Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/664F48608DD311EE99387A744AD9E6FC.roa
File: 664F48608DD311EE99387A744AD9E6FC.roa (raw, json)
Hash identifier: n8XKWXgB2mclBBBsZWVaq9mDZTPqLqxGD+L45MGjP6Q=
Subject key identifier: DF:D0:AC:DD:88:73:8F:1B:51:AD:2E:78:CE:EF:CB:0C:E1:0D:8E:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C7B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/664F48608DD311EE99387A744AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:49:19 +0000
ROA not before: Sat 03 Feb 2024 09:49:16 +0000
ROA not after: Thu 08 Aug 2024 09:49:16 +0000
asID: 133861
IP address blocks: 45.207.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19579 (0x4c7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:49:16 2024 GMT
Not After : Aug 8 09:49:16 2024 GMT
Subject: CN=6565b79f-546b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9f:0e:76:6c:e2:bc:39:24:3d:32:8d:c8:bb:
0c:66:9c:07:22:87:74:6f:52:c0:20:97:7e:69:4e:
57:78:fd:ce:c2:2b:85:c1:49:df:70:f6:c8:08:ee:
a6:89:0a:c1:0a:7a:fe:b9:36:30:34:45:c4:90:23:
66:69:49:17:e3:48:10:a3:df:53:57:db:da:c2:8c:
2c:a0:26:42:42:8b:c0:f0:1e:a9:8d:d1:ba:44:1a:
b1:03:06:e5:e3:a8:a3:4f:c0:c1:7b:56:c5:1d:6b:
b9:17:9b:1f:c9:a8:86:58:26:34:5c:62:9b:8b:7b:
8c:6e:74:e7:e5:5b:52:a5:f8:e4:2d:aa:74:96:8d:
9b:e1:bb:48:80:5c:48:63:ec:d7:7c:a3:cf:53:c2:
1b:55:9b:6c:84:44:2a:29:2c:33:64:5c:17:93:92:
b6:7a:5f:91:a7:a6:b5:62:5d:54:95:23:de:59:2f:
c9:dd:24:0e:b1:06:97:e7:cd:62:7e:ac:a7:25:6d:
cc:68:cd:a8:91:14:42:a5:b7:38:c5:6c:b5:d4:b5:
91:e8:07:a8:a4:8e:12:f8:c6:82:95:1d:79:86:ec:
a2:a8:0c:62:98:1c:e4:3a:db:6f:48:b9:ba:9e:f5:
3a:39:de:54:9d:67:02:8a:fd:c6:e9:05:75:2b:40:
22:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D0:AC:DD:88:73:8F:1B:51:AD:2E:78:CE:EF:CB:0C:E1:0D:8E:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/664F48608DD311EE99387A744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.50.0/24
Signature Algorithm: sha256WithRSAEncryption
09:29:e2:f2:05:6a:2a:03:b0:a9:b9:30:2e:d4:65:82:d4:91:
d8:26:f0:c7:2e:24:54:06:b2:ce:5a:a0:37:28:04:bd:c9:06:
2e:2d:32:c1:8c:48:1d:e8:ee:92:1e:ed:dd:fd:90:34:01:42:
af:b5:56:a0:a3:f4:a6:d8:32:18:32:95:35:43:90:6f:ab:34:
52:45:4a:cd:e3:85:95:d6:b6:f1:6f:26:3f:2e:2e:50:6a:07:
0f:ed:92:1a:c7:e9:b1:9d:c5:f8:62:bc:3d:57:f1:03:0a:d7:
de:35:f0:7f:66:ce:09:73:be:19:20:ee:16:c9:b5:10:2a:d3:
eb:aa:e2:8c:4c:0b:2e:c1:be:b3:83:27:be:36:57:d4:8b:47:
66:6b:69:43:cb:bf:4f:ad:40:6a:5c:4e:46:80:21:9e:17:0e:
f1:39:7d:7f:b5:88:35:69:5c:a1:7a:2c:8b:26:19:bf:42:93:
87:ee:85:bf:d0:a6:2a:c6:dd:21:22:27:63:56:df:a4:03:9e:
e4:3b:11:7e:dd:6c:37:38:38:51:c3:d4:82:bb:45:91:fb:ae:
ef:3d:65:e9:11:27:3d:11:ca:c1:e8:88:ef:50:7f:b8:b8:6b:
67:e7:8b:80:fd:56:1a:e5:04:bf:c4:1e:73:1c:c7:ad:ff:d4:
ba:b9:24:c2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTHswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTQ5MTZaFw0yNDA4MDgwOTQ5MTZaMBgxFjAU
BgNVBAMTDTY1NjViNzlmLTU0NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC0nw52bOK8OSQ9Mo3IuwxmnAcih3RvUsAgl35pTld4/c7CK4XBSd9w9sgI
7qaJCsEKev65NjA0RcSQI2ZpSRfjSBCj31NX29rCjCygJkJCi8DwHqmN0bpEGrED
BuXjqKNPwMF7VsUda7kXmx/JqIZYJjRcYpuLe4xudOflW1Kl+OQtqnSWjZvhu0iA
XEhj7Nd8o89TwhtVm2yERCopLDNkXBeTkrZ6X5GnprViXVSVI95ZL8ndJA6xBpfn
zWJ+rKclbcxozaiRFEKltzjFbLXUtZHoB6ikjhL4xoKVHXmG7KKoDGKYHOQ6229I
ubqe9To53lSdZwKK/cbpBXUrQCLdAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU39Cs
3YhzjxtRrS54zu/LDOENjpkwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzY2NEY0ODYwOEREMzExRUU5OTM4N0E3NDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzzIwDQYJKoZIhvcNAQELBQAD
ggEBAAkp4vIFaioDsKm5MC7UZYLUkdgm8McuJFQGss5aoDcoBL3JBi4tMsGMSB3o
7pIe7d39kDQBQq+1VqCj9KbYMhgylTVDkG+rNFJFSs3jhZXWtvFvJj8uLlBqBw/t
khrH6bGdxfhivD1X8QMK19418H9mzglzvhkg7hbJtRAq0+uq4oxMCy7BvrODJ742
V9SLR2ZraUPLv0+tQGpcTkaAIZ4XDvE5fX+1iDVpXKF6LIsmGb9Ck4fuhb/QpirG
3SEiJ2NW36QDnuQ7EX7dbDc4OFHD1IK7RZH7ru89ZekRJz0RysHoiO9Qf7i4a2fn
i4D9VhrlBL/EHnMcx63/1Lq5JMI=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org