Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72EFF16C585111EE9A77375B4AD9E6FC.roa
File: 72EFF16C585111EE9A77375B4AD9E6FC.roa (raw, json)
Hash identifier: fan5iR7HFI+DjPqnUmCxbPz6NxCvq6BiTNr3DuhBgPs=
Subject key identifier: F1:02:8E:F5:F8:C6:E1:D2:4C:1F:77:66:FA:1A:BF:4D:C4:8C:CF:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3ABC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72EFF16C585111EE9A77375B4AD9E6FC.roa
Signing time: Thu 21 Sep 2023 07:35:34 +0000
ROA not before: Thu 21 Sep 2023 07:35:31 +0000
ROA not after: Thu 03 Oct 2024 07:35:31 +0000
asID: 45996
IP address blocks: 45.194.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15036 (0x3abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 21 07:35:31 2023 GMT
Not After : Oct 3 07:35:31 2024 GMT
Subject: CN=650bf246-a2bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5c:1a:f4:36:ed:6b:cd:0e:4d:5e:48:d1:4a:
b1:c0:56:2a:b6:45:7a:00:23:2a:79:08:83:6c:df:
02:c8:03:ee:97:59:37:ac:1d:4d:19:b0:ed:69:2d:
0d:5d:bb:dd:a1:7d:f9:f9:2b:0c:6c:71:5a:0b:19:
eb:2e:4d:d9:a5:19:bb:f2:cb:33:ce:22:b7:15:a9:
bc:11:f4:79:6d:dd:11:39:68:6a:91:8b:60:27:98:
61:54:a5:44:90:a1:92:4e:d4:cf:a0:27:b0:70:54:
2f:a3:7a:5a:de:95:b8:d1:f8:db:2c:19:df:25:8c:
c0:26:5a:14:54:fc:26:5b:78:e4:aa:fb:c0:86:04:
c1:bc:64:6d:d1:6a:6b:8b:1b:cb:57:ff:5e:23:fd:
8c:c5:71:8c:3d:eb:ec:41:ab:6a:90:d0:2f:e5:a0:
4b:1e:91:ce:eb:4b:ae:df:66:87:9e:bd:32:2c:de:
81:2d:13:66:aa:fc:43:8d:c3:52:6b:42:6a:50:88:
53:dc:7c:af:58:2b:3b:8d:ee:aa:19:ca:7d:e2:42:
6e:c3:47:f1:85:ee:f6:c9:54:4a:2c:5f:e8:58:c7:
d1:be:c9:d1:7f:ad:be:3d:ae:84:ad:e7:b2:f0:27:
82:cd:a5:96:58:57:3f:29:79:76:fd:9a:b1:cb:b8:
62:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:02:8E:F5:F8:C6:E1:D2:4C:1F:77:66:FA:1A:BF:4D:C4:8C:CF:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72EFF16C585111EE9A77375B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.99.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c1:92:a3:db:fe:8f:26:de:68:18:78:6b:93:34:a7:f7:01:
aa:90:c1:89:24:91:d0:67:2e:41:4c:48:f0:5d:57:59:d5:18:
e8:37:0d:d5:0f:9d:11:7d:51:48:a8:e7:96:a1:10:3c:8e:18:
a4:86:57:49:14:ba:df:57:27:ad:c6:d3:78:a4:f0:3e:2c:47:
d7:e4:54:88:5c:f1:9d:07:b6:af:f3:bd:e6:cb:f4:63:62:81:
c9:de:25:c4:4c:6d:a9:1c:8a:c2:a9:44:c7:c4:47:70:e6:94:
9b:a8:ec:27:20:20:7d:10:ab:0b:ad:43:95:a2:d1:87:45:50:
28:99:10:a7:e1:21:e5:8a:16:49:d9:9f:a7:62:75:b7:5f:e5:
cd:c5:a0:33:18:2f:e3:90:43:5b:00:09:f5:cf:e5:21:13:c8:
a5:a2:4b:f8:b6:ee:2f:16:66:7b:9b:59:82:f0:48:12:d9:4d:
96:01:1b:d4:6f:06:ca:8f:17:f3:a2:28:f6:a3:a1:c7:0e:22:
45:d5:9f:37:96:82:03:57:bd:cb:5a:9f:20:58:eb:2b:35:24:
82:f9:a1:21:6f:0a:fe:35:82:2f:21:64:b8:22:b9:ab:7a:f7:
50:cd:ad:b3:44:55:7d:d3:5a:6b:32:5c:d2:82:17:4e:ab:65:
38:fb:74:43
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOrwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA5MjEwNzM1MzFaFw0yNDEwMDMwNzM1MzFaMBgxFjAU
BgNVBAMTDTY1MGJmMjQ2LWEyYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCvXBr0Nu1rzQ5NXkjRSrHAViq2RXoAIyp5CINs3wLIA+6XWTesHU0ZsO1p
LQ1du92hffn5KwxscVoLGesuTdmlGbvyyzPOIrcVqbwR9Hlt3RE5aGqRi2AnmGFU
pUSQoZJO1M+gJ7BwVC+jelrelbjR+NssGd8ljMAmWhRU/CZbeOSq+8CGBMG8ZG3R
amuLG8tX/14j/YzFcYw96+xBq2qQ0C/loEsekc7rS67fZoeevTIs3oEtE2aq/EON
w1JrQmpQiFPcfK9YKzuN7qoZyn3iQm7DR/GF7vbJVEosX+hYx9G+ydF/rb49roSt
57LwJ4LNpZZYVz8peXb9mrHLuGK7AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU8QKO
9fjG4dJMH3dm+hq/TcSMz7wwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzcyRUZGMTZDNTg1MTExRUU5QTc3Mzc1QjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwmMwDQYJKoZIhvcNAQELBQAD
ggEBAHzBkqPb/o8m3mgYeGuTNKf3AaqQwYkkkdBnLkFMSPBdV1nVGOg3DdUPnRF9
UUio55ahEDyOGKSGV0kUut9XJ63G03ik8D4sR9fkVIhc8Z0Htq/zvebL9GNigcne
JcRMbakcisKpRMfER3DmlJuo7CcgIH0QqwutQ5Wi0YdFUCiZEKfhIeWKFknZn6di
dbdf5c3FoDMYL+OQQ1sACfXP5SETyKWiS/i27i8WZnubWYLwSBLZTZYBG9RvBsqP
F/OiKPajoccOIkXVnzeWggNXvctanyBY6ys1JIL5oSFvCv41gi8hZLgiuat691DN
rbNEVX3TWmsyXNKCF06rZTj7dEM=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:11 2024 by rpki-client on console-fra.rpki-client.org