Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/596734D0A71F11EF8D336B70762E951A.roa
File: 596734D0A71F11EF8D336B70762E951A.roa (raw, json)
Hash identifier: maCchjrt28eJqG2W5czEIqHRw1NuAD1/H6PRKLFZSPI=
Subject key identifier: 1B:6C:B1:67:A9:03:EC:AB:4F:B7:73:62:04:9D:B6:D5:FA:F5:E4:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/596734D0A71F11EF8D336B70762E951A.roa
Signing time: Wed 20 Nov 2024 09:10:56 +0000
ROA not before: Wed 20 Nov 2024 09:10:52 +0000
ROA not after: Sun 22 Dec 2024 09:10:52 +0000
asID: 271916
IP address blocks: 45.194.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54701 (0xd5ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 09:10:52 2024 GMT
Not After : Dec 22 09:10:52 2024 GMT
Subject: CN=673da7a0-34de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:87:8d:6b:cf:28:49:53:db:45:b7:4e:e7:
50:4b:28:ab:af:75:70:88:42:9d:b9:21:54:c7:7a:
a9:77:24:6d:01:c4:38:19:ce:72:35:e0:5b:9f:9a:
4a:d0:5b:dd:af:2b:4e:18:f5:5b:83:7c:da:b5:40:
99:6e:d8:87:f5:9b:54:3f:68:12:47:ab:7d:36:29:
c7:ac:85:ae:18:82:b6:aa:1f:f4:04:19:4c:f4:8e:
10:46:87:31:fa:ae:6f:3b:dc:86:63:95:4c:08:91:
b8:54:b3:29:b2:c2:a6:d8:69:80:0a:25:3e:02:88:
e9:3c:2f:50:d1:52:02:a2:54:fd:d7:62:29:ea:25:
f6:5e:51:42:c0:37:3a:08:23:7c:dc:41:d1:8f:4d:
71:ab:28:d2:d9:8b:74:3a:37:8f:97:9a:03:8f:ac:
90:a9:82:f6:90:11:31:62:58:33:a3:17:4f:86:75:
16:c1:6e:cc:41:ba:9e:34:6b:6f:c1:58:7a:07:20:
2f:80:7a:06:70:dd:d2:0b:0c:ba:d5:ca:3f:93:e7:
cd:2c:00:43:c4:e9:4e:32:f0:ce:64:3d:09:ce:32:
dc:ab:36:84:07:9c:3b:a5:83:8b:38:ca:b3:9e:b9:
0b:34:18:65:cc:a0:38:15:e7:74:e9:f4:95:02:9b:
aa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6C:B1:67:A9:03:EC:AB:4F:B7:73:62:04:9D:B6:D5:FA:F5:E4:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/596734D0A71F11EF8D336B70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.48.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:3d:d0:78:6b:47:4e:d8:2d:3c:a7:d8:2e:60:69:6e:09:ee:
99:3d:79:1f:18:c6:c7:f3:4a:78:79:be:86:bd:34:9a:8a:0c:
65:e4:40:f6:01:35:42:7d:80:88:46:df:90:79:8e:a5:ab:18:
50:f2:57:a6:37:75:46:74:fd:16:2d:83:35:07:b3:88:0a:87:
31:27:f7:b9:f9:b7:96:7e:d5:43:10:a9:f8:06:4f:e1:77:56:
70:15:9b:ee:29:00:7f:db:5e:b0:c3:14:e0:57:ff:10:cc:60:
67:d4:dd:3b:7f:d7:f2:30:cd:d4:09:5d:fe:95:4f:95:63:23:
7e:2c:de:f5:21:30:c6:55:3e:a7:30:5a:db:fe:6a:ef:7a:f5:
f1:ac:af:a4:93:5f:5a:9c:9f:39:02:d9:d0:97:07:f0:0b:92:
f2:f3:86:c6:36:8c:69:00:02:36:ad:69:9a:1c:2f:8b:eb:0c:
a6:34:c2:13:12:a4:15:29:97:46:bc:86:c7:12:38:e5:ae:81:
63:d5:2a:f4:b2:c4:b9:4c:e0:38:20:aa:bb:a7:d5:b6:dd:fe:
ae:9a:c2:a7:23:4e:4b:76:e4:b1:18:7d:37:4d:7e:f5:c2:05:
7c:ee:95:23:d1:b8:de:6e:25:0e:b9:5f:76:55:b8:ed:9c:ca:
e4:3c:86:dd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANWtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMDkxMDUyWhcNMjQxMjIyMDkxMDUyWjAYMRYw
FAYDVQQDEw02NzNkYTdhMC0zNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsCCHjWvPKElT20W3TudQSyirr3VwiEKduSFUx3qpdyRtAcQ4Gc5yNeBb
n5pK0FvdrytOGPVbg3zatUCZbtiH9ZtUP2gSR6t9NinHrIWuGIK2qh/0BBlM9I4Q
Rocx+q5vO9yGY5VMCJG4VLMpssKm2GmACiU+AojpPC9Q0VIColT912Ip6iX2XlFC
wDc6CCN83EHRj01xqyjS2Yt0OjePl5oDj6yQqYL2kBExYlgzoxdPhnUWwW7MQbqe
NGtvwVh6ByAvgHoGcN3SCwy61co/k+fNLABDxOlOMvDOZD0JzjLcqzaEB5w7pYOL
OMqznrkLNBhlzKA4Fed06fSVApuq9QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBts
sWepA+yrT7dzYgSdttX69eRAMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81OTY3MzREMEE3MUYxMUVGOEQzMzZCNzA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcIwMA0GCSqGSIb3DQEBCwUA
A4IBAQC0PdB4a0dO2C08p9guYGluCe6ZPXkfGMbH80p4eb6GvTSaigxl5ED2ATVC
fYCIRt+QeY6lqxhQ8lemN3VGdP0WLYM1B7OICocxJ/e5+beWftVDEKn4Bk/hd1Zw
FZvuKQB/216wwxTgV/8QzGBn1N07f9fyMM3UCV3+lU+VYyN+LN71ITDGVT6nMFrb
/mrvevXxrK+kk19anJ85AtnQlwfwC5Ly84bGNoxpAAI2rWmaHC+L6wymNMITEqQV
KZdGvIbHEjjlroFj1Sr0ssS5TOA4IKq7p9W23f6umsKnI05LduSxGH03TX71wgV8
7pUj0bjebiUOuV92VbjtnMrkPIbd
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:30 2024 by rpki-client on console-fra.rpki-client.org