Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06C37B6269911EEA0644D6F4AD9E6FC.roa
File: A06C37B6269911EEA0644D6F4AD9E6FC.roa (raw, json)
Hash identifier: tLWlrIdSknKMEAcgHCy9SnuupAMT5YaCE9m9+m111AE=
Subject key identifier: AA:28:16:A0:EF:2B:27:3C:35:92:C9:B8:9E:9A:E7:46:17:6C:DF:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 30F8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06C37B6269911EEA0644D6F4AD9E6FC.roa
Signing time: Thu 20 Jul 2023 01:06:16 +0000
ROA not before: Thu 20 Jul 2023 01:06:12 +0000
ROA not after: Thu 13 Jun 2024 01:06:12 +0000
asID: 5065
IP address blocks: 45.202.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12536 (0x30f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 20 01:06:12 2023 GMT
Not After : Jun 13 01:06:12 2024 GMT
Subject: CN=64b88888-78f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:57:69:ef:e8:02:eb:ee:79:8e:96:dd:ea:ad:
93:41:06:68:60:8a:6a:3b:99:1a:ca:01:e5:ca:2e:
88:99:d5:85:be:e8:25:8f:15:41:35:11:ad:96:ee:
b3:11:55:14:ce:ab:d8:22:b0:5d:d1:73:50:12:8b:
a5:10:4c:37:94:2d:96:dc:07:b5:3c:0c:97:66:1d:
47:97:24:96:ed:23:8d:9a:80:fd:80:cf:53:10:d4:
2b:9c:bb:91:4b:2b:89:e1:a3:24:08:ad:a9:90:08:
e0:14:a7:36:db:38:92:b8:c4:a3:33:46:0c:5e:6b:
9e:2c:e0:92:52:7e:cf:dd:b3:57:5c:da:2f:b7:aa:
f1:3b:d2:4d:57:aa:31:1f:46:b6:91:d7:56:2f:41:
b4:ef:63:09:49:b2:33:56:45:c5:7c:77:c9:67:ea:
46:53:fc:2b:d6:b5:1c:37:4a:44:f8:08:5c:c8:ef:
0e:67:7c:01:f5:35:0d:66:1a:42:b0:05:e2:4c:b9:
8e:f9:f1:f9:a2:7b:e3:68:4f:6a:08:0a:fa:14:23:
d5:c0:ed:1c:c6:82:44:4e:c4:04:d7:ac:e1:c8:7d:
8e:7e:dc:11:6f:e9:f5:51:17:54:b5:41:9e:b4:5a:
7c:1b:eb:bd:71:c9:d2:ae:73:c8:8b:82:17:de:0a:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:28:16:A0:EF:2B:27:3C:35:92:C9:B8:9E:9A:E7:46:17:6C:DF:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06C37B6269911EEA0644D6F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.4.0/22
Signature Algorithm: sha256WithRSAEncryption
63:6a:62:b4:8a:b5:2f:f8:ed:ac:30:3c:e4:b6:dc:82:d3:46:
f9:c6:03:e3:fb:36:54:f8:81:7b:9d:d5:bc:74:ac:6d:46:6e:
08:61:2e:36:9f:e8:62:b8:47:92:e4:78:74:d0:fa:db:15:e0:
47:27:c1:c8:b0:58:97:55:ac:3b:06:45:4b:58:fa:82:93:1e:
ff:24:25:db:0f:63:a3:4d:cd:69:db:52:e0:50:68:ee:19:ef:
b0:98:65:53:78:88:0c:49:23:6d:16:b9:35:cb:0e:0a:c1:15:
5a:c3:98:2a:62:4a:9d:35:df:d5:63:59:e0:2f:f5:60:a6:71:
7a:08:cc:3f:60:97:77:c9:ea:56:e1:3e:14:b2:eb:3e:c7:92:
a4:d7:c7:62:95:92:d2:5f:05:7b:c9:d0:9d:37:f5:cc:c0:67:
bf:87:58:ca:bd:e8:55:db:ff:26:01:92:ad:ad:65:12:1e:76:
3e:11:a4:5d:e0:af:41:2e:49:1b:ef:48:dc:fc:15:9e:b4:71:
49:28:c6:7c:fb:bb:bd:34:eb:34:17:2b:35:75:ca:10:f6:c2:
3b:ff:f6:9f:79:b8:02:c3:b6:81:2d:3f:fe:5e:66:aa:0f:31:
b9:ea:49:0e:c7:ff:85:05:1f:52:ed:53:b4:67:ff:a8:83:a3:
2d:ef:7b:99
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICMPgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MjAwMTA2MTJaFw0yNDA2MTMwMTA2MTJaMBgxFjAU
BgNVBAMTDTY0Yjg4ODg4LTc4ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCzV2nv6ALr7nmOlt3qrZNBBmhgimo7mRrKAeXKLoiZ1YW+6CWPFUE1Ea2W
7rMRVRTOq9gisF3Rc1ASi6UQTDeULZbcB7U8DJdmHUeXJJbtI42agP2Az1MQ1Cuc
u5FLK4nhoyQIramQCOAUpzbbOJK4xKMzRgxea54s4JJSfs/ds1dc2i+3qvE70k1X
qjEfRraR11YvQbTvYwlJsjNWRcV8d8ln6kZT/CvWtRw3SkT4CFzI7w5nfAH1NQ1m
GkKwBeJMuY758fmie+NoT2oICvoUI9XA7RzGgkROxATXrOHIfY5+3BFv6fVRF1S1
QZ60Wnwb671xydKuc8iLghfeCjrrAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUqigW
oO8rJzw1ksm4nprnRhds35IwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0EwNkMzN0I2MjY5OTExRUVBMDY0NEQ2RjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItygQwDQYJKoZIhvcNAQELBQAD
ggEBAGNqYrSKtS/47awwPOS23ILTRvnGA+P7NlT4gXud1bx0rG1GbghhLjaf6GK4
R5LkeHTQ+tsV4EcnwciwWJdVrDsGRUtY+oKTHv8kJdsPY6NNzWnbUuBQaO4Z77CY
ZVN4iAxJI20WuTXLDgrBFVrDmCpiSp0139VjWeAv9WCmcXoIzD9gl3fJ6lbhPhSy
6z7HkqTXx2KVktJfBXvJ0J039czAZ7+HWMq96FXb/yYBkq2tZRIedj4RpF3gr0Eu
SRvvSNz8FZ60cUkoxnz7u7006zQXKzV1yhD2wjv/9p95uALDtoEtP/5eZqoPMbnq
SQ7H/4UFH1LtU7Rn/6iDoy3ve5k=
-----END CERTIFICATE-----
Generated at Sun May 5 02:12:49 2024 by rpki-client on console-ams.rpki-client.org