Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6445E69CB06911EE8381E5C5775412E6.roa
File: 6445E69CB06911EE8381E5C5775412E6.roa (raw, json)
Hash identifier: RuiXTGpZHpw2x5EvsRiRNcO6v6aeq8T0lkB07y1vwME=
Subject key identifier: 6E:5B:35:FC:F1:49:BF:E3:F6:5E:7E:CC:AB:96:FF:49:58:AE:A8:7F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5F5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6445E69CB06911EE8381E5C5775412E6.roa
Signing time: Thu 11 Jan 2024 10:08:40 +0000
ROA not before: Thu 11 Jan 2024 10:08:36 +0000
ROA not after: Wed 23 Oct 2024 10:08:36 +0000
asID: 393559
IP address blocks: 45.204.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24411 (0x5f5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 11 10:08:36 2024 GMT
Not After : Oct 23 10:08:36 2024 GMT
Subject: CN=659fbe27-2d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9c:4e:b3:f8:cd:f2:ec:00:3f:b3:6a:2c:00:
0b:c1:ff:fd:06:ee:f6:2b:8e:b2:f7:55:e5:03:70:
4a:9b:2d:50:81:84:fd:5b:99:1a:4f:43:4b:39:c5:
cc:ab:4c:84:5c:48:1c:22:5d:e4:91:f3:1e:97:4d:
69:52:67:39:fc:d5:73:4d:ef:4c:69:09:04:bf:f2:
04:b4:66:11:c6:27:e5:c4:04:97:79:00:50:54:2e:
da:cd:d7:65:dc:65:d3:b8:d0:47:74:7a:cb:52:f3:
ae:81:29:8c:90:6c:4e:ab:68:68:7e:9e:e1:30:55:
91:05:13:da:bf:91:0d:43:ba:00:0d:00:f6:f9:2b:
8d:f0:c1:00:39:9c:80:38:45:41:0b:4a:04:f0:b2:
92:9e:ac:06:c9:34:c6:9a:e8:74:a0:c1:0b:c1:d1:
ab:c0:77:59:65:01:2c:e3:cb:bd:df:2d:bc:1b:2c:
82:6a:c9:ec:b6:4f:b3:e2:9e:50:bb:32:57:06:ab:
cd:3c:68:4a:39:60:7c:aa:ff:ff:7c:0f:d1:c6:82:
b3:a1:ba:9e:2c:5b:b8:ce:04:73:df:69:d0:99:d9:
ff:24:7d:c8:c2:e0:9a:39:29:e7:bb:fa:00:ea:79:
0f:19:ef:95:bf:b2:29:97:37:a7:d8:5d:81:8a:df:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5B:35:FC:F1:49:BF:E3:F6:5E:7E:CC:AB:96:FF:49:58:AE:A8:7F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6445E69CB06911EE8381E5C5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:c9:52:c5:53:ee:df:86:0e:99:fe:b5:44:15:a4:2d:6c:dc:
1e:25:9e:94:4f:f6:a7:33:57:d9:3a:4d:2e:77:97:de:66:6a:
61:26:7a:1c:ff:09:ab:e9:9a:69:70:42:2c:f2:f2:0b:73:df:
25:06:9c:4c:d0:ed:d8:b6:f1:34:6e:43:87:2d:42:1a:dd:9f:
4e:d1:fc:74:a6:78:36:49:6b:ae:d6:2b:3b:cb:62:0b:89:15:
38:57:0e:76:93:b1:52:a5:c1:fb:5c:11:6b:ae:07:d5:70:cc:
e2:64:2e:74:e7:70:08:cc:70:17:1c:a1:17:38:f8:9a:a6:38:
e8:39:e1:fa:c9:7d:09:8d:8a:96:91:0e:b6:99:65:a9:dc:92:
9b:30:80:68:cd:a0:47:28:a7:72:e9:8e:2a:39:a0:41:3a:13:
0e:66:45:13:cd:28:7f:5b:78:29:be:6e:05:d2:91:58:64:65:
60:31:ab:2e:dd:eb:e1:c8:3a:79:dd:16:03:f4:0e:eb:cc:56:
7e:ed:de:86:d8:d2:1e:08:86:d6:cd:d1:a0:0b:ab:c0:90:4c:
d5:ce:6e:2c:5a:28:ce:2b:eb:47:16:c5:e7:99:18:66:35:05:
f2:d6:6e:e6:ea:d8:d7:95:9a:80:42:06:76:c7:1d:68:c8:4f:
95:7a:28:24
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICX1swDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAxMTExMDA4MzZaFw0yNDEwMjMxMDA4MzZaMBgxFjAU
BgNVBAMTDTY1OWZiZTI3LTJkNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHnE6z+M3y7AA/s2osAAvB//0G7vYrjrL3VeUDcEqbLVCBhP1bmRpPQ0s5
xcyrTIRcSBwiXeSR8x6XTWlSZzn81XNN70xpCQS/8gS0ZhHGJ+XEBJd5AFBULtrN
12XcZdO40Ed0estS866BKYyQbE6raGh+nuEwVZEFE9q/kQ1DugANAPb5K43wwQA5
nIA4RUELSgTwspKerAbJNMaa6HSgwQvB0avAd1llASzjy73fLbwbLIJqyey2T7Pi
nlC7MlcGq808aEo5YHyq//98D9HGgrOhup4sW7jOBHPfadCZ2f8kfcjC4Jo5Kee7
+gDqeQ8Z75W/simXN6fYXYGK3xzbAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUbls1
/PFJv+P2Xn7Mq5b/SViuqH8wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzY0NDVFNjlDQjA2OTExRUU4MzgxRTVDNTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzEYwDQYJKoZIhvcNAQELBQAD
ggEBALXJUsVT7t+GDpn+tUQVpC1s3B4lnpRP9qczV9k6TS53l95mamEmehz/Cavp
mmlwQizy8gtz3yUGnEzQ7di28TRuQ4ctQhrdn07R/HSmeDZJa67WKzvLYguJFThX
DnaTsVKlwftcEWuuB9VwzOJkLnTncAjMcBccoRc4+JqmOOg54frJfQmNipaRDraZ
ZanckpswgGjNoEcop3Lpjio5oEE6Ew5mRRPNKH9beCm+bgXSkVhkZWAxqy7d6+HI
OnndFgP0DuvMVn7t3obY0h4IhtbN0aALq8CQTNXObixaKM4r60cWxeeZGGY1BfLW
bubq2NeVmoBCBnbHHWjIT5V6KCQ=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org