Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A407F72E9C1911EFB3DAD06D762E951A.roa
File: A407F72E9C1911EFB3DAD06D762E951A.roa (raw, json)
Hash identifier: qNQt9Dag1hShuB2kILC7GjCOsPUR3wQ1Axy70rCvSTQ=
Subject key identifier: C3:0C:42:EB:D9:72:7C:DB:C2:95:AF:18:A1:FC:93:AB:B6:10:06:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CF1A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A407F72E9C1911EFB3DAD06D762E951A.roa
Signing time: Wed 06 Nov 2024 08:32:21 +0000
ROA not before: Wed 06 Nov 2024 08:32:17 +0000
ROA not after: Sun 08 Dec 2024 08:32:17 +0000
asID: 48266
IP address blocks: 45.207.218.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53018 (0xcf1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 6 08:32:17 2024 GMT
Not After : Dec 8 08:32:17 2024 GMT
Subject: CN=672b2995-fe37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:88:09:08:5c:58:25:b7:83:3b:a5:cc:f1:
06:46:49:97:2a:65:06:62:57:27:75:8e:00:b3:00:
30:47:23:3c:ff:f2:59:ca:17:27:4f:6c:af:13:23:
5f:97:43:5d:eb:bf:f0:6f:38:39:88:9a:3d:fb:eb:
e8:94:35:d2:b8:83:29:ff:04:2c:cf:8a:2d:4c:12:
8d:92:fb:6f:43:44:1a:81:93:4a:22:fb:49:b8:f3:
e0:26:25:b5:ce:ad:17:4d:67:d4:80:97:5d:57:ed:
a4:8b:27:db:7a:0d:ba:a2:67:21:14:3a:8a:1d:18:
86:32:b9:de:fa:b5:eb:72:94:e7:06:54:2c:67:59:
dd:b7:69:68:36:c2:e3:f6:81:34:e8:72:ad:bf:b5:
76:ad:b0:62:34:e9:ec:78:5d:55:e4:fa:56:7c:da:
dc:e5:bf:47:12:95:64:2f:80:51:bd:b6:6f:a6:7e:
13:c5:8c:77:32:b0:ed:59:f7:31:53:a4:1e:6c:58:
6b:81:df:ee:f5:d2:57:bc:c7:4c:83:a7:33:76:70:
4e:ab:20:06:a3:ee:9f:53:30:4d:f4:3e:70:16:f3:
ad:a5:b4:43:5c:ac:86:16:ff:11:d1:0b:69:7c:83:
b0:b1:d2:34:7f:d3:31:0e:9a:e3:07:98:a3:33:26:
a2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0C:42:EB:D9:72:7C:DB:C2:95:AF:18:A1:FC:93:AB:B6:10:06:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A407F72E9C1911EFB3DAD06D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.218.0/23
Signature Algorithm: sha256WithRSAEncryption
49:a8:ab:b3:75:0c:2a:84:ab:90:05:e0:bd:a1:44:65:f4:7c:
b0:00:da:f4:41:4b:d8:1c:62:d7:90:3f:8a:93:14:47:74:e9:
ca:ff:30:88:75:41:a7:00:f9:55:e5:e1:d8:44:4a:b5:2d:2f:
70:93:f7:90:56:5c:e3:42:64:97:a8:c7:4f:9a:aa:a0:79:ae:
19:d3:3f:d4:7a:7d:2f:0c:da:9a:18:2d:2b:dd:dc:1c:f3:fe:
c8:60:cb:24:85:92:44:7e:e5:c5:41:6d:a0:04:35:ff:a9:49:
48:cd:de:4d:9d:57:4a:71:24:2c:3b:0a:e2:3e:3b:1d:55:38:
1a:d8:c0:77:fc:80:29:ec:5d:e8:2e:b1:2d:47:16:37:74:f3:
cc:83:c8:55:7a:92:ec:8e:9e:1c:d4:a3:52:9f:fd:00:ff:46:
e4:71:37:bf:4d:40:b6:12:7c:5e:31:99:c5:5c:79:1d:6b:04:
b5:63:ce:92:fc:76:9b:0a:df:57:06:04:00:7a:c4:35:c4:82:
12:d0:20:01:f9:18:df:88:86:d0:d5:11:61:11:89:25:eb:d9:
64:d5:b3:3c:b8:a1:9c:79:58:63:a1:0e:8a:55:18:7f:a5:35:
93:62:d2:34:27:99:7a:15:ee:22:89:a4:63:d0:0e:d3:9f:8e:
38:fc:d8:74
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAM8aMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTA2MDgzMjE3WhcNMjQxMjA4MDgzMjE3WjAYMRYw
FAYDVQQDEw02NzJiMjk5NS1mZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAohuICQhcWCW3gzulzPEGRkmXKmUGYlcndY4AswAwRyM8//JZyhcnT2yv
EyNfl0Nd67/wbzg5iJo9++volDXSuIMp/wQsz4otTBKNkvtvQ0QagZNKIvtJuPPg
JiW1zq0XTWfUgJddV+2kiyfbeg26omchFDqKHRiGMrne+rXrcpTnBlQsZ1ndt2lo
NsLj9oE06HKtv7V2rbBiNOnseF1V5PpWfNrc5b9HEpVkL4BRvbZvpn4TxYx3MrDt
WfcxU6QebFhrgd/u9dJXvMdMg6czdnBOqyAGo+6fUzBN9D5wFvOtpbRDXKyGFv8R
0QtpfIOwsdI0f9MxDprjB5ijMyai6QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMMM
QuvZcnzbwpWvGKH8k6u2EAZiMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNDA3RjcyRTlDMTkxMUVGQjNEQUQwNkQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLc/aMA0GCSqGSIb3DQEBCwUA
A4IBAQBJqKuzdQwqhKuQBeC9oURl9HywANr0QUvYHGLXkD+KkxRHdOnK/zCIdUGn
APlV5eHYREq1LS9wk/eQVlzjQmSXqMdPmqqgea4Z0z/Uen0vDNqaGC0r3dwc8/7I
YMskhZJEfuXFQW2gBDX/qUlIzd5NnVdKcSQsOwriPjsdVTga2MB3/IAp7F3oLrEt
RxY3dPPMg8hVepLsjp4c1KNSn/0A/0bkcTe/TUC2EnxeMZnFXHkdawS1Y86S/Hab
Ct9XBgQAesQ1xIIS0CAB+RjfiIbQ1RFhEYkl69lk1bM8uKGceVhjoQ6KVRh/pTWT
YtI0J5l6Fe4iiaRj0A7Tn444/Nh0
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:43 2024 by rpki-client on console-ams.rpki-client.org