Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F55144CAEBC11EEAAFB94C0775412E6.roa
File: 8F55144CAEBC11EEAAFB94C0775412E6.roa (raw, json)
Hash identifier: a+p3XDoiKcFKHm9iv3PMzUu42d9Obi8iGPHNG4Ylqjk=
Subject key identifier: DF:05:0C:93:DF:A0:76:5A:98:C0:14:78:2F:92:BD:D9:E6:EC:DD:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5EBF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F55144CAEBC11EEAAFB94C0775412E6.roa
Signing time: Tue 09 Jan 2024 06:58:58 +0000
ROA not before: Tue 09 Jan 2024 06:58:54 +0000
ROA not after: Sat 11 Jan 2025 06:58:54 +0000
asID: 138995
IP address blocks: 45.194.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24255 (0x5ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 9 06:58:54 2024 GMT
Not After : Jan 11 06:58:54 2025 GMT
Subject: CN=659ceeb2-87c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:3d:60:76:a3:02:00:cf:0b:fe:8a:4b:55:
f7:81:f9:b8:ee:28:6a:07:a8:6a:0e:6b:b5:07:83:
31:b6:a5:82:b0:66:22:f1:77:ee:3f:1b:7a:eb:ae:
6c:17:aa:8b:b9:1e:dd:ff:a1:44:96:81:0e:88:3a:
12:09:9f:f7:b7:fb:7c:c8:98:87:3f:2e:00:c5:d9:
96:89:46:1e:ae:99:59:02:5d:c1:54:a0:0b:0d:6c:
8f:be:61:58:3a:3e:a3:f5:b3:30:0b:4f:b7:0a:53:
e8:71:49:6a:4d:6f:f0:45:f4:3e:46:00:95:53:5e:
cf:b1:85:8e:b4:6c:ab:87:7a:2c:d8:6b:49:fc:5f:
fc:17:02:39:66:fc:8c:a0:6b:84:8e:91:b8:68:c6:
96:95:d8:99:64:88:77:4e:db:e4:22:95:25:bf:aa:
87:40:20:a3:80:dd:32:e7:07:05:2c:6d:2a:50:e3:
e6:03:b2:20:ae:35:be:fe:0b:d8:e1:fe:e3:74:08:
36:04:94:5d:3f:d1:f2:31:77:03:56:81:08:64:ce:
85:9e:ae:3f:f4:fe:1d:4d:e1:7d:2a:7e:0f:16:cb:
33:bd:08:4f:b9:5a:f4:5e:57:cf:b2:d7:07:61:59:
44:68:f0:d2:a9:c3:56:df:1f:c9:9e:0d:e4:77:b1:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:05:0C:93:DF:A0:76:5A:98:C0:14:78:2F:92:BD:D9:E6:EC:DD:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F55144CAEBC11EEAAFB94C0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.38.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9f:91:df:38:57:6c:6f:24:43:eb:f3:0c:8b:e4:cf:d5:2b:
4b:d8:89:f5:24:e9:a3:09:0d:d2:74:45:fe:49:71:ed:29:be:
46:7e:e9:11:20:d4:c0:4c:8b:53:b2:bb:d4:af:9c:25:22:66:
39:10:0e:15:00:6e:aa:98:8a:ab:9f:54:75:38:83:08:53:cb:
a7:97:aa:90:56:6f:9e:c3:dd:49:0f:fd:1a:ed:c9:b4:de:a5:
03:c9:1e:a7:04:bd:fe:f9:c9:d9:29:99:74:92:4d:ec:76:98:
d0:9b:dd:0c:f0:c0:35:91:ad:28:f4:09:48:fb:f3:49:bc:55:
9f:44:f4:18:4c:cf:36:13:ca:ce:96:be:ec:ef:4a:ab:45:28:
3d:be:59:8c:21:ec:86:e2:1b:65:46:a2:29:30:43:aa:f5:9a:
bd:77:71:0f:fb:07:c6:35:1b:8e:17:01:84:a9:17:7e:16:c2:
91:d0:74:5c:06:a0:3b:37:9f:62:37:ab:46:c8:97:63:07:37:
03:74:c9:93:9e:18:74:ef:f5:46:8e:29:56:9b:fa:5a:ab:04:
9d:2f:6b:0c:f9:3c:a4:22:bb:91:a5:9b:76:ec:9c:5b:8f:18:
12:cf:af:fa:2a:08:6a:47:56:44:7c:fb:49:07:5f:4d:06:82:
e3:cf:5a:10
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICXr8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAxMDkwNjU4NTRaFw0yNTAxMTEwNjU4NTRaMBgxFjAU
BgNVBAMTDTY1OWNlZWIyLTg3YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCcFj1gdqMCAM8L/opLVfeB+bjuKGoHqGoOa7UHgzG2pYKwZiLxd+4/G3rr
rmwXqou5Ht3/oUSWgQ6IOhIJn/e3+3zImIc/LgDF2ZaJRh6umVkCXcFUoAsNbI++
YVg6PqP1szALT7cKU+hxSWpNb/BF9D5GAJVTXs+xhY60bKuHeizYa0n8X/wXAjlm
/Iyga4SOkbhoxpaV2JlkiHdO2+QilSW/qodAIKOA3TLnBwUsbSpQ4+YDsiCuNb7+
C9jh/uN0CDYElF0/0fIxdwNWgQhkzoWerj/0/h1N4X0qfg8WyzO9CE+5WvReV8+y
1wdhWURo8NKpw1bfH8meDeR3sa+dAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU3wUM
k9+gdlqYwBR4L5K92ebs3XUwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzhGNTUxNDRDQUVCQzExRUVBQUZCOTRDMDc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwiYwDQYJKoZIhvcNAQELBQAD
ggEBABSfkd84V2xvJEPr8wyL5M/VK0vYifUk6aMJDdJ0Rf5Jce0pvkZ+6REg1MBM
i1Oyu9SvnCUiZjkQDhUAbqqYiqufVHU4gwhTy6eXqpBWb57D3UkP/RrtybTepQPJ
HqcEvf75ydkpmXSSTex2mNCb3QzwwDWRrSj0CUj780m8VZ9E9BhMzzYTys6Wvuzv
SqtFKD2+WYwh7IbiG2VGoikwQ6r1mr13cQ/7B8Y1G44XAYSpF34WwpHQdFwGoDs3
n2I3q0bIl2MHNwN0yZOeGHTv9UaOKVab+lqrBJ0vawz5PKQiu5Glm3bsnFuPGBLP
r/oqCGpHVkR8+0kHX00GguPPWhA=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:38 2024 by rpki-client on console-fra.rpki-client.org