Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A45742A88DD211EEB06407724AD9E6FC.roa
File: A45742A88DD211EEB06407724AD9E6FC.roa (raw, json)
Hash identifier: wU+jJtDtUC2VkhjbHuff8Zs50xAHl/mbIaagzePv2gE=
Subject key identifier: 06:47:58:F5:45:81:58:6C:5B:FF:7F:90:44:D6:1D:16:B7:CB:A7:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C71
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A45742A88DD211EEB06407724AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:43:54 +0000
ROA not before: Sat 03 Feb 2024 09:43:50 +0000
ROA not after: Thu 08 Aug 2024 09:43:50 +0000
asID: 133861
IP address blocks: 45.207.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19569 (0x4c71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:43:50 2024 GMT
Not After : Aug 8 09:43:50 2024 GMT
Subject: CN=6565b65a-4942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e2:96:52:f8:db:f3:50:be:de:83:39:d6:16:
b4:ba:1a:7c:40:65:8f:98:ed:2a:50:ec:88:04:e3:
c7:9e:57:ee:71:c6:cb:d2:fb:60:50:ff:d1:96:b0:
33:12:48:c0:74:6a:da:3e:14:48:9f:72:c9:30:41:
ae:e6:cd:0f:98:66:de:ac:03:cb:cb:1c:d1:47:5b:
f6:bc:71:1c:ee:70:09:c1:82:95:3a:8b:53:ab:db:
b6:fd:b8:fc:90:2a:7e:82:de:11:52:60:44:e9:bd:
f9:22:1f:a4:68:97:cd:63:d2:9c:d7:82:c3:56:2a:
fa:3f:7d:88:78:4a:b3:40:2e:9b:49:e7:33:d4:4a:
b3:66:9e:48:0b:20:23:60:8a:b5:64:d6:1b:18:21:
3b:ad:6f:63:cc:98:7a:dd:96:55:c0:5a:bc:35:96:
c6:ca:aa:5a:de:28:c1:75:fd:55:1e:99:f0:cb:98:
dc:f9:49:4d:af:e6:db:9f:b5:96:e2:62:89:d0:60:
90:ad:ad:04:b7:52:24:b3:b7:cf:7e:cc:64:eb:8d:
ef:0e:ab:d5:dc:b7:b2:ba:54:85:fe:51:cf:bd:99:
1e:b0:d7:9a:9c:87:52:cf:30:9b:07:98:37:47:40:
6b:ce:48:1c:e4:b8:f2:2b:50:b5:aa:3f:74:27:24:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:47:58:F5:45:81:58:6C:5B:FF:7F:90:44:D6:1D:16:B7:CB:A7:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A45742A88DD211EEB06407724AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.52.0/24
Signature Algorithm: sha256WithRSAEncryption
39:b2:51:c2:58:b6:37:49:35:14:41:39:a1:3c:9d:0f:6f:71:
4c:e0:c6:b5:7a:c4:d7:46:ed:e1:2c:66:a6:61:3f:f0:c2:d9:
3a:10:27:32:fe:21:c6:08:60:67:e8:db:02:11:2d:8e:c9:f8:
e8:ee:fd:ce:a4:ca:3a:d8:d2:51:c4:2e:2d:a7:57:a5:3d:f6:
2a:43:08:f3:50:82:42:3b:33:d6:da:7a:f4:50:f8:36:75:92:
53:86:5b:1d:4a:e1:14:71:ea:a8:00:ab:37:d9:5d:af:34:9b:
5a:9d:b4:1e:6f:ce:48:3d:97:d1:5a:93:26:69:32:4b:2b:4d:
c0:0b:6f:b1:98:49:dc:d5:24:c6:0d:35:5e:f6:33:e0:77:72:
b2:64:88:e3:8c:ee:52:ac:47:e2:d7:2a:58:f9:93:e8:f4:0a:
66:56:65:7e:98:9d:28:fb:9d:bc:53:a8:ea:c3:12:83:52:22:
8f:f2:5d:30:69:b6:79:b8:0e:29:b2:b1:6c:a7:17:85:7c:7d:
a2:2c:dd:4d:1f:be:65:c2:ec:64:ee:e8:ec:ad:ae:da:87:ef:
54:31:0d:65:d0:aa:62:ec:ff:89:97:c0:b3:02:d4:6f:d5:98:
d2:a4:2d:5d:d1:b0:f1:fd:cc:39:ad:5d:e1:2e:88:7a:cf:f0:
6b:6d:33:b1
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTHEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTQzNTBaFw0yNDA4MDgwOTQzNTBaMBgxFjAU
BgNVBAMTDTY1NjViNjVhLTQ5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDZ4pZS+NvzUL7egznWFrS6GnxAZY+Y7SpQ7IgE48eeV+5xxsvS+2BQ/9GW
sDMSSMB0ato+FEifcskwQa7mzQ+YZt6sA8vLHNFHW/a8cRzucAnBgpU6i1Or27b9
uPyQKn6C3hFSYETpvfkiH6Rol81j0pzXgsNWKvo/fYh4SrNALptJ5zPUSrNmnkgL
ICNgirVk1hsYITutb2PMmHrdllXAWrw1lsbKqlreKMF1/VUemfDLmNz5SU2v5tuf
tZbiYonQYJCtrQS3UiSzt89+zGTrje8Oq9Xct7K6VIX+Uc+9mR6w15qch1LPMJsH
mDdHQGvOSBzkuPIrULWqP3QnJOEvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUBkdY
9UWBWGxb/3+QRNYdFrfLpxcwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0E0NTc0MkE4OEREMjExRUVCMDY0MDc3MjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzzQwDQYJKoZIhvcNAQELBQAD
ggEBADmyUcJYtjdJNRRBOaE8nQ9vcUzgxrV6xNdG7eEsZqZhP/DC2ToQJzL+IcYI
YGfo2wIRLY7J+Oju/c6kyjrY0lHELi2nV6U99ipDCPNQgkI7M9baevRQ+DZ1klOG
Wx1K4RRx6qgAqzfZXa80m1qdtB5vzkg9l9FakyZpMksrTcALb7GYSdzVJMYNNV72
M+B3crJkiOOM7lKsR+LXKlj5k+j0CmZWZX6YnSj7nbxTqOrDEoNSIo/yXTBptnm4
DimysWynF4V8faIs3U0fvmXC7GTu6OytrtqH71QxDWXQqmLs/4mXwLMC1G/VmNKk
LV3RsPH9zDmtXeEuiHrP8GttM7E=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org