Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45E8EA3E8D3411EFA65F8283762E951A.roa
File: 45E8EA3E8D3411EFA65F8283762E951A.roa (raw, json)
Hash identifier: qxMAOzFHBKNFxqAfcOkKsuDfiBEH6uKYB83DkYzn0oM=
Subject key identifier: 58:D7:F5:5B:B6:08:E1:83:E7:A4:3D:DD:16:D0:E6:A1:92:EF:49:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C6C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45E8EA3E8D3411EFA65F8283762E951A.roa
Signing time: Fri 18 Oct 2024 09:35:12 +0000
ROA not before: Fri 18 Oct 2024 09:35:09 +0000
ROA not after: Sat 23 Nov 2024 09:35:09 +0000
asID: 202656
IP address blocks: 45.199.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50880 (0xc6c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:35:09 2024 GMT
Not After : Nov 23 09:35:09 2024 GMT
Subject: CN=67122bd0-a28b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:26:87:46:08:ad:72:71:fa:1a:38:52:5e:
14:bb:98:c8:cb:65:57:75:8a:f3:3f:0b:89:63:18:
3a:a0:5c:9c:ac:8c:51:d3:6f:35:aa:23:db:34:57:
4a:20:ce:ee:48:a9:54:08:e7:a1:d3:c1:88:fa:dc:
57:62:a8:0c:32:68:77:a8:c4:e8:14:98:c3:4d:68:
13:58:16:f4:97:dd:02:f1:b2:4e:d9:2b:73:1e:f0:
e7:a2:b2:26:cb:fe:93:f4:30:51:b7:0a:96:58:92:
ab:94:e3:2e:ac:73:8e:93:b6:9d:88:6a:88:6d:02:
db:f9:02:fe:77:b8:38:d0:16:af:27:02:7d:d3:9b:
60:1a:9f:c5:f7:aa:a0:e8:a3:fc:25:ee:c4:84:f3:
3e:b9:27:68:f8:84:97:31:da:bb:7c:d9:f4:7f:da:
54:73:15:e1:46:e8:fa:bf:5d:6a:83:89:97:c3:4a:
f3:ab:93:83:b0:bf:c1:a5:65:ef:d9:15:de:ff:b6:
5a:55:f4:c8:c5:2d:15:e0:54:99:c6:eb:64:00:8e:
df:b4:06:76:2b:bb:29:db:ed:05:52:3e:de:3c:6d:
30:b7:b4:00:c3:59:e0:fe:42:58:94:c6:41:4b:24:
42:af:94:3b:af:6a:d7:8d:12:f1:da:b5:5f:68:87:
a8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D7:F5:5B:B6:08:E1:83:E7:A4:3D:DD:16:D0:E6:A1:92:EF:49:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45E8EA3E8D3411EFA65F8283762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.192.0/18
Signature Algorithm: sha256WithRSAEncryption
89:be:7b:10:db:db:a4:e1:56:8f:0d:6c:4a:94:63:32:01:31:
bd:a8:7f:59:11:d3:b0:a4:00:bc:ed:2c:82:2f:b8:73:c0:6e:
2d:ca:03:6b:87:35:31:d2:16:c0:3f:18:2f:77:aa:27:0c:f1:
13:2a:44:ad:b1:08:a8:cf:df:f4:1e:98:b5:51:c5:ba:95:fe:
56:14:03:d3:65:72:a0:1f:e4:ef:f2:92:65:87:c8:8d:49:3a:
86:99:46:1b:4d:84:14:09:ed:48:4b:b8:ef:ca:53:4a:14:1b:
d3:0e:9b:a9:43:04:09:0a:6e:25:78:9f:94:05:bc:d7:b7:56:
d5:fd:4c:03:cc:94:e2:23:99:99:dc:29:48:70:e0:01:20:6b:
47:55:1f:26:09:8d:2c:df:d5:14:c1:c7:71:eb:f1:43:23:ea:
a4:bf:b1:3a:21:35:da:ac:90:86:9e:e4:2f:a6:d9:cb:bb:6c:
b1:22:7a:83:a3:f1:b8:b1:ee:cc:0e:3b:24:1d:f2:76:1f:55:
b1:54:2b:3f:c4:a3:b8:41:f5:d9:2c:aa:02:db:e1:63:3c:ca:
0e:b8:b7:27:7e:06:26:b5:b6:c9:43:1d:ec:24:b8:d4:62:03:
40:af:45:90:8c:47:b0:c6:11:78:1a:52:63:05:27:20:0c:1d:
6f:53:f6:23
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMbAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDE4MDkzNTA5WhcNMjQxMTIzMDkzNTA5WjAYMRYw
FAYDVQQDEw02NzEyMmJkMC1hMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr0Qmh0YIrXJx+ho4Ul4Uu5jIy2VXdYrzPwuJYxg6oFycrIxR0281qiPb
NFdKIM7uSKlUCOeh08GI+txXYqgMMmh3qMToFJjDTWgTWBb0l90C8bJO2StzHvDn
orImy/6T9DBRtwqWWJKrlOMurHOOk7adiGqIbQLb+QL+d7g40BavJwJ905tgGp/F
96qg6KP8Je7EhPM+uSdo+ISXMdq7fNn0f9pUcxXhRuj6v11qg4mXw0rzq5ODsL/B
pWXv2RXe/7ZaVfTIxS0V4FSZxutkAI7ftAZ2K7sp2+0FUj7ePG0wt7QAw1ng/kJY
lMZBSyRCr5Q7r2rXjRLx2rVfaIeodwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFjX
9Vu2COGD56Q93RbQ5qGS70mfMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80NUU4RUEzRThEMzQxMUVGQTY1RjgyODM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGLcfAMA0GCSqGSIb3DQEBCwUA
A4IBAQCJvnsQ29uk4VaPDWxKlGMyATG9qH9ZEdOwpAC87SyCL7hzwG4tygNrhzUx
0hbAPxgvd6onDPETKkStsQioz9/0Hpi1UcW6lf5WFAPTZXKgH+Tv8pJlh8iNSTqG
mUYbTYQUCe1IS7jvylNKFBvTDpupQwQJCm4leJ+UBbzXt1bV/UwDzJTiI5mZ3ClI
cOABIGtHVR8mCY0s39UUwcdx6/FDI+qkv7E6ITXarJCGnuQvptnLu2yxInqDo/G4
se7MDjskHfJ2H1WxVCs/xKO4QfXZLKoC2+FjPMoOuLcnfgYmtbbJQx3sJLjUYgNA
r0WQjEewxhF4GlJjBScgDB1vU/Yj
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:28 2024 by rpki-client on console-ams.rpki-client.org