:4a:9f:e2:b1:b6:a4:71:69:fa:cd:5b:
24:80:37:83:f3:fd:8a:31:11:32:8b:91:69:dd:d1:
53:14:38:01:f5:da:e6:e9:f6:ec:67:a3:74:5a:34:
71:f6:29:bd:ca:17:7d:9f:7c:88:08:68:f6:43:21:
25:0e:8b:27:ee:a6:41:93:df:bb:61:53:3b:69:75:
76:d6:ec:16:6b:29:d3:af:92:75:63:6a:26:69:40:
ca:33:9a:9c:68:c4:9d:31:2f:c4:db:f2:7a:33:65:
2e:af:9e:ce:a6:d5:cb:b7:18:19:c9:17:4a:0d:3f:
89:47:a6:ad:01:b8:25:78:0e:98:83:71:05:16:91:
ec:56:89:f6:62:14:a5:c0:0d:fa:1e:2f:6b:52:39:
04:71:36:13:70:45:6b:8d:65:e0:d7:91:16:42:42:
50:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E4:5C:48:E6:CF:50:6A:D0:A8:7B:68:B9:0B:22:7E:12:2D:4B:47
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/293BC3E48D2E11EF95DA6B5E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.52.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:91:b4:4a:2c:50:aa:b3:bc:fc:81:b5:da:76:84:ce:77:e4:
19:0a:dc:84:d8:bc:7a:03:83:f4:e7:cb:cd:e4:87:58:c5:3a:
47:bc:7c:bd:76:30:a6:9f:67:68:0f:04:a6:3e:9d:c8:8c:e2:
cd:3e:72:76:a0:6f:4e:84:fb:25:9d:62:9e:fa:3e:aa:cc:f9:
98:7e:6e:8f:86:e4:54:f0:fb:5f:22:d2:e8:16:49:2e:28:52:
61:3c:3a:3f:6e:55:86:0c:d0:09:44:76:75:62:23:e4:6e:5b:
90:2f:ed:e9:ef:da:e3:75:10:49:61:7c:49:ab:24:2d:a9:17:
fe:01:18:62:7b:0f:39:40:ad:85:d2:99:81:ff:8f:91:5d:e7:
c2:b3:ad:72:43:77:97:d3:65:44:b1:e0:33:50:b3:00:e4:c9:
a3:fa:3d:ec:24:db:53:cd:bc:5c:7a:61:db:cc:6f:40:c1:81:
c8:c1:de:80:60:f3:5e:36:f0:72:f8:3b:2b:0d:11:90:60:18:
fe:58:e6:b2:34:e6:6d:3d:e9:da:07:15:cb:f8:c8:d4:d8:0b:
17:61:8d:ea:c3:f5:f4:43:bc:cc:c6:e1:52:2f:a4:85:36:f3:
f1:15:2a:2f:e4:e7:8d:e5:66:ff:0b:4f:ff:48:55:9e:25:1d:
a6:37:9b:91
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMaAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDE4MDg1MTI0WhcNMjQxMTIzMDg1MTI0WjAYMRYw
FAYDVQQDEw02NzEyMjE4Zi1mYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0yr+ByyI61kM9mlvU/ymr4acWyaEVAw5c57mBEYNjiaqay4SpYYI7Mmi
/MK0biJAPTjvwBDuvmVV5WAhmPMsdaUkoCh85jgrQmpRVum04PPJtdV5oUjr//+J
so5SSp/isbakcWn6zVskgDeD8/2KMREyi5Fp3dFTFDgB9drm6fbsZ6N0WjRx9im9
yhd9n3yICGj2QyElDosn7qZBk9+7YVM7aXV21uwWaynTr5J1Y2omaUDKM5qcaMSd
MS/E2/J6M2Uur57OptXLtxgZyRdKDT+JR6atAbgleA6Yg3EFFpHsVon2YhSlwA36
Hi9rUjkEcTYTcEVrjWXg15EWQkJQmQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCjk
XEjmz1Bq0Kh7aLkLIn4SLUtHMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yOTNCQzNFNDhEMkUxMUVGOTVEQTZCNUU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcA0MA0GCSqGSIb3DQEBCwUA
A4IBAQANkbRKLFCqs7z8gbXadoTOd+QZCtyE2Lx6A4P058vN5IdYxTpHvHy9djCm
n2doDwSmPp3IjOLNPnJ2oG9OhPslnWKe+j6qzPmYfm6PhuRU8PtfItLoFkkuKFJh
PDo/blWGDNAJRHZ1YiPkbluQL+3p79rjdRBJYXxJqyQtqRf+ARhiew85QK2F0pmB
/4+RXefCs61yQ3eX02VEseAzULMA5Mmj+j3sJNtTzbxcemHbzG9AwYHIwd6AYPNe
NvBy+DsrDRGQYBj+WOayNOZtPenaBxXL+MjU2AsXYY3qw/X0Q7zMxuFSL6SFNvPx
FSov5OeN5Wb/C0//SFWeJR2mN5uR
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:23 2024 by rpki-client on console-ams.rpki-client.org