Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/349038AAB80511EEB727F4A6775412E6.roa
File: 349038AAB80511EEB727F4A6775412E6.roa (raw, json)
Hash identifier: Fdv9eH3Wqn573RnF010frNMfA5wYFbhvbdg9lvxkOo0=
Subject key identifier: 01:E7:C8:29:FA:72:DD:42:07:4A:6E:0B:37:79:D4:4E:67:BA:37:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 642A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/349038AAB80511EEB727F4A6775412E6.roa
Signing time: Sun 21 Jan 2024 02:31:39 +0000
ROA not before: Sun 21 Jan 2024 02:31:36 +0000
ROA not after: Thu 08 Aug 2024 02:31:36 +0000
asID: 133861
IP address blocks: 45.207.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25642 (0x642a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 21 02:31:36 2024 GMT
Not After : Aug 8 02:31:36 2024 GMT
Subject: CN=65ac820b-c8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e4:bc:15:5c:47:f2:b2:5d:cc:a1:e9:68:c1:
12:ee:f8:bb:98:97:c7:f7:b1:2b:dc:f6:3a:73:59:
53:be:fd:da:61:48:04:43:df:d4:55:29:ed:3a:d2:
d8:73:b0:a0:3f:d7:da:d7:8c:4b:10:e3:0c:d7:34:
d3:17:26:ed:f9:10:b5:9f:f6:44:90:46:a9:3e:aa:
86:ed:40:1e:25:2c:c7:c3:d8:a6:92:ab:45:d0:14:
31:37:dc:f5:6e:13:d7:85:cd:93:96:fd:d1:e1:a1:
6e:60:ab:f2:cb:f2:bf:4f:99:62:86:28:ee:fa:4c:
21:90:33:36:ed:f6:26:fe:e1:15:07:ef:e9:be:2a:
8e:9a:a9:04:a3:a7:0a:37:40:a7:cb:f7:ce:a6:f4:
09:49:25:99:80:e4:ce:8d:5f:f8:75:a8:6f:ad:0c:
63:61:cc:10:eb:91:40:44:8e:df:04:25:95:19:7a:
28:8f:92:22:29:fc:6e:b3:6c:34:52:4e:07:ac:88:
bf:e7:33:21:a9:eb:9c:54:59:79:c3:4f:95:fc:e3:
44:91:9a:8b:2d:49:a0:ed:09:da:e9:c7:53:9e:0a:
48:37:68:63:b1:a2:27:e6:28:d0:97:e6:f6:ae:56:
b6:a0:9c:66:a4:66:34:05:8e:58:79:da:45:cf:b3:
5f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E7:C8:29:FA:72:DD:42:07:4A:6E:0B:37:79:D4:4E:67:BA:37:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/349038AAB80511EEB727F4A6775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a4:ad:0f:d9:28:f3:05:03:da:f7:46:4e:00:98:81:35:06:
f3:85:66:79:26:15:b9:46:ce:97:56:f5:67:f1:5a:3f:33:7a:
e3:f2:ba:ca:4f:ab:ff:27:e9:bb:c1:d7:4e:83:c4:53:f2:e1:
45:4d:05:24:aa:d2:24:8c:59:36:c7:f0:b5:89:e5:4c:4e:4d:
0a:e0:0f:b6:30:50:e5:63:89:58:d2:fe:63:ad:94:2d:45:5f:
d5:9c:1a:ef:2b:33:c8:cd:98:bb:a5:9b:9b:a1:23:a4:2e:67:
0f:a3:5c:b7:c9:2c:bb:7a:46:61:ae:a9:e1:c6:86:46:e1:09:
72:3d:e9:f4:b2:da:98:14:57:de:26:55:14:dd:5e:9c:d0:04:
ce:3a:51:d8:67:54:3a:71:52:a7:ab:2d:86:fe:1e:36:62:d7:
ca:fe:0c:66:8a:56:9d:01:d1:90:41:aa:4b:18:ed:a8:91:93:
cf:6d:1f:cc:fe:55:46:d8:8b:0b:34:e5:81:07:07:8a:e7:49:
f6:06:47:fd:72:55:9c:57:62:5e:cb:ae:ad:99:49:96:b1:d6:
56:bf:fb:32:2e:c5:89:d4:69:83:2f:e4:48:33:be:c5:a4:61:
ed:3e:e0:ba:a9:29:f3:f7:fe:17:2a:41:51:79:d9:f9:1e:57:
a6:38:26:56
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICZCowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAxMjEwMjMxMzZaFw0yNDA4MDgwMjMxMzZaMBgxFjAU
BgNVBAMTDTY1YWM4MjBiLWM4YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCy5LwVXEfysl3MoelowRLu+LuYl8f3sSvc9jpzWVO+/dphSARD39RVKe06
0thzsKA/19rXjEsQ4wzXNNMXJu35ELWf9kSQRqk+qobtQB4lLMfD2KaSq0XQFDE3
3PVuE9eFzZOW/dHhoW5gq/LL8r9PmWKGKO76TCGQMzbt9ib+4RUH7+m+Ko6aqQSj
pwo3QKfL986m9AlJJZmA5M6NX/h1qG+tDGNhzBDrkUBEjt8EJZUZeiiPkiIp/G6z
bDRSTgesiL/nMyGp65xUWXnDT5X840SRmostSaDtCdrpx1OeCkg3aGOxoifmKNCX
5vauVragnGakZjQFjlh52kXPs19pAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUAefI
Kfpy3UIHSm4LN3nUTme6N+wwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzM0OTAzOEFBQjgwNTExRUVCNzI3RjRBNjc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzygwDQYJKoZIhvcNAQELBQAD
ggEBAAikrQ/ZKPMFA9r3Rk4AmIE1BvOFZnkmFblGzpdW9WfxWj8zeuPyuspPq/8n
6bvB106DxFPy4UVNBSSq0iSMWTbH8LWJ5UxOTQrgD7YwUOVjiVjS/mOtlC1FX9Wc
Gu8rM8jNmLulm5uhI6QuZw+jXLfJLLt6RmGuqeHGhkbhCXI96fSy2pgUV94mVRTd
XpzQBM46UdhnVDpxUqerLYb+HjZi18r+DGaKVp0B0ZBBqksY7aiRk89tH8z+VUbY
iws05YEHB4rnSfYGR/1yVZxXYl7Lrq2ZSZax1la/+zIuxYnUaYMv5EgzvsWkYe0+
4LqpKfP3/hcqQVF52fkeV6Y4JlY=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org