Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B1D8512F74911EE8C12FE56017001B1.roa
File: 5B1D8512F74911EE8C12FE56017001B1.roa (raw, json)
Hash identifier: AJuzFOCwU648dsWNk4HAUNV+RtxIExwCDz2/65clGfY=
Subject key identifier: A8:79:35:B4:53:71:18:19:16:5F:A4:F4:27:6C:86:DF:5F:CA:13:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8219
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B1D8512F74911EE8C12FE56017001B1.roa
Signing time: Wed 10 Apr 2024 14:48:13 +0000
ROA not before: Wed 10 Apr 2024 14:48:09 +0000
ROA not after: Thu 17 Oct 2024 14:48:09 +0000
asID: 132813
IP address blocks: 45.195.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33305 (0x8219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 10 14:48:09 2024 GMT
Not After : Oct 17 14:48:09 2024 GMT
Subject: CN=6616a6ad-b276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:37:79:41:21:5b:97:eb:c8:d1:67:e6:03:85:
e7:e9:cf:02:a8:25:4b:0c:2d:73:0c:c4:ee:2e:44:
7c:71:3d:ef:08:cb:56:00:5f:a4:3c:2d:63:c3:cd:
d0:e9:ef:84:eb:2a:3c:3f:2b:4c:3a:48:d4:7b:a7:
26:b6:7b:cd:5d:38:e6:cf:a5:cc:e9:c8:9d:3b:42:
7c:9f:a2:c0:be:f0:9e:42:b1:e8:8e:98:9b:42:af:
ae:73:ad:0e:0c:f1:0d:b2:d4:59:d9:a8:18:63:f3:
98:36:7c:cc:30:ba:49:ff:ae:c5:f3:c4:ae:14:df:
03:8b:b1:c7:b0:ce:7b:c0:5e:bf:de:b4:33:91:85:
53:49:5b:2b:df:fa:a8:a5:84:8b:c4:c5:24:5a:d6:
b5:3e:6d:26:ad:fa:52:7b:7e:9b:b0:a8:a8:e7:00:
b0:85:9d:45:19:02:35:e0:20:80:b4:f7:6d:03:b4:
01:10:6d:e8:d4:73:26:91:85:09:8b:f9:ed:37:88:
ad:88:10:74:fb:a8:5e:18:7d:86:3a:e5:dc:c0:b8:
14:e9:aa:8a:15:a5:4e:f6:d6:90:b1:17:7a:03:07:
51:97:4e:99:32:f1:b7:3f:43:e9:57:1e:98:12:09:
da:df:09:8c:ce:39:9b:06:7b:5e:d8:8e:0f:54:4f:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:79:35:B4:53:71:18:19:16:5F:A4:F4:27:6C:86:DF:5F:CA:13:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B1D8512F74911EE8C12FE56017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.52.0/22
Signature Algorithm: sha256WithRSAEncryption
13:a3:05:53:21:06:1e:c3:ee:84:67:42:c0:4b:e4:b7:4e:16:
2f:df:9e:d1:1f:e4:13:60:69:7c:46:57:b5:f0:11:b9:a2:f5:
88:56:9c:6a:00:b4:7a:48:82:c7:f5:38:cf:3f:29:bd:eb:7f:
d7:6a:be:c2:30:48:7b:f3:01:2e:03:c5:35:64:94:2a:68:a8:
ed:e2:f0:78:4d:b5:cc:2e:be:75:c5:36:55:1c:93:8a:00:33:
ab:2b:ce:ff:84:68:05:26:11:e7:07:d2:f9:f9:70:ab:ce:0c:
11:19:8a:06:8b:a3:23:d8:c9:34:08:9c:eb:7f:e0:26:cc:ad:
d9:ec:d8:f4:81:b1:b1:67:23:ca:c7:9b:d4:d3:71:ec:c7:7d:
ba:be:82:39:81:d9:9b:c6:64:ed:0c:de:6f:3d:8b:77:56:b0:
0c:90:77:37:d3:53:6e:0c:56:df:e7:b0:b5:09:cf:ae:c1:09:
81:b3:29:77:0a:36:8d:95:ba:98:69:5e:58:48:cb:fd:f5:f9:
1c:08:ff:23:25:ce:0f:0d:bf:38:60:2c:2c:43:e3:9d:38:5e:
7f:b1:69:da:a4:f3:fd:e6:9f:3a:f3:aa:4f:d3:18:c4:f5:c6:
78:30:83:de:17:b2:93:d0:31:45:73:bd:85:fa:c7:48:95:e0:
f0:20:c2:57
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIIZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDEwMTQ0ODA5WhcNMjQxMDE3MTQ0ODA5WjAYMRYw
FAYDVQQDEw02NjE2YTZhZC1iMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAozd5QSFbl+vI0WfmA4Xn6c8CqCVLDC1zDMTuLkR8cT3vCMtWAF+kPC1j
w83Q6e+E6yo8PytMOkjUe6cmtnvNXTjmz6XM6cidO0J8n6LAvvCeQrHojpibQq+u
c60ODPENstRZ2agYY/OYNnzMMLpJ/67F88SuFN8Di7HHsM57wF6/3rQzkYVTSVsr
3/qopYSLxMUkWta1Pm0mrfpSe36bsKio5wCwhZ1FGQI14CCAtPdtA7QBEG3o1HMm
kYUJi/ntN4itiBB0+6heGH2GOuXcwLgU6aqKFaVO9taQsRd6AwdRl06ZMvG3P0Pp
Vx6YEgna3wmMzjmbBnte2I4PVE+xiwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKh5
NbRTcRgZFl+k9Cdsht9fyhOLMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81QjFEODUxMkY3NDkxMUVFOEMxMkZFNTYwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcM0MA0GCSqGSIb3DQEBCwUA
A4IBAQATowVTIQYew+6EZ0LAS+S3ThYv357RH+QTYGl8Rle18BG5ovWIVpxqALR6
SILH9TjPPym963/Xar7CMEh78wEuA8U1ZJQqaKjt4vB4TbXMLr51xTZVHJOKADOr
K87/hGgFJhHnB9L5+XCrzgwRGYoGi6Mj2Mk0CJzrf+AmzK3Z7Nj0gbGxZyPKx5vU
03Hsx326voI5gdmbxmTtDN5vPYt3VrAMkHc301NuDFbf57C1Cc+uwQmBsyl3CjaN
lbqYaV5YSMv99fkcCP8jJc4PDb84YCwsQ+OdOF5/sWnapPP95p8686pP0xjE9cZ4
MIPeF7KT0DFFc72F+sdIleDwIMJX
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org