Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96C8C990CEEF11EFB28D1B7E762E951A.roa
File: 96C8C990CEEF11EFB28D1B7E762E951A.roa (raw, json)
Hash identifier: 6FSM4VT5fEiv4YdTKq8kBiCBsIiHwnkUQ0G+czYK/7o=
Subject key identifier: CB:13:E2:61:E2:4F:F2:D0:9B:8B:80:F3:24:00:32:46:C8:A8:07:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010469
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96C8C990CEEF11EFB28D1B7E762E951A.roa
Signing time: Fri 10 Jan 2025 01:09:49 +0000
ROA not before: Fri 10 Jan 2025 01:09:46 +0000
ROA not after: Thu 13 Feb 2025 01:09:46 +0000
asID: 54801
IP address blocks: 45.207.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66665 (0x10469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 01:09:46 2025 GMT
Not After : Feb 13 01:09:46 2025 GMT
Subject: CN=6780735d-34c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:9d:64:d7:cf:89:b9:5c:11:0e:d9:13:87:
29:57:55:58:a3:c4:f3:a7:18:8b:a6:52:31:78:0f:
84:c5:c3:d5:ad:44:2c:74:55:60:d0:03:e3:16:5c:
e0:d5:0b:eb:28:c4:41:c6:8b:41:8b:4e:d1:c5:74:
81:37:32:fe:04:0c:a3:96:db:3a:03:3c:ef:b6:f4:
30:57:98:d2:e4:c7:61:50:ce:98:60:a8:c2:77:bc:
86:c8:71:0d:7b:44:10:46:8c:e8:2d:f2:52:f8:5f:
fe:1e:c4:51:52:b9:55:8e:f6:5e:04:02:b7:49:e7:
4b:5e:07:df:ce:58:e6:bb:4f:d5:e1:83:34:fb:d7:
dd:92:26:ee:4c:b6:0c:9a:b7:fd:e1:04:77:de:36:
0e:44:5e:cb:84:ed:aa:93:6a:3a:9a:0c:75:e3:80:
b4:32:3c:ee:3a:de:5f:ca:5d:5c:89:f7:90:18:02:
1f:18:54:93:23:0e:f2:8b:c4:92:76:89:5d:33:39:
8e:a0:c9:1a:46:cd:50:9c:39:df:1b:e8:75:ab:2a:
49:8b:50:05:ce:64:1e:2e:81:7a:e1:41:f7:e8:d2:
bc:4f:20:f9:16:ac:5d:cc:1f:48:e6:6e:e0:4e:e6:
3b:da:c7:aa:d7:74:7e:b6:a0:ef:39:e7:9f:6a:bc:
ed:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:13:E2:61:E2:4F:F2:D0:9B:8B:80:F3:24:00:32:46:C8:A8:07:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96C8C990CEEF11EFB28D1B7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.163.0/24
Signature Algorithm: sha256WithRSAEncryption
22:24:4c:e6:a6:ee:1f:16:8c:28:33:38:15:4e:eb:b7:b4:8e:
41:0c:53:e1:a5:3b:89:bd:08:49:71:de:ae:4f:bd:c9:a4:2d:
0f:0f:14:64:dc:3e:34:63:c9:3d:92:af:eb:af:f8:75:e1:31:
ff:88:75:c5:69:64:38:72:a0:3e:b9:f4:59:f4:65:dd:55:71:
cc:6c:b0:d7:e8:cf:21:c8:93:8b:76:6b:35:89:18:ce:fb:6f:
d8:21:e8:80:93:f4:db:9d:b0:ef:b9:d3:b3:d7:e9:2b:ce:2a:
be:b8:34:53:fc:b6:49:4c:82:0a:27:40:05:57:e9:e3:c2:aa:
19:6f:ef:be:f2:b1:c0:a0:7b:ff:0b:ff:74:b4:24:8f:e4:37:
8c:56:37:31:f3:c5:53:59:02:1e:fc:53:27:f5:e1:3d:c9:de:
32:9b:93:bc:2f:4a:c3:c4:c7:6a:18:ee:62:43:c1:6a:ae:d5:
87:31:c6:a6:14:26:b7:ca:ed:54:45:db:76:a3:db:2c:70:07:
f2:75:10:7a:8d:0d:02:83:0b:89:e7:43:5a:93:73:02:c1:a8:
6b:a1:17:0f:c5:4d:f9:c3:d1:61:72:39:b3:cd:c3:dd:fd:f0:
27:41:2c:86:ad:aa:72:71:4f:3a:f8:1a:6a:fc:36:7a:3f:8f:
56:05:ce:a0
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQRpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTEwMDEwOTQ2WhcNMjUwMjEzMDEwOTQ2WjAYMRYw
FAYDVQQDEw02NzgwNzM1ZC0zNGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuq+dZNfPiblcEQ7ZE4cpV1VYo8TzpxiLplIxeA+ExcPVrUQsdFVg0APj
Flzg1QvrKMRBxotBi07RxXSBNzL+BAyjlts6AzzvtvQwV5jS5MdhUM6YYKjCd7yG
yHENe0QQRozoLfJS+F/+HsRRUrlVjvZeBAK3SedLXgffzljmu0/V4YM0+9fdkibu
TLYMmrf94QR33jYORF7LhO2qk2o6mgx144C0MjzuOt5fyl1cifeQGAIfGFSTIw7y
i8SSdoldMzmOoMkaRs1QnDnfG+h1qypJi1AFzmQeLoF64UH36NK8TyD5FqxdzB9I
5m7gTuY72seq13R+tqDvOeefarzt/wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMsT
4mHiT/LQm4uA8yQAMkbIqAc1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85NkM4Qzk5MENFRUYxMUVGQjI4RDFCN0U3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc+jMA0GCSqGSIb3DQEBCwUA
A4IBAQAiJEzmpu4fFowoMzgVTuu3tI5BDFPhpTuJvQhJcd6uT73JpC0PDxRk3D40
Y8k9kq/rr/h14TH/iHXFaWQ4cqA+ufRZ9GXdVXHMbLDX6M8hyJOLdms1iRjO+2/Y
IeiAk/TbnbDvudOz1+krziq+uDRT/LZJTIIKJ0AFV+njwqoZb+++8rHAoHv/C/90
tCSP5DeMVjcx88VTWQIe/FMn9eE9yd4ym5O8L0rDxMdqGO5iQ8FqrtWHMcamFCa3
yu1URdt2o9sscAfydRB6jQ0CgwuJ50Nak3MCwahroRcPxU35w9FhcjmzzcPd/fAn
QSyGrapycU86+Bpq/DZ6P49WBc6g
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:49:46 2025 by rpki-client