Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E034D8CA4D811EF94DB3FA6762E951A.roa
File: 6E034D8CA4D811EF94DB3FA6762E951A.roa (raw, json)
Hash identifier: ghDNhW7TSNa8gOkBTD53f0a6sGvsydLl7Ybl49HQNn8=
Subject key identifier: 69:A9:F6:CE:C7:82:11:E6:CA:5D:B4:E1:0C:C9:B4:12:CE:47:AC:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D51D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E034D8CA4D811EF94DB3FA6762E951A.roa
Signing time: Sun 17 Nov 2024 11:38:14 +0000
ROA not before: Sun 17 Nov 2024 11:38:10 +0000
ROA not after: Thu 28 Nov 2024 11:38:10 +0000
asID: 133847
IP address blocks: 45.200.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54557 (0xd51d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 11:38:10 2024 GMT
Not After : Nov 28 11:38:10 2024 GMT
Subject: CN=6739d5a6-3d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:9b:74:1b:67:37:85:7d:0d:d1:fe:dc:77:
83:48:16:5b:7f:f6:78:af:68:d2:d8:e3:d0:8b:ee:
78:97:d6:f9:5a:81:60:77:79:66:ec:04:00:cf:da:
b5:5c:54:fe:56:66:e3:ca:7d:7a:93:63:55:e4:e8:
d8:87:1d:14:84:0a:fc:38:79:c4:18:a3:c4:dd:88:
ba:16:f1:d6:41:b7:54:d0:3d:9d:fd:8e:20:22:9c:
91:b1:c3:f2:c8:9f:d9:be:ac:3c:cb:66:88:c5:f3:
39:18:fd:43:41:91:12:4f:1a:ad:f6:1e:95:ba:c0:
33:49:ba:91:3c:88:3a:ab:3d:a6:31:cd:25:ac:cd:
d3:9b:4a:28:e4:48:99:99:2b:03:8d:d2:0e:f7:16:
43:dd:d1:cb:95:47:ac:f1:0c:41:11:c9:7c:54:15:
4a:cd:25:2b:64:bd:7b:0e:f3:e9:3c:aa:18:f0:4e:
b8:71:e1:21:86:40:16:96:53:79:e6:d5:05:e3:87:
55:a0:09:e9:79:31:5a:5d:9e:af:ab:7b:f0:64:1e:
69:97:0b:bf:4e:88:ce:70:2b:8b:5a:63:9f:a1:55:
13:fb:85:d8:10:10:d0:39:51:18:71:27:88:95:1e:
2c:68:fb:19:c7:3d:14:4a:4f:75:21:1e:e3:15:75:
f5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A9:F6:CE:C7:82:11:E6:CA:5D:B4:E1:0C:C9:B4:12:CE:47:AC:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E034D8CA4D811EF94DB3FA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:2b:5e:8a:38:8f:06:66:d3:01:0e:e5:44:af:0d:d4:1b:e3:
2a:56:b3:e5:05:97:f3:e4:0e:b0:47:60:aa:9e:65:cc:9d:ca:
4f:fb:00:ef:1a:59:e1:d6:97:f2:5b:f3:aa:a2:34:d3:d4:e4:
0a:40:e6:30:98:be:d8:82:d8:52:ee:02:3b:2f:e6:84:4a:fc:
e8:50:62:ab:2b:65:a7:f6:a5:33:ac:61:0b:f4:70:89:76:b3:
95:7f:d8:77:df:28:14:f8:d2:de:5e:8b:f8:96:32:1f:87:0a:
ac:28:4b:9d:8e:4f:86:31:f2:51:30:96:c7:09:88:75:07:4d:
76:86:fb:e9:21:84:f9:bf:31:69:09:8a:39:cb:a7:61:f7:28:
2b:11:72:44:bc:77:7d:9a:a7:61:fd:44:81:25:56:42:41:ec:
35:39:70:27:93:cf:e4:03:16:3d:50:0f:ff:f7:99:3b:f7:c0:
ed:6f:77:06:a0:4f:6d:90:21:44:66:48:c9:be:4d:9d:09:69:
60:c1:3b:17:ff:53:70:de:71:2b:cc:06:e6:ce:26:41:e2:de:
f0:8c:d0:d2:3e:19:66:e5:ab:7d:e5:d5:4f:dd:53:ff:1b:fe:
53:a6:83:4f:f2:18:3f:fc:72:fb:39:9c:78:db:d0:91:4c:c4:
5d:18:b9:aa
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANUdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTE3MTEzODEwWhcNMjQxMTI4MTEzODEwWjAYMRYw
FAYDVQQDEw02NzM5ZDVhNi0zZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwVSbdBtnN4V9DdH+3HeDSBZbf/Z4r2jS2OPQi+54l9b5WoFgd3lm7AQA
z9q1XFT+Vmbjyn16k2NV5OjYhx0UhAr8OHnEGKPE3Yi6FvHWQbdU0D2d/Y4gIpyR
scPyyJ/Zvqw8y2aIxfM5GP1DQZESTxqt9h6VusAzSbqRPIg6qz2mMc0lrM3Tm0oo
5EiZmSsDjdIO9xZD3dHLlUes8QxBEcl8VBVKzSUrZL17DvPpPKoY8E64ceEhhkAW
llN55tUF44dVoAnpeTFaXZ6vq3vwZB5plwu/TojOcCuLWmOfoVUT+4XYEBDQOVEY
cSeIlR4saPsZxz0USk91IR7jFXX1KwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGmp
9s7HghHmyl204QzJtBLOR6w4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82RTAzNEQ4Q0E0RDgxMUVGOTREQjNGQTY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELchAMA0GCSqGSIb3DQEBCwUA
A4IBAQCKK16KOI8GZtMBDuVErw3UG+MqVrPlBZfz5A6wR2CqnmXMncpP+wDvGlnh
1pfyW/OqojTT1OQKQOYwmL7YgthS7gI7L+aESvzoUGKrK2Wn9qUzrGEL9HCJdrOV
f9h33ygU+NLeXov4ljIfhwqsKEudjk+GMfJRMJbHCYh1B012hvvpIYT5vzFpCYo5
y6dh9ygrEXJEvHd9mqdh/USBJVZCQew1OXAnk8/kAxY9UA//95k798Dtb3cGoE9t
kCFEZkjJvk2dCWlgwTsX/1Nw3nErzAbmziZB4t7wjNDSPhlm5at95dVP3VP/G/5T
poNP8hg//HL7OZx429CRTMRdGLmq
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:35 2024 by rpki-client on console-ams.rpki-client.org