Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717318C6C3FA11EFA3BDEE59762E951A.roa
File: 717318C6C3FA11EFA3BDEE59762E951A.roa (raw, json)
Hash identifier: WmLEBXaJJrvLfU9pcPGNc9Uq7SPzwmfcdRP++lnLBAo=
Subject key identifier: 10:34:04:C1:9B:4C:6B:67:CB:45:1D:70:7F:A8:17:55:F5:E0:CA:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EF9A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717318C6C3FA11EFA3BDEE59762E951A.roa
Signing time: Fri 27 Dec 2024 02:29:48 +0000
ROA not before: Fri 27 Dec 2024 02:29:44 +0000
ROA not after: Sun 12 Dec 2027 02:29:44 +0000
asID: 17561
IP address blocks: 45.194.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61338 (0xef9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 27 02:29:44 2024 GMT
Not After : Dec 12 02:29:44 2027 GMT
Subject: CN=676e111c-2464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fd:28:92:b9:63:02:8a:ea:3c:2e:c8:95:f0:
3e:91:cf:7a:70:38:5b:53:92:51:6a:02:2d:0f:c4:
63:6d:0f:d7:39:9c:0f:2c:3c:e4:15:01:ef:28:aa:
d6:3d:ac:23:be:f3:6f:5b:90:1e:92:d7:35:c6:8a:
b5:6d:57:95:72:3f:7e:2b:19:76:31:4b:63:06:0f:
c3:a7:0c:7d:03:62:ca:8d:56:39:7e:ab:a8:95:fd:
6e:25:dd:91:66:ae:53:e3:9e:f7:6f:da:f6:b4:02:
d2:5d:6d:26:d1:2c:de:5e:bc:54:b0:92:37:da:69:
f8:74:4d:99:9d:ac:1b:c7:de:c6:c5:9d:48:f0:0f:
94:3f:5e:1c:96:23:4e:f6:c1:72:8c:02:45:fc:5c:
d1:a2:80:1d:52:ed:76:04:00:d4:48:9e:01:f8:92:
25:a6:20:01:5c:eb:2d:49:2d:32:3b:4a:4a:cd:1a:
95:01:4b:d5:ab:88:fb:77:96:bc:ce:33:af:bb:71:
7d:53:28:2b:28:2b:24:3d:15:a9:8e:8e:68:a5:2c:
30:5b:d5:2c:c3:98:9d:5d:01:69:54:f5:d7:9e:06:
df:5e:28:32:ac:2c:82:06:8a:a1:69:2a:d8:ca:5d:
9e:e6:80:4e:35:bc:4f:6a:81:06:c0:98:ed:e3:bd:
ff:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:34:04:C1:9B:4C:6B:67:CB:45:1D:70:7F:A8:17:55:F5:E0:CA:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/717318C6C3FA11EFA3BDEE59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.121.0/24
Signature Algorithm: sha256WithRSAEncryption
53:7f:2b:19:5f:82:88:e6:4e:46:32:0c:db:1c:b5:3c:a2:ff:
c2:bb:55:27:14:cc:a4:b8:b6:24:4e:49:04:f1:97:44:df:84:
50:e8:f8:b5:8a:78:ca:d5:f2:ae:2c:4e:5e:4d:bc:85:b9:b6:
94:51:cd:38:e6:b3:a3:94:e1:62:80:f4:62:ff:f7:97:20:7c:
aa:52:a4:5c:ae:6d:4d:48:96:cb:50:8d:6a:8c:60:ea:8b:30:
1c:6e:fa:0d:c4:5a:ad:8b:65:29:c7:49:e8:ea:50:e9:47:8a:
4f:45:3c:96:1d:fd:62:74:6d:3d:c4:12:36:64:1d:d6:4c:85:
b1:15:24:59:77:e0:01:9f:3a:ad:91:e7:8c:24:e6:b1:ae:48:
a0:b7:53:f8:d7:d1:df:d0:9e:4d:b6:37:09:89:9f:62:8b:fe:
b5:96:3e:19:85:5d:48:3c:ef:14:ec:02:27:99:1b:ad:64:d7:
9a:fb:60:19:e5:4b:d4:66:35:36:e6:e2:f1:09:5c:f4:03:42:
58:c3:4a:10:c6:92:b7:32:55:a3:a5:21:f6:28:d5:d1:1e:ab:
43:f0:f9:2c:7d:77:82:99:d0:79:fe:c1:d7:53:c3:87:28:2f:
05:28:6e:0d:f6:3c:cf:e7:77:1f:ed:08:3d:72:18:09:50:ca:
78:57:ab:2e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAO+aMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI3MDIyOTQ0WhcNMjcxMjEyMDIyOTQ0WjAYMRYw
FAYDVQQDEw02NzZlMTExYy0yNDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8P0okrljAorqPC7IlfA+kc96cDhbU5JRagItD8RjbQ/XOZwPLDzkFQHv
KKrWPawjvvNvW5Aektc1xoq1bVeVcj9+Kxl2MUtjBg/Dpwx9A2LKjVY5fquolf1u
Jd2RZq5T4573b9r2tALSXW0m0SzeXrxUsJI32mn4dE2Znawbx97GxZ1I8A+UP14c
liNO9sFyjAJF/FzRooAdUu12BADUSJ4B+JIlpiABXOstSS0yO0pKzRqVAUvVq4j7
d5a8zjOvu3F9UygrKCskPRWpjo5opSwwW9Usw5idXQFpVPXXngbfXigyrCyCBoqh
aSrYyl2e5oBONbxPaoEGwJjt473/VQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBA0
BMGbTGtny0UdcH+oF1X14MpVMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MTczMThDNkMzRkExMUVGQTNCREVFNTk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcJ5MA0GCSqGSIb3DQEBCwUA
A4IBAQBTfysZX4KI5k5GMgzbHLU8ov/Cu1UnFMykuLYkTkkE8ZdE34RQ6Pi1injK
1fKuLE5eTbyFubaUUc045rOjlOFigPRi//eXIHyqUqRcrm1NSJbLUI1qjGDqizAc
bvoNxFqti2Upx0no6lDpR4pPRTyWHf1idG09xBI2ZB3WTIWxFSRZd+ABnzqtkeeM
JOaxrkigt1P419Hf0J5NtjcJiZ9ii/61lj4ZhV1IPO8U7AInmRutZNea+2AZ5UvU
ZjU25uLxCVz0A0JYw0oQxpK3MlWjpSH2KNXRHqtD8PksfXeCmdB5/sHXU8OHKC8F
KG4N9jzP53cf7Qg9chgJUMp4V6su
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:38:54 2025 by rpki-client