Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A2FA05E701411EFA247B1B1762E951A.roa
File: 7A2FA05E701411EFA247B1B1762E951A.roa (raw, json)
Hash identifier: f24sG4B2OnnwTALEacOugnRRdsgZsGZvv78zTue96fM=
Subject key identifier: 4F:D2:90:AF:A4:2F:65:B8:CD:B9:1E:13:F9:0D:76:60:E5:F7:6B:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B4C2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A2FA05E701411EFA247B1B1762E951A.roa
Signing time: Wed 11 Sep 2024 08:04:33 +0000
ROA not before: Wed 11 Sep 2024 08:04:29 +0000
ROA not after: Thu 02 Oct 2025 08:04:29 +0000
asID: 29779
IP address blocks: 45.199.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46274 (0xb4c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 11 08:04:29 2024 GMT
Not After : Oct 2 08:04:29 2025 GMT
Subject: CN=66e14f10-ec7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b9:af:38:53:2b:42:b1:9c:2e:c1:17:8f:df:
fa:65:99:ef:45:4a:20:c5:de:71:3b:38:df:e3:b6:
53:9b:71:61:93:39:12:af:a7:0a:f9:dc:fa:fd:59:
bb:84:30:15:14:af:6e:ad:33:da:a8:5b:88:55:00:
a1:aa:24:7c:0e:98:a0:05:77:a0:e0:87:b9:df:33:
24:2f:9e:e8:57:66:10:18:56:b7:4d:ff:f0:a1:50:
00:3c:1b:5a:7e:b7:00:b4:2a:f1:c3:a2:c6:1f:d5:
f9:5c:dc:ad:42:cd:77:4b:7d:ee:09:b0:75:fa:2a:
f0:b2:77:84:56:f1:99:0d:52:a3:f2:9e:59:cc:77:
6a:57:04:69:f2:e4:1e:4c:c3:2d:33:29:b4:85:61:
16:3c:82:8a:5d:5f:19:e6:14:66:ad:e8:ef:0d:27:
83:52:7e:48:5a:87:d4:48:1e:c9:d8:06:2a:84:77:
52:d5:c2:cc:82:6f:89:5e:4f:3e:d7:45:51:7c:6a:
7e:e5:e3:20:42:7f:48:c2:d0:ae:d9:b3:65:f7:37:
21:12:33:60:38:35:b0:87:7d:23:f8:d8:8a:cc:10:
27:2a:eb:a3:b0:06:13:92:3f:bf:5c:0e:eb:fd:35:
22:ef:ad:e9:8d:1f:5c:9f:5a:09:87:0e:f6:12:7b:
68:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D2:90:AF:A4:2F:65:B8:CD:B9:1E:13:F9:0D:76:60:E5:F7:6B:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7A2FA05E701411EFA247B1B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.174.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:64:91:6c:9b:02:e0:01:ec:39:9a:e2:55:2b:13:71:8a:6a:
0d:18:92:ed:f5:b2:ae:a7:99:c8:8e:fa:e3:c9:e2:2e:c8:7b:
d8:ff:18:d4:cd:ca:5c:98:bf:d8:6c:60:22:9b:02:bc:9f:bb:
79:db:dc:19:b2:2c:83:5b:99:a3:9a:69:8e:eb:58:b7:5a:e5:
6a:08:ca:21:6f:b6:a4:dc:a5:70:23:dd:59:c6:51:e7:5a:23:
d4:ee:da:77:fd:3a:98:0b:6c:51:d0:e3:28:df:c0:01:7e:36:
39:88:b6:40:d1:bc:b1:45:21:9e:88:c5:7e:ff:b7:9c:8f:e9:
48:aa:34:bf:28:c0:54:e2:82:38:8a:2a:c8:67:47:9b:5c:f0:
2c:45:4b:22:69:7c:e3:14:d0:e4:21:18:1d:14:0c:fa:23:51:
fa:c2:39:7c:1c:b9:7d:63:72:2d:d5:f8:58:5f:e6:55:fb:08:
43:ed:d9:80:6a:c7:3d:bb:a0:e3:79:9e:3a:6d:e8:90:c3:bd:
cd:b1:42:8f:f2:7e:b6:c1:e5:75:f0:99:9d:fd:77:66:01:89:
85:c2:9c:3d:b6:27:f0:34:88:0c:4a:1e:18:03:77:05:ce:2b:
f4:1d:ab:8d:0e:32:9f:7a:bc:23:96:be:ea:75:16:c3:45:b2:
84:60:88:00
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALTCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTExMDgwNDI5WhcNMjUxMDAyMDgwNDI5WjAYMRYw
FAYDVQQDEw02NmUxNGYxMC1lYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz7mvOFMrQrGcLsEXj9/6ZZnvRUogxd5xOzjf47ZTm3FhkzkSr6cK+dz6
/Vm7hDAVFK9urTPaqFuIVQChqiR8DpigBXeg4Ie53zMkL57oV2YQGFa3Tf/woVAA
PBtafrcAtCrxw6LGH9X5XNytQs13S33uCbB1+irwsneEVvGZDVKj8p5ZzHdqVwRp
8uQeTMMtMym0hWEWPIKKXV8Z5hRmrejvDSeDUn5IWofUSB7J2AYqhHdS1cLMgm+J
Xk8+10VRfGp+5eMgQn9IwtCu2bNl9zchEjNgODWwh30j+NiKzBAnKuujsAYTkj+/
XA7r/TUi763pjR9cn1oJhw72EntoOQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFE/S
kK+kL2W4zbkeE/kNdmDl92ufMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83QTJGQTA1RTcwMTQxMUVGQTI0N0IxQjE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALceuMA0GCSqGSIb3DQEBCwUA
A4IBAQBuZJFsmwLgAew5muJVKxNximoNGJLt9bKup5nIjvrjyeIuyHvY/xjUzcpc
mL/YbGAimwK8n7t529wZsiyDW5mjmmmO61i3WuVqCMohb7ak3KVwI91ZxlHnWiPU
7tp3/TqYC2xR0OMo38ABfjY5iLZA0byxRSGeiMV+/7ecj+lIqjS/KMBU4oI4iirI
Z0ebXPAsRUsiaXzjFNDkIRgdFAz6I1H6wjl8HLl9Y3It1fhYX+ZV+whD7dmAasc9
u6DjeZ46beiQw73NsUKP8n62weV18Jmd/XdmAYmFwpw9tifwNIgMSh4YA3cFziv0
HauNDjKferwjlr7qdRbDRbKEYIgA
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:37 2024 by rpki-client on console-ams.rpki-client.org