Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFF16536A73911EF9C9BF592762E951A.roa
File: AFF16536A73911EF9C9BF592762E951A.roa (raw, json)
Hash identifier: +WxSEAbXaArnT1OHfxMzrwioHCnRWR5JlOi2yyRgk1U=
Subject key identifier: 00:02:0A:50:51:B2:96:C5:2A:DC:FA:49:63:21:50:7E:B5:D8:97:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D609
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFF16536A73911EF9C9BF592762E951A.roa
Signing time: Wed 20 Nov 2024 12:19:28 +0000
ROA not before: Wed 20 Nov 2024 12:19:24 +0000
ROA not after: Fri 29 Nov 2024 12:19:24 +0000
asID: 142062
IP address blocks: 45.204.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54793 (0xd609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 12:19:24 2024 GMT
Not After : Nov 29 12:19:24 2024 GMT
Subject: CN=673dd3d0-fbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:f2:17:e0:06:86:5e:de:c7:96:cc:7c:b7:
dc:3a:95:c4:3b:e2:83:78:f5:10:c8:c4:28:b2:9e:
f2:39:fa:cd:78:19:0e:d8:65:16:61:91:c1:7a:85:
5d:0e:c7:89:b6:d7:0f:47:8d:63:33:55:86:2b:12:
54:f8:16:73:bc:cc:1b:df:20:e7:c5:ed:3a:f9:4e:
f7:79:22:3d:56:87:11:8b:e1:05:fa:af:d9:b8:a1:
c9:23:8a:de:6b:d1:f6:dd:a3:c2:41:40:c3:e7:0c:
ec:36:f5:9c:05:4f:09:9a:85:4e:db:f5:26:78:95:
39:e3:0e:fe:e1:3e:d5:3c:e3:34:69:54:77:82:c0:
0b:13:70:6d:e2:3e:61:de:ce:d8:ff:d2:ae:bd:37:
79:e4:58:6a:d4:9c:4e:95:a6:95:86:90:90:65:59:
9f:39:01:bb:66:16:f5:fa:a8:e1:cc:dd:74:b5:cd:
84:9a:2f:11:b3:9f:c7:0b:5e:3d:d1:6c:83:26:3d:
a5:d7:be:6b:6c:be:75:0d:85:1f:61:f1:fa:b7:e9:
a5:81:51:13:d0:c0:82:16:ae:da:32:d5:7f:86:30:
6e:5c:ea:f3:af:70:20:a7:b5:e7:3d:e2:98:8e:ac:
c8:36:6d:16:2b:8a:03:6a:c6:69:7d:3c:be:ca:29:
94:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:02:0A:50:51:B2:96:C5:2A:DC:FA:49:63:21:50:7E:B5:D8:97:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFF16536A73911EF9C9BF592762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.32.0/19
Signature Algorithm: sha256WithRSAEncryption
75:0d:cd:b1:8a:c2:fe:6b:a7:bc:a5:92:b4:d8:35:05:a0:76:
da:8c:9b:8e:09:1c:20:83:1e:6b:05:3d:87:7c:16:3b:54:a8:
43:b1:57:5c:a4:81:a9:c1:82:a0:41:14:dd:c3:58:9b:81:e8:
eb:3b:0a:2b:49:cb:ed:05:e4:42:bc:94:86:61:a7:85:35:a8:
cb:70:8e:42:ef:77:31:f5:c8:7d:ad:1a:15:3b:53:d2:e4:53:
bf:40:1b:2e:91:d3:fd:67:e1:25:cf:63:cb:bc:95:1c:73:a0:
d2:97:c0:a7:6c:73:b1:4f:70:53:ef:30:a9:52:92:d8:2f:cc:
4c:4c:cf:fd:28:4e:08:9e:0e:f9:07:8e:26:25:36:ee:9c:28:
52:b5:83:10:3c:c2:be:c5:79:39:57:70:47:b6:bd:8e:83:0a:
64:8a:04:d7:fb:27:5b:9a:32:d2:22:d5:1a:34:27:d7:28:16:
12:47:05:9f:33:f0:5c:d4:f4:ae:fb:0a:b0:c4:d3:de:54:31:
78:2d:04:70:82:ea:59:26:b7:10:ea:0c:ef:2b:11:e2:3f:9b:
9d:76:f6:99:50:fb:13:ee:dc:fd:7b:ec:61:1b:55:8e:13:09:
4a:d8:cf:69:17:09:68:e9:37:d9:35:04:db:17:2c:13:8f:4d:
40:d5:8e:8b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANYJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMTIxOTI0WhcNMjQxMTI5MTIxOTI0WjAYMRYw
FAYDVQQDEw02NzNkZDNkMC1mYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyXfyF+AGhl7ex5bMfLfcOpXEO+KDePUQyMQosp7yOfrNeBkO2GUWYZHB
eoVdDseJttcPR41jM1WGKxJU+BZzvMwb3yDnxe06+U73eSI9VocRi+EF+q/ZuKHJ
I4rea9H23aPCQUDD5wzsNvWcBU8JmoVO2/UmeJU54w7+4T7VPOM0aVR3gsALE3Bt
4j5h3s7Y/9KuvTd55Fhq1JxOlaaVhpCQZVmfOQG7Zhb1+qjhzN10tc2Emi8Rs5/H
C1490WyDJj2l175rbL51DYUfYfH6t+mlgVET0MCCFq7aMtV/hjBuXOrzr3Agp7Xn
PeKYjqzINm0WK4oDasZpfTy+yimU5wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAAC
ClBRspbFKtz6SWMhUH612Je2MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BRkYxNjUzNkE3MzkxMUVGOUM5QkY1OTI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFLcwgMA0GCSqGSIb3DQEBCwUA
A4IBAQB1Dc2xisL+a6e8pZK02DUFoHbajJuOCRwggx5rBT2HfBY7VKhDsVdcpIGp
wYKgQRTdw1ibgejrOworScvtBeRCvJSGYaeFNajLcI5C73cx9ch9rRoVO1PS5FO/
QBsukdP9Z+Elz2PLvJUcc6DSl8CnbHOxT3BT7zCpUpLYL8xMTM/9KE4Ing75B44m
JTbunChStYMQPMK+xXk5V3BHtr2OgwpkigTX+ydbmjLSItUaNCfXKBYSRwWfM/Bc
1PSu+wqwxNPeVDF4LQRwgupZJrcQ6gzvKxHiP5uddvaZUPsT7tz9e+xhG1WOEwlK
2M9pFwlo6TfZNQTbFywTj01A1Y6L
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:43 2024 by rpki-client on console-fra.rpki-client.org