Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AE1FE4C8D3311EF878FDF7E762E951A.roa
File: 8AE1FE4C8D3311EF878FDF7E762E951A.roa (raw, json)
Hash identifier: a88b0tqq52kqUVgZZ2a9dN/IkX23glr6unvjK+NlqkU=
Subject key identifier: 25:39:50:14:15:72:6C:AF:BE:5B:9A:37:27:98:DB:17:CA:E5:A3:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C6B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AE1FE4C8D3311EF878FDF7E762E951A.roa
Signing time: Fri 18 Oct 2024 09:29:59 +0000
ROA not before: Fri 18 Oct 2024 09:29:55 +0000
ROA not after: Sat 23 Nov 2024 09:29:55 +0000
asID: 44559
IP address blocks: 45.199.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50870 (0xc6b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 18 09:29:55 2024 GMT
Not After : Nov 23 09:29:55 2024 GMT
Subject: CN=67122a96-ecad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:6e:75:2f:ed:e0:66:04:94:e0:e8:7b:6e:13:
95:31:b6:99:8e:8e:28:b1:a2:e7:a9:1f:d2:c2:73:
5b:d9:b9:5d:e0:74:55:3a:04:2e:01:2d:31:6f:e2:
f7:98:9f:89:92:8f:98:1b:ec:90:a3:09:08:75:9a:
2f:79:ff:87:d0:15:0c:da:f2:e3:af:52:a9:c5:56:
d7:34:60:f7:ab:79:3f:6f:5a:16:93:79:5e:52:89:
fa:1e:d1:bc:99:aa:16:ce:52:6c:1b:b4:f8:28:92:
b9:28:53:d7:47:cc:c6:4a:6b:bc:77:86:00:50:a9:
bc:6b:ff:c2:f9:cc:c9:1c:50:85:39:bf:a2:a4:b1:
07:90:c2:68:0f:a7:77:f2:f9:c2:69:c3:b4:33:c2:
b5:f6:29:6d:e7:69:f5:51:6a:91:86:5c:61:06:40:
ed:51:78:20:f9:3c:4a:3f:d8:61:ee:5d:23:d4:20:
a9:28:30:5f:81:af:21:02:3c:12:ce:c2:ba:da:ed:
03:b3:c8:97:02:66:6e:86:a4:3e:bb:e4:c1:d1:2f:
1e:be:cc:53:ac:f4:91:fa:7b:3a:c2:69:5e:8f:6d:
07:f7:2f:79:c6:d0:0c:f4:11:24:f1:7c:dc:a8:16:
5f:7d:6b:6c:0c:e6:be:6d:f9:f8:be:a3:85:47:66:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:39:50:14:15:72:6C:AF:BE:5B:9A:37:27:98:DB:17:CA:E5:A3:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8AE1FE4C8D3311EF878FDF7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.209.0/24
Signature Algorithm: sha256WithRSAEncryption
58:e6:9b:3b:b0:22:0d:f8:30:24:df:0a:4e:3e:fe:7a:92:2a:
89:06:b9:a8:fa:b9:fd:b7:42:89:50:7a:59:31:35:b7:9f:32:
d0:1d:f7:45:98:0b:d4:cd:42:53:dd:1e:94:43:6e:b9:da:ad:
50:ac:9f:dc:a0:07:f2:39:ec:7b:22:07:6e:f2:de:4d:bf:72:
3c:99:71:ff:25:d2:c6:e8:c0:d6:d1:e8:e3:55:25:be:90:33:
59:48:70:96:1e:fd:c6:aa:64:d6:df:28:c4:1c:f7:fa:e5:c9:
00:44:cd:55:fe:74:7b:40:00:1e:fd:40:32:a5:9c:c9:5f:8e:
3e:79:df:e9:e3:d1:1c:a7:d9:16:eb:c9:e6:98:a2:c4:cf:c4:
d6:cc:32:0a:b7:9b:0c:c4:22:18:51:4b:60:4f:88:b2:cb:e1:
53:c7:a4:18:37:cc:a9:44:a2:2e:fa:e6:d0:4c:f7:44:ba:6c:
71:25:8b:80:a9:0f:fb:1a:fe:7b:0c:36:1a:79:50:06:21:34:
a4:90:04:37:35:56:34:dd:7b:6a:d3:da:99:f0:3b:83:56:12:
e3:5f:cb:64:dd:25:81:09:d0:c4:8d:27:4f:2b:cc:0f:ce:72:
97:b7:4f:7d:e0:6b:ab:5f:4b:a7:4d:67:11:c4:21:23:28:61:
1d:b0:94:c6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMa2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDE4MDkyOTU1WhcNMjQxMTIzMDkyOTU1WjAYMRYw
FAYDVQQDEw02NzEyMmE5Ni1lY2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6251L+3gZgSU4Oh7bhOVMbaZjo4osaLnqR/SwnNb2bld4HRVOgQuAS0x
b+L3mJ+Jko+YG+yQowkIdZovef+H0BUM2vLjr1KpxVbXNGD3q3k/b1oWk3leUon6
HtG8maoWzlJsG7T4KJK5KFPXR8zGSmu8d4YAUKm8a//C+czJHFCFOb+ipLEHkMJo
D6d38vnCacO0M8K19ilt52n1UWqRhlxhBkDtUXgg+TxKP9hh7l0j1CCpKDBfga8h
AjwSzsK62u0Ds8iXAmZuhqQ+u+TB0S8evsxTrPSR+ns6wmlej20H9y95xtAM9BEk
8XzcqBZffWtsDOa+bfn4vqOFR2bPSwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCU5
UBQVcmyvvluaNyeY2xfK5aM5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84QUUxRkU0QzhEMzMxMUVGODc4RkRGN0U3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcfRMA0GCSqGSIb3DQEBCwUA
A4IBAQBY5ps7sCIN+DAk3wpOPv56kiqJBrmo+rn9t0KJUHpZMTW3nzLQHfdFmAvU
zUJT3R6UQ2652q1QrJ/coAfyOex7Igdu8t5Nv3I8mXH/JdLG6MDW0ejjVSW+kDNZ
SHCWHv3GqmTW3yjEHPf65ckARM1V/nR7QAAe/UAypZzJX44+ed/p49Ecp9kW68nm
mKLEz8TWzDIKt5sMxCIYUUtgT4iyy+FTx6QYN8ypRKIu+ubQTPdEumxxJYuAqQ/7
Gv57DDYaeVAGITSkkAQ3NVY03Xtq09qZ8DuDVhLjX8tk3SWBCdDEjSdPK8wPznKX
t0994GurX0unTWcRxCEjKGEdsJTG
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:39 2024 by rpki-client on console-ams.rpki-client.org