Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78ED00C8FB8611ED9A803B7F4AD9E6FC.roa
File: 78ED00C8FB8611ED9A803B7F4AD9E6FC.roa (raw, json)
Hash identifier: qmeufEfPs2z/loXpXGnzmnXD/hbUqpPJk6n63aHKrnM=
Subject key identifier: AA:DB:8E:19:20:A0:3C:8A:91:34:81:73:B4:7C:D5:B4:3B:7F:45:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 27C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78ED00C8FB8611ED9A803B7F4AD9E6FC.roa
Signing time: Fri 26 May 2023 05:30:49 +0000
ROA not before: Fri 26 May 2023 05:30:46 +0000
ROA not after: Sun 30 Jun 2024 05:30:46 +0000
asID: 984
IP address blocks: 45.206.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10180 (0x27c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 05:30:46 2023 GMT
Not After : Jun 30 05:30:46 2024 GMT
Subject: CN=64704409-907d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:26:f8:b3:75:aa:97:0d:0b:9b:52:cf:cb:50:
e8:93:25:15:85:72:5c:93:28:89:01:8f:24:90:44:
1e:31:81:30:d4:8c:a9:44:d2:d8:60:c0:28:94:bd:
e7:20:4a:fb:0f:5a:8f:66:d2:a2:b4:b3:fb:b6:2c:
90:62:7a:d4:d0:d7:98:13:3e:81:f8:8f:b3:0b:a8:
0c:87:43:cc:05:77:57:f0:93:2a:1e:37:ab:9f:f8:
f5:16:b5:51:07:01:86:8f:d8:b5:2d:8f:d6:1d:af:
8f:73:8a:56:38:8e:aa:54:07:e6:2a:9c:e9:df:46:
02:bd:5b:76:25:01:0f:7c:52:c5:73:e6:4c:47:fb:
96:1f:2b:65:c4:e3:2f:a3:15:f0:f0:b9:59:de:8b:
ef:87:de:53:a2:4b:fe:9d:76:8d:bd:26:d7:54:6c:
2e:d6:fe:9c:19:d7:ef:ae:ce:77:87:df:d3:4f:dd:
ed:9b:1b:06:d7:61:06:42:e1:11:7e:49:6a:14:94:
90:f0:b7:92:fd:0e:3e:d8:bc:70:5e:bd:63:f7:6b:
51:f8:8a:65:44:ac:44:9a:44:ba:aa:7c:7f:f2:a8:
08:13:d9:a7:71:78:9b:de:8a:c7:bf:93:d8:b4:ec:
d5:ee:c9:24:44:72:73:7d:bd:d0:f0:7a:00:95:d1:
a6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DB:8E:19:20:A0:3C:8A:91:34:81:73:B4:7C:D5:B4:3B:7F:45:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78ED00C8FB8611ED9A803B7F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
72:2b:e3:d7:93:0c:46:f5:c9:c8:c6:e4:40:c4:ba:cd:15:42:
dc:bd:ca:24:e6:75:6c:d7:78:23:f2:88:85:70:3d:e5:56:31:
ce:46:0d:ab:95:92:e2:40:2c:4b:51:2f:79:45:2b:b8:d3:af:
fc:ab:68:4f:65:8a:81:f0:99:01:54:b1:eb:b3:35:a1:b4:06:
d3:e1:3d:0a:b6:b7:d4:39:a2:62:bc:19:b6:72:e2:60:58:7a:
d1:4e:2d:fa:8f:1e:8c:60:97:73:4d:73:f3:cf:dd:b2:a2:2b:
90:9d:98:ac:c3:1f:62:63:73:d9:d2:ca:04:91:eb:1e:3e:f9:
2c:07:ec:14:bf:c6:9f:e2:77:da:e8:f7:5d:59:dc:59:6e:87:
1d:81:78:11:6b:52:51:9c:2f:b9:32:e7:9b:56:59:89:e6:df:
5b:78:b2:67:c9:75:ad:25:79:b2:ea:c6:de:b6:b2:9f:67:26:
b5:3d:72:72:8f:4a:c5:9e:dc:45:5e:7c:a3:c8:b2:8b:0c:0e:
d8:14:fe:23:c1:88:23:fb:98:e0:58:ea:46:14:f8:46:34:ac:
d7:56:87:4d:71:e0:87:c6:b5:a4:26:3a:d4:5d:9f:04:a5:82:
77:b6:d8:86:17:d7:80:55:34:6a:cb:ea:2b:cf:3c:d5:b9:d0:
3e:89:e6:1c
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICJ8QwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjYwNTMwNDZaFw0yNDA2MzAwNTMwNDZaMBgxFjAU
BgNVBAMTDTY0NzA0NDA5LTkwN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDgJvizdaqXDQubUs/LUOiTJRWFclyTKIkBjySQRB4xgTDUjKlE0thgwCiU
vecgSvsPWo9m0qK0s/u2LJBietTQ15gTPoH4j7MLqAyHQ8wFd1fwkyoeN6uf+PUW
tVEHAYaP2LUtj9Ydr49zilY4jqpUB+YqnOnfRgK9W3YlAQ98UsVz5kxH+5YfK2XE
4y+jFfDwuVnei++H3lOiS/6ddo29JtdUbC7W/pwZ1++uzneH39NP3e2bGwbXYQZC
4RF+SWoUlJDwt5L9Dj7YvHBevWP3a1H4imVErESaRLqqfH/yqAgT2adxeJveise/
k9i07NXuySREcnN9vdDwegCV0aZxAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUqtuO
GSCgPIqRNIFztHzVtDt/RVQwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4Lzc4RUQwMEM4RkI4NjExRUQ5QTgwM0I3RjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwAtzjANBgkqhkiG9w0BAQsFAAOC
AQEAcivj15MMRvXJyMbkQMS6zRVC3L3KJOZ1bNd4I/KIhXA95VYxzkYNq5WS4kAs
S1EveUUruNOv/KtoT2WKgfCZAVSx67M1obQG0+E9Cra31DmiYrwZtnLiYFh60U4t
+o8ejGCXc01z88/dsqIrkJ2YrMMfYmNz2dLKBJHrHj75LAfsFL/Gn+J32uj3XVnc
WW6HHYF4EWtSUZwvuTLnm1ZZiebfW3iyZ8l1rSV5surG3rayn2cmtT1yco9KxZ7c
RV58o8iyiwwO2BT+I8GII/uY4FjqRhT4RjSs11aHTXHgh8a1pCY61F2fBKWCd7bY
hhfXgFU0asvqK8881bnQPonmHA==
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org