Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A8DAE487FED11EEA94A03354AD9E6FC.roa
File: 5A8DAE487FED11EEA94A03354AD9E6FC.roa (raw, json)
Hash identifier: R7eLRaYi5VFOkOxmBW+GRDiA2ABX4Ro0snTP9E9OCc8=
Subject key identifier: 96:1D:B9:2A:BB:8A:02:A6:62:68:F1:86:14:D2:F0:CA:08:A5:81:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4650
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A8DAE487FED11EEA94A03354AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:19:50 +0000
ROA not before: Fri 10 Nov 2023 17:19:46 +0000
ROA not after: Tue 04 Jun 2024 17:19:46 +0000
asID: 137577
IP address blocks: 45.195.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18000 (0x4650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:19:46 2023 GMT
Not After : Jun 4 17:19:46 2024 GMT
Subject: CN=654e6636-da51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:b5:e8:f9:56:dc:51:f7:21:b2:22:83:31:
24:ed:c8:68:b1:9d:a4:c7:11:89:f8:f1:e1:b8:72:
10:a1:18:e1:43:39:7f:ad:c4:20:86:09:88:b1:49:
dd:a1:1c:03:ff:f0:7a:17:71:9b:19:8a:5e:e0:38:
86:77:bc:b8:09:ab:c0:17:b4:76:8e:77:03:5c:89:
25:a6:6b:43:4c:ad:0f:7f:e4:a4:7f:74:78:d0:dd:
10:09:c2:7c:11:62:86:00:61:c8:a9:55:51:82:7f:
04:d4:f5:47:fb:a7:73:89:29:30:3a:bf:4b:e9:26:
1e:cc:bb:5d:0c:2b:f1:db:80:74:cf:5c:81:4c:86:
8f:e5:ee:d6:60:4a:04:0e:e6:51:f1:1e:28:fc:c8:
cb:da:3a:f8:16:6c:24:f4:6a:7a:b2:2a:be:2a:9a:
22:db:7b:96:1c:92:e4:88:13:29:83:5b:c3:d2:72:
69:bb:7f:12:3d:c4:d3:20:10:1e:7d:e2:51:39:87:
12:9a:93:0d:1c:c2:77:09:7e:71:f8:73:a6:9f:63:
83:6d:9e:34:d3:7a:10:a3:04:4f:0f:67:a9:39:f2:
a5:ad:01:8e:8f:6c:50:ce:6a:da:51:57:aa:d1:38:
87:38:ea:d7:50:32:1a:c5:1d:3f:29:5f:13:00:dc:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:1D:B9:2A:BB:8A:02:A6:62:68:F1:86:14:D2:F0:CA:08:A5:81:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A8DAE487FED11EEA94A03354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b0:10:f4:4b:26:ad:0b:20:d2:c6:12:84:58:f2:7b:86:dd:
96:52:ad:06:26:1d:1f:0f:f2:7a:6c:e0:c1:63:ff:00:e7:ad:
ce:11:a7:7f:1e:34:ee:0e:69:d6:43:76:16:a6:3b:58:42:45:
a4:e8:ac:52:ae:ec:6f:dc:b2:f4:4d:dd:de:e9:5e:78:67:cf:
73:95:64:23:f4:dc:75:00:1e:75:66:74:91:da:96:7c:5c:cd:
97:16:8b:93:93:42:e4:66:0d:d7:38:e5:55:de:47:50:38:c7:
68:43:6c:62:e2:0b:0c:10:e8:c8:3c:28:37:2f:03:85:77:40:
10:41:3f:57:8c:6e:2f:66:1a:83:f7:f9:b6:9f:cd:96:2a:6f:
cd:d3:be:74:05:f8:48:67:78:95:54:97:b8:84:ae:85:9c:ff:
9f:af:4c:9d:e4:63:76:f6:91:f8:7b:bf:d0:b7:b4:4c:3b:d8:
f7:d5:56:fa:24:0b:36:e7:0c:27:c4:ab:de:6c:96:2d:63:53:
02:e1:d9:98:80:a0:87:02:53:fb:f9:a0:7e:28:43:65:14:08:
84:24:3e:4f:28:14:06:88:0a:a4:d7:50:01:62:7f:49:71:b3:
9c:83:39:26:a0:0f:c6:86:53:9e:ed:2d:c9:20:22:13:22:83:
45:4f:bb:8c
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICRlAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTAxNzE5NDZaFw0yNDA2MDQxNzE5NDZaMBgxFjAU
BgNVBAMTDTY1NGU2NjM2LWRhNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCyeLXo+VbcUfchsiKDMSTtyGixnaTHEYn48eG4chChGOFDOX+txCCGCYix
Sd2hHAP/8HoXcZsZil7gOIZ3vLgJq8AXtHaOdwNciSWma0NMrQ9/5KR/dHjQ3RAJ
wnwRYoYAYcipVVGCfwTU9Uf7p3OJKTA6v0vpJh7Mu10MK/HbgHTPXIFMho/l7tZg
SgQO5lHxHij8yMvaOvgWbCT0anqyKr4qmiLbe5YckuSIEymDW8PScmm7fxI9xNMg
EB594lE5hxKakw0cwncJfnH4c6afY4NtnjTTehCjBE8PZ6k58qWtAY6PbFDOatpR
V6rROIc46tdQMhrFHT8pXxMA3JJdAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUlh25
KruKAqZiaPGGFNLwygilgaUwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzVBOERBRTQ4N0ZFRDExRUVBOTRBMDMzNTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwyIwDQYJKoZIhvcNAQELBQAD
ggEBAGuwEPRLJq0LINLGEoRY8nuG3ZZSrQYmHR8P8nps4MFj/wDnrc4Rp38eNO4O
adZDdhamO1hCRaTorFKu7G/csvRN3d7pXnhnz3OVZCP03HUAHnVmdJHalnxczZcW
i5OTQuRmDdc45VXeR1A4x2hDbGLiCwwQ6Mg8KDcvA4V3QBBBP1eMbi9mGoP3+baf
zZYqb83TvnQF+EhneJVUl7iEroWc/5+vTJ3kY3b2kfh7v9C3tEw72PfVVvokCzbn
DCfEq95sli1jUwLh2ZiAoIcCU/v5oH4oQ2UUCIQkPk8oFAaICqTXUAFif0lxs5yD
OSagD8aGU57tLckgIhMig0VPu4w=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:09 2024 by rpki-client on console-fra.rpki-client.org