Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA38A62726911EF917A6654762E951A.roa
File: 6BA38A62726911EF917A6654762E951A.roa (raw, json)
Hash identifier: Jr49mLLJgN2aIxik5/PTMtPrneAQuDDdef63zp5GAq4=
Subject key identifier: 4D:E1:D0:B2:CE:DF:90:50:F6:87:DE:BF:3C:76:9C:85:6D:AA:C3:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B597
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA38A62726911EF917A6654762E951A.roa
Signing time: Sat 14 Sep 2024 07:17:37 +0000
ROA not before: Sat 14 Sep 2024 07:17:34 +0000
ROA not after: Fri 08 Aug 2025 07:17:34 +0000
asID: 133199
IP address blocks: 45.207.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46487 (0xb597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:17:34 2024 GMT
Not After : Aug 8 07:17:34 2025 GMT
Subject: CN=66e53891-e0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:59:01:71:c4:0f:71:bb:29:00:83:d7:c2:
1e:49:3d:4d:70:fa:d0:67:76:5f:6d:13:61:bf:b1:
4e:d1:a6:f1:75:48:ff:ee:4c:45:3c:5a:dd:cc:55:
3d:a0:e0:e0:17:33:5e:04:2d:c1:4d:97:2a:6a:03:
d7:72:91:7f:a4:37:41:3b:39:82:7a:4a:97:ae:a6:
3d:b2:a0:0c:88:08:a0:cc:17:70:dc:63:ea:7f:b1:
1c:cc:3e:0a:3c:02:85:6e:1b:39:15:e4:ea:fb:7a:
8c:15:71:3a:4b:5c:2b:6e:64:85:df:41:2b:bb:53:
e7:33:0b:55:9e:6a:de:3e:ce:fe:74:15:fe:26:01:
cf:80:c6:ed:b7:31:26:1c:e6:e9:f1:83:f0:7c:34:
72:d5:72:20:d3:8f:26:20:fe:2c:09:35:0b:6f:3c:
43:e9:40:ca:6e:bf:90:57:cc:3e:5a:9d:47:27:fb:
d1:ef:6a:00:d7:23:44:ce:21:f0:45:37:36:ac:1a:
3e:a7:c5:5c:eb:3b:87:2c:cc:e0:1d:63:4f:68:a4:
67:d0:12:82:a4:32:e5:be:2d:0d:c0:7f:e1:a1:a7:
b4:0d:da:c5:52:c7:b2:fc:2b:33:d9:fb:af:b5:2d:
fc:48:c6:89:b0:1f:5b:89:84:d1:76:08:c0:26:63:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E1:D0:B2:CE:DF:90:50:F6:87:DE:BF:3C:76:9C:85:6D:AA:C3:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6BA38A62726911EF917A6654762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.56.0/24
Signature Algorithm: sha256WithRSAEncryption
38:dc:00:2b:92:2c:89:4a:17:fb:24:df:55:b1:87:6d:87:47:
15:fd:7b:91:d3:9a:64:09:b0:cf:d0:77:4f:c3:be:4f:02:7f:
19:d4:90:68:c9:45:c2:9a:ef:d1:7c:b4:21:d6:4c:1f:ed:27:
2a:9a:08:fb:e9:57:75:08:4e:6e:25:92:d5:4a:86:10:26:c6:
ea:a1:87:53:4c:ce:00:a6:08:f3:ad:ba:1a:8e:22:c0:62:d2:
de:c7:fb:a4:df:ff:12:bf:3d:a6:19:0c:d4:2b:e4:9c:ed:32:
1f:7a:b3:46:12:42:64:b5:31:34:ef:d5:9b:28:bf:a4:78:56:
73:c9:ae:b5:a0:fe:89:ba:ea:51:c7:a1:82:49:a4:f5:ff:58:
e7:c9:c5:d2:ad:e7:be:3c:bf:01:9c:03:e8:ae:d8:f1:6e:ed:
73:ae:52:fb:61:19:9a:eb:4b:46:96:61:3f:da:dc:ea:7f:0f:
e5:32:d0:10:9a:69:89:3d:8e:a6:8c:c1:7c:9d:db:b7:39:12:
d5:5a:cd:f2:98:c2:a0:a7:01:f3:19:0d:6e:3b:37:65:60:11:
0a:8a:e5:8b:d7:64:fa:29:37:60:8f:cb:ce:1f:c2:ae:4a:21:
68:7c:e0:76:c2:5e:d8:3d:53:fb:57:a5:4b:62:0e:ac:7e:71:
d0:b9:53:cb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALWXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE0MDcxNzM0WhcNMjUwODA4MDcxNzM0WjAYMRYw
FAYDVQQDEw02NmU1Mzg5MS1lMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwUxZAXHED3G7KQCD18IeST1NcPrQZ3ZfbRNhv7FO0abxdUj/7kxFPFrd
zFU9oODgFzNeBC3BTZcqagPXcpF/pDdBOzmCekqXrqY9sqAMiAigzBdw3GPqf7Ec
zD4KPAKFbhs5FeTq+3qMFXE6S1wrbmSF30Eru1PnMwtVnmrePs7+dBX+JgHPgMbt
tzEmHObp8YPwfDRy1XIg048mIP4sCTULbzxD6UDKbr+QV8w+Wp1HJ/vR72oA1yNE
ziHwRTc2rBo+p8Vc6zuHLMzgHWNPaKRn0BKCpDLlvi0NwH/hoae0DdrFUsey/Csz
2fuvtS38SMaJsB9biYTRdgjAJmMucQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFE3h
0LLO35BQ9ofevzx2nIVtqsOtMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82QkEzOEE2MjcyNjkxMUVGOTE3QTY2NTQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc84MA0GCSqGSIb3DQEBCwUA
A4IBAQA43AArkiyJShf7JN9VsYdth0cV/XuR05pkCbDP0HdPw75PAn8Z1JBoyUXC
mu/RfLQh1kwf7Scqmgj76Vd1CE5uJZLVSoYQJsbqoYdTTM4ApgjzrboajiLAYtLe
x/uk3/8Svz2mGQzUK+Sc7TIferNGEkJktTE079WbKL+keFZzya61oP6JuupRx6GC
SaT1/1jnycXSree+PL8BnAPortjxbu1zrlL7YRma60tGlmE/2tzqfw/lMtAQmmmJ
PY6mjMF8ndu3ORLVWs3ymMKgpwHzGQ1uOzdlYBEKiuWL12T6KTdgj8vOH8KuSiFo
fOB2wl7YPVP7V6VLYg6sfnHQuVPL
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:33 2024 by rpki-client on console-fra.rpki-client.org