Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABECCB9A70D111EF97D33556762E951A.roa
File: ABECCB9A70D111EF97D33556762E951A.roa (raw, json)
Hash identifier: eelxdLKto/qwrztjPSyNHZXjZBNea9J6CTxTqX/gC3s=
Subject key identifier: 01:C2:CB:56:B1:0B:98:CC:68:F9:5B:7C:17:1A:87:EB:51:8B:0B:77
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B4D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABECCB9A70D111EF97D33556762E951A.roa
Signing time: Thu 12 Sep 2024 06:38:51 +0000
ROA not before: Thu 12 Sep 2024 06:38:47 +0000
ROA not after: Tue 13 May 2025 06:38:47 +0000
asID: 133448
IP address blocks: 45.204.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46293 (0xb4d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 12 06:38:47 2024 GMT
Not After : May 13 06:38:47 2025 GMT
Subject: CN=66e28c7b-a9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f7:f6:c4:c7:d6:a5:b0:b7:0d:3c:59:ae:b0:
48:aa:41:2f:72:38:5a:d5:bf:38:55:a0:f1:cb:41:
7d:7c:44:48:5e:89:96:23:93:0f:9e:fc:8a:a6:64:
16:ba:2e:ec:15:77:8b:06:13:9f:83:51:62:0c:fa:
4c:0f:06:7c:63:8f:f9:2f:66:3f:b3:b8:b9:a8:95:
68:f6:c4:24:3a:55:cf:0a:83:97:78:a9:cb:fe:c9:
cc:02:e4:c5:14:43:f5:ba:aa:98:e0:0a:16:a0:f3:
6a:83:4c:b9:22:4e:02:fe:fa:92:b4:45:73:e9:4a:
fa:c7:5c:2d:f2:d2:97:48:6a:90:ab:2a:ad:cc:a2:
ab:68:a3:da:d0:03:db:58:1f:95:ad:1c:74:90:06:
81:ef:ca:99:20:20:57:ff:65:2a:e3:fc:97:aa:90:
32:89:63:75:d4:ed:63:02:e7:a8:16:ce:e2:15:a2:
da:d9:2e:8e:38:a0:6d:41:e3:be:67:c8:ca:59:5d:
e3:12:42:d1:17:89:8e:97:35:7d:31:a1:e8:0d:19:
95:02:70:19:4d:3b:a7:2f:2a:ab:5d:59:aa:3c:53:
68:3a:11:8d:63:60:d4:53:b5:ae:7e:82:55:ff:71:
3a:6d:72:3b:e3:f6:8f:b7:24:42:c5:bc:a9:13:25:
be:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C2:CB:56:B1:0B:98:CC:68:F9:5B:7C:17:1A:87:EB:51:8B:0B:77
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABECCB9A70D111EF97D33556762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.22.0/24
Signature Algorithm: sha256WithRSAEncryption
83:5c:5a:41:5e:58:e5:cd:9f:07:18:0f:dd:1d:d1:46:8a:58:
e9:b5:f0:58:da:57:2e:51:b3:a2:0e:bb:dd:cb:84:6e:55:c6:
1a:c2:ce:a7:7a:71:92:14:8b:c6:0f:b4:3f:db:e1:da:4f:39:
40:be:ea:75:3e:e8:c0:a9:28:74:88:0c:38:11:39:40:1c:ed:
00:a5:36:5d:a6:7a:58:ab:8d:4d:d1:19:00:e1:8e:18:27:1e:
6b:81:ff:e2:62:88:91:47:1b:87:dd:74:4f:c4:b6:a5:5a:48:
6d:fc:08:0f:49:0b:0c:bb:50:22:f9:e6:f1:16:e5:2c:2f:32:
2c:97:66:2d:f3:3f:f8:58:53:2b:08:3c:07:af:7c:43:3e:d9:
30:45:ad:df:fa:a5:52:a0:85:c6:42:b7:4b:6e:22:fe:4f:05:
43:87:aa:78:5b:24:b1:8a:68:6a:67:84:90:62:eb:fd:16:6e:
7f:5d:c7:0a:08:30:16:85:5f:50:b3:64:7a:da:d1:01:ad:54:
4b:64:9e:ae:ad:04:a9:a0:87:cd:62:09:56:84:b0:eb:a0:42:
4c:fa:8e:ca:1e:65:f7:27:c4:5a:cf:e8:60:5b:f9:48:0a:c1:
50:ae:e5:78:d5:22:d7:c4:f6:fc:9c:de:36:b0:0f:7c:3c:69:
4f:76:71:16
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALTVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTEyMDYzODQ3WhcNMjUwNTEzMDYzODQ3WjAYMRYw
FAYDVQQDEw02NmUyOGM3Yi1hOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoff2xMfWpbC3DTxZrrBIqkEvcjha1b84VaDxy0F9fERIXomWI5MPnvyK
pmQWui7sFXeLBhOfg1FiDPpMDwZ8Y4/5L2Y/s7i5qJVo9sQkOlXPCoOXeKnL/snM
AuTFFEP1uqqY4AoWoPNqg0y5Ik4C/vqStEVz6Ur6x1wt8tKXSGqQqyqtzKKraKPa
0APbWB+VrRx0kAaB78qZICBX/2Uq4/yXqpAyiWN11O1jAueoFs7iFaLa2S6OOKBt
QeO+Z8jKWV3jEkLRF4mOlzV9MaHoDRmVAnAZTTunLyqrXVmqPFNoOhGNY2DUU7Wu
foJV/3E6bXI74/aPtyRCxbypEyW+3wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAHC
y1axC5jMaPlbfBcah+tRiwt3MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BQkVDQ0I5QTcwRDExMUVGOTdEMzM1NTY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcwWMA0GCSqGSIb3DQEBCwUA
A4IBAQCDXFpBXljlzZ8HGA/dHdFGiljptfBY2lcuUbOiDrvdy4RuVcYaws6nenGS
FIvGD7Q/2+HaTzlAvup1PujAqSh0iAw4ETlAHO0ApTZdpnpYq41N0RkA4Y4YJx5r
gf/iYoiRRxuH3XRPxLalWkht/AgPSQsMu1Ai+ebxFuUsLzIsl2Yt8z/4WFMrCDwH
r3xDPtkwRa3f+qVSoIXGQrdLbiL+TwVDh6p4WySximhqZ4SQYuv9Fm5/XccKCDAW
hV9Qs2R62tEBrVRLZJ6urQSpoIfNYglWhLDroEJM+o7KHmX3J8Raz+hgW/lICsFQ
ruV41SLXxPb8nN42sA98PGlPdnEW
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:43 2024 by rpki-client on console-fra.rpki-client.org