Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CA3B2048ACC11EFBF7AE660762E951A.roa
File: 6CA3B2048ACC11EFBF7AE660762E951A.roa (raw, json)
Hash identifier: YeyhlTnXMGWu66JPamzvMxJziwpr+H8c+8PilUGoZLw=
Subject key identifier: A7:EB:54:2B:89:6C:69:0E:65:EF:C1:13:85:3D:53:DA:61:C1:54:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C4BF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CA3B2048ACC11EFBF7AE660762E951A.roa
Signing time: Tue 15 Oct 2024 08:06:47 +0000
ROA not before: Tue 15 Oct 2024 08:06:44 +0000
ROA not after: Wed 27 Nov 2024 08:06:44 +0000
asID: 20473
IP address blocks: 45.194.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50367 (0xc4bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 15 08:06:44 2024 GMT
Not After : Nov 27 08:06:44 2024 GMT
Subject: CN=670e2297-3995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:da:6e:56:c0:39:11:a0:bf:12:34:1d:7e:58:
7f:37:7c:76:af:91:f6:66:d8:c5:b2:76:4a:b3:64:
fc:c3:ff:42:65:72:03:c8:30:f0:44:6c:ec:ae:b4:
52:b9:ae:42:b4:07:5f:0e:da:03:17:00:69:66:c2:
50:7c:ca:3b:5b:1f:5c:b1:76:f7:f1:4e:67:13:76:
b3:9c:c4:5e:57:1e:a0:e0:f8:0e:11:16:05:5f:45:
61:b7:a1:51:06:c7:d2:9d:48:35:7d:e8:a6:be:5c:
8c:d7:22:9a:d9:8d:0a:22:16:27:2b:f0:01:9e:93:
3d:aa:d9:d5:c5:3f:4a:13:7b:ed:5c:9d:e5:ff:6b:
ac:7b:c9:ef:5f:c3:d2:06:20:0e:a5:c0:50:80:5d:
13:5c:b5:c1:13:b7:e8:13:11:8e:42:7d:0f:2a:d9:
ac:f1:b3:63:1a:67:fa:d7:12:7f:66:b3:f0:8d:ee:
e8:5e:e4:ff:e5:c6:af:56:59:5d:fd:44:a5:43:f2:
fe:5b:a6:5c:ae:ff:d4:ff:6d:d1:92:2e:54:9a:bc:
95:ca:8f:1a:f8:05:50:f5:9b:e3:01:cf:c2:4d:6c:
31:59:ac:af:62:63:83:ac:90:ad:0c:72:82:a2:47:
fa:cb:52:12:14:8b:00:d4:0e:3e:30:c7:e9:79:ad:
ca:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:EB:54:2B:89:6C:69:0E:65:EF:C1:13:85:3D:53:DA:61:C1:54:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CA3B2048ACC11EFBF7AE660762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.116.0/23
Signature Algorithm: sha256WithRSAEncryption
37:2b:15:c2:3c:97:8a:d9:f1:8b:b9:c6:0b:f8:5e:e8:d5:3a:
32:df:13:b9:58:6a:86:bc:ca:80:84:95:6d:22:ff:30:30:8d:
5a:02:5e:27:d9:97:47:ca:f7:94:01:a2:57:69:08:ee:19:2e:
41:8d:cb:3e:aa:cf:9a:44:e4:ff:92:22:7f:64:d3:a4:ac:5e:
ab:8d:f9:13:ab:d0:30:17:96:2f:b1:fc:70:6d:4e:70:20:59:
b2:3f:2c:3f:43:12:3e:51:d0:38:fa:91:6e:23:59:09:e0:b8:
04:1f:de:4d:7e:ab:ab:88:18:69:f5:b1:01:e9:bf:2b:b7:f0:
3f:6e:91:6c:9a:2f:fd:06:17:ec:69:8c:5b:12:d9:9f:f6:fd:
8c:12:1e:ec:87:52:9a:d7:c6:53:9e:a1:33:7b:ba:13:ee:45:
1b:04:7a:75:4a:3e:cb:d9:d5:39:fd:d7:1d:83:da:47:36:80:
e8:24:4c:1c:41:e8:f0:7f:7e:e7:66:ee:cf:1c:71:17:8a:9d:
bd:f1:23:a8:06:c5:a8:8b:52:56:86:fc:53:8e:4e:a2:3c:0d:
ff:67:e9:22:8e:8d:d6:0e:73:c0:04:5a:ee:8d:6e:f4:02:13:
e1:35:d3:66:88:38:ff:85:0e:af:7d:e6:86:38:d7:ab:a6:df:
d2:27:85:27
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMS/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDE1MDgwNjQ0WhcNMjQxMTI3MDgwNjQ0WjAYMRYw
FAYDVQQDEw02NzBlMjI5Ny0zOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsNpuVsA5EaC/EjQdflh/N3x2r5H2ZtjFsnZKs2T8w/9CZXIDyDDwRGzs
rrRSua5CtAdfDtoDFwBpZsJQfMo7Wx9csXb38U5nE3aznMReVx6g4PgOERYFX0Vh
t6FRBsfSnUg1feimvlyM1yKa2Y0KIhYnK/ABnpM9qtnVxT9KE3vtXJ3l/2use8nv
X8PSBiAOpcBQgF0TXLXBE7foExGOQn0PKtms8bNjGmf61xJ/ZrPwje7oXuT/5cav
Vlld/USlQ/L+W6Zcrv/U/23Rki5UmryVyo8a+AVQ9ZvjAc/CTWwxWayvYmODrJCt
DHKCokf6y1ISFIsA1A4+MMfpea3KOQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKfr
VCuJbGkOZe/BE4U9U9phwVR+MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82Q0EzQjIwNDhBQ0MxMUVGQkY3QUU2NjA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcJ0MA0GCSqGSIb3DQEBCwUA
A4IBAQA3KxXCPJeK2fGLucYL+F7o1Toy3xO5WGqGvMqAhJVtIv8wMI1aAl4n2ZdH
yveUAaJXaQjuGS5Bjcs+qs+aROT/kiJ/ZNOkrF6rjfkTq9AwF5YvsfxwbU5wIFmy
Pyw/QxI+UdA4+pFuI1kJ4LgEH95NfquriBhp9bEB6b8rt/A/bpFsmi/9BhfsaYxb
Etmf9v2MEh7sh1Ka18ZTnqEze7oT7kUbBHp1Sj7L2dU5/dcdg9pHNoDoJEwcQejw
f37nZu7PHHEXip298SOoBsWoi1JWhvxTjk6iPA3/Z+kijo3WDnPABFrujW70AhPh
NdNmiDj/hQ6vfeaGONerpt/SJ4Un
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org