Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/590B8C508DD211EE8B05FE704AD9E6FC.roa
File: 590B8C508DD211EE8B05FE704AD9E6FC.roa (raw, json)
Hash identifier: 35pM08UQDRIQcmkiNImKcv8m+tkNFJ63oBXOxj2Li9U=
Subject key identifier: 1F:90:4C:63:00:A6:B4:58:D9:3E:87:CC:29:00:0D:40:2A:B7:CD:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C6D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/590B8C508DD211EE8B05FE704AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:41:47 +0000
ROA not before: Sat 03 Feb 2024 09:41:44 +0000
ROA not after: Thu 08 Aug 2024 09:41:44 +0000
asID: 133861
IP address blocks: 45.207.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19565 (0x4c6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:41:44 2024 GMT
Not After : Aug 8 09:41:44 2024 GMT
Subject: CN=6565b5db-7bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:71:86:e0:e1:73:88:a0:48:dc:5c:db:6e:50:
a7:c7:26:7d:0a:d4:c2:2b:9c:60:3d:f1:34:ec:a7:
68:8d:25:54:c9:48:8e:88:0d:9e:c5:c4:50:8c:31:
44:2c:35:0b:a1:2d:73:b6:3b:d7:52:5d:6f:5b:de:
f7:37:2d:c9:b1:b7:e6:00:ac:64:25:19:2c:15:c8:
6f:49:d6:3c:fd:4c:c5:56:12:0b:d1:56:de:b2:ad:
62:f6:54:dc:0f:16:55:27:d5:86:60:d8:9c:44:1d:
db:d0:05:94:cc:ad:37:fc:3b:c0:b8:09:bb:6b:25:
30:54:a6:47:cb:0f:ec:fe:57:ef:2d:7b:37:16:52:
ed:a2:d6:d7:40:9d:60:bf:cd:65:53:91:49:67:93:
ac:8a:7b:5d:4c:e8:17:46:f2:03:3e:de:e8:16:a9:
98:68:2b:f6:75:90:86:ec:62:75:94:ae:b8:a3:73:
ef:88:87:5a:b4:9a:ee:52:73:be:6b:93:5c:6a:34:
79:ee:67:80:c2:db:2a:9f:11:2d:38:96:0e:01:bb:
76:e8:e8:19:ea:8a:5f:5a:18:81:fd:c1:68:77:80:
17:11:f7:48:cf:2a:c7:b9:bf:85:7c:9d:53:02:49:
87:80:98:02:73:02:b6:01:c2:56:7a:fd:22:ff:8c:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:90:4C:63:00:A6:B4:58:D9:3E:87:CC:29:00:0D:40:2A:B7:CD:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/590B8C508DD211EE8B05FE704AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:d5:12:98:6b:c4:e8:2a:df:30:55:b0:a9:a7:e4:69:61:36:
ca:16:36:43:3c:e3:f3:5e:d7:b4:8c:cd:e9:f4:03:05:e9:7d:
f9:cd:9a:17:09:6d:85:6c:a4:46:c1:f8:7e:69:5a:ed:4c:5a:
94:dc:57:13:c5:f8:74:6f:2c:f5:7e:78:f3:b9:c7:bd:40:38:
23:d4:a4:04:76:fd:45:9a:16:f8:55:b9:01:41:cc:b4:6e:e0:
c8:10:a6:f6:ca:50:17:a4:09:17:b4:dc:38:fc:f9:3c:8e:e0:
a4:3e:cf:a6:75:1d:72:10:63:9b:b2:09:8d:90:de:af:a6:4c:
7b:5f:e7:97:ac:73:af:20:f5:0e:b6:40:ca:ed:b4:11:c8:ad:
c1:65:bd:1c:ba:ea:f3:0b:3d:5e:43:cd:be:97:65:79:08:2b:
a0:6f:c5:e1:3b:6a:98:32:b4:a6:38:5c:7d:ad:76:6b:00:d2:
70:ca:f8:36:6f:9e:c4:d6:e4:00:66:5d:5e:9c:b6:ba:77:00:
42:cd:db:73:10:80:9d:b4:ec:9d:2c:d8:b6:af:9a:1f:02:3e:
05:89:ae:81:35:77:4f:19:39:83:bd:59:8f:39:50:3b:a4:9f:
15:15:e3:1f:a7:a7:4f:0e:17:fb:61:e1:40:fe:ec:6b:c9:dc:
c6:0f:50:48
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTG0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTQxNDRaFw0yNDA4MDgwOTQxNDRaMBgxFjAU
BgNVBAMTDTY1NjViNWRiLTdiYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQcYbg4XOIoEjcXNtuUKfHJn0K1MIrnGA98TTsp2iNJVTJSI6IDZ7FxFCM
MUQsNQuhLXO2O9dSXW9b3vc3Lcmxt+YArGQlGSwVyG9J1jz9TMVWEgvRVt6yrWL2
VNwPFlUn1YZg2JxEHdvQBZTMrTf8O8C4CbtrJTBUpkfLD+z+V+8tezcWUu2i1tdA
nWC/zWVTkUlnk6yKe11M6BdG8gM+3ugWqZhoK/Z1kIbsYnWUrrijc++Ih1q0mu5S
c75rk1xqNHnuZ4DC2yqfES04lg4Bu3bo6Bnqil9aGIH9wWh3gBcR90jPKse5v4V8
nVMCSYeAmAJzArYBwlZ6/SL/jOx1AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUH5BM
YwCmtFjZPofMKQANQCq3zbwwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzU5MEI4QzUwOEREMjExRUU4QjA1RkU3MDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzzUwDQYJKoZIhvcNAQELBQAD
ggEBAKfVEphrxOgq3zBVsKmn5GlhNsoWNkM84/Ne17SMzen0AwXpffnNmhcJbYVs
pEbB+H5pWu1MWpTcVxPF+HRvLPV+ePO5x71AOCPUpAR2/UWaFvhVuQFBzLRu4MgQ
pvbKUBekCRe03Dj8+TyO4KQ+z6Z1HXIQY5uyCY2Q3q+mTHtf55esc68g9Q62QMrt
tBHIrcFlvRy66vMLPV5Dzb6XZXkIK6BvxeE7apgytKY4XH2tdmsA0nDK+DZvnsTW
5ABmXV6ctrp3AELN23MQgJ207J0s2Lavmh8CPgWJroE1d08ZOYO9WY85UDuknxUV
4x+np08OF/th4UD+7GvJ3MYPUEg=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org