Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A1A96BEF91911ED9D23761F4AD9E6FC.roa
File: 7A1A96BEF91911ED9D23761F4AD9E6FC.roa (raw, json)
Hash identifier: SQE4AnNV03DAYDkfYi2pvCxLVyPkn97DJju+2+qB388=
Subject key identifier: 65:7D:A6:89:52:4A:38:F5:AB:5F:EB:DA:9F:E3:5C:9B:C7:27:D2:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2702
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A1A96BEF91911ED9D23761F4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:25:34 +0000
ROA not before: Tue 23 May 2023 03:25:30 +0000
ROA not after: Mon 05 Aug 2024 03:25:30 +0000
asID: 58879
IP address blocks: 45.192.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9986 (0x2702)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:25:30 2023 GMT
Not After : Aug 5 03:25:30 2024 GMT
Subject: CN=646c322e-d40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4e:2c:80:be:c1:00:21:d5:33:2d:b3:ae:99:
19:4d:82:d3:84:1c:1e:d2:c9:40:a6:f2:a1:31:6c:
73:42:1d:9a:19:32:15:35:a8:b7:30:80:16:6b:19:
0f:55:2d:2a:bc:e6:63:e5:ff:81:9e:48:d2:76:90:
21:31:66:d7:f2:fe:3c:70:bc:e0:8c:c7:98:ad:f1:
d1:2e:e1:5b:12:1b:eb:31:49:19:3b:30:f0:87:c8:
81:a7:6e:ed:d5:1d:5c:31:a7:8e:51:f1:4c:c7:a2:
36:5e:ba:3a:a9:fa:63:8e:76:30:3c:79:70:a1:c4:
ae:da:0e:07:2e:b6:a2:0a:51:12:d2:bd:c7:c5:1f:
14:1c:6b:73:9e:29:40:0b:3d:93:1e:b7:33:7a:fc:
77:17:4f:56:be:8b:73:d0:a8:c0:fc:00:b3:5c:ee:
48:e1:95:25:38:3c:ab:d9:6e:24:66:80:7f:2c:06:
80:b1:5c:cd:c5:7a:39:49:2a:b4:54:54:24:eb:63:
7a:76:3a:2e:da:e9:47:1e:15:86:37:72:51:ef:41:
da:0a:af:74:57:03:b3:69:38:64:42:5e:fd:54:ba:
03:83:3f:4f:ae:48:f5:69:7e:ed:1a:43:2d:1c:c0:
50:c4:06:10:43:85:7c:6c:45:e0:d6:73:17:a7:2c:
19:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7D:A6:89:52:4A:38:F5:AB:5F:EB:DA:9F:E3:5C:9B:C7:27:D2:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A1A96BEF91911ED9D23761F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.187.0/24
Signature Algorithm: sha256WithRSAEncryption
06:10:f8:b7:bd:aa:94:38:4b:30:35:ae:00:e9:92:e4:87:38:
14:d8:b2:96:c6:5c:e4:e9:94:98:05:ad:76:fa:e4:d2:e7:cb:
cc:9b:bb:e3:b6:03:03:eb:07:49:ea:9e:36:f9:be:3c:c0:5f:
c8:f5:a0:e8:b5:65:b5:f1:7d:38:7a:73:8a:ed:6d:bd:95:f9:
cb:2a:61:73:53:89:19:6a:8a:d7:10:fe:8b:ab:88:8b:2c:6b:
ed:3e:0e:ae:92:99:ac:a1:0b:9d:0a:91:44:b8:d5:0d:93:32:
54:20:34:fa:25:2f:a5:f1:5b:37:d2:f4:96:33:65:4a:16:1f:
b7:fc:67:71:a5:20:27:0c:07:eb:26:af:6d:64:f2:90:7a:50:
1f:7a:b1:fc:6e:3e:8c:d8:e0:8c:0c:f1:00:19:90:52:0f:a3:
5e:f7:a7:b6:80:e1:b7:c6:3f:65:23:78:57:a9:51:f2:a7:6d:
c6:33:77:c5:74:92:fb:4b:f2:a0:08:db:85:1f:6b:64:d8:5d:
12:6f:54:81:fb:ea:3c:e9:25:7a:14:68:61:b5:b9:61:68:61:
71:b8:29:28:b5:4e:8d:46:15:02:39:ac:57:3b:ae:1f:6e:67:
49:62:9c:52:5c:e2:e9:ff:9b:68:2b:05:3b:25:ed:3a:48:bb:
9e:ff:62:28
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJwIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjMwMzI1MzBaFw0yNDA4MDUwMzI1MzBaMBgxFjAU
BgNVBAMTDTY0NmMzMjJlLWQ0MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8TiyAvsEAIdUzLbOumRlNgtOEHB7SyUCm8qExbHNCHZoZMhU1qLcwgBZr
GQ9VLSq85mPl/4GeSNJ2kCExZtfy/jxwvOCMx5it8dEu4VsSG+sxSRk7MPCHyIGn
bu3VHVwxp45R8UzHojZeujqp+mOOdjA8eXChxK7aDgcutqIKURLSvcfFHxQca3Oe
KUALPZMetzN6/HcXT1a+i3PQqMD8ALNc7kjhlSU4PKvZbiRmgH8sBoCxXM3FejlJ
KrRUVCTrY3p2Oi7a6UceFYY3clHvQdoKr3RXA7NpOGRCXv1UugODP0+uSPVpfu0a
Qy0cwFDEBhBDhXxsReDWcxenLBlpAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUZX2m
iVJKOPWrX+van+Ncm8cn0tIwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzdBMUE5NkJFRjkxOTExRUQ5RDIzNzYxRjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwLswDQYJKoZIhvcNAQELBQAD
ggEBAAYQ+Le9qpQ4SzA1rgDpkuSHOBTYspbGXOTplJgFrXb65NLny8ybu+O2AwPr
B0nqnjb5vjzAX8j1oOi1ZbXxfTh6c4rtbb2V+csqYXNTiRlqitcQ/ouriIssa+0+
Dq6SmayhC50KkUS41Q2TMlQgNPolL6XxWzfS9JYzZUoWH7f8Z3GlICcMB+smr21k
8pB6UB96sfxuPozY4IwM8QAZkFIPo173p7aA4bfGP2UjeFepUfKnbcYzd8V0kvtL
8qAI24Ufa2TYXRJvVIH76jzpJXoUaGG1uWFoYXG4KSi1To1GFQI5rFc7rh9uZ0li
nFJc4un/m2grBTsl7TpIu57/Yig=
-----END CERTIFICATE-----
Generated at Sat May 4 01:53:07 2024 by rpki-client on console-ams.rpki-client.org