Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E5C22808DD211EE994C94704AD9E6FC.roa
File: 2E5C22808DD211EE994C94704AD9E6FC.roa (raw, json)
Hash identifier: v5pWU84UklnopBiIEAAJMdLEDXn9XFMnng8MNHdWPsA=
Subject key identifier: 9D:56:F1:78:45:CB:B4:59:2C:32:C6:30:EF:C8:A2:39:9E:4F:7C:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C6B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E5C22808DD211EE994C94704AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:40:36 +0000
ROA not before: Sat 03 Feb 2024 09:40:32 +0000
ROA not after: Thu 08 Aug 2024 09:40:32 +0000
asID: 133861
IP address blocks: 45.207.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19563 (0x4c6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:40:32 2024 GMT
Not After : Aug 8 09:40:32 2024 GMT
Subject: CN=6565b593-4137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b9:c7:01:f6:f4:a0:39:17:54:99:82:7a:cf:
8a:cb:20:28:db:cc:6d:ba:cf:1b:78:c6:18:d7:17:
2a:57:00:73:59:e0:44:44:f8:78:4f:2b:25:94:ef:
b9:ef:19:d3:08:b7:c8:0d:db:b6:f6:03:05:00:93:
ff:17:89:90:e8:58:9b:91:73:d4:35:a4:47:ce:05:
52:a1:7f:9e:a0:9e:d2:21:5d:94:44:3d:25:cb:d1:
2d:8e:8d:98:03:b0:65:10:6b:c1:1c:a0:da:f5:af:
1f:1e:87:1b:ee:79:66:54:67:4d:de:e9:ad:ee:2f:
66:fe:9c:65:f8:33:dd:08:42:1e:80:a5:42:c7:14:
c9:ab:18:4b:5d:a7:38:44:bd:8c:1b:d0:73:95:7e:
93:07:13:50:89:20:ef:e2:e8:f5:73:1e:9c:83:19:
6d:24:1e:b5:bb:81:e1:3c:0b:6b:76:27:af:68:23:
43:3a:d1:ea:57:b4:c2:12:04:3c:f2:ba:ce:ec:62:
23:57:ad:64:3d:1a:8f:41:2e:55:38:c4:b9:79:3c:
8c:27:c8:80:b0:98:a3:f9:da:d1:8c:e4:70:e6:b8:
9c:71:a3:5a:c5:45:3f:05:ca:e4:7c:5f:8f:a0:24:
6a:ae:f9:3f:48:9f:24:a2:23:3c:cf:1c:e6:2d:9d:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:56:F1:78:45:CB:B4:59:2C:32:C6:30:EF:C8:A2:39:9E:4F:7C:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E5C22808DD211EE994C94704AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.54.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:7f:3c:41:d2:59:16:74:fc:e0:de:c3:74:45:71:72:67:9a:
4b:e8:6f:20:73:00:c9:6d:62:4a:92:26:dc:de:6b:8f:a0:4e:
61:6a:65:ca:83:35:49:1d:e7:e6:f3:1c:58:ea:ea:94:31:ff:
be:2b:68:07:8c:28:4b:ff:3b:c1:bb:ff:a7:6c:6a:5c:3b:58:
e0:b7:85:7b:95:29:2b:fe:11:b4:d3:c3:59:15:8a:09:ed:1c:
86:7e:4c:b8:17:6e:f0:45:44:13:72:dc:89:41:e7:72:ab:f4:
7a:03:e3:74:6f:32:b8:d0:0f:62:73:e0:c3:16:0c:97:9e:09:
58:fe:11:87:ba:52:cc:31:d6:dc:8e:6c:9c:18:28:b7:c0:04:
79:ab:21:c3:f2:8b:ac:19:1c:9e:58:f0:cb:b9:4e:c4:d6:12:
41:1e:2b:43:44:62:3c:88:60:aa:27:51:f0:33:2c:f4:9b:16:
00:76:c1:66:8d:47:93:22:d3:01:bf:ea:f4:c3:c4:40:dd:e1:
96:4b:22:4b:69:0b:9a:04:9d:f9:63:d3:bd:26:64:5b:20:b3:
07:df:24:5c:d2:28:d6:64:bb:b9:bf:0d:d6:0c:44:9e:79:59:
d9:a5:fb:0f:59:db:8c:52:2c:12:f2:48:7b:f3:ad:f9:c8:d3:
c9:e1:a3:ce
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTGswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTQwMzJaFw0yNDA4MDgwOTQwMzJaMBgxFjAU
BgNVBAMTDTY1NjViNTkzLTQxMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDUuccB9vSgORdUmYJ6z4rLICjbzG26zxt4xhjXFypXAHNZ4ERE+HhPKyWU
77nvGdMIt8gN27b2AwUAk/8XiZDoWJuRc9Q1pEfOBVKhf56gntIhXZREPSXL0S2O
jZgDsGUQa8EcoNr1rx8ehxvueWZUZ03e6a3uL2b+nGX4M90IQh6ApULHFMmrGEtd
pzhEvYwb0HOVfpMHE1CJIO/i6PVzHpyDGW0kHrW7geE8C2t2J69oI0M60epXtMIS
BDzyus7sYiNXrWQ9Go9BLlU4xLl5PIwnyICwmKP52tGM5HDmuJxxo1rFRT8FyuR8
X4+gJGqu+T9InySiIzzPHOYtnUzbAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUnVbx
eEXLtFksMsYw78iiOZ5PfH4wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzJFNUMyMjgwOEREMjExRUU5OTRDOTQ3MDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzzYwDQYJKoZIhvcNAQELBQAD
ggEBAI9/PEHSWRZ0/ODew3RFcXJnmkvobyBzAMltYkqSJtzea4+gTmFqZcqDNUkd
5+bzHFjq6pQx/74raAeMKEv/O8G7/6dsalw7WOC3hXuVKSv+EbTTw1kVigntHIZ+
TLgXbvBFRBNy3IlB53Kr9HoD43RvMrjQD2Jz4MMWDJeeCVj+EYe6Uswx1tyObJwY
KLfABHmrIcPyi6wZHJ5Y8Mu5TsTWEkEeK0NEYjyIYKonUfAzLPSbFgB2wWaNR5Mi
0wG/6vTDxEDd4ZZLIktpC5oEnflj070mZFsgswffJFzSKNZku7m/DdYMRJ55Wdml
+w9Z24xSLBLySHvzrfnI08nho84=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org