Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41ECA9B8A45C11EFB1B86B8E762E951A.roa
File: 41ECA9B8A45C11EFB1B86B8E762E951A.roa (raw, json)
Hash identifier: RltewjVOEdTBxTMSctyamjUh8A97o4c6f8QhybzW7co=
Subject key identifier: D8:0F:3E:67:B8:2B:5C:64:06:25:87:15:99:3B:10:C5:9F:2B:A9:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D42E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41ECA9B8A45C11EFB1B86B8E762E951A.roa
Signing time: Sat 16 Nov 2024 20:49:22 +0000
ROA not before: Sat 16 Nov 2024 20:49:19 +0000
ROA not after: Thu 28 Nov 2024 20:49:19 +0000
asID: 133847
IP address blocks: 45.200.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54318 (0xd42e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 20:49:19 2024 GMT
Not After : Nov 28 20:49:19 2024 GMT
Subject: CN=67390552-0ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:95:af:e3:66:cc:82:19:66:04:c5:66:df:d5:
22:c1:08:6f:89:19:ab:aa:09:cf:40:9e:57:79:56:
32:d9:75:d7:5a:76:bf:f2:4f:5e:1d:76:b1:4f:ce:
63:3f:81:a4:2a:d0:87:2f:c7:24:7d:0b:b6:52:3f:
d0:53:8c:2c:64:2f:66:a2:3a:0d:fa:f8:62:7c:ca:
75:0a:3b:67:e7:c8:ec:91:8a:de:95:2b:2c:9d:76:
58:22:96:8c:07:e4:4b:57:a6:af:d1:ff:a7:70:5b:
87:98:4c:14:84:f5:35:66:72:ae:b2:92:08:0b:55:
ae:79:3c:25:bb:2e:fc:ef:d1:56:7a:93:73:49:4d:
32:ca:3c:ab:94:81:57:07:4c:da:ae:7e:87:f8:28:
72:63:fe:6b:81:74:d7:1b:34:70:8a:1b:37:f2:5d:
2b:23:73:db:0d:b3:cc:6e:09:50:6f:09:43:d8:5e:
00:9a:b5:6b:41:f9:12:e2:b9:3e:f8:3c:2b:69:30:
64:01:c5:f4:c4:3a:f3:f4:1f:c0:2c:6d:05:e7:2d:
e5:a1:7f:72:12:88:7f:7a:6d:b7:21:89:59:8c:da:
9a:86:ac:0a:a6:60:79:f2:5e:52:e9:87:ed:f3:f5:
7d:3e:63:4b:d2:31:3f:3c:68:43:9d:1a:8a:77:ba:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0F:3E:67:B8:2B:5C:64:06:25:87:15:99:3B:10:C5:9F:2B:A9:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41ECA9B8A45C11EFB1B86B8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.92.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:6f:99:e2:7a:5f:e3:19:ca:22:8e:df:3e:ca:65:bb:4c:0d:
f7:53:96:d1:a8:a2:4f:73:86:db:22:8c:32:dd:ec:31:6d:20:
58:0d:83:62:9f:1a:84:2b:10:05:8d:aa:46:de:ce:90:a7:97:
83:66:d7:6c:96:99:2f:c6:a1:0e:a8:52:30:ff:29:61:ff:0d:
09:fe:8b:10:81:db:b9:ec:69:fd:a7:c1:fa:13:1e:08:ce:e3:
20:20:35:0e:64:fa:28:71:de:43:a5:58:69:78:d2:6f:22:50:
07:50:a1:91:86:bf:62:1c:e9:08:c2:7e:67:bd:d2:c7:f8:08:
6f:87:5d:56:35:60:76:f9:28:39:68:3f:c4:5c:9e:5b:e2:70:
42:5f:88:39:04:30:e7:98:ff:d8:6b:8d:94:8a:3f:2d:b9:ce:
a0:a9:61:64:8a:90:52:f2:43:0a:02:ab:ee:43:32:22:54:e1:
55:76:21:6a:f2:a6:36:45:48:bb:0a:53:8b:c1:10:cc:f4:69:
31:12:c6:0c:b4:b0:e0:30:61:1d:fd:a8:ee:0b:9f:cf:35:55:
f5:89:fb:08:73:8e:88:d8:72:94:cb:ad:9e:bb:2c:1f:20:33:
44:c7:8c:c1:3a:8b:cf:a2:2d:8e:23:30:a4:e5:5b:66:57:4a:
7f:d8:75:04
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANQuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTE2MjA0OTE5WhcNMjQxMTI4MjA0OTE5WjAYMRYw
FAYDVQQDEw02NzM5MDU1Mi0wYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwZWv42bMghlmBMVm39UiwQhviRmrqgnPQJ5XeVYy2XXXWna/8k9eHXax
T85jP4GkKtCHL8ckfQu2Uj/QU4wsZC9mojoN+vhifMp1Cjtn58jskYrelSssnXZY
IpaMB+RLV6av0f+ncFuHmEwUhPU1ZnKuspIIC1WueTwluy7879FWepNzSU0yyjyr
lIFXB0zarn6H+ChyY/5rgXTXGzRwihs38l0rI3PbDbPMbglQbwlD2F4AmrVrQfkS
4rk++DwraTBkAcX0xDrz9B/ALG0F5y3loX9yEoh/em23IYlZjNqahqwKpmB58l5S
6Yft8/V9PmNL0jE/PGhDnRqKd7pYqwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNgP
Pme4K1xkBiWHFZk7EMWfK6n4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80MUVDQTlCOEE0NUMxMUVGQjFCODZCOEU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLchcMA0GCSqGSIb3DQEBCwUA
A4IBAQBNb5niel/jGcoijt8+ymW7TA33U5bRqKJPc4bbIowy3ewxbSBYDYNinxqE
KxAFjapG3s6Qp5eDZtdslpkvxqEOqFIw/ylh/w0J/osQgdu57Gn9p8H6Ex4IzuMg
IDUOZPoocd5DpVhpeNJvIlAHUKGRhr9iHOkIwn5nvdLH+Ahvh11WNWB2+Sg5aD/E
XJ5b4nBCX4g5BDDnmP/Ya42Uij8tuc6gqWFkipBS8kMKAqvuQzIiVOFVdiFq8qY2
RUi7ClOLwRDM9GkxEsYMtLDgMGEd/ajuC5/PNVX1ifsIc46I2HKUy62euywfIDNE
x4zBOovPoi2OIzCk5VtmV0p/2HUE
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:27 2024 by rpki-client on console-ams.rpki-client.org