Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36FFAB06A74811EFAED1B56E762E951A.roa
File: 36FFAB06A74811EFAED1B56E762E951A.roa (raw, json)
Hash identifier: 25hSKDyIUcR976oOri+wopHZOqilnur7jX5MqaEs+QM=
Subject key identifier: 56:AC:34:2A:1D:D5:1E:C5:08:8F:ED:1D:04:45:F1:04:60:84:78:D1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D68A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36FFAB06A74811EFAED1B56E762E951A.roa
Signing time: Wed 20 Nov 2024 14:03:27 +0000
ROA not before: Wed 20 Nov 2024 14:03:24 +0000
ROA not after: Sat 30 Nov 2024 14:03:24 +0000
asID: 202656
IP address blocks: 45.200.162.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54922 (0xd68a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:03:24 2024 GMT
Not After : Nov 30 14:03:24 2024 GMT
Subject: CN=673dec2f-77af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9d:b5:75:ab:ed:65:1e:aa:9f:27:23:33:69:
ff:19:07:b0:6b:3e:41:95:ad:bd:cb:ca:08:af:4b:
37:27:2f:40:70:be:38:7a:ac:58:39:a7:df:ea:17:
43:eb:6b:c9:f4:cc:eb:ac:39:e6:ae:fa:c7:9f:44:
80:9b:b9:13:3e:50:05:84:57:da:3d:8b:21:d2:e6:
33:a0:57:a8:c9:f4:94:e9:b9:17:e7:1d:13:5a:bd:
a6:a9:3f:49:25:1b:50:f3:b8:b0:8a:3e:7c:d8:22:
68:0f:e4:8b:a2:cb:28:d6:c6:64:ce:48:6c:93:e8:
20:ec:f9:fe:79:53:a0:75:7b:17:d9:fe:05:52:25:
a7:a1:46:c3:1a:73:81:89:27:8e:5f:0b:73:c4:4e:
35:7d:9a:f1:ee:1a:cf:aa:26:49:c9:63:5b:68:86:
93:bd:86:94:fd:e9:bd:3c:98:d0:1a:60:0a:a9:3e:
26:54:88:3d:b7:c5:d2:a0:f3:d6:1e:5d:cc:62:e7:
45:1a:77:06:8d:e2:06:45:6b:9d:fb:98:76:21:ae:
b3:a5:da:ae:1b:65:ab:d0:14:98:76:7b:94:94:fa:
49:fb:d7:ce:26:c0:42:69:07:27:fc:b5:0e:85:a9:
10:bb:a0:a7:05:c8:bd:56:70:8c:9a:e1:bf:c8:e1:
d2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AC:34:2A:1D:D5:1E:C5:08:8F:ED:1D:04:45:F1:04:60:84:78:D1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/36FFAB06A74811EFAED1B56E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.162.0/23
Signature Algorithm: sha256WithRSAEncryption
19:68:3b:6f:e1:a4:50:a8:00:ba:7e:13:be:ba:82:d7:9f:47:
9d:b8:c2:04:64:de:14:29:aa:42:4c:5b:b9:e9:2a:91:7a:19:
4d:2e:93:ba:5d:75:1d:56:af:16:da:e3:6d:7a:90:43:bc:63:
2b:b2:30:04:f6:30:b7:0c:09:40:5c:1c:27:de:a7:01:8d:ce:
27:42:91:f2:6c:3d:53:75:62:8e:1c:f3:ab:65:0c:07:bd:9e:
1e:dc:2e:c8:4e:a6:21:d1:c2:80:f6:06:de:af:df:be:2f:66:
97:9c:fc:12:da:5a:ce:55:49:15:be:b1:28:07:78:23:ee:a0:
c5:fa:06:1f:a1:9d:30:d0:32:3e:87:0d:71:c6:d6:b2:48:4c:
0f:9e:46:0f:79:57:85:59:3a:74:8c:19:c2:2b:ec:5d:f6:c6:
96:b2:01:a1:2a:bc:69:bc:b4:df:bd:4a:27:e8:7b:f2:47:20:
9e:18:94:c8:37:7b:dd:b2:7d:91:ef:9f:4b:c3:3b:d3:08:cf:
51:9c:99:b7:b0:07:27:b0:d5:06:55:5c:b1:a4:83:ff:b7:59:
79:69:0c:93:6b:d8:ff:f0:06:d6:82:3b:9e:4f:f0:3b:6b:05:
be:19:35:8d:59:80:64:69:90:ee:b8:67:3a:bf:69:15:6a:7c:
f6:29:79:d1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANaKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMTQwMzI0WhcNMjQxMTMwMTQwMzI0WjAYMRYw
FAYDVQQDEw02NzNkZWMyZi03N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzp21davtZR6qnycjM2n/GQewaz5Bla29y8oIr0s3Jy9AcL44eqxYOaff
6hdD62vJ9MzrrDnmrvrHn0SAm7kTPlAFhFfaPYsh0uYzoFeoyfSU6bkX5x0TWr2m
qT9JJRtQ87iwij582CJoD+SLosso1sZkzkhsk+gg7Pn+eVOgdXsX2f4FUiWnoUbD
GnOBiSeOXwtzxE41fZrx7hrPqiZJyWNbaIaTvYaU/em9PJjQGmAKqT4mVIg9t8XS
oPPWHl3MYudFGncGjeIGRWud+5h2Ia6zpdquG2Wr0BSYdnuUlPpJ+9fOJsBCaQcn
/LUOhakQu6CnBci9VnCMmuG/yOHSgwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFas
NCod1R7FCI/tHQRF8QRghHjRMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zNkZGQUIwNkE3NDgxMUVGQUVEMUI1NkU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLciiMA0GCSqGSIb3DQEBCwUA
A4IBAQAZaDtv4aRQqAC6fhO+uoLXn0eduMIEZN4UKapCTFu56SqRehlNLpO6XXUd
Vq8W2uNtepBDvGMrsjAE9jC3DAlAXBwn3qcBjc4nQpHybD1TdWKOHPOrZQwHvZ4e
3C7ITqYh0cKA9gber9++L2aXnPwS2lrOVUkVvrEoB3gj7qDF+gYfoZ0w0DI+hw1x
xtaySEwPnkYPeVeFWTp0jBnCK+xd9saWsgGhKrxpvLTfvUon6HvyRyCeGJTIN3vd
sn2R759LwzvTCM9RnJm3sAcnsNUGVVyxpIP/t1l5aQyTa9j/8AbWgjueT/A7awW+
GTWNWYBkaZDuuGc6v2kVanz2KXnR
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:24 2024 by rpki-client on console-fra.rpki-client.org