Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40027BEEC98511EE851A9FC3775412E6.roa
File: 40027BEEC98511EE851A9FC3775412E6.roa (raw, json)
Hash identifier: nhD7D2xU/Hk00nJ/Le1yeYELqG2Ggr91vTTSH0yREvk=
Subject key identifier: CC:BD:8D:74:D4:BF:C4:48:0C:8F:D2:86:DF:49:2B:F5:02:A8:36:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6F31
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40027BEEC98511EE851A9FC3775412E6.roa
Signing time: Mon 12 Feb 2024 09:01:04 +0000
ROA not before: Mon 12 Feb 2024 09:00:59 +0000
ROA not after: Sat 15 Feb 2025 09:00:59 +0000
asID: 131618
IP address blocks: 45.200.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28465 (0x6f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 12 09:00:59 2024 GMT
Not After : Feb 15 09:00:59 2025 GMT
Subject: CN=65c9de50-a1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:fe:7c:4d:be:65:7b:b4:c5:37:06:cb:29:a8:
91:55:e2:af:4d:63:9c:2d:6d:1f:3a:69:be:17:eb:
18:0b:0b:5c:37:e0:d2:91:84:10:63:5c:fd:a8:81:
86:d4:3d:51:24:d5:c2:29:b5:48:b5:63:45:c2:c2:
9c:e5:5c:a9:33:fa:a5:dd:f7:ad:71:9d:52:12:6c:
96:b8:98:ab:bc:1f:d8:72:ee:fe:bc:20:62:41:24:
a6:05:e2:5c:66:b3:e6:16:a5:1d:cf:cc:4f:0b:8f:
93:f3:70:af:7e:d5:7e:16:bd:a0:de:37:c3:fa:8c:
03:a1:47:9c:cc:2d:cb:04:0d:b0:88:1f:cc:73:ea:
c0:59:e9:5e:96:81:48:40:ee:7b:4e:ac:d9:c0:e1:
3d:bc:c6:b8:c2:03:ed:0a:05:06:24:29:38:c8:00:
7c:dd:b5:40:c4:95:25:a4:b0:45:d5:c8:0a:b1:88:
c8:bf:4d:56:f8:42:67:7f:fd:0e:4b:37:9f:d9:d7:
80:e8:b8:da:f3:db:58:71:d7:84:21:72:3c:57:fb:
06:8a:7c:a4:c7:34:18:d6:33:3b:cb:6f:2a:20:80:
40:00:fe:57:c9:a9:5a:16:55:ec:94:5b:fa:56:0a:
41:f1:13:d0:7f:42:ec:46:d6:53:ff:3f:22:ee:fd:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BD:8D:74:D4:BF:C4:48:0C:8F:D2:86:DF:49:2B:F5:02:A8:36:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/40027BEEC98511EE851A9FC3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.132.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a9:46:e8:53:f2:5d:6a:f4:28:87:f0:af:06:53:f3:40:b9:
0d:15:9b:83:ef:b7:11:d5:2d:4b:a4:c9:1b:20:78:50:81:d1:
b4:fa:0b:8d:71:02:22:5d:cb:80:e9:31:a9:23:d4:13:cb:65:
a9:28:ec:61:9b:b7:cb:f9:84:9f:59:3b:9b:a7:d8:c1:c1:05:
e8:a2:4b:b2:4e:7e:3f:84:d2:3a:c5:f3:34:12:91:d2:0d:ef:
5f:cf:e9:22:5f:fb:7e:f8:be:12:d0:a0:fd:11:0c:3f:65:47:
22:2b:3e:51:cf:a9:15:13:6c:fc:15:50:16:79:7e:c6:9d:c8:
7b:8b:df:a2:d1:c4:f5:c3:69:3e:cf:66:d3:f6:08:f3:07:6f:
05:3f:bc:7f:3a:c4:df:1f:be:08:ce:5f:72:7f:5c:87:69:0b:
7a:44:a3:82:65:52:5b:db:1a:b9:32:f6:5b:00:20:6f:9f:52:
ad:0d:23:85:ef:30:71:9b:8f:a8:af:fc:3a:74:e5:95:cf:9b:
e5:d9:9b:f2:ec:5e:22:55:c0:13:1c:d9:9a:a8:b6:3a:dc:87:
20:e7:39:84:29:7f:69:6f:df:d8:23:7c:58:97:91:6a:7d:f9:
f4:9c:29:6f:56:ff:51:41:c6:66:1e:d1:38:1e:a0:7b:d7:9f:
bf:74:4d:09
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICbzEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMTIwOTAwNTlaFw0yNTAyMTUwOTAwNTlaMBgxFjAU
BgNVBAMTDTY1YzlkZTUwLWExYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD6/nxNvmV7tMU3BsspqJFV4q9NY5wtbR86ab4X6xgLC1w34NKRhBBjXP2o
gYbUPVEk1cIptUi1Y0XCwpzlXKkz+qXd961xnVISbJa4mKu8H9hy7v68IGJBJKYF
4lxms+YWpR3PzE8Lj5PzcK9+1X4WvaDeN8P6jAOhR5zMLcsEDbCIH8xz6sBZ6V6W
gUhA7ntOrNnA4T28xrjCA+0KBQYkKTjIAHzdtUDElSWksEXVyAqxiMi/TVb4Qmd/
/Q5LN5/Z14DouNrz21hx14QhcjxX+waKfKTHNBjWMzvLbyoggEAA/lfJqVoWVeyU
W/pWCkHxE9B/QuxG1lP/PyLu/fyrAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUzL2N
dNS/xEgMj9KG30kr9QKoNk0wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzQwMDI3QkVFQzk4NTExRUU4NTFBOUZDMzc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyIQwDQYJKoZIhvcNAQELBQAD
ggEBAG+pRuhT8l1q9CiH8K8GU/NAuQ0Vm4PvtxHVLUukyRsgeFCB0bT6C41xAiJd
y4DpMakj1BPLZako7GGbt8v5hJ9ZO5un2MHBBeiiS7JOfj+E0jrF8zQSkdIN71/P
6SJf+374vhLQoP0RDD9lRyIrPlHPqRUTbPwVUBZ5fsadyHuL36LRxPXDaT7PZtP2
CPMHbwU/vH86xN8fvgjOX3J/XIdpC3pEo4JlUlvbGrky9lsAIG+fUq0NI4XvMHGb
j6iv/Dp05ZXPm+XZm/LsXiJVwBMc2ZqotjrchyDnOYQpf2lv39gjfFiXkWp9+fSc
KW9W/1FBxmYe0TgeoHvXn790TQk=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org