Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/525A1D92157611EEA6AAA2194AD9E6FC.roa
File: 525A1D92157611EEA6AAA2194AD9E6FC.roa (raw, json)
Hash identifier: /reefdiiFKigsGztcMmVJQ0QI4gLEdaTZSnF/n4GTJM=
Subject key identifier: 11:1A:38:5F:7E:5D:83:F5:3B:50:C8:97:A0:12:4F:B3:B3:E2:E1:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DE8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/525A1D92157611EEA6AAA2194AD9E6FC.roa
Signing time: Wed 28 Jun 2023 05:40:43 +0000
ROA not before: Wed 28 Jun 2023 05:40:39 +0000
ROA not after: Tue 29 Oct 2024 05:40:39 +0000
asID: 135607
IP address blocks: 45.194.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11752 (0x2de8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 05:40:39 2023 GMT
Not After : Oct 29 05:40:39 2024 GMT
Subject: CN=649bc7db-d333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e2:d4:75:60:05:a1:86:79:83:fa:7d:3c:b6:
17:10:1b:ee:41:79:98:fe:3d:2b:eb:c8:a6:2a:2a:
cf:52:eb:d2:64:cd:e9:ea:e3:8d:36:70:1a:70:c6:
cd:15:fb:f1:98:9a:7f:89:68:38:bc:79:f9:9d:9e:
30:b2:be:63:c9:4a:34:95:ae:38:38:1c:8e:cc:bd:
a9:47:52:41:ca:ae:9c:0c:66:04:fc:e1:90:c7:d4:
cf:bb:d3:2b:63:16:4b:3c:99:b4:5b:2b:b1:d3:f5:
ae:ff:54:27:b9:05:ce:c7:c4:b5:74:09:b3:51:d2:
99:c6:fd:32:c8:b0:71:36:4f:d8:34:48:d6:3c:97:
fb:cb:47:ec:c6:c8:5e:e5:4a:ae:e3:07:3e:ad:c6:
58:a3:3a:9c:59:88:7e:7f:5b:b7:03:56:bb:89:21:
20:82:31:14:6c:e3:5d:1a:0a:89:6f:e2:c0:a6:c5:
f0:fb:42:35:d3:9f:4a:94:f4:22:60:91:ac:c9:c9:
3a:91:41:89:d1:09:a3:2a:49:f6:62:e5:9d:14:51:
39:33:9b:58:95:4e:f2:81:b0:8c:a3:4d:7d:9f:2f:
73:91:f1:bf:8b:a2:04:55:5c:f7:19:97:59:6f:88:
0c:44:e2:40:30:92:51:be:f2:c2:c2:5a:18:ff:bd:
6d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1A:38:5F:7E:5D:83:F5:3B:50:C8:97:A0:12:4F:B3:B3:E2:E1:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/525A1D92157611EEA6AAA2194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.5.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:bc:26:33:93:84:49:8a:61:e6:d4:f5:13:e5:10:dd:44:f6:
75:49:c3:14:76:a9:ce:9e:34:cc:ce:30:ca:58:39:30:12:3b:
f6:ec:5b:fb:8c:74:bb:8e:ab:c4:65:50:2c:de:41:70:35:84:
34:4a:90:70:49:4f:01:cc:5b:fb:2f:ef:27:f6:4e:fd:da:ba:
89:5a:88:c1:7c:47:4b:40:80:0e:13:bb:b5:13:de:c6:30:57:
ce:5c:c0:80:81:39:8a:e8:1b:85:c4:f9:67:09:78:2e:85:b6:
21:af:d2:4a:89:44:2f:11:33:ff:2e:20:5e:7f:b7:86:92:5a:
67:da:fc:c5:c8:6f:6d:e0:62:a9:7a:9f:9e:af:be:ae:93:1d:
57:06:6a:cf:f5:9d:5e:4b:4d:c7:53:30:4d:98:a2:84:09:f5:
b8:4e:8a:54:e1:c8:6a:16:d1:de:0e:92:da:f0:ac:f3:c9:a0:
82:62:6d:03:aa:df:aa:b8:6e:c3:77:6f:48:93:17:f6:eb:bf:
37:12:18:35:6e:f1:51:6c:a7:9f:1a:aa:45:f0:75:f4:3c:6b:
b7:02:98:66:5d:3a:7f:ec:62:60:6d:a1:ff:48:14:88:d8:6c:
65:ba:36:5a:d5:45:05:fb:5f:6d:7b:9b:b4:3a:90:1e:89:2d:
cd:05:3f:06
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICLegwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MjgwNTQwMzlaFw0yNDEwMjkwNTQwMzlaMBgxFjAU
BgNVBAMTDTY0OWJjN2RiLWQzMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCm4tR1YAWhhnmD+n08thcQG+5BeZj+PSvryKYqKs9S69Jkzenq4402cBpw
xs0V+/GYmn+JaDi8efmdnjCyvmPJSjSVrjg4HI7MvalHUkHKrpwMZgT84ZDH1M+7
0ytjFks8mbRbK7HT9a7/VCe5Bc7HxLV0CbNR0pnG/TLIsHE2T9g0SNY8l/vLR+zG
yF7lSq7jBz6txlijOpxZiH5/W7cDVruJISCCMRRs410aColv4sCmxfD7QjXTn0qU
9CJgkazJyTqRQYnRCaMqSfZi5Z0UUTkzm1iVTvKBsIyjTX2fL3OR8b+LogRVXPcZ
l1lviAxE4kAwklG+8sLCWhj/vW2rAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUERo4
X35dg/U7UMiXoBJPs7Pi4acwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzUyNUExRDkyMTU3NjExRUVBNkFBQTIxOTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwgUwDQYJKoZIhvcNAQELBQAD
ggEBAD+8JjOThEmKYebU9RPlEN1E9nVJwxR2qc6eNMzOMMpYOTASO/bsW/uMdLuO
q8RlUCzeQXA1hDRKkHBJTwHMW/sv7yf2Tv3auolaiMF8R0tAgA4Tu7UT3sYwV85c
wICBOYroG4XE+WcJeC6FtiGv0kqJRC8RM/8uIF5/t4aSWmfa/MXIb23gYql6n56v
vq6THVcGas/1nV5LTcdTME2YooQJ9bhOilThyGoW0d4OktrwrPPJoIJibQOq36q4
bsN3b0iTF/brvzcSGDVu8VFsp58aqkXwdfQ8a7cCmGZdOn/sYmBtof9IFIjYbGW6
NlrVRQX7X217m7Q6kB6JLc0FPwY=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org