Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55B155B85AD611EFB2E2EC91762E951A.roa
File: 55B155B85AD611EFB2E2EC91762E951A.roa (raw, json)
Hash identifier: KVrIuvyICOfB55Ekh/T8isJrLqg3WLLZHXHpUs1vg7s=
Subject key identifier: B6:9F:FD:59:7C:94:D3:E7:14:79:04:21:FB:6B:99:3E:49:A4:EC:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A797
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55B155B85AD611EFB2E2EC91762E951A.roa
Signing time: Thu 15 Aug 2024 07:16:48 +0000
ROA not before: Thu 15 Aug 2024 07:16:44 +0000
ROA not after: Tue 29 Jul 2025 07:16:44 +0000
asID: 141735
IP address blocks: 45.195.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42903 (0xa797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 07:16:44 2024 GMT
Not After : Jul 29 07:16:44 2025 GMT
Subject: CN=66bdab60-9741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6e:44:a4:54:24:60:bd:72:61:63:9f:31:3e:
ea:d9:f7:68:37:ed:3b:45:ae:76:38:0f:ac:1f:39:
98:ad:36:88:ef:f7:ad:cb:9f:bf:30:51:42:a8:10:
6f:ee:01:f0:0f:c3:14:af:98:eb:4d:9f:da:e3:66:
9e:21:f1:5e:04:00:4c:be:04:f7:ce:7e:ea:fc:5c:
f3:e4:e1:83:06:93:fc:a3:4f:26:21:28:a2:b9:33:
42:61:c7:35:d5:8c:2c:6a:b6:3c:c5:87:3d:8b:c4:
84:a7:2c:36:ea:6c:9b:d5:7e:94:94:48:71:61:7b:
8d:67:a1:2e:84:88:5a:75:d1:3e:78:33:f8:40:7e:
4e:75:7b:5b:ec:04:f6:60:2a:f0:39:58:70:ef:e9:
d8:46:a3:6a:fb:2e:b3:5a:98:3f:20:5a:5f:ba:df:
d7:22:03:49:87:5d:5e:e2:fe:2a:4b:4a:9a:27:cc:
be:2e:de:30:a8:4a:e3:94:50:fa:7d:54:cf:49:09:
ab:03:0a:af:ca:7d:90:1f:07:8d:b4:4f:d5:86:87:
e2:e5:4c:45:5a:03:e6:f7:23:7e:c3:a4:7e:ea:39:
bd:16:08:cc:5f:ae:7d:eb:21:11:e1:dc:98:52:25:
6d:7a:31:c4:8c:80:cb:7a:23:45:d7:23:02:43:2a:
c2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9F:FD:59:7C:94:D3:E7:14:79:04:21:FB:6B:99:3E:49:A4:EC:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55B155B85AD611EFB2E2EC91762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.147.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d3:78:bb:c8:7b:6d:73:32:a7:3f:21:fe:97:9d:d9:8e:05:
be:70:0c:a6:88:c9:a7:ea:b3:3c:3a:bf:b6:9f:26:10:eb:e3:
0d:11:9f:3e:93:1a:38:2e:91:aa:0d:a5:b3:3d:01:50:81:2e:
87:49:8f:e0:df:43:8e:2d:de:68:b7:69:45:9a:32:9e:4b:1b:
01:23:87:bd:c5:b5:b7:cc:f6:e0:f3:64:72:5a:27:7c:06:e1:
90:89:b1:e8:b8:3a:fa:30:6e:cf:91:be:1c:9e:4c:75:91:3b:
64:9c:9d:5b:d2:5c:13:dd:e1:3f:63:8d:68:0b:1f:55:02:1d:
68:1f:3e:cc:b9:f2:f8:0b:f4:d8:c0:ef:b1:e1:c1:38:e6:d0:
af:a9:2c:63:0e:13:de:ea:a7:e6:86:fd:b1:b4:68:dd:f8:43:
af:37:16:95:83:12:71:e7:d5:a4:32:8f:a7:a6:8e:82:1d:6c:
9a:77:a1:26:75:1d:0c:eb:37:6d:c6:85:3d:12:9e:a5:ce:44:
22:76:b4:98:3a:22:0e:89:b9:1f:0a:01:21:9f:7f:41:9f:45:
3f:72:16:41:24:6a:96:28:ee:99:c8:91:da:ef:5b:74:e3:27:
b6:16:01:fa:35:fb:05:b8:ae:ba:77:1e:74:32:2b:01:a3:7f:
f8:7c:99:51
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAKeXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwODE1MDcxNjQ0WhcNMjUwNzI5MDcxNjQ0WjAYMRYw
FAYDVQQDEw02NmJkYWI2MC05NzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw25EpFQkYL1yYWOfMT7q2fdoN+07Ra52OA+sHzmYrTaI7/ety5+/MFFC
qBBv7gHwD8MUr5jrTZ/a42aeIfFeBABMvgT3zn7q/Fzz5OGDBpP8o08mISiiuTNC
Ycc11YwsarY8xYc9i8SEpyw26myb1X6UlEhxYXuNZ6EuhIhaddE+eDP4QH5OdXtb
7AT2YCrwOVhw7+nYRqNq+y6zWpg/IFpfut/XIgNJh11e4v4qS0qaJ8y+Lt4wqErj
lFD6fVTPSQmrAwqvyn2QHweNtE/Vhofi5UxFWgPm9yN+w6R+6jm9FgjMX6596yER
4dyYUiVtejHEjIDLeiNF1yMCQyrCkwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLaf
/Vl8lNPnFHkEIftrmT5JpOwdMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NUIxNTVCODVBRDYxMUVGQjJFMkVDOTE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcOTMA0GCSqGSIb3DQEBCwUA
A4IBAQA903i7yHttczKnPyH+l53ZjgW+cAymiMmn6rM8Or+2nyYQ6+MNEZ8+kxo4
LpGqDaWzPQFQgS6HSY/g30OOLd5ot2lFmjKeSxsBI4e9xbW3zPbg82RyWid8BuGQ
ibHouDr6MG7Pkb4cnkx1kTtknJ1b0lwT3eE/Y41oCx9VAh1oHz7MufL4C/TYwO+x
4cE45tCvqSxjDhPe6qfmhv2xtGjd+EOvNxaVgxJx59WkMo+npo6CHWyad6EmdR0M
6zdtxoU9Ep6lzkQidrSYOiIOibkfCgEhn39Bn0U/chZBJGqWKO6ZyJHa71t04ye2
FgH6NfsFuK66dx50MisBo3/4fJlR
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org