Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/294E1F48207F11EE9E3FDA2A4AD9E6FC.roa
File: 294E1F48207F11EE9E3FDA2A4AD9E6FC.roa (raw, json)
Hash identifier: 55Mqxy//nIoO4few8xCD4Bdrdp5ZImA9Oe9WqEmXIQk=
Subject key identifier: BE:C0:ED:1B:9A:E7:64:29:15:A6:EE:83:63:C3:D4:59:0F:33:65:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2FA5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/294E1F48207F11EE9E3FDA2A4AD9E6FC.roa
Signing time: Wed 12 Jul 2023 06:41:42 +0000
ROA not before: Wed 12 Jul 2023 06:41:38 +0000
ROA not after: Fri 24 May 2024 06:41:38 +0000
asID: 38901
IP address blocks: 45.201.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12197 (0x2fa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 12 06:41:38 2023 GMT
Not After : May 24 06:41:38 2024 GMT
Subject: CN=64ae4b26-6b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fe:d5:9b:d3:3d:28:cb:d4:80:17:5a:07:0a:
fc:9c:c7:d2:1a:1a:f1:2d:bf:07:e2:00:59:68:b1:
56:19:06:c1:a0:7f:b4:6f:60:57:e3:11:b7:91:cd:
e0:8c:f9:38:61:4f:03:ad:51:4a:65:bd:92:4d:07:
d5:b1:11:31:96:1c:46:9c:1d:8f:72:f7:86:c6:ed:
a2:d3:6f:49:68:e1:3d:9b:de:29:ff:a2:e9:6f:e5:
1f:df:93:54:8e:6a:e2:e2:18:1f:63:d4:48:8e:1f:
a4:4d:d3:4c:9c:a9:b6:6c:cf:c9:53:4e:06:b6:6d:
83:b5:cb:37:e2:e4:1e:69:54:ef:95:e0:3e:21:b7:
78:5f:c3:b1:b7:3a:72:ba:24:1e:19:2f:d2:3b:0f:
52:8b:96:45:b7:4c:d5:61:ca:92:c0:4c:b6:9d:d3:
b2:70:ef:c2:d5:8b:09:12:1b:43:ee:2b:c4:c1:7f:
58:99:b9:90:ea:7d:96:76:4e:cf:6d:2e:c7:92:0e:
b5:7e:f5:24:cb:3e:96:65:93:42:37:bf:dc:0a:07:
0c:a9:21:e6:50:b5:e6:7c:18:4a:2e:9a:4f:d8:6a:
a1:72:71:74:73:d2:72:cc:43:47:d5:cf:a1:79:29:
85:71:34:2c:17:5d:09:75:46:d7:ba:f1:b6:04:e5:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C0:ED:1B:9A:E7:64:29:15:A6:EE:83:63:C3:D4:59:0F:33:65:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/294E1F48207F11EE9E3FDA2A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.192.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:30:ba:b1:83:c9:85:f3:bc:83:97:c9:8e:95:68:9f:ce:79:
9a:2b:44:ad:b9:74:fe:95:46:85:f9:a0:02:20:70:92:3c:ad:
4d:21:d6:fa:60:31:82:34:18:44:de:06:47:b1:04:1e:af:c8:
6a:c5:5e:3e:c6:6f:69:ca:fc:a0:b7:c1:d8:3a:e0:ef:17:63:
e2:89:f7:21:12:0d:51:b0:9b:85:dc:58:f4:17:0b:f9:de:46:
be:16:f0:e8:b5:aa:86:d3:e2:4e:bf:a2:fe:41:1d:9d:76:8c:
7f:56:a8:bf:96:a0:e3:1c:52:db:89:83:cf:25:ef:14:49:39:
b7:eb:a7:c0:87:36:11:eb:bc:ca:0c:47:11:09:31:77:20:48:
ea:08:7f:cc:29:55:cd:f2:b3:28:09:f1:82:c9:c5:4f:af:32:
45:14:89:7a:65:34:93:e0:c4:13:b1:dc:6e:a4:62:6c:db:55:
be:05:b5:cb:77:13:f6:f0:40:c9:bb:a8:3f:c4:25:ee:d1:ca:
36:c1:bb:5e:db:90:47:50:8b:5b:2b:b8:0c:67:e5:2f:dc:a6:
41:d0:0d:47:1e:9e:50:1f:4e:f0:e1:ed:5c:f3:1d:51:d7:72:
b5:b5:7e:6f:1b:61:a7:2c:d8:f6:b9:81:d0:d3:d9:da:a0:d1:
0a:9b:29:cf
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICL6UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MTIwNjQxMzhaFw0yNDA1MjQwNjQxMzhaMBgxFjAU
BgNVBAMTDTY0YWU0YjI2LTZiMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDi/tWb0z0oy9SAF1oHCvycx9IaGvEtvwfiAFlosVYZBsGgf7RvYFfjEbeR
zeCM+ThhTwOtUUplvZJNB9WxETGWHEacHY9y94bG7aLTb0lo4T2b3in/oulv5R/f
k1SOauLiGB9j1EiOH6RN00ycqbZsz8lTTga2bYO1yzfi5B5pVO+V4D4ht3hfw7G3
OnK6JB4ZL9I7D1KLlkW3TNVhypLATLad07Jw78LViwkSG0PuK8TBf1iZuZDqfZZ2
Ts9tLseSDrV+9STLPpZlk0I3v9wKBwypIeZQteZ8GEoumk/YaqFycXRz0nLMQ0fV
z6F5KYVxNCwXXQl1Rte68bYE5XktAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUvsDt
G5rnZCkVpu6DY8PUWQ8zZSIwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzI5NEUxRjQ4MjA3RjExRUU5RTNGREEyQTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQtycAwDQYJKoZIhvcNAQELBQAD
ggEBAKMwurGDyYXzvIOXyY6VaJ/OeZorRK25dP6VRoX5oAIgcJI8rU0h1vpgMYI0
GETeBkexBB6vyGrFXj7Gb2nK/KC3wdg64O8XY+KJ9yESDVGwm4XcWPQXC/neRr4W
8Oi1qobT4k6/ov5BHZ12jH9WqL+WoOMcUtuJg88l7xRJObfrp8CHNhHrvMoMRxEJ
MXcgSOoIf8wpVc3ysygJ8YLJxU+vMkUUiXplNJPgxBOx3G6kYmzbVb4Ftct3E/bw
QMm7qD/EJe7RyjbBu17bkEdQi1sruAxn5S/cpkHQDUcenlAfTvDh7VzzHVHXcrW1
fm8bYacs2Pa5gdDT2dqg0QqbKc8=
-----END CERTIFICATE-----
Generated at Tue May 7 01:58:02 2024 by rpki-client on console-fra.rpki-client.org