Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A50B3566A18511EFBE59B042762E951A.roa
File: A50B3566A18511EFBE59B042762E951A.roa (raw, json)
Hash identifier: DmQMk9a8zlmb/1MNk/5gXj0vGCDjXVIYIFAhIRI/BEM=
Subject key identifier: 8B:0A:66:25:23:CB:5A:98:62:8B:9B:86:B7:2F:0F:2D:4C:9A:90:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D224
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A50B3566A18511EFBE59B042762E951A.roa
Signing time: Wed 13 Nov 2024 06:08:04 +0000
ROA not before: Wed 13 Nov 2024 06:08:01 +0000
ROA not after: Wed 11 Dec 2024 06:08:01 +0000
asID: 134365
IP address blocks: 45.197.144.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53796 (0xd224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 06:08:01 2024 GMT
Not After : Dec 11 06:08:01 2024 GMT
Subject: CN=67344244-0771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:3c:48:19:18:73:39:42:f1:3b:7a:66:e9:ee:
1b:4e:96:2e:cd:03:34:08:c9:0a:5f:13:27:52:20:
ce:9c:1a:7a:d8:5e:d3:43:ba:1e:5a:75:d1:fe:6a:
3f:45:24:90:f5:b9:71:93:4a:1f:02:87:6e:b3:87:
cb:68:40:ff:e7:14:20:c3:59:7e:dc:66:99:05:95:
f8:fa:28:c7:2b:ee:21:2b:c1:8a:cd:77:1b:6b:8e:
af:97:c1:63:55:1d:22:66:cd:b9:11:dd:d2:d3:a9:
f6:85:d3:ae:ea:2a:79:43:3a:d1:11:85:f7:47:03:
54:a4:4c:52:a2:9f:73:b1:db:be:0c:23:74:83:e5:
16:40:ed:4b:fa:5c:57:43:73:4d:8a:15:41:3f:21:
e3:b9:46:09:cc:ee:2b:21:87:37:5d:8b:d4:81:d1:
2b:0e:65:58:c5:2b:89:e7:43:d2:a2:83:5f:8e:9a:
ac:25:42:67:7e:0e:e9:01:be:34:62:84:96:43:a9:
a2:be:b8:49:83:dd:83:e1:31:da:b8:97:19:42:a2:
23:db:c0:11:0f:56:bb:64:6c:0d:3d:61:cb:de:91:
67:e0:12:8b:85:eb:2b:07:06:60:20:14:a7:65:28:
50:18:8f:60:20:61:02:07:46:9b:7e:a5:0d:81:79:
6f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0A:66:25:23:CB:5A:98:62:8B:9B:86:B7:2F:0F:2D:4C:9A:90:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A50B3566A18511EFBE59B042762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.144.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:9c:38:3e:5c:fa:ab:3c:e2:33:27:f2:59:e4:d6:02:fe:f6:
89:b7:fd:40:42:d1:13:df:4a:02:2c:6b:68:f7:66:4c:9c:b3:
f5:a2:c0:d7:05:01:3f:31:48:68:f3:ee:eb:73:be:f9:dd:9b:
74:1e:b2:87:75:19:91:93:65:e7:21:94:b8:6d:c6:36:46:2c:
a9:11:75:3c:3a:b7:b3:b6:5e:de:45:4d:04:87:11:af:76:2c:
7a:48:eb:a8:1e:1a:e3:ca:18:99:a8:13:51:ac:90:1e:06:97:
3c:f2:b2:e6:ea:ad:7b:82:c4:f9:5e:08:0f:67:f4:a7:a8:62:
65:47:5e:95:b6:63:10:ad:76:47:dc:8e:aa:f2:b5:4d:36:7e:
07:df:c0:7f:ec:06:5c:8b:4c:3f:fa:50:4d:d3:4f:ec:98:95:
06:c4:a5:99:a3:2b:ea:cb:bc:51:a5:2d:27:ea:08:45:27:c1:
74:3b:ba:cb:5a:9d:7a:34:3a:4f:e1:5d:75:93:11:f4:82:57:
c3:8e:df:c9:f7:f7:ec:c2:d4:fe:41:63:01:58:2f:19:2f:c1:
37:aa:4d:3e:f8:30:6b:76:eb:b6:79:09:5b:a0:7c:d0:15:c9:
58:f5:06:0b:bf:cd:ec:7c:ba:84:23:26:9b:63:6e:ab:5e:f8:
1d:41:47:a2
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANIkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTEzMDYwODAxWhcNMjQxMjExMDYwODAxWjAYMRYw
FAYDVQQDEw02NzM0NDI0NC0wNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+DxIGRhzOULxO3pm6e4bTpYuzQM0CMkKXxMnUiDOnBp62F7TQ7oeWnXR
/mo/RSSQ9blxk0ofAodus4fLaED/5xQgw1l+3GaZBZX4+ijHK+4hK8GKzXcba46v
l8FjVR0iZs25Ed3S06n2hdOu6ip5QzrREYX3RwNUpExSop9zsdu+DCN0g+UWQO1L
+lxXQ3NNihVBPyHjuUYJzO4rIYc3XYvUgdErDmVYxSuJ50PSooNfjpqsJUJnfg7p
Ab40YoSWQ6mivrhJg92D4THauJcZQqIj28ARD1a7ZGwNPWHL3pFn4BKLhesrBwZg
IBSnZShQGI9gIGECB0abfqUNgXlveQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIsK
ZiUjy1qYYoubhrcvDy1MmpCgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNTBCMzU2NkExODUxMUVGQkU1OUIwNDI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcWQMA0GCSqGSIb3DQEBCwUA
A4IBAQAKnDg+XPqrPOIzJ/JZ5NYC/vaJt/1AQtET30oCLGto92ZMnLP1osDXBQE/
MUho8+7rc7753Zt0HrKHdRmRk2XnIZS4bcY2RiypEXU8Oreztl7eRU0EhxGvdix6
SOuoHhrjyhiZqBNRrJAeBpc88rLm6q17gsT5XggPZ/SnqGJlR16VtmMQrXZH3I6q
8rVNNn4H38B/7AZci0w/+lBN00/smJUGxKWZoyvqy7xRpS0n6ghFJ8F0O7rLWp16
NDpP4V11kxH0glfDjt/J9/fswtT+QWMBWC8ZL8E3qk0++DBrduu2eQlboHzQFclY
9QYLv83sfLqEIyabY26rXvgdQUei
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:42 2024 by rpki-client on console-fra.rpki-client.org