Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2C66F608F111EEAF36A71C4AD9E6FC.roa
File: AA2C66F608F111EEAF36A71C4AD9E6FC.roa (raw, json)
Hash identifier: pJwDk9sukkwsWusmF+rM1AT9b1IiAVwifsunYMHD0+U=
Subject key identifier: C0:61:C3:54:AC:B2:D3:A3:A9:A4:54:31:DE:67:E5:E7:C2:F2:D3:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AE3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2C66F608F111EEAF36A71C4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:20:53 +0000
ROA not before: Mon 12 Jun 2023 07:20:49 +0000
ROA not after: Sat 25 May 2024 07:20:49 +0000
asID: 131178
IP address blocks: 45.201.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10979 (0x2ae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:20:49 2023 GMT
Not After : May 25 07:20:49 2024 GMT
Subject: CN=6486c755-7302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c0:c5:3d:92:79:35:8f:9c:8f:29:8c:dc:cd:
88:fe:9a:05:70:9b:60:d9:f5:4d:00:3f:98:9f:36:
dc:ad:6c:4a:8b:25:36:eb:ff:a6:59:eb:59:4a:9c:
9e:42:43:10:e9:c0:81:d3:cc:b5:2a:e1:ac:3a:6c:
5f:2a:97:dd:88:06:41:ed:c9:f9:47:75:4a:88:7f:
10:3a:04:fc:73:97:fc:8c:f2:5a:c3:bb:8d:a5:04:
c7:58:6c:84:99:6e:8e:71:72:24:66:5c:86:ae:a9:
20:59:03:c7:52:f3:59:51:0e:1d:9e:70:99:0b:a4:
2a:09:c0:0c:b0:07:d9:26:f1:ac:27:80:f9:75:81:
53:56:6c:e8:e1:ab:67:f1:b3:98:d9:98:29:b0:09:
06:b9:bd:18:18:d2:32:6a:b9:ae:38:5e:82:38:44:
23:c3:1a:e7:c6:03:d0:7b:2f:7b:33:bf:d9:f7:ba:
c7:16:76:ff:98:5e:82:f7:88:6c:d0:8e:3e:ab:f0:
bb:d7:e1:f1:e5:ab:03:40:73:7d:03:7e:c2:c3:4b:
a2:4f:f5:a3:81:d5:37:c0:e5:a0:29:bb:3b:ce:00:
58:03:cc:f4:58:7d:8e:c7:d2:03:17:04:8e:e2:cb:
f3:59:4d:6a:00:bc:22:e7:6e:73:3b:de:42:c5:23:
84:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:C3:54:AC:B2:D3:A3:A9:A4:54:31:DE:67:E5:E7:C2:F2:D3:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2C66F608F111EEAF36A71C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.152.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:99:d5:4a:6f:0a:8b:c3:09:0a:11:a7:6f:0a:84:d2:f0:f5:
1c:2d:83:e8:cf:31:bb:3b:2b:f1:8c:cb:b7:14:18:34:11:0b:
74:64:21:3e:d0:b8:f3:4d:a4:40:7b:f8:8f:2c:05:22:66:e7:
82:9b:d1:93:a5:4a:4e:39:f9:26:f0:63:49:43:0b:30:b1:c7:
7d:87:99:82:bb:ca:31:d1:68:a3:de:04:d9:63:1c:0d:1e:e6:
26:e5:73:ed:67:a6:e2:43:36:e2:02:05:93:7b:41:f8:b2:b6:
d0:33:d0:0a:7f:e6:8f:fa:4c:03:be:d5:c0:86:fc:93:96:1e:
b9:44:ad:c8:8a:01:c9:15:43:82:63:0a:4d:21:89:45:c0:4b:
ff:52:b4:ab:a2:8f:55:fa:8a:60:fd:2c:42:27:a8:5c:38:40:
42:b1:14:d4:4b:e8:86:5d:a8:be:66:3a:b5:04:80:c4:20:0c:
52:52:e8:82:3d:7a:f2:7c:a6:79:12:9d:e8:c0:cb:a8:93:dc:
b0:8b:53:4e:99:67:ba:81:bc:69:7e:4c:f3:f3:39:c7:bf:d6:
44:4e:05:65:b0:84:20:4f:2d:67:a7:4b:13:a9:a2:5b:4a:53:
c1:92:3d:85:a7:ee:22:51:1b:d2:85:6f:54:ba:24:5b:ac:4a:
6d:99:19:46
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKuMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNzIwNDlaFw0yNDA1MjUwNzIwNDlaMBgxFjAU
BgNVBAMTDTY0ODZjNzU1LTczMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDwwMU9knk1j5yPKYzczYj+mgVwm2DZ9U0AP5ifNtytbEqLJTbr/6ZZ61lK
nJ5CQxDpwIHTzLUq4aw6bF8ql92IBkHtyflHdUqIfxA6BPxzl/yM8lrDu42lBMdY
bISZbo5xciRmXIauqSBZA8dS81lRDh2ecJkLpCoJwAywB9km8awngPl1gVNWbOjh
q2fxs5jZmCmwCQa5vRgY0jJqua44XoI4RCPDGufGA9B7L3szv9n3uscWdv+YXoL3
iGzQjj6r8LvX4fHlqwNAc30DfsLDS6JP9aOB1TfA5aApuzvOAFgDzPRYfY7H0gMX
BI7iy/NZTWoAvCLnbnM73kLFI4TpAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUwGHD
VKyy06OppFQx3mfl58Ly04cwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0FBMkM2NkY2MDhGMTExRUVBRjM2QTcxQzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyZgwDQYJKoZIhvcNAQELBQAD
ggEBAE2Z1UpvCovDCQoRp28KhNLw9Rwtg+jPMbs7K/GMy7cUGDQRC3RkIT7QuPNN
pEB7+I8sBSJm54Kb0ZOlSk45+SbwY0lDCzCxx32HmYK7yjHRaKPeBNljHA0e5ibl
c+1npuJDNuICBZN7QfiyttAz0Ap/5o/6TAO+1cCG/JOWHrlErciKAckVQ4JjCk0h
iUXAS/9StKuij1X6imD9LEInqFw4QEKxFNRL6IZdqL5mOrUEgMQgDFJS6II9evJ8
pnkSnejAy6iT3LCLU06ZZ7qBvGl+TPPzOce/1kROBWWwhCBPLWenSxOpoltKU8GS
PYWn7iJRG9KFb1S6JFusSm2ZGUY=
-----END CERTIFICATE-----
Generated at Thu May 2 04:04:20 2024 by rpki-client on console-fra.rpki-client.org