Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DB4EC08A74D11EFA4B6DD8D762E951A.roa
File: 4DB4EC08A74D11EFA4B6DD8D762E951A.roa (raw, json)
Hash identifier: DYjAUFPpvKjfzESSvfUK0Qrg8YSEDEnToFRk5kNMC+4=
Subject key identifier: AC:64:BF:DE:8C:FD:72:D1:0A:17:4C:13:89:E2:88:D9:66:F8:FC:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DB4EC08A74D11EFA4B6DD8D762E951A.roa
Signing time: Wed 20 Nov 2024 14:39:53 +0000
ROA not before: Wed 20 Nov 2024 14:39:49 +0000
ROA not after: Sat 30 Nov 2024 14:39:49 +0000
asID: 202656
IP address blocks: 45.199.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54980 (0xd6c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:39:49 2024 GMT
Not After : Nov 30 14:39:49 2024 GMT
Subject: CN=673df4b9-8fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ce:ec:eb:01:49:89:98:ba:09:e4:d6:79:eb:
d6:12:0a:79:43:91:9f:92:1a:af:d2:d4:10:76:9b:
97:c5:6b:bf:2e:39:c1:29:2a:16:c0:45:26:df:cf:
37:9f:6b:66:59:df:c0:37:8b:96:07:fc:77:37:a8:
eb:b1:6d:6d:d5:80:5e:b7:77:25:4a:0f:a4:ad:1a:
8b:61:38:4f:c1:bd:dd:cb:1c:a4:9e:7f:0e:7b:30:
55:03:4d:85:c2:9f:09:55:f9:82:cf:75:65:82:88:
d6:8c:cf:07:39:06:3c:30:9e:66:4d:7e:7b:34:57:
74:ec:db:dd:fe:a6:7d:0c:72:29:09:e5:38:87:f1:
d8:e3:96:f5:de:ac:59:df:dc:4a:17:ba:cf:7f:25:
87:9e:2b:50:fa:bb:4a:98:ac:b0:2e:6f:24:c2:0d:
52:5b:05:85:9e:15:01:d0:db:c5:0b:9e:43:f7:f3:
8e:77:60:55:84:0a:fd:8a:15:ba:91:b7:18:2e:f7:
8f:3c:87:34:15:7d:e6:48:d8:ec:d7:13:a3:32:e1:
09:8c:fb:a5:b0:fb:eb:56:4c:a2:d2:17:db:f8:61:
23:cd:b0:c0:8b:53:f9:e7:bb:8e:4d:c4:cc:3a:e4:
09:ea:f3:2b:b5:0a:92:a8:9a:f2:f8:f0:95:b9:80:
d2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:64:BF:DE:8C:FD:72:D1:0A:17:4C:13:89:E2:88:D9:66:F8:FC:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4DB4EC08A74D11EFA4B6DD8D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.224.0/24
Signature Algorithm: sha256WithRSAEncryption
90:81:85:84:e6:40:99:a6:69:2c:36:34:94:2c:00:37:d0:4f:
82:f0:37:eb:a1:1c:22:a4:36:0f:24:61:e0:0b:3a:cf:21:53:
fe:ca:a1:0d:f7:d9:de:ca:4c:18:06:3e:f9:9b:7c:f6:3e:a1:
36:4c:48:ea:ab:84:98:f5:9b:fc:55:79:81:06:23:48:5c:bb:
7d:54:c8:1a:37:61:b9:b8:3f:07:dd:5e:4a:2b:23:f2:a2:e6:
84:9b:e2:6a:d0:62:8a:86:76:ee:87:c1:be:06:48:08:cc:ae:
ef:cb:a4:7c:75:31:09:46:20:93:28:fd:27:5f:a2:87:8e:1b:
9e:a8:72:c5:40:36:2a:7a:e6:01:0e:b0:e4:0b:9e:59:72:ae:
bd:e0:80:e8:fb:d9:89:70:93:14:22:9e:2c:28:a1:19:49:cc:
9c:34:6c:fd:2b:58:b0:c8:8e:a2:03:30:bd:a9:d7:11:e3:64:
7e:98:0b:7d:4a:9e:ce:91:e0:15:22:61:f9:e0:f6:28:bc:f8:
3d:0a:18:3b:86:f4:a6:cf:5a:c4:ba:41:7e:6b:bb:c2:e9:7f:
17:4e:66:30:bc:1f:86:0c:13:39:88:fb:cc:36:eb:63:51:a6:
8b:99:22:b6:48:84:ae:e8:75:10:6b:f0:81:39:f1:33:1c:79:
27:a1:09:38
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANbEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMTQzOTQ5WhcNMjQxMTMwMTQzOTQ5WjAYMRYw
FAYDVQQDEw02NzNkZjRiOS04ZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxM7s6wFJiZi6CeTWeevWEgp5Q5Gfkhqv0tQQdpuXxWu/LjnBKSoWwEUm
3883n2tmWd/AN4uWB/x3N6jrsW1t1YBet3clSg+krRqLYThPwb3dyxyknn8OezBV
A02Fwp8JVfmCz3VlgojWjM8HOQY8MJ5mTX57NFd07Nvd/qZ9DHIpCeU4h/HY45b1
3qxZ39xKF7rPfyWHnitQ+rtKmKywLm8kwg1SWwWFnhUB0NvFC55D9/OOd2BVhAr9
ihW6kbcYLvePPIc0FX3mSNjs1xOjMuEJjPulsPvrVkyi0hfb+GEjzbDAi1P557uO
TcTMOuQJ6vMrtQqSqJry+PCVuYDS2QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKxk
v96M/XLRChdME4niiNlm+PzNMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80REI0RUMwOEE3NEQxMUVGQTRCNkREOEQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcfgMA0GCSqGSIb3DQEBCwUA
A4IBAQCQgYWE5kCZpmksNjSULAA30E+C8DfroRwipDYPJGHgCzrPIVP+yqEN99ne
ykwYBj75m3z2PqE2TEjqq4SY9Zv8VXmBBiNIXLt9VMgaN2G5uD8H3V5KKyPyouaE
m+Jq0GKKhnbuh8G+BkgIzK7vy6R8dTEJRiCTKP0nX6KHjhueqHLFQDYqeuYBDrDk
C55Zcq694IDo+9mJcJMUIp4sKKEZScycNGz9K1iwyI6iAzC9qdcR42R+mAt9Sp7O
keAVImH54PYovPg9Chg7hvSmz1rEukF+a7vC6X8XTmYwvB+GDBM5iPvMNutjUaaL
mSK2SISu6HUQa/CBOfEzHHknoQk4
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:29 2024 by rpki-client on console-ams.rpki-client.org