Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97EC6BB808F011EEADA78E194AD9E6FC.roa
File: 97EC6BB808F011EEADA78E194AD9E6FC.roa (raw, json)
Hash identifier: vaFRDRAJWhoqSkwgf8XsmZbQwe8/tu2O1wfedi3uuq0=
Subject key identifier: 82:1C:B1:FF:BC:00:12:A3:13:50:93:4F:7A:B4:33:B3:AF:BB:85:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2ACF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97EC6BB808F011EEADA78E194AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:13:13 +0000
ROA not before: Mon 12 Jun 2023 07:13:09 +0000
ROA not after: Sat 25 May 2024 07:13:09 +0000
asID: 131178
IP address blocks: 45.201.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10959 (0x2acf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:13:09 2023 GMT
Not After : May 25 07:13:09 2024 GMT
Subject: CN=6486c589-a991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a6:48:e7:51:73:92:10:9f:49:35:f1:7d:83:
a2:43:4c:de:eb:e5:7b:86:fc:a9:59:9d:f9:28:65:
1e:f5:2f:de:fc:7d:e4:7f:ac:6b:97:30:b1:36:65:
7a:e4:21:8c:b3:b0:38:26:12:86:93:8f:63:11:cc:
b8:e2:1b:a1:9a:d8:5d:e2:dc:f6:1f:fe:9b:a1:e9:
a0:01:7b:c0:fa:95:6d:71:68:18:fc:a7:75:8d:31:
80:f0:e7:c7:9b:a5:86:dc:d3:50:7e:23:30:67:93:
3d:b6:4e:f8:bb:8f:89:ba:75:98:f0:5d:e1:9b:9d:
2d:0b:af:df:c6:1b:f7:a6:50:71:40:24:9c:89:cc:
11:81:65:fa:13:03:23:d1:06:ac:b8:93:72:30:2f:
21:2e:1b:99:9c:97:7d:6a:9e:a5:6c:56:5f:01:51:
be:83:ff:ec:3c:d1:6a:2f:1c:0e:23:72:df:ff:64:
4b:15:73:94:c0:c7:74:42:d3:8f:d9:09:d0:49:6d:
71:d4:dc:3c:c6:a1:22:51:f7:36:16:f5:65:4c:87:
cc:c9:7b:e6:ab:52:9c:96:2c:2c:f2:ab:d1:77:c8:
3b:a5:ab:7f:f2:ca:14:0c:2c:af:fd:a2:be:4e:66:
7e:a3:4c:e7:56:c4:02:fe:7f:38:1a:f6:75:ee:d1:
b4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1C:B1:FF:BC:00:12:A3:13:50:93:4F:7A:B4:33:B3:AF:BB:85:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97EC6BB808F011EEADA78E194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.141.0/24
Signature Algorithm: sha256WithRSAEncryption
68:1c:19:2c:51:16:f8:3c:dc:35:38:94:1f:4c:b5:33:04:b2:
6e:74:29:f2:09:05:7b:32:46:37:09:c3:13:5b:df:ac:4e:26:
8b:90:33:47:7c:b6:08:8f:83:f1:b2:75:a9:1d:46:92:85:96:
33:bf:fe:e8:bb:55:a1:dc:3a:11:98:20:03:4a:a2:80:fd:bb:
d2:28:30:ec:65:a9:ea:23:c6:5e:c0:46:5a:11:b5:db:bc:2d:
3d:e8:f0:d2:6f:5e:f7:a3:05:a7:14:35:11:d1:bb:8f:91:45:
d1:5c:ad:da:18:40:20:96:71:44:93:c3:2a:8f:00:71:16:bb:
2f:b0:06:14:a1:17:1a:ae:4b:ef:4a:7e:a6:bf:f0:2b:38:9b:
f2:dd:1a:ae:66:6d:fe:f7:68:e2:d5:f5:ae:c7:53:72:5b:88:
bb:d7:01:6e:36:9a:ec:5d:25:b6:99:f6:20:56:55:07:16:f5:
41:10:88:0c:30:d8:eb:fa:59:fb:79:a6:dd:61:53:f6:69:1d:
a6:2b:fc:d3:c5:1a:5f:b1:fc:cf:47:0d:c5:13:6d:9f:b0:5f:
f8:12:a1:73:e8:8d:e4:17:b8:3a:c1:57:1d:04:92:85:8d:5c:
fb:cb:25:62:b4:f4:fe:41:3d:75:ee:b7:e5:f7:4f:98:0a:83:
48:ea:05:52
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKs8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNzEzMDlaFw0yNDA1MjUwNzEzMDlaMBgxFjAU
BgNVBAMTDTY0ODZjNTg5LWE5OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDLpkjnUXOSEJ9JNfF9g6JDTN7r5XuG/KlZnfkoZR71L978feR/rGuXMLE2
ZXrkIYyzsDgmEoaTj2MRzLjiG6Ga2F3i3PYf/puh6aABe8D6lW1xaBj8p3WNMYDw
58ebpYbc01B+IzBnkz22Tvi7j4m6dZjwXeGbnS0Lr9/GG/emUHFAJJyJzBGBZfoT
AyPRBqy4k3IwLyEuG5mcl31qnqVsVl8BUb6D/+w80WovHA4jct//ZEsVc5TAx3RC
04/ZCdBJbXHU3DzGoSJR9zYW9WVMh8zJe+arUpyWLCzyq9F3yDulq3/yyhQMLK/9
or5OZn6jTOdWxAL+fzga9nXu0bTFAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUghyx
/7wAEqMTUJNPerQzs6+7hWUwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4Lzk3RUM2QkI4MDhGMDExRUVBREE3OEUxOTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyY0wDQYJKoZIhvcNAQELBQAD
ggEBAGgcGSxRFvg83DU4lB9MtTMEsm50KfIJBXsyRjcJwxNb36xOJouQM0d8tgiP
g/GydakdRpKFljO//ui7VaHcOhGYIANKooD9u9IoMOxlqeojxl7ARloRtdu8LT3o
8NJvXvejBacUNRHRu4+RRdFcrdoYQCCWcUSTwyqPAHEWuy+wBhShFxquS+9Kfqa/
8Cs4m/LdGq5mbf73aOLV9a7HU3JbiLvXAW42muxdJbaZ9iBWVQcW9UEQiAww2Ov6
Wft5pt1hU/ZpHaYr/NPFGl+x/M9HDcUTbZ+wX/gSoXPojeQXuDrBVx0EkoWNXPvL
JWK09P5BPXXut+X3T5gKg0jqBVI=
-----END CERTIFICATE-----
Generated at Thu May 2 17:18:23 2024 by rpki-client on console-ams.rpki-client.org