Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/907C75827FEF11EE87FFE33B4AD9E6FC.roa
File: 907C75827FEF11EE87FFE33B4AD9E6FC.roa (raw, json)
Hash identifier: vXcbY9CSJHNlfAhM1x7LqpV3ycg1/fbWZSTfWT7aY34=
Subject key identifier: 36:81:ED:E3:32:FB:B8:E2:59:19:04:FE:45:A9:79:C2:56:23:3F:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 466C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/907C75827FEF11EE87FFE33B4AD9E6FC.roa
Signing time: Fri 10 Nov 2023 17:35:39 +0000
ROA not before: Fri 10 Nov 2023 17:35:36 +0000
ROA not after: Tue 04 Jun 2024 17:35:36 +0000
asID: 137577
IP address blocks: 45.195.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18028 (0x466c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 17:35:36 2023 GMT
Not After : Jun 4 17:35:36 2024 GMT
Subject: CN=654e69eb-e7ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:06:bb:0d:a3:05:6f:e2:59:d0:81:a2:b6:05:
62:cd:a5:37:60:02:25:00:d8:3c:bc:9c:38:c0:39:
db:90:0b:12:97:59:3a:d0:97:46:81:45:f2:82:ce:
a7:4a:39:ea:60:35:ae:0a:a2:71:3f:83:61:57:94:
ae:dc:f2:17:2b:ed:80:cb:a8:e6:a7:27:dc:4c:1c:
ed:f0:45:df:43:33:24:a9:26:f9:32:b0:35:6e:96:
ed:42:d9:32:61:26:4e:06:12:7e:dd:92:e9:3c:a6:
06:37:b5:75:b3:03:ab:c1:91:88:65:5b:50:f0:2b:
77:92:2b:97:0e:ea:1a:0e:a7:5c:69:f4:7a:ce:5e:
00:23:ce:68:9d:db:b2:97:f5:cb:ee:0f:41:f5:fe:
5e:b1:06:9f:4c:fd:6e:01:f2:08:e0:fc:e6:4c:43:
cb:44:93:a2:3b:8b:61:7b:4d:c4:2d:b1:f3:ae:5f:
9f:5a:22:1b:22:b4:d6:3b:79:e5:93:87:aa:08:93:
fd:7d:d2:52:e3:c7:d3:7b:f1:9c:25:93:d9:8f:7f:
84:8f:cc:a6:1d:51:d9:80:d9:97:5e:89:b6:ae:3c:
d7:41:1f:31:0c:f2:64:38:ba:d1:5d:c7:b9:7f:33:
d7:1c:ca:2e:a6:75:ad:29:78:f9:f6:49:67:f3:d0:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:81:ED:E3:32:FB:B8:E2:59:19:04:FE:45:A9:79:C2:56:23:3F:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/907C75827FEF11EE87FFE33B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.50.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:02:38:ef:80:bd:06:35:d6:9b:d5:7d:eb:77:37:12:64:4d:
6f:3a:67:fe:44:af:82:2c:37:ed:bb:6f:25:77:5d:a3:d6:3c:
d1:df:40:65:17:3c:63:71:b9:2e:cc:31:94:5f:92:dd:7c:81:
f3:a3:d3:2f:1f:85:8a:aa:55:6e:5b:8c:12:97:11:e0:9f:58:
08:d2:c3:e6:f2:6e:46:d9:80:c8:b1:08:15:af:61:be:cf:d7:
c0:72:7d:48:bf:c2:bc:29:8a:2c:f0:10:cd:ca:b0:5d:ed:bd:
70:ca:7d:7e:96:2b:c3:6f:1b:6a:ad:6b:32:44:51:65:8b:01:
77:04:2c:50:20:e8:31:c7:49:3b:04:9d:02:ed:a1:4f:ed:1e:
d2:ba:42:6f:b8:a3:74:34:8e:1a:a4:e4:c8:de:ad:02:5a:7d:
48:6d:4f:06:54:ef:9d:99:bc:34:c4:6a:89:cd:22:39:8a:62:
d9:12:ed:ed:55:84:14:1c:44:be:39:60:c6:e2:ee:0a:df:71:
46:11:61:51:c8:12:19:1e:4b:07:d9:61:c3:d5:ad:3a:12:06:
bb:28:c0:40:a9:6b:48:34:3f:01:03:a5:80:7d:15:cf:2b:98:
dd:de:c2:36:c3:60:4d:cc:af:c4:ae:f5:72:fb:e2:dc:3d:fe:
c6:2d:79:7f
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICRmwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTAxNzM1MzZaFw0yNDA2MDQxNzM1MzZaMBgxFjAU
BgNVBAMTDTY1NGU2OWViLWU3ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/BrsNowVv4lnQgaK2BWLNpTdgAiUA2Dy8nDjAOduQCxKXWTrQl0aBRfKC
zqdKOepgNa4KonE/g2FXlK7c8hcr7YDLqOanJ9xMHO3wRd9DMySpJvkysDVulu1C
2TJhJk4GEn7dkuk8pgY3tXWzA6vBkYhlW1DwK3eSK5cO6hoOp1xp9HrOXgAjzmid
27KX9cvuD0H1/l6xBp9M/W4B8gjg/OZMQ8tEk6I7i2F7TcQtsfOuX59aIhsitNY7
eeWTh6oIk/190lLjx9N78Zwlk9mPf4SPzKYdUdmA2ZdeibauPNdBHzEM8mQ4utFd
x7l/M9ccyi6mda0pePn2SWfz0DIlAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUNoHt
4zL7uOJZGQT+Ral5wlYjP7owHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzkwN0M3NTgyN0ZFRjExRUU4N0ZGRTMzQjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwzIwDQYJKoZIhvcNAQELBQAD
ggEBAJ8COO+AvQY11pvVfet3NxJkTW86Z/5Er4IsN+27byV3XaPWPNHfQGUXPGNx
uS7MMZRfkt18gfOj0y8fhYqqVW5bjBKXEeCfWAjSw+bybkbZgMixCBWvYb7P18By
fUi/wrwpiizwEM3KsF3tvXDKfX6WK8NvG2qtazJEUWWLAXcELFAg6DHHSTsEnQLt
oU/tHtK6Qm+4o3Q0jhqk5MjerQJafUhtTwZU752ZvDTEaonNIjmKYtkS7e1VhBQc
RL45YMbi7grfcUYRYVHIEhkeSwfZYcPVrToSBrsowECpa0g0PwEDpYB9Fc8rmN3e
wjbDYE3Mr8Su9XL74tw9/sYteX8=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org