Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8135FAFEF0C811EE8C7EEBAC775412E6.roa
File: 8135FAFEF0C811EE8C7EEBAC775412E6.roa (raw, json)
Hash identifier: rSxqhdg331a4h5hKTFZQskYsWVMdnG2h413A4yr0qKA=
Subject key identifier: 7A:5D:BD:00:3E:38:29:8E:32:ED:1E:FC:2B:2F:62:01:66:30:E5:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8172
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8135FAFEF0C811EE8C7EEBAC775412E6.roa
Signing time: Tue 02 Apr 2024 08:10:45 +0000
ROA not before: Tue 02 Apr 2024 08:10:41 +0000
ROA not after: Mon 29 Apr 2024 08:10:41 +0000
asID: 139646
IP address blocks: 45.201.246.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 08:10:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33138 (0x8172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 08:10:41 2024 GMT
Not After : Apr 29 08:10:41 2024 GMT
Subject: CN=660bbd85-0e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:3c:5e:4c:98:9e:5b:31:91:f4:be:12:78:
19:6e:88:e0:55:4e:15:6f:c1:c8:d4:93:67:0e:20:
2c:93:35:4d:63:06:63:e0:26:61:39:73:8f:a7:f2:
7d:5a:81:db:85:9a:3b:87:9f:99:9a:b2:1f:a7:8e:
bc:82:2c:71:be:c8:9a:59:ab:b2:47:79:d6:fc:25:
94:f6:23:7c:72:fb:45:5a:c6:68:08:88:35:9b:12:
68:1e:d9:cb:c1:da:ca:bd:17:e2:83:e3:28:38:49:
88:c8:de:ce:d6:f6:71:03:fe:4b:ef:f5:38:bd:9d:
02:c9:b9:f1:a4:94:61:2b:04:c2:a6:ab:47:92:35:
fc:e0:45:8f:86:c0:0c:34:28:3c:50:12:67:ea:14:
85:89:cb:dc:06:c7:8b:6f:64:dd:3f:70:57:2d:1e:
5b:a9:7a:87:b6:58:39:9c:fd:d0:fd:36:33:a3:50:
3d:94:11:d4:59:cf:6a:51:49:50:cc:65:b5:e1:14:
5f:d0:22:a3:dd:fe:1c:9f:ed:84:f8:c9:ce:bd:fa:
95:97:15:b9:3b:b0:6d:e4:b7:83:4d:08:68:81:ec:
e0:78:36:dd:95:a2:6e:be:9f:27:8d:f1:6d:6e:da:
21:cc:63:f4:32:3a:18:28:3a:a2:3e:08:86:5a:a3:
ca:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5D:BD:00:3E:38:29:8E:32:ED:1E:FC:2B:2F:62:01:66:30:E5:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8135FAFEF0C811EE8C7EEBAC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.246.0/23
Signature Algorithm: sha256WithRSAEncryption
59:fc:37:c2:2c:82:d8:d2:99:2a:cc:25:f5:71:52:38:02:6a:
ad:74:87:59:2d:72:73:ed:e4:cc:c0:8e:dc:ea:af:82:8c:9e:
08:af:4e:ab:d5:7e:20:a6:87:da:6f:2d:5a:59:27:1e:1c:57:
58:c1:99:6b:cb:e0:46:1d:7e:ee:75:47:6e:3f:56:b3:87:89:
26:3a:95:97:26:ed:50:97:cf:79:8c:e3:de:b6:4a:e8:80:0a:
de:07:12:9b:f2:5d:de:75:e1:d5:7f:09:79:4b:8b:70:1c:48:
a7:71:58:b1:28:58:24:b2:2f:9d:1b:c4:51:f3:7d:ef:f4:7d:
b4:f9:9d:7b:16:46:66:2e:84:3f:dc:15:da:a4:f1:09:e8:02:
87:44:ce:bf:45:d9:42:1c:9d:e0:1b:36:1e:57:1a:99:22:dc:
6b:76:df:b4:c4:87:89:52:99:a0:0a:4f:9b:12:aa:21:4f:60:
fb:65:11:17:9a:e4:d0:4c:04:1b:4f:4a:df:2c:73:0b:34:3c:
fe:e0:e0:07:fa:d8:6c:de:bc:62:b9:07:51:8d:d2:ef:8b:a8:
8f:b8:c1:ee:bd:b2:28:17:d8:41:39:90:57:f2:d3:c1:42:4e:
bb:b4:15:f4:e0:aa:5a:3c:86:0d:02:59:c8:c7:aa:e7:d1:17:
e0:12:56:ac
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIFyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDAyMDgxMDQxWhcNMjQwNDI5MDgxMDQxWjAYMRYw
FAYDVQQDEw02NjBiYmQ4NS0wZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq208XkyYnlsxkfS+EngZbojgVU4Vb8HI1JNnDiAskzVNYwZj4CZhOXOP
p/J9WoHbhZo7h5+ZmrIfp468gixxvsiaWauyR3nW/CWU9iN8cvtFWsZoCIg1mxJo
HtnLwdrKvRfig+MoOEmIyN7O1vZxA/5L7/U4vZ0CybnxpJRhKwTCpqtHkjX84EWP
hsAMNCg8UBJn6hSFicvcBseLb2TdP3BXLR5bqXqHtlg5nP3Q/TYzo1A9lBHUWc9q
UUlQzGW14RRf0CKj3f4cn+2E+MnOvfqVlxW5O7Bt5LeDTQhogezgeDbdlaJuvp8n
jfFtbtohzGP0MjoYKDqiPgiGWqPKHQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHpd
vQA+OCmOMu0e/CsvYgFmMOVPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84MTM1RkFGRUYwQzgxMUVFOEM3RUVCQUM3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcn2MA0GCSqGSIb3DQEBCwUA
A4IBAQBZ/DfCLILY0pkqzCX1cVI4AmqtdIdZLXJz7eTMwI7c6q+CjJ4Ir06r1X4g
pofaby1aWSceHFdYwZlry+BGHX7udUduP1azh4kmOpWXJu1Ql895jOPetkrogAre
BxKb8l3edeHVfwl5S4twHEincVixKFgksi+dG8RR833v9H20+Z17FkZmLoQ/3BXa
pPEJ6AKHRM6/RdlCHJ3gGzYeVxqZItxrdt+0xIeJUpmgCk+bEqohT2D7ZREXmuTQ
TAQbT0rfLHMLNDz+4OAH+ths3rxiuQdRjdLvi6iPuMHuvbIoF9hBOZBX8tPBQk67
tBX04KpaPIYNAlnIx6rn0RfgElas
-----END CERTIFICATE-----
Generated at Mon Apr 29 07:56:21 2024 by rpki-client on console-ams.rpki-client.org