Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53450266B5F811EFBB64BB7E762E951A.roa
File: 53450266B5F811EFBB64BB7E762E951A.roa (raw, json)
Hash identifier: aYmVwagnDjrOxxT9S2QIuGXYcwo+EZlCZzp4d5e5eKE=
Subject key identifier: E2:78:6A:3F:98:9E:8D:21:A3:4D:2F:EB:4E:44:36:9A:84:95:FC:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E134
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53450266B5F811EFBB64BB7E762E951A.roa
Signing time: Mon 09 Dec 2024 06:39:22 +0000
ROA not before: Mon 09 Dec 2024 06:39:19 +0000
ROA not after: Mon 19 Oct 2026 06:39:19 +0000
asID: 150706
IP address blocks: 45.204.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57652 (0xe134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 9 06:39:19 2024 GMT
Not After : Oct 19 06:39:19 2026 GMT
Subject: CN=6756909a-afef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:bb:26:50:29:39:ca:41:3e:16:6f:04:2b:cb:
46:d0:0c:28:67:60:a0:a4:d2:92:bb:55:dd:cd:ee:
33:e0:1b:db:c5:8f:eb:ea:1f:7b:a5:73:59:00:7b:
ef:e4:dc:d6:90:dc:44:f9:ff:5d:25:0f:96:e3:86:
1c:db:79:9d:40:88:1b:e8:0a:0f:74:19:94:9c:39:
97:12:d2:9d:f9:d3:8c:24:94:c8:4b:da:f1:23:1f:
91:48:07:a5:18:0a:80:fd:99:f9:fd:2e:18:6d:56:
47:3e:3d:c5:11:84:bf:1e:dc:63:f9:17:19:2b:27:
5e:8f:d8:eb:3a:e3:2c:39:e5:e3:0d:be:98:ec:9e:
07:2c:40:6c:b1:71:9c:78:6e:ef:a0:d2:75:b1:87:
b8:40:74:55:16:b2:c6:cb:48:d5:63:36:c5:c1:c2:
03:e2:99:39:34:c9:68:9f:f3:db:a3:fc:de:74:1a:
aa:a8:d8:ce:6d:02:4d:a2:c8:40:4a:74:ea:d6:88:
ec:50:de:74:3f:71:99:05:72:3e:c9:70:1f:55:53:
45:20:d1:48:a2:f4:98:a2:e9:bb:b2:0c:ea:6d:de:
76:5b:6b:37:15:ef:5b:64:82:1d:93:94:07:8a:bd:
9f:66:38:5d:64:bc:06:9e:5a:8f:68:58:f9:59:eb:
37:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:78:6A:3F:98:9E:8D:21:A3:4D:2F:EB:4E:44:36:9A:84:95:FC:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53450266B5F811EFBB64BB7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.8.0/21
Signature Algorithm: sha256WithRSAEncryption
86:8d:7a:60:2a:c4:92:8c:14:8b:d6:13:9d:bb:e4:c8:ee:8b:
3e:52:e1:0c:dc:57:bf:11:e8:ee:3f:65:cf:63:d7:33:f2:2e:
6f:3c:c5:c6:fb:3f:0a:34:5e:8c:dd:3f:b0:20:0d:b0:8f:05:
70:83:5f:32:fa:ce:f6:35:3e:9b:50:2a:5d:5d:aa:52:01:94:
74:3b:4a:68:05:3c:b8:8d:25:0b:98:77:6b:1a:2d:62:fe:34:
4a:f2:3b:5f:c8:54:19:88:f4:66:47:2a:c7:8f:10:c2:43:62:
80:93:ed:2b:6c:c8:7b:80:2b:c6:e9:c1:04:fe:e7:b2:47:c2:
1f:de:b4:c8:ca:4d:d9:40:a1:b8:38:db:0f:0c:e2:9b:36:24:
e7:d4:fd:0c:0a:90:f9:b1:4d:04:a0:d1:37:80:3d:bb:08:a9:
32:5d:a4:eb:1d:b5:51:d1:1c:c4:ac:06:42:e4:c1:9d:65:7f:
22:71:02:ad:7a:cc:a5:52:bc:7e:4d:dd:ef:01:1a:c2:47:b1:
bb:a0:9c:0d:df:e2:a4:ba:ef:ff:73:3b:5c:9e:a9:09:84:5a:
9b:52:dc:91:72:32:d7:1d:98:00:7a:36:2b:81:11:37:21:f2:
f3:b7:5c:31:41:e9:2b:37:ff:4c:0b:c0:91:37:3e:d3:0a:ac:
01:b0:f2:d7
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOE0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjA5MDYzOTE5WhcNMjYxMDE5MDYzOTE5WjAYMRYw
FAYDVQQDEw02NzU2OTA5YS1hZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8rsmUCk5ykE+Fm8EK8tG0AwoZ2CgpNKSu1Xdze4z4BvbxY/r6h97pXNZ
AHvv5NzWkNxE+f9dJQ+W44Yc23mdQIgb6AoPdBmUnDmXEtKd+dOMJJTIS9rxIx+R
SAelGAqA/Zn5/S4YbVZHPj3FEYS/Htxj+RcZKydej9jrOuMsOeXjDb6Y7J4HLEBs
sXGceG7voNJ1sYe4QHRVFrLGy0jVYzbFwcID4pk5NMlon/Pbo/zedBqqqNjObQJN
oshASnTq1ojsUN50P3GZBXI+yXAfVVNFINFIovSYoum7sgzqbd52W2s3Fe9bZIId
k5QHir2fZjhdZLwGnlqPaFj5Wes3DQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOJ4
aj+Yno0ho00v605ENpqElfxdMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MzQ1MDI2NkI1RjgxMUVGQkI2NEJCN0U3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcwIMA0GCSqGSIb3DQEBCwUA
A4IBAQCGjXpgKsSSjBSL1hOdu+TI7os+UuEM3Fe/EejuP2XPY9cz8i5vPMXG+z8K
NF6M3T+wIA2wjwVwg18y+s72NT6bUCpdXapSAZR0O0poBTy4jSULmHdrGi1i/jRK
8jtfyFQZiPRmRyrHjxDCQ2KAk+0rbMh7gCvG6cEE/ueyR8If3rTIyk3ZQKG4ONsP
DOKbNiTn1P0MCpD5sU0EoNE3gD27CKkyXaTrHbVR0RzErAZC5MGdZX8icQKtesyl
Urx+Td3vARrCR7G7oJwN3+Kkuu//cztcnqkJhFqbUtyRcjLXHZgAejYrgRE3IfLz
t1wxQekrN/9MC8CRNz7TCqwBsPLX
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:35 2025 by rpki-client