Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4E21CF4FB8611EDA552BE7F4AD9E6FC.roa
File: A4E21CF4FB8611EDA552BE7F4AD9E6FC.roa (raw, json)
Hash identifier: CBAlR3Qaps4XutQKHiYdeMMSxoVNXydMLZZVMfwqAfU=
Subject key identifier: 7B:86:65:D3:88:E0:79:3E:7B:92:38:4E:FD:06:28:E6:E7:C3:A9:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 27CA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4E21CF4FB8611EDA552BE7F4AD9E6FC.roa
Signing time: Fri 26 May 2023 05:32:03 +0000
ROA not before: Fri 26 May 2023 05:31:59 +0000
ROA not after: Sun 30 Jun 2024 05:31:59 +0000
asID: 984
IP address blocks: 45.201.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10186 (0x27ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 05:31:59 2023 GMT
Not After : Jun 30 05:31:59 2024 GMT
Subject: CN=64704453-18c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:d7:1e:cf:d5:44:61:3f:f7:52:cb:7e:84:
ae:c5:25:fb:da:46:4f:4e:4a:0b:ab:f2:50:e9:74:
95:d1:21:1a:04:aa:a2:0a:03:ba:0e:3f:0f:d4:9b:
00:b9:2a:17:0a:fa:c6:b9:dd:e5:86:5d:82:70:e3:
be:c1:98:69:94:c9:15:c0:88:79:bc:28:96:cf:7b:
a3:8d:b5:19:90:35:bc:92:e1:88:53:a3:2f:46:16:
59:bb:ed:a0:dd:18:e0:dc:eb:c0:73:8e:c4:57:87:
bf:3a:ea:d4:15:fc:80:41:b3:39:50:10:d0:73:40:
54:84:8f:bc:78:79:9d:51:cd:e5:97:59:d6:2f:34:
99:6c:d9:6d:55:92:5a:44:29:d2:8e:8e:be:f6:a5:
b7:2a:2a:78:e4:63:59:a2:08:9d:85:ba:5e:e8:ed:
e2:a0:31:01:61:38:88:da:bb:b5:f4:34:70:0a:b2:
08:f9:24:76:b0:84:06:25:b7:21:d4:60:ae:bf:ed:
36:b4:97:4b:f1:21:e2:be:a4:6b:95:20:ac:0e:a8:
6b:4a:6c:34:60:0b:bc:4e:12:a0:16:3c:c1:b1:93:
56:11:5d:0c:f0:dd:ca:96:e3:a0:f7:ee:cd:fc:18:
84:cd:fd:ad:5c:15:2a:c0:4c:52:6f:c0:b9:02:98:
43:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:86:65:D3:88:E0:79:3E:7B:92:38:4E:FD:06:28:E6:E7:C3:A9:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4E21CF4FB8611EDA552BE7F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.0.0/17
Signature Algorithm: sha256WithRSAEncryption
58:7b:b6:f6:9a:28:5c:d5:9b:be:23:3b:e6:2d:03:d7:a3:11:
83:28:6a:41:c6:ae:e5:6c:09:7a:de:2e:36:93:bd:e0:4b:c5:
2e:4e:9d:96:32:40:86:24:fd:26:eb:40:53:53:2f:21:90:92:
23:96:4c:2f:76:31:8e:cf:ce:16:7d:92:e2:ee:82:43:ee:df:
80:c5:71:9f:e4:af:86:5b:d1:19:a1:cb:91:e6:77:9a:3b:3c:
1e:6c:ff:fb:be:f4:af:75:d3:4d:d1:9e:62:4e:76:02:8b:91:
b9:a7:6c:d1:a2:e8:14:be:54:67:e8:17:15:ad:f0:48:cc:49:
9b:f1:47:53:15:01:c8:d8:b5:9a:c2:fc:92:2d:bd:64:92:93:
0e:53:4d:3a:51:5e:8d:37:96:64:3b:93:bb:f8:9e:41:42:84:
ca:8c:80:44:40:71:9f:14:8b:08:c2:9a:57:67:b4:8b:31:e0:
c1:33:4a:da:07:2a:66:d0:47:04:ea:4f:c0:5a:ba:85:f7:3d:
b4:9b:0c:eb:3e:d2:e3:33:ea:56:68:e6:df:08:7c:22:7d:e3:
91:23:c7:a2:22:be:2e:6e:eb:c1:23:41:3e:fa:f6:79:18:00:
15:31:29:2a:53:6e:11:b6:1c:9b:5d:f6:60:01:1f:45:1f:04:
a7:9e:57:b8
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJ8owDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjYwNTMxNTlaFw0yNDA2MzAwNTMxNTlaMBgxFjAU
BgNVBAMTDTY0NzA0NDUzLTE4YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDDNcez9VEYT/3Ust+hK7FJfvaRk9OSgur8lDpdJXRIRoEqqIKA7oOPw/U
mwC5KhcK+sa53eWGXYJw477BmGmUyRXAiHm8KJbPe6ONtRmQNbyS4YhToy9GFlm7
7aDdGODc68BzjsRXh7866tQV/IBBszlQENBzQFSEj7x4eZ1RzeWXWdYvNJls2W1V
klpEKdKOjr72pbcqKnjkY1miCJ2Ful7o7eKgMQFhOIjau7X0NHAKsgj5JHawhAYl
tyHUYK6/7Ta0l0vxIeK+pGuVIKwOqGtKbDRgC7xOEqAWPMGxk1YRXQzw3cqW46D3
7s38GITN/a1cFSrATFJvwLkCmENtAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUe4Zl
04jgeT57kjhO/QYo5ufDqXUwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0E0RTIxQ0Y0RkI4NjExRURBNTUyQkU3RjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBActyQAwDQYJKoZIhvcNAQELBQAD
ggEBAFh7tvaaKFzVm74jO+YtA9ejEYMoakHGruVsCXreLjaTveBLxS5OnZYyQIYk
/SbrQFNTLyGQkiOWTC92MY7PzhZ9kuLugkPu34DFcZ/kr4Zb0Rmhy5Hmd5o7PB5s
//u+9K91003RnmJOdgKLkbmnbNGi6BS+VGfoFxWt8EjMSZvxR1MVAcjYtZrC/JIt
vWSSkw5TTTpRXo03lmQ7k7v4nkFChMqMgERAcZ8UiwjCmldntIsx4MEzStoHKmbQ
RwTqT8BauoX3PbSbDOs+0uMz6lZo5t8IfCJ945Ejx6Iivi5u68EjQT769nkYABUx
KSpTbhG2HJtd9mABH0UfBKeeV7g=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org