Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7C9813E82C011EE8E170F444AD9E6FC.roa
File: A7C9813E82C011EE8E170F444AD9E6FC.roa (raw, json)
Hash identifier: Jjt85nTOjt+9Ut5KoeaAP9wk8lMast7LJ9iTbNsQxlM=
Subject key identifier: 15:D2:90:AA:6A:0C:F9:B1:E1:51:06:2D:AE:E6:D3:87:42:56:C3:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4920
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7C9813E82C011EE8E170F444AD9E6FC.roa
Signing time: Tue 14 Nov 2023 07:37:25 +0000
ROA not before: Tue 14 Nov 2023 07:37:22 +0000
ROA not after: Tue 12 Nov 2024 07:37:22 +0000
asID: 397630
IP address blocks: 45.199.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18720 (0x4920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 14 07:37:22 2023 GMT
Not After : Nov 12 07:37:22 2024 GMT
Subject: CN=655323b5-b019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e0:a9:9a:52:67:ab:20:7e:09:cc:3d:e5:09:
8e:da:a7:7a:fc:9f:48:e1:3c:c4:68:2d:6b:95:f8:
f6:da:36:61:3b:e2:59:34:a3:63:93:66:ba:fe:44:
48:a2:be:34:e0:b2:66:a0:82:20:d4:cc:be:3d:fb:
aa:fb:09:f1:c8:83:f9:0a:e8:ff:aa:51:2f:e2:98:
95:cc:ee:fd:90:46:b4:3a:da:bc:24:ce:b4:41:b3:
26:af:b3:d0:1d:10:b9:20:85:5e:d1:88:9f:de:8c:
5f:15:8e:7c:02:1a:5e:ce:c8:c0:26:86:1f:49:75:
0a:4d:4e:53:12:2f:66:4d:48:87:2e:a8:a4:6b:c1:
9a:04:1a:6c:a6:06:10:c2:1c:13:7d:a3:4e:33:4c:
83:9c:48:f8:82:15:2e:a9:9a:90:88:97:ad:c2:7b:
b2:6f:1b:a9:58:ea:ad:9c:2b:2e:3b:23:a3:fb:c1:
52:9d:c4:4d:1c:5e:37:10:f9:05:8c:d9:e9:e4:62:
ae:c6:b1:75:43:89:61:08:9d:9b:0d:c8:9c:0f:34:
07:e5:67:f3:5b:24:ba:d6:1b:7e:1e:00:7e:59:d1:
0b:08:ef:a9:1a:8d:a3:6c:60:5d:1d:4e:17:f3:c8:
1f:2b:8c:b1:44:8d:e8:70:cb:ab:6f:26:44:6b:0a:
01:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D2:90:AA:6A:0C:F9:B1:E1:51:06:2D:AE:E6:D3:87:42:56:C3:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A7C9813E82C011EE8E170F444AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.142.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:1e:43:45:0c:fe:a4:59:7d:cd:cb:7a:c3:e3:ca:04:86:be:
61:7d:45:ed:86:08:12:91:dc:e1:a6:bd:66:54:fd:0e:f8:55:
2d:52:d7:d6:da:ee:0b:99:3a:d7:67:e5:a6:13:b4:fd:b4:77:
df:24:f1:7c:66:69:d7:8f:c3:fb:de:b9:aa:f3:f5:ba:0b:aa:
7f:22:f2:88:a7:9e:50:6f:b6:71:78:a7:64:4e:b3:fc:a1:e6:
6b:01:54:10:61:90:06:ac:73:2d:36:1c:57:67:35:90:72:36:
ee:91:98:dd:cd:dd:eb:d8:1f:04:ba:40:ae:a9:a4:4b:40:f5:
11:90:8e:3a:de:1e:6f:a7:43:67:da:6d:33:a5:46:f5:1e:b9:
65:fa:82:ee:bd:68:b2:88:0a:73:f5:bc:fb:c6:cf:4f:49:bb:
4e:24:5f:b2:b8:5e:98:01:e9:a8:33:1a:2b:1e:6a:07:2e:de:
94:92:1c:5e:e3:61:14:c3:16:25:e5:57:11:5a:89:28:cf:7f:
21:6a:81:27:e7:ff:9d:26:7c:ad:e9:56:13:db:16:d1:c3:9f:
17:a4:90:0c:7f:4f:99:fe:60:7c:7e:ce:1e:b4:1b:d8:dc:52:
83:0d:8a:e9:d8:07:90:73:1e:19:e5:3c:d4:7e:d8:26:1e:cc:
87:e3:da:c9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSSAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTQwNzM3MjJaFw0yNDExMTIwNzM3MjJaMBgxFjAU
BgNVBAMTDTY1NTMyM2I1LWIwMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCb4KmaUmerIH4JzD3lCY7ap3r8n0jhPMRoLWuV+PbaNmE74lk0o2OTZrr+
REiivjTgsmaggiDUzL49+6r7CfHIg/kK6P+qUS/imJXM7v2QRrQ62rwkzrRBsyav
s9AdELkghV7RiJ/ejF8VjnwCGl7OyMAmhh9JdQpNTlMSL2ZNSIcuqKRrwZoEGmym
BhDCHBN9o04zTIOcSPiCFS6pmpCIl63Ce7JvG6lY6q2cKy47I6P7wVKdxE0cXjcQ
+QWM2enkYq7GsXVDiWEInZsNyJwPNAflZ/NbJLrWG34eAH5Z0QsI76kajaNsYF0d
ThfzyB8rjLFEjehwy6tvJkRrCgGZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUFdKQ
qmoM+bHhUQYtrubTh0JWwwYwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0E3Qzk4MTNFODJDMDExRUU4RTE3MEY0NDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtx44wDQYJKoZIhvcNAQELBQAD
ggEBAEweQ0UM/qRZfc3LesPjygSGvmF9Re2GCBKR3OGmvWZU/Q74VS1S19ba7guZ
Otdn5aYTtP20d98k8XxmadePw/veuarz9boLqn8i8oinnlBvtnF4p2ROs/yh5msB
VBBhkAascy02HFdnNZByNu6RmN3N3evYHwS6QK6ppEtA9RGQjjreHm+nQ2fabTOl
RvUeuWX6gu69aLKICnP1vPvGz09Ju04kX7K4XpgB6agzGiseagcu3pSSHF7jYRTD
FiXlVxFaiSjPfyFqgSfn/50mfK3pVhPbFtHDnxekkAx/T5n+YHx+zh60G9jcUoMN
iunYB5BzHhnlPNR+2CYezIfj2sk=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org