Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C26D3273F611EF9FB7C683762E951A.roa
File: 56C26D3273F611EF9FB7C683762E951A.roa (raw, json)
Hash identifier: 5q+ebQhLjGQIdS7Amtuj0+EB3Wligf78oRESsuXLzEY=
Subject key identifier: 1F:85:A1:C8:EB:A2:F5:B5:0E:1E:C6:14:45:4C:38:D9:E5:4A:92:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B721
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C26D3273F611EF9FB7C683762E951A.roa
Signing time: Mon 16 Sep 2024 06:38:53 +0000
ROA not before: Mon 16 Sep 2024 06:38:49 +0000
ROA not after: Fri 08 Aug 2025 06:38:49 +0000
asID: 133861
IP address blocks: 45.207.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46881 (0xb721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:38:49 2024 GMT
Not After : Aug 8 06:38:49 2025 GMT
Subject: CN=66e7d27d-a0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b2:df:78:77:68:0d:9f:69:53:19:e9:b9:b1:
25:ea:1a:17:7d:62:3d:3b:54:52:43:58:c2:0b:31:
d9:05:6e:a0:f1:01:f0:27:a9:77:17:05:08:34:14:
c9:24:3d:fc:5e:82:61:82:93:b6:83:70:53:38:64:
e5:8f:a9:ee:a7:05:7f:9a:5b:22:b0:33:1f:b0:e1:
90:08:8c:e7:2f:4b:51:4e:c1:59:96:b6:18:1e:43:
fe:e8:d6:fa:e3:e5:b1:1a:85:10:14:38:08:05:1f:
51:3c:d3:33:c9:5a:c6:93:7b:fc:78:08:2e:ef:6f:
a0:68:24:ec:3e:89:6c:f6:5b:35:73:88:3c:ea:16:
3a:36:17:0a:22:c0:ee:22:5c:cb:a5:7d:3f:dd:bb:
30:dd:fb:8f:d7:8a:f1:2e:54:21:3c:72:c2:76:4f:
69:83:dd:b3:d2:57:4c:a2:f7:d4:07:18:ec:0d:c3:
6d:bf:e6:d0:fa:77:a2:d3:cb:53:fa:38:a4:56:bc:
d5:c1:06:d0:72:71:4f:63:4f:1e:5c:b6:1b:85:05:
cc:0e:db:75:42:fc:ad:bd:f4:93:2e:ff:a9:32:61:
59:09:b2:b2:96:dc:29:34:30:49:14:8a:03:d2:1e:
47:3f:bd:fd:f9:68:8a:3e:49:bb:1b:0c:70:93:a9:
1b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:85:A1:C8:EB:A2:F5:B5:0E:1E:C6:14:45:4C:38:D9:E5:4A:92:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C26D3273F611EF9FB7C683762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ea:36:1b:31:2b:36:29:40:8a:b8:47:7e:4c:e6:9e:92:2d:
10:63:28:65:44:a5:70:12:db:2b:e5:6f:d2:8e:d6:6a:18:46:
4b:12:82:3f:1a:4b:54:bd:ce:4c:dd:94:07:2f:75:99:e9:c5:
dc:36:c3:b0:cb:93:7d:b5:c7:b1:98:00:98:56:fe:2e:85:31:
4f:49:4a:02:a1:f5:3e:02:cd:5a:26:3b:f0:cb:89:f4:ad:85:
cd:5b:7c:00:47:26:8e:d7:5e:f0:a2:4c:53:37:76:ca:a0:c6:
35:a8:64:4a:f1:ea:d6:5a:9b:9f:3b:4e:db:0b:6a:dd:82:cc:
e5:2b:37:7e:dd:0f:0f:93:e3:0b:19:f1:3c:fa:64:d7:73:61:
6e:c5:13:4f:4d:28:2a:85:73:10:de:33:eb:a6:52:96:ad:ea:
d7:27:74:f9:bb:8a:77:20:74:b1:a4:da:91:5e:d5:f6:c6:36:
2b:37:bc:75:84:41:3a:81:3f:2c:6a:94:5a:8d:06:b0:f9:ab:
06:88:45:c2:51:49:9d:89:6e:c4:2a:e7:c9:10:5b:4b:e2:31:
dd:51:05:97:1a:ab:80:71:d0:2c:80:18:f7:b7:e2:5c:a9:52:
71:08:5d:4f:ac:06:e1:0c:e1:29:83:2f:c4:a2:73:af:63:25:
07:d3:08:ae
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALchMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE2MDYzODQ5WhcNMjUwODA4MDYzODQ5WjAYMRYw
FAYDVQQDEw02NmU3ZDI3ZC1hMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA37LfeHdoDZ9pUxnpubEl6hoXfWI9O1RSQ1jCCzHZBW6g8QHwJ6l3FwUI
NBTJJD38XoJhgpO2g3BTOGTlj6nupwV/mlsisDMfsOGQCIznL0tRTsFZlrYYHkP+
6Nb64+WxGoUQFDgIBR9RPNMzyVrGk3v8eAgu72+gaCTsPols9ls1c4g86hY6NhcK
IsDuIlzLpX0/3bsw3fuP14rxLlQhPHLCdk9pg92z0ldMovfUBxjsDcNtv+bQ+nei
08tT+jikVrzVwQbQcnFPY08eXLYbhQXMDtt1QvytvfSTLv+pMmFZCbKyltwpNDBJ
FIoD0h5HP739+WiKPkm7Gwxwk6kbcQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFB+F
ocjrovW1Dh7GFEVMONnlSpJgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NkMyNkQzMjczRjYxMUVGOUZCN0M2ODM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8sMA0GCSqGSIb3DQEBCwUA
A4IBAQBP6jYbMSs2KUCKuEd+TOaeki0QYyhlRKVwEtsr5W/SjtZqGEZLEoI/GktU
vc5M3ZQHL3WZ6cXcNsOwy5N9tcexmACYVv4uhTFPSUoCofU+As1aJjvwy4n0rYXN
W3wARyaO117wokxTN3bKoMY1qGRK8erWWpufO07bC2rdgszlKzd+3Q8Pk+MLGfE8
+mTXc2FuxRNPTSgqhXMQ3jPrplKWrerXJ3T5u4p3IHSxpNqRXtX2xjYrN7x1hEE6
gT8sapRajQaw+asGiEXCUUmdiW7EKufJEFtL4jHdUQWXGquAcdAsgBj3t+JcqVJx
CF1PrAbhDOEpgy/EonOvYyUH0wiu
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:31 2024 by rpki-client on console-ams.rpki-client.org