Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD25D32E33A311EE93C39C724AD9E6FC.roa
File: AD25D32E33A311EE93C39C724AD9E6FC.roa (raw, json)
Hash identifier: kfwqfc3NyZLxVN8XYKjJOzwzRjTMff75agM+CMsI7UI=
Subject key identifier: C9:B1:34:17:C7:C2:2F:6E:D6:1D:0C:9F:A5:73:8E:3A:0D:BD:20:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 335D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD25D32E33A311EE93C39C724AD9E6FC.roa
Signing time: Sat 05 Aug 2023 15:20:58 +0000
ROA not before: Sat 05 Aug 2023 15:20:54 +0000
ROA not after: Fri 24 May 2024 15:20:54 +0000
asID: 38901
IP address blocks: 45.201.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13149 (0x335d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 5 15:20:54 2023 GMT
Not After : May 24 15:20:54 2024 GMT
Subject: CN=64ce68d9-1320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:56:40:72:d9:64:38:d3:7b:08:39:9c:4f:
ac:3e:b5:13:1e:28:c4:d1:fa:d5:7f:ab:a6:39:94:
b2:aa:73:62:47:6f:db:ad:c9:b2:b1:64:3e:3d:c6:
25:b6:49:81:be:e4:5d:83:dd:b0:29:7d:5a:e8:56:
45:7d:3b:a3:02:59:fb:b2:94:da:4d:b8:0a:20:7b:
32:3b:45:26:25:b7:f4:29:e1:80:be:3f:6f:9f:9d:
23:0b:de:ba:58:ae:e5:60:37:ca:e3:14:3c:de:d4:
25:11:57:5a:a8:73:06:77:1b:d9:84:24:e1:5b:47:
09:a5:09:44:7a:05:4f:c8:54:9c:af:cc:42:14:ee:
22:ac:80:13:b4:bc:cc:01:d6:86:a7:87:36:4e:f4:
22:ff:be:c9:c0:fd:77:3b:9b:c8:f0:3f:30:31:dc:
01:47:cf:83:2d:9a:38:a6:d7:4e:9a:dc:69:6c:59:
57:fd:65:7e:33:00:8e:be:ab:37:ec:64:15:6f:bc:
d7:3e:d1:64:9c:7b:6d:17:16:5b:c9:02:fd:fe:4e:
cd:a4:bd:ca:31:b5:9f:ff:89:63:d8:45:78:31:dd:
97:2b:38:87:e9:6c:f4:ba:3e:a4:f0:0a:ae:be:25:
4d:ae:a7:a5:ec:45:32:56:46:15:44:a1:cf:ea:1a:
5e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B1:34:17:C7:C2:2F:6E:D6:1D:0C:9F:A5:73:8E:3A:0D:BD:20:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AD25D32E33A311EE93C39C724AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.211.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b0:5a:77:bd:a5:de:eb:4d:18:43:a5:a3:03:70:ce:4d:d2:
0b:d8:39:03:58:84:a6:02:0c:8f:fb:1b:21:96:fb:4a:7f:13:
56:ee:ac:33:c5:a8:a6:73:42:f3:d0:35:28:10:8b:87:1f:d2:
a5:61:4b:79:29:16:01:f0:59:a2:96:0b:01:bc:cb:3a:48:9f:
46:7b:db:5e:f8:ac:f8:ef:a2:3c:c2:08:cc:3d:aa:c7:40:95:
48:cb:6a:21:9d:88:01:5b:72:26:df:17:9d:c4:87:29:74:7a:
6b:6e:81:b0:d7:fc:13:ea:7b:06:19:d0:4d:a1:96:3e:69:1a:
7e:a2:77:37:8a:49:bc:e9:a7:a4:7c:a1:15:a3:9b:05:41:af:
ea:26:51:97:65:0c:3a:be:d9:dd:15:f2:2f:6c:9f:87:55:6e:
c8:de:83:c2:d2:a4:bb:8b:7b:d0:3d:c1:11:12:b1:95:df:cd:
48:c7:01:2e:58:ea:78:a7:8e:88:6c:c5:6c:c0:02:e3:0b:57:
e1:3d:c5:ff:82:18:76:2d:72:51:e2:fa:87:b9:9a:5d:4d:7a:
77:c5:ca:7d:d5:00:f9:ec:4c:e5:4d:b6:ce:fa:ae:cd:9a:d6:
1a:ee:b6:e7:99:95:5f:af:27:eb:26:26:08:64:24:78:16:ce:
9b:a7:41:cb
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICM10wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MDUxNTIwNTRaFw0yNDA1MjQxNTIwNTRaMBgxFjAU
BgNVBAMTDTY0Y2U2OGQ5LTEzMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKvFZActlkONN7CDmcT6w+tRMeKMTR+tV/q6Y5lLKqc2JHb9utybKxZD49
xiW2SYG+5F2D3bApfVroVkV9O6MCWfuylNpNuAogezI7RSYlt/Qp4YC+P2+fnSML
3rpYruVgN8rjFDze1CURV1qocwZ3G9mEJOFbRwmlCUR6BU/IVJyvzEIU7iKsgBO0
vMwB1oanhzZO9CL/vsnA/Xc7m8jwPzAx3AFHz4Mtmjim106a3GlsWVf9ZX4zAI6+
qzfsZBVvvNc+0WSce20XFlvJAv3+Ts2kvcoxtZ//iWPYRXgx3ZcrOIfpbPS6PqTw
Cq6+JU2up6XsRTJWRhVEoc/qGl4XAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUybE0
F8fCL27WHQyfpXOOOg29IEMwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0FEMjVEMzJFMzNBMzExRUU5M0MzOUM3MjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtydMwDQYJKoZIhvcNAQELBQAD
ggEBACKwWne9pd7rTRhDpaMDcM5N0gvYOQNYhKYCDI/7GyGW+0p/E1burDPFqKZz
QvPQNSgQi4cf0qVhS3kpFgHwWaKWCwG8yzpIn0Z72174rPjvojzCCMw9qsdAlUjL
aiGdiAFbcibfF53Ehyl0emtugbDX/BPqewYZ0E2hlj5pGn6idzeKSbzpp6R8oRWj
mwVBr+omUZdlDDq+2d0V8i9sn4dVbsjeg8LSpLuLe9A9wRESsZXfzUjHAS5Y6nin
johsxWzAAuMLV+E9xf+CGHYtclHi+oe5ml1NenfFyn3VAPnsTOVNts76rs2a1hru
tueZlV+vJ+smJghkJHgWzpunQcs=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:14 2024 by rpki-client on console-fra.rpki-client.org