Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2976EF74811EEBB056151017001B1.roa
File: A6D2976EF74811EEBB056151017001B1.roa (raw, json)
Hash identifier: Mq4C+nX7+uu4xK6zl5211Zc+YBzU8uKFD2jCumvzKaQ=
Subject key identifier: 1A:C3:75:1A:4D:DD:BF:4E:57:6B:AD:B1:97:09:5F:3C:06:2F:E6:72
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8213
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2976EF74811EEBB056151017001B1.roa
Signing time: Wed 10 Apr 2024 14:43:10 +0000
ROA not before: Wed 10 Apr 2024 14:43:07 +0000
ROA not after: Thu 17 Oct 2024 14:43:07 +0000
asID: 152450
IP address blocks: 45.195.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33299 (0x8213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 10 14:43:07 2024 GMT
Not After : Oct 17 14:43:07 2024 GMT
Subject: CN=6616a57e-eb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:56:67:a8:b1:00:51:a3:83:ca:38:56:d9:13:
b6:ef:aa:2b:83:38:56:5d:c0:31:f5:5d:f8:3f:ab:
d7:e7:ea:76:36:da:63:81:da:36:72:23:ab:5a:ba:
de:db:59:7c:0b:32:a2:64:3c:ea:aa:2f:f4:8a:4d:
df:1c:0f:7e:9b:70:7c:34:90:5e:3e:a8:57:67:2d:
69:d8:c2:05:c4:5c:23:40:00:fa:d8:fe:c0:b9:d2:
80:fe:b6:fa:33:7c:32:16:77:37:de:9e:70:60:9a:
3f:40:d7:16:fa:8e:41:49:ac:e8:cc:46:f0:a5:79:
64:ab:11:df:c2:0b:fb:09:fb:c2:8f:d2:7f:68:f3:
7c:1d:72:06:cd:c2:8f:c9:3a:e6:62:bb:92:a7:3c:
ca:2b:80:2b:44:af:96:dc:90:d0:6e:c7:20:6e:fa:
bf:70:15:f9:93:48:29:96:e4:c2:ca:d0:e4:6b:cc:
6c:36:b5:7f:4a:a6:8b:6f:a0:ff:c4:4b:f5:91:a3:
bb:0e:54:ef:40:d9:23:72:7f:55:26:fb:3d:a0:32:
e6:36:f4:5c:ee:40:f8:68:f6:fd:67:ba:46:9f:aa:
e7:0a:a4:dc:09:a7:81:4d:f4:65:1a:1b:98:67:2f:
aa:82:d6:c7:76:06:e0:2f:a8:fe:12:99:88:a4:5a:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C3:75:1A:4D:DD:BF:4E:57:6B:AD:B1:97:09:5F:3C:06:2F:E6:72
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A6D2976EF74811EEBB056151017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.52.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:ed:14:85:87:33:1e:ed:f9:df:b3:61:83:bc:50:46:22:30:
76:e0:38:62:22:95:f0:9b:0a:43:26:a0:14:f2:77:f1:8a:3b:
1f:23:6d:b5:94:5a:00:56:97:a3:cd:d2:2b:79:28:51:f0:8a:
b7:8e:e5:09:29:fb:2c:df:43:77:3f:c3:7c:f8:15:86:b3:08:
ed:03:07:0d:7f:9d:1f:a5:0c:8e:2d:25:16:66:f0:92:b5:e2:
e3:16:cf:8c:a6:1e:73:f2:30:10:01:a3:2a:9b:9c:cd:33:81:
94:d5:28:b5:d9:c3:09:91:c9:3e:47:87:42:6c:20:e0:08:e2:
64:e5:d8:5b:11:2b:24:43:6d:32:ff:87:75:e6:15:0f:9a:e6:
06:a3:80:e8:dd:a0:5e:49:ce:d0:6d:39:27:07:39:07:c0:d0:
ab:81:0a:ca:76:bf:30:fd:c8:63:24:8a:08:9d:80:58:2d:1b:
c7:74:4a:44:2e:78:d2:e1:39:4d:20:2d:35:e4:16:67:54:a7:
66:fa:b3:0a:4a:f3:85:a9:53:b6:b4:8d:f2:29:99:f3:bf:86:
fa:24:d5:2e:37:76:32:5c:e0:53:61:47:de:3a:58:ab:83:cd:
c1:fe:0a:89:5b:10:4f:58:0f:7a:cf:11:7e:bf:4c:90:9c:02:
b7:6f:48:53
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIITMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDEwMTQ0MzA3WhcNMjQxMDE3MTQ0MzA3WjAYMRYw
FAYDVQQDEw02NjE2YTU3ZS1lYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtFZnqLEAUaODyjhW2RO276orgzhWXcAx9V34P6vX5+p2Ntpjgdo2ciOr
Wrre21l8CzKiZDzqqi/0ik3fHA9+m3B8NJBePqhXZy1p2MIFxFwjQAD62P7AudKA
/rb6M3wyFnc33p5wYJo/QNcW+o5BSazozEbwpXlkqxHfwgv7CfvCj9J/aPN8HXIG
zcKPyTrmYruSpzzKK4ArRK+W3JDQbscgbvq/cBX5k0gpluTCytDka8xsNrV/SqaL
b6D/xEv1kaO7DlTvQNkjcn9VJvs9oDLmNvRc7kD4aPb9Z7pGn6rnCqTcCaeBTfRl
GhuYZy+qgtbHdgbgL6j+EpmIpFriaQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBrD
dRpN3b9OV2utsZcJXzwGL+ZyMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNkQyOTc2RUY3NDgxMUVFQkIwNTYxNTEwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcM0MA0GCSqGSIb3DQEBCwUA
A4IBAQCf7RSFhzMe7fnfs2GDvFBGIjB24DhiIpXwmwpDJqAU8nfxijsfI221lFoA
VpejzdIreShR8Iq3juUJKfss30N3P8N8+BWGswjtAwcNf50fpQyOLSUWZvCSteLj
Fs+Mph5z8jAQAaMqm5zNM4GU1Si12cMJkck+R4dCbCDgCOJk5dhbESskQ20y/4d1
5hUPmuYGo4Do3aBeSc7QbTknBzkHwNCrgQrKdr8w/chjJIoInYBYLRvHdEpELnjS
4TlNIC015BZnVKdm+rMKSvOFqVO2tI3yKZnzv4b6JNUuN3YyXOBTYUfeOlirg83B
/gqJWxBPWA96zxF+v0yQnAK3b0hT
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org