Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58681B92D3D111EFA063957C762E951A.roa
File: 58681B92D3D111EFA063957C762E951A.roa (raw, json)
Hash identifier: m2XKALWihrNXBbGfyKCVdhuRZEZccpfDUN6DhsjGdCM=
Subject key identifier: 39:C7:A0:CB:F5:AF:53:CA:F8:7F:99:F2:B0:D5:35:33:D0:AF:A4:14
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010898
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58681B92D3D111EFA063957C762E951A.roa
Signing time: Thu 16 Jan 2025 06:15:56 +0000
ROA not before: Thu 16 Jan 2025 06:15:52 +0000
ROA not after: Sat 03 Jan 2026 06:15:52 +0000
asID: 265705
IP address blocks: 45.194.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67736 (0x10898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 16 06:15:52 2025 GMT
Not After : Jan 3 06:15:52 2026 GMT
Subject: CN=6788a41c-d959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:33:47:94:bc:8e:fc:74:dc:c4:87:c8:ba:7d:
17:12:65:1d:13:28:26:43:9c:02:13:9c:c7:4f:9a:
a1:3f:4c:3a:be:58:88:d8:17:3d:e1:9e:88:25:ab:
df:f2:d3:19:96:6d:0a:65:2d:75:73:92:6c:40:52:
78:03:09:eb:aa:04:54:1a:c1:6d:50:e1:77:8e:6f:
13:e8:48:73:4e:18:e5:62:4c:97:47:48:9a:a9:7c:
72:fb:71:d7:13:3a:c1:c7:43:88:dc:11:af:8d:cc:
6c:48:a3:5c:1e:ca:ed:a4:1a:64:4d:96:10:0e:0d:
d7:e2:fd:02:f2:6f:83:84:58:0e:34:93:19:b4:89:
6b:3f:86:cd:89:f6:8b:d8:ae:1e:9a:f6:0a:c3:30:
6b:6d:fc:3b:f8:7e:98:bb:7d:91:c6:ae:76:51:82:
70:fd:7f:dd:cd:cd:a6:ad:2d:61:74:c7:8a:37:f6:
26:55:f6:0a:98:b0:fe:c1:eb:96:90:af:b7:31:40:
1b:b8:84:02:06:f8:15:f3:9e:f6:5a:bf:d4:f7:e8:
c0:23:84:a8:68:fd:cc:09:72:29:9d:c0:a5:69:9c:
50:4c:53:bb:97:48:1d:69:03:16:d0:c3:58:5c:53:
53:a5:aa:2c:8e:85:e1:a9:90:74:56:c2:82:76:5d:
88:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C7:A0:CB:F5:AF:53:CA:F8:7F:99:F2:B0:D5:35:33:D0:AF:A4:14
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58681B92D3D111EFA063957C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:fb:2e:26:8b:c2:57:78:d4:53:75:59:32:8a:1c:6c:ad:de:
3a:d6:80:db:11:59:56:12:a4:d5:b4:fd:da:ee:3e:6c:50:c6:
bc:65:7c:ed:58:66:9f:ae:3b:72:e2:74:0e:72:e4:a3:16:b0:
0a:04:ae:47:d7:00:f5:c3:ff:bf:15:35:5d:82:2f:2b:e6:93:
09:7a:74:41:f0:9b:e1:e9:90:05:30:7d:7f:67:a8:93:64:ba:
c6:30:b1:48:6f:49:fc:1d:0a:53:1d:c8:9a:6d:4a:6e:d3:6d:
25:db:1a:4d:1c:03:d8:fd:ed:1b:6f:64:95:2a:14:fb:4b:d3:
c7:11:8a:28:46:a2:59:3b:3c:f6:79:40:03:8d:1b:c5:b2:ea:
16:b2:a1:1f:90:fb:0a:0a:eb:88:37:28:24:76:e3:86:2c:1b:
fd:fd:3c:b2:05:47:73:71:aa:e1:f9:16:d3:0f:59:a7:8c:86:
18:1d:0c:ac:a9:d2:48:a0:bb:40:d5:f6:ef:53:f5:7e:01:0a:
72:fe:06:3d:8f:8b:66:fc:54:4a:00:f9:14:61:42:e9:bf:05:
0f:d9:c4:06:1d:07:5d:dd:ea:dd:88:04:8a:f9:cb:e6:dc:e4:
54:5a:6c:24:ff:00:e5:9b:94:c5:79:1d:a9:2b:79:a7:f7:dd:
6e:ba:5e:1d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQiYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTE2MDYxNTUyWhcNMjYwMTAzMDYxNTUyWjAYMRYw
FAYDVQQDEw02Nzg4YTQxYy1kOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoDNHlLyO/HTcxIfIun0XEmUdEygmQ5wCE5zHT5qhP0w6vliI2Bc94Z6I
Javf8tMZlm0KZS11c5JsQFJ4AwnrqgRUGsFtUOF3jm8T6EhzThjlYkyXR0iaqXxy
+3HXEzrBx0OI3BGvjcxsSKNcHsrtpBpkTZYQDg3X4v0C8m+DhFgONJMZtIlrP4bN
ifaL2K4emvYKwzBrbfw7+H6Yu32Rxq52UYJw/X/dzc2mrS1hdMeKN/YmVfYKmLD+
weuWkK+3MUAbuIQCBvgV8572Wr/U9+jAI4SoaP3MCXIpncClaZxQTFO7l0gdaQMW
0MNYXFNTpaosjoXhqZB0VsKCdl2IgQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDnH
oMv1r1PK+H+Z8rDVNTPQr6QUMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81ODY4MUI5MkQzRDExMUVGQTA2Mzk1N0M3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcIrMA0GCSqGSIb3DQEBCwUA
A4IBAQAa+y4mi8JXeNRTdVkyihxsrd461oDbEVlWEqTVtP3a7j5sUMa8ZXztWGaf
rjty4nQOcuSjFrAKBK5H1wD1w/+/FTVdgi8r5pMJenRB8Jvh6ZAFMH1/Z6iTZLrG
MLFIb0n8HQpTHciabUpu020l2xpNHAPY/e0bb2SVKhT7S9PHEYooRqJZOzz2eUAD
jRvFsuoWsqEfkPsKCuuINygkduOGLBv9/TyyBUdzcarh+RbTD1mnjIYYHQysqdJI
oLtA1fbvU/V+AQpy/gY9j4tm/FRKAPkUYULpvwUP2cQGHQdd3erdiASK+cvm3ORU
Wmwk/wDlm5TFeR2pK3mn991uul4d
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:16:56 2025 by rpki-client