Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8707066E390A11EF994B4455762E951A.roa
File: 8707066E390A11EF994B4455762E951A.roa (raw, json)
Hash identifier: lhlYE5b77Z8IFw23KxMiO5dKBAW/QGm/4hpPeF3Ahwo=
Subject key identifier: 5D:C4:88:E4:41:77:48:4E:0D:10:D1:68:AE:29:67:3C:AA:9B:7A:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 97B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8707066E390A11EF994B4455762E951A.roa
Signing time: Wed 03 Jul 2024 07:04:45 +0000
ROA not before: Wed 03 Jul 2024 07:04:41 +0000
ROA not after: Fri 04 Oct 2024 07:04:41 +0000
asID: 136950
IP address blocks: 45.195.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38834 (0x97b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 3 07:04:41 2024 GMT
Not After : Oct 4 07:04:41 2024 GMT
Subject: CN=6684f80d-24fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5c:2d:be:a9:b2:23:ef:a3:f0:cc:6e:0e:7d:
9a:ee:d0:fc:48:37:41:7f:73:3b:2c:6f:80:00:76:
ba:07:14:e9:e2:45:08:11:41:e5:5d:e3:45:27:f1:
1a:4d:f6:8d:68:9d:88:d7:d6:d1:92:af:46:14:c4:
ba:a3:83:c5:3e:4d:89:09:48:68:40:32:f9:7b:6c:
e8:ac:f1:26:a0:61:cf:d8:07:14:ba:14:2a:3d:d0:
c9:a8:f4:a2:2e:23:11:9a:a9:c9:b8:60:89:f8:14:
0d:62:4d:42:8c:9e:fb:6d:c7:80:eb:43:77:61:26:
ca:4e:f2:cf:49:d3:59:bd:fc:96:ab:91:c1:f8:72:
2d:91:98:70:fe:98:86:4a:3e:3f:32:4f:ae:b3:21:
63:43:25:c4:ff:d1:00:2e:80:39:77:4b:a1:a7:24:
11:20:ed:88:91:b0:83:54:b9:af:b6:b2:ff:1a:67:
05:df:fb:59:a7:e5:09:a6:48:26:16:8a:3c:84:64:
14:93:ee:fa:b6:be:1a:51:41:b4:c6:38:dd:bd:e1:
2a:f5:ce:b4:8d:b3:ad:13:35:0c:15:ec:7f:d5:f5:
60:d3:05:90:80:61:10:6e:b2:a8:24:fb:6c:a4:ed:
e8:b9:e8:a8:97:86:ca:78:50:54:bc:7d:91:1c:4a:
d6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C4:88:E4:41:77:48:4E:0D:10:D1:68:AE:29:67:3C:AA:9B:7A:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8707066E390A11EF994B4455762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.205.0/24
Signature Algorithm: sha256WithRSAEncryption
83:39:19:6d:2e:1b:68:34:a6:42:cf:fe:33:8a:57:eb:d4:73:
95:2b:0c:32:03:95:b4:d2:79:1a:a7:d3:fe:7f:c8:90:a7:c0:
1f:8d:27:63:3f:3b:97:4b:92:b6:60:86:0e:d0:6a:78:6c:30:
4a:a7:6d:d9:f0:bf:32:74:4e:60:c4:04:9d:0c:e7:0b:fd:6d:
47:98:6d:a4:88:d6:9e:ce:de:57:ae:4f:7a:16:59:df:de:c8:
d1:f3:f0:af:de:90:7b:78:22:80:30:7c:1d:b6:1d:25:6c:dd:
bd:59:5e:59:0d:dc:a2:b5:3b:a2:e9:05:dc:40:2d:a0:76:85:
37:a7:be:40:56:16:73:94:6b:13:59:99:41:f3:ff:14:bc:f7:
47:61:7f:ac:ea:2b:b7:94:8b:82:bf:c6:ad:b1:ff:4f:49:c2:
f3:41:e0:25:3b:0c:a0:b7:cb:a5:58:1f:b3:4f:2e:5e:03:92:
1e:88:f9:70:0b:60:dd:54:9f:bb:ca:f6:df:7a:b9:55:87:60:
0e:76:46:51:20:78:76:d1:a1:d1:31:66:43:0b:75:db:d5:5d:
ee:aa:31:de:ec:cf:df:14:1b:37:47:18:fd:ba:58:c0:12:e4:
1e:60:f8:4e:db:31:e3:7c:d6:8f:50:92:ec:8d:2f:18:ba:cb:
37:f2:c2:34
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJeyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzAzMDcwNDQxWhcNMjQxMDA0MDcwNDQxWjAYMRYw
FAYDVQQDEw02Njg0ZjgwZC0yNGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2VwtvqmyI++j8MxuDn2a7tD8SDdBf3M7LG+AAHa6BxTp4kUIEUHlXeNF
J/EaTfaNaJ2I19bRkq9GFMS6o4PFPk2JCUhoQDL5e2zorPEmoGHP2AcUuhQqPdDJ
qPSiLiMRmqnJuGCJ+BQNYk1CjJ77bceA60N3YSbKTvLPSdNZvfyWq5HB+HItkZhw
/piGSj4/Mk+usyFjQyXE/9EALoA5d0uhpyQRIO2IkbCDVLmvtrL/GmcF3/tZp+UJ
pkgmFoo8hGQUk+76tr4aUUG0xjjdveEq9c60jbOtEzUMFex/1fVg0wWQgGEQbrKo
JPtspO3oueiol4bKeFBUvH2RHErW+QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFF3E
iORBd0hODRDRaK4pZzyqm3riMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84NzA3MDY2RTM5MEExMUVGOTk0QjQ0NTU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcPNMA0GCSqGSIb3DQEBCwUA
A4IBAQCDORltLhtoNKZCz/4zilfr1HOVKwwyA5W00nkap9P+f8iQp8AfjSdjPzuX
S5K2YIYO0Gp4bDBKp23Z8L8ydE5gxASdDOcL/W1HmG2kiNaezt5Xrk96Flnf3sjR
8/Cv3pB7eCKAMHwdth0lbN29WV5ZDdyitTui6QXcQC2gdoU3p75AVhZzlGsTWZlB
8/8UvPdHYX+s6iu3lIuCv8atsf9PScLzQeAlOwygt8ulWB+zTy5eA5IeiPlwC2Dd
VJ+7yvbferlVh2AOdkZRIHh20aHRMWZDC3Xb1V3uqjHe7M/fFBs3Rxj9uljAEuQe
YPhO2zHjfNaPUJLsjS8Yuss38sI0
-----END CERTIFICATE-----
Generated at Sat Sep 7 10:38:38 2024 by rpki-client on console-fra.rpki-client.org