Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/571E5E1C993011EF8FD82888762E951A.roa
File: 571E5E1C993011EF8FD82888762E951A.roa (raw, json)
Hash identifier: LacMNS5qlAplLpJDFLnHZQ9VVD8ad+N68whchFVINJY=
Subject key identifier: 04:75:DA:F5:22:E9:54:BE:05:50:87:D8:8D:31:99:84:9E:AB:1C:53
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CC8A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/571E5E1C993011EF8FD82888762E951A.roa
Signing time: Sat 02 Nov 2024 15:37:17 +0000
ROA not before: Sat 02 Nov 2024 15:37:13 +0000
ROA not after: Wed 04 Dec 2024 15:37:13 +0000
asID: 42831
IP address blocks: 45.198.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52362 (0xcc8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 2 15:37:13 2024 GMT
Not After : Dec 4 15:37:13 2024 GMT
Subject: CN=6726472d-8a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:72:99:8f:68:0c:d2:99:15:ab:e4:79:42:0b:
f4:60:b7:62:9b:aa:2a:ab:8a:fd:48:20:62:7d:0f:
a9:e7:bc:c8:74:bb:19:bc:16:d0:76:2c:76:c0:a6:
d9:55:e5:fc:6e:49:ef:a0:32:0d:c2:06:72:81:21:
9e:64:6b:d9:c4:39:fd:6f:11:af:fe:41:a6:5a:e4:
eb:30:35:ba:cc:07:cf:1e:ee:e8:5d:a5:c9:58:8b:
35:47:6e:1c:47:f7:58:22:70:60:ec:f0:24:c5:3f:
7b:88:10:40:3b:b9:e9:4c:07:78:5d:24:48:d1:c2:
fc:31:15:69:3a:a2:7f:72:6f:f3:89:5f:b5:83:be:
2a:cc:e6:6e:2a:60:26:40:81:ec:eb:04:d3:0f:73:
75:e3:77:d5:27:91:34:70:05:3d:05:17:17:28:3f:
57:9a:ec:2e:50:d1:90:6e:49:8d:5f:a9:6a:f8:6f:
2b:65:2f:6f:55:76:37:7c:1c:7f:4e:ee:3c:29:34:
22:4b:2b:91:8d:c5:8c:7d:bd:4b:82:71:54:34:4a:
a6:d6:17:2d:0d:96:bc:0e:95:98:05:a5:ec:1e:5d:
9b:b8:bf:87:bd:fc:bc:78:21:db:e2:e1:32:d0:e3:
e0:06:44:88:6b:ff:ce:a1:f1:f2:07:d5:01:18:3e:
92:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:75:DA:F5:22:E9:54:BE:05:50:87:D8:8D:31:99:84:9E:AB:1C:53
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/571E5E1C993011EF8FD82888762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.128.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:ed:3f:df:3a:6a:ee:3f:36:bd:4f:af:46:ce:11:1d:a9:74:
09:5c:5b:d9:75:62:d1:4b:4d:cc:78:d2:90:d7:56:ba:d0:72:
5b:c2:33:3d:61:b7:b4:f1:69:8e:34:e6:e9:bf:d8:15:4c:25:
dc:d7:84:75:2b:b5:5d:8f:f0:d1:65:d9:9f:ad:4a:9b:fd:1e:
b8:20:4e:21:62:18:72:0b:a3:bc:08:c5:8f:38:a6:c2:6e:88:
5a:18:7d:2d:df:1b:36:c6:22:4c:ea:f5:17:29:1b:65:d2:bf:
29:81:f3:38:c3:52:76:01:43:bb:40:1f:88:67:6a:7a:73:c8:
cb:5c:0a:64:35:19:48:e6:01:a6:35:54:61:db:62:ca:fa:ad:
1b:64:98:10:5a:5b:14:09:3b:e4:fb:c7:5a:86:38:20:5b:5c:
e6:50:ed:9c:8d:e6:f0:80:c5:d4:34:47:d9:c6:8a:75:c6:d9:
41:57:6c:04:1c:af:3d:6e:9a:d8:5e:6c:73:2a:55:69:47:84:
75:da:3a:93:bb:e6:80:ff:b0:a4:73:a2:ec:3b:18:b0:e2:d8:
f9:2d:d4:89:ff:75:f5:14:81:84:07:76:d7:ad:f3:bc:f9:66:
9a:10:af:f3:9e:73:30:89:40:bf:50:02:db:73:7e:7f:32:27:
d9:e1:fe:2f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMyKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTAyMTUzNzEzWhcNMjQxMjA0MTUzNzEzWjAYMRYw
FAYDVQQDEw02NzI2NDcyZC04YTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxHKZj2gM0pkVq+R5Qgv0YLdim6oqq4r9SCBifQ+p57zIdLsZvBbQdix2
wKbZVeX8bknvoDINwgZygSGeZGvZxDn9bxGv/kGmWuTrMDW6zAfPHu7oXaXJWIs1
R24cR/dYInBg7PAkxT97iBBAO7npTAd4XSRI0cL8MRVpOqJ/cm/ziV+1g74qzOZu
KmAmQIHs6wTTD3N143fVJ5E0cAU9BRcXKD9XmuwuUNGQbkmNX6lq+G8rZS9vVXY3
fBx/Tu48KTQiSyuRjcWMfb1LgnFUNEqm1hctDZa8DpWYBaXsHl2buL+Hvfy8eCHb
4uEy0OPgBkSIa//OofHyB9UBGD6S4wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAR1
2vUi6VS+BVCH2I0xmYSeqxxTMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NzFFNUUxQzk5MzAxMUVGOEZEODI4ODg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFLcaAMA0GCSqGSIb3DQEBCwUA
A4IBAQAN7T/fOmruPza9T69GzhEdqXQJXFvZdWLRS03MeNKQ11a60HJbwjM9Ybe0
8WmONObpv9gVTCXc14R1K7Vdj/DRZdmfrUqb/R64IE4hYhhyC6O8CMWPOKbCboha
GH0t3xs2xiJM6vUXKRtl0r8pgfM4w1J2AUO7QB+IZ2p6c8jLXApkNRlI5gGmNVRh
22LK+q0bZJgQWlsUCTvk+8dahjggW1zmUO2cjebwgMXUNEfZxop1xtlBV2wEHK89
bprYXmxzKlVpR4R12jqTu+aA/7Ckc6LsOxiw4tj5LdSJ/3X1FIGEB3bXrfO8+Waa
EK/znnMwiUC/UALbc35/MifZ4f4v
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:31 2024 by rpki-client on console-ams.rpki-client.org