Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/672390CC8DD111EE9E9B1F6E4AD9E6FC.roa
File: 672390CC8DD111EE9E9B1F6E4AD9E6FC.roa (raw, json)
Hash identifier: 1ziyHgxb+8imzfoVU5xY8/ErwauDstNlYC/wcvAuJrY=
Subject key identifier: 7B:F1:7D:58:4A:43:83:55:00:59:30:B5:DE:00:C2:D4:6C:DC:7B:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C61
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/672390CC8DD111EE9E9B1F6E4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:35:01 +0000
ROA not before: Sat 03 Feb 2024 09:34:57 +0000
ROA not after: Thu 08 Aug 2024 09:34:57 +0000
asID: 133861
IP address blocks: 45.207.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19553 (0x4c61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:34:57 2024 GMT
Not After : Aug 8 09:34:57 2024 GMT
Subject: CN=6565b445-72cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:32:8c:99:55:0e:21:ed:ab:2d:92:56:95:37:
ab:89:33:70:33:0e:3a:e8:1b:32:f0:a2:0a:01:be:
34:23:15:6c:42:1d:e7:24:38:42:9e:8b:49:8a:0b:
5d:c6:c9:46:2b:d5:15:55:55:4d:eb:a4:7a:16:ea:
9c:aa:c7:ca:44:d5:a1:e6:c7:59:57:c5:56:d3:6a:
2a:5a:ff:74:0e:ff:14:55:71:72:b5:47:fa:8c:bb:
7d:8d:b8:cc:a3:26:7c:01:83:62:88:3c:41:93:4d:
40:79:74:86:fc:51:79:8b:88:62:9d:50:35:d4:7b:
22:cd:a4:ae:61:6c:1d:30:32:ca:15:d5:54:ed:36:
55:dd:3b:a7:93:c1:11:ef:e9:e4:0e:36:0e:17:ef:
19:a8:bd:1e:db:34:11:a9:b6:a7:7b:09:ef:9d:2f:
bd:a3:08:91:cc:3a:4a:38:3b:3a:74:18:fc:cc:77:
51:2d:86:c2:b7:9e:3d:14:3d:e9:e4:b3:7d:54:b3:
19:bd:00:be:86:c5:85:ea:bd:18:e4:a8:ff:4e:a4:
12:85:2c:d9:33:5f:81:fa:ae:5b:4f:fe:a3:34:48:
80:a3:9d:80:f8:fc:f0:fb:fe:15:09:e7:cc:b7:f7:
10:02:9a:dd:9b:a4:33:04:e5:cf:2b:01:7c:3f:ff:
23:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F1:7D:58:4A:43:83:55:00:59:30:B5:DE:00:C2:D4:6C:DC:7B:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/672390CC8DD111EE9E9B1F6E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.44.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e8:eb:ae:d5:0e:24:ea:5d:2f:0d:89:0e:53:d5:5c:0d:b0:
22:64:db:c1:69:ab:2e:48:80:a3:3a:e4:00:17:8c:fa:52:f4:
70:72:f9:9e:4c:41:9a:2c:57:e7:84:7a:16:69:09:c4:df:f9:
16:f1:a0:4b:9d:20:b3:af:48:ab:08:48:a5:b6:b4:02:ca:38:
b8:2c:2a:2d:af:4a:8e:f0:de:df:33:d7:07:21:e2:f4:cf:54:
bc:47:88:06:64:21:f2:f4:75:49:19:d0:7e:0e:5a:6c:3e:d9:
92:07:d8:42:95:c9:a8:1b:1b:ca:7d:ca:8c:14:c5:39:ea:0a:
3a:ac:e5:45:66:45:19:78:bb:f0:68:f9:ef:91:52:16:d9:d5:
2e:9f:39:2f:84:94:83:68:88:21:2a:92:14:f3:4f:1a:63:b1:
01:cf:76:09:04:44:29:db:98:ca:c9:8a:de:5e:e8:79:73:3f:
3e:15:83:d9:ee:33:7f:02:b3:3c:c5:94:dc:31:5a:c8:02:88:
a2:9c:40:21:eb:0d:8e:54:53:6b:48:d8:75:fa:2c:ce:77:45:
03:74:4f:02:b6:64:6e:9d:99:7a:32:18:a9:0e:a8:74:8c:1a:
66:b5:b7:fb:9b:37:56:3b:b5:4f:3d:ef:cf:56:0f:f2:b0:6a:
3a:be:ea:b1
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTGEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTM0NTdaFw0yNDA4MDgwOTM0NTdaMBgxFjAU
BgNVBAMTDTY1NjViNDQ1LTcyY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDZMoyZVQ4h7astklaVN6uJM3AzDjroGzLwogoBvjQjFWxCHeckOEKei0mK
C13GyUYr1RVVVU3rpHoW6pyqx8pE1aHmx1lXxVbTaipa/3QO/xRVcXK1R/qMu32N
uMyjJnwBg2KIPEGTTUB5dIb8UXmLiGKdUDXUeyLNpK5hbB0wMsoV1VTtNlXdO6eT
wRHv6eQONg4X7xmovR7bNBGptqd7Ce+dL72jCJHMOko4Ozp0GPzMd1EthsK3nj0U
Penks31Usxm9AL6GxYXqvRjkqP9OpBKFLNkzX4H6rltP/qM0SICjnYD4/PD7/hUJ
58y39xACmt2bpDME5c8rAXw//yN3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUe/F9
WEpDg1UAWTC13gDC1Gzce6MwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzY3MjM5MENDOEREMTExRUU5RTlCMUY2RTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzywwDQYJKoZIhvcNAQELBQAD
ggEBAHvo667VDiTqXS8NiQ5T1VwNsCJk28Fpqy5IgKM65AAXjPpS9HBy+Z5MQZos
V+eEehZpCcTf+RbxoEudILOvSKsISKW2tALKOLgsKi2vSo7w3t8z1wch4vTPVLxH
iAZkIfL0dUkZ0H4OWmw+2ZIH2EKVyagbG8p9yowUxTnqCjqs5UVmRRl4u/Bo+e+R
UhbZ1S6fOS+ElINoiCEqkhTzTxpjsQHPdgkERCnbmMrJit5e6HlzPz4Vg9nuM38C
szzFlNwxWsgCiKKcQCHrDY5UU2tI2HX6LM53RQN0TwK2ZG6dmXoyGKkOqHSMGma1
t/ubN1Y7tU89789WD/Kwajq+6rE=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org