Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49BE2A267EC011EE83C7F7714AD9E6FC.roa
File: 49BE2A267EC011EE83C7F7714AD9E6FC.roa (raw, json)
Hash identifier: hd7NkUPJSXlV7aMyRZNMXyPkOzFIrZoLIKZRAuRGWUU=
Subject key identifier: BC:80:D2:3E:15:7F:35:EB:59:A1:16:A6:DD:D6:64:A6:C1:D7:34:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 450B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49BE2A267EC011EE83C7F7714AD9E6FC.roa
Signing time: Thu 09 Nov 2023 05:24:43 +0000
ROA not before: Thu 09 Nov 2023 05:24:39 +0000
ROA not after: Thu 07 Nov 2024 05:24:39 +0000
asID: 133847
IP address blocks: 45.200.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17675 (0x450b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 9 05:24:39 2023 GMT
Not After : Nov 7 05:24:39 2024 GMT
Subject: CN=654c6d1b-1d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e9:a2:ca:cf:e9:fb:87:e9:1e:65:f7:bc:53:
67:6e:36:01:e0:5e:bb:04:0a:13:f4:55:a4:e8:6b:
c2:4d:7b:19:70:a3:cd:b6:8b:ce:72:20:a0:48:74:
a5:b1:4b:7d:b2:b7:fb:19:6c:bd:34:c9:2e:8e:ea:
c9:2a:44:eb:bd:5e:31:ff:51:3a:6c:eb:2e:02:ba:
e4:3a:6b:2f:13:b3:0c:bd:8b:65:4e:0f:c6:20:db:
fe:1a:50:80:42:b2:63:92:e0:dc:42:03:1c:48:18:
98:34:50:5c:e1:8b:e5:10:cf:82:aa:25:b6:cc:91:
d9:6e:66:8a:dc:d3:62:cf:4d:fd:b0:18:3a:25:39:
4b:1a:c1:ac:06:ae:7f:8f:39:c2:61:0e:c1:5c:46:
72:62:ca:9a:c2:6a:14:25:d4:82:2e:d5:86:57:8d:
01:0e:ea:ac:57:e1:a8:d2:f6:21:ea:77:f1:7d:b5:
96:6b:3c:f2:0b:13:e7:2e:fa:5c:c8:90:6c:5d:86:
e2:19:3b:1b:6a:87:e0:5c:ee:6d:1c:fe:d1:59:35:
ab:d8:56:00:3e:35:4d:15:61:33:ec:48:27:9e:6f:
5d:2f:09:a1:5c:0a:7c:e9:47:28:8a:11:e5:fd:aa:
e2:f1:14:9d:05:1c:95:85:04:f5:70:ea:fc:ab:da:
93:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:80:D2:3E:15:7F:35:EB:59:A1:16:A6:DD:D6:64:A6:C1:D7:34:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49BE2A267EC011EE83C7F7714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.77.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c9:6b:76:48:e0:80:1c:0b:a6:8a:2f:c6:66:36:f6:d6:ef:
5c:15:80:c0:30:4e:e7:b5:5f:b1:78:73:04:3e:f5:ce:40:ba:
24:f5:38:8b:b0:cb:70:e7:63:83:90:fe:89:70:65:59:24:f0:
69:81:88:96:22:dc:d1:d4:d8:47:03:ae:28:40:32:fc:28:83:
78:ac:fc:a9:a0:da:e1:94:c6:3b:2f:2d:cf:53:fd:f3:0d:e3:
c5:d0:82:ea:43:19:a5:5f:7f:7d:d8:9f:46:8b:f5:26:06:10:
99:7a:f7:46:31:c0:ec:2f:a9:04:52:e9:e7:4c:69:87:17:e2:
90:30:d9:2d:61:ce:dd:e4:41:eb:b0:05:50:e0:a8:33:72:89:
1f:b8:22:29:b4:fa:a3:7e:74:4b:ae:0d:68:50:b7:f9:5f:99:
bb:0b:5b:e4:48:59:98:31:b4:c3:0f:77:f0:48:55:5b:4d:ae:
6e:dd:d2:8c:3f:52:18:83:80:3b:92:e1:36:3e:59:4d:50:6f:
f3:70:fd:40:e3:d0:a3:84:26:ef:6a:3a:2c:0b:57:9b:94:ff:
7e:63:89:9b:42:54:d6:8b:2e:2c:e5:bb:db:de:e4:96:c6:07:
2e:56:da:11:92:11:7b:53:bd:6a:dc:ca:30:b7:0f:99:39:ad:
cb:ec:28:76
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICRQswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMDkwNTI0MzlaFw0yNDExMDcwNTI0MzlaMBgxFjAU
BgNVBAMTDTY1NGM2ZDFiLTFkMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCd6aLKz+n7h+keZfe8U2duNgHgXrsEChP0VaToa8JNexlwo822i85yIKBI
dKWxS32yt/sZbL00yS6O6skqROu9XjH/UTps6y4CuuQ6ay8Tswy9i2VOD8Yg2/4a
UIBCsmOS4NxCAxxIGJg0UFzhi+UQz4KqJbbMkdluZorc02LPTf2wGDolOUsawawG
rn+POcJhDsFcRnJiyprCahQl1IIu1YZXjQEO6qxX4ajS9iHqd/F9tZZrPPILE+cu
+lzIkGxdhuIZOxtqh+Bc7m0c/tFZNavYVgA+NU0VYTPsSCeeb10vCaFcCnzpRyiK
EeX9quLxFJ0FHJWFBPVw6vyr2pP7AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUvIDS
PhV/NetZoRam3dZkpsHXNC0wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzQ5QkUyQTI2N0VDMDExRUU4M0M3Rjc3MTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyE0wDQYJKoZIhvcNAQELBQAD
ggEBAG7Ja3ZI4IAcC6aKL8ZmNvbW71wVgMAwTue1X7F4cwQ+9c5AuiT1OIuwy3Dn
Y4OQ/olwZVkk8GmBiJYi3NHU2EcDrihAMvwog3is/Kmg2uGUxjsvLc9T/fMN48XQ
gupDGaVff33Yn0aL9SYGEJl690YxwOwvqQRS6edMaYcX4pAw2S1hzt3kQeuwBVDg
qDNyiR+4Iim0+qN+dEuuDWhQt/lfmbsLW+RIWZgxtMMPd/BIVVtNrm7d0ow/UhiD
gDuS4TY+WU1Qb/Nw/UDj0KOEJu9qOiwLV5uU/35jiZtCVNaLLizlu9ve5JbGBy5W
2hGSEXtTvWrcyjC3D5k5rcvsKHY=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org