Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B345CC62C16711EEA5C990BD775412E6.roa
File: B345CC62C16711EEA5C990BD775412E6.roa (raw, json)
Hash identifier: s57SCcpmhr+h06soD6DhqKuDxQFLOYx1l3bvUUEiTtE=
Subject key identifier: AA:5D:91:2E:EE:60:3B:21:26:84:8E:EA:AA:33:BA:72:41:27:F2:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 6C51
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B345CC62C16711EEA5C990BD775412E6.roa
Signing time: Fri 02 Feb 2024 01:09:23 +0000
ROA not before: Fri 02 Feb 2024 01:09:20 +0000
ROA not after: Thu 08 Aug 2024 01:09:20 +0000
asID: 133199
IP address blocks: 45.207.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27729 (0x6c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 2 01:09:20 2024 GMT
Not After : Aug 8 01:09:20 2024 GMT
Subject: CN=65bc40c3-4641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0e:c6:59:c6:47:b5:fb:73:65:c3:8c:6f:19:
b5:64:d2:2f:3e:2b:73:bd:37:a2:c3:f9:2c:d3:b6:
c9:cd:ae:5c:c6:52:98:01:ab:11:b6:e6:02:ef:b3:
db:b3:73:72:0f:5d:fe:71:b2:77:76:b2:f1:f6:f3:
17:3e:fd:e0:5c:ea:4c:0d:ce:12:52:a5:94:ef:5f:
c4:63:17:22:a1:d4:99:97:5f:8f:62:ab:43:b4:64:
71:da:1a:f0:69:0d:81:7e:f5:17:5d:6e:64:6a:c1:
9a:39:68:e4:d9:20:47:e5:69:18:96:6f:cc:29:15:
db:b5:42:50:7b:32:84:f8:5f:11:87:21:c9:07:a5:
8f:6a:2e:4a:58:99:87:81:b4:08:3f:fe:30:90:95:
a2:fe:4b:85:33:27:f9:59:59:4b:3b:e7:9f:30:9c:
36:cc:f4:33:2c:cb:bc:eb:26:41:e9:0c:02:fb:99:
da:de:1f:8d:79:90:ba:45:a3:b1:ec:7c:0c:28:a3:
f3:59:ae:f8:5d:b8:f6:5a:53:2a:38:1f:e8:79:6f:
dd:72:d6:25:1f:25:b9:12:c0:fa:02:c5:4d:64:b1:
36:37:79:43:42:e5:97:8c:a1:52:7e:d6:df:ba:32:
62:16:f5:d2:6c:38:db:f1:b5:cc:0f:79:d9:3e:3b:
f2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5D:91:2E:EE:60:3B:21:26:84:8E:EA:AA:33:BA:72:41:27:F2:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B345CC62C16711EEA5C990BD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.39.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b7:b3:0e:e0:0a:46:57:61:1d:18:81:0a:76:d5:61:2b:fb:
8d:33:97:ef:9d:ab:02:56:21:65:99:53:6a:e9:f1:66:43:18:
1a:e1:ba:5c:cf:60:36:35:b7:08:33:4f:06:6c:b5:3a:52:dd:
2d:65:34:67:5e:07:82:8a:c4:cb:69:f7:35:17:87:18:18:1c:
99:07:3c:f4:ac:6d:05:4d:21:54:3a:c4:a9:29:8a:ce:c0:9b:
cc:2e:b5:96:20:55:93:39:57:da:01:74:33:2b:1e:22:1e:fc:
11:d3:f3:00:b2:ca:f7:69:e3:07:f9:ec:0d:9d:0c:25:6d:c9:
ae:87:c7:be:f1:35:3c:cc:f8:f3:c1:e9:2a:fc:ed:db:8f:4e:
b9:01:65:05:73:07:e5:ba:bf:0f:0e:19:8a:0f:e7:67:24:0e:
9b:fe:eb:4b:3d:c9:cd:37:fe:38:bb:bb:f3:42:44:9f:08:04:
6d:4c:d2:ba:2f:64:01:10:5d:22:37:ae:b4:a8:b2:9f:f5:f8:
89:88:17:68:4f:b4:cc:a1:4c:ad:17:c3:5c:61:26:fb:47:b2:
4c:e8:7c:51:13:a4:e2:db:fc:b5:ab:ad:15:27:9d:a2:8b:8a:
06:21:2b:21:ec:27:03:42:90:5e:56:25:52:db:3d:16:7d:1e:
2a:9f:fd:9f
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICbFEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDIwMTA5MjBaFw0yNDA4MDgwMTA5MjBaMBgxFjAU
BgNVBAMTDTY1YmM0MGMzLTQ2NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCmDsZZxke1+3Nlw4xvGbVk0i8+K3O9N6LD+SzTtsnNrlzGUpgBqxG25gLv
s9uzc3IPXf5xsnd2svH28xc+/eBc6kwNzhJSpZTvX8RjFyKh1JmXX49iq0O0ZHHa
GvBpDYF+9RddbmRqwZo5aOTZIEflaRiWb8wpFdu1QlB7MoT4XxGHIckHpY9qLkpY
mYeBtAg//jCQlaL+S4UzJ/lZWUs7558wnDbM9DMsy7zrJkHpDAL7mdreH415kLpF
o7HsfAwoo/NZrvhduPZaUyo4H+h5b91y1iUfJbkSwPoCxU1ksTY3eUNC5ZeMoVJ+
1t+6MmIW9dJsONvxtcwPedk+O/KRAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUql2R
Lu5gOyEmhI7qqjO6ckEn8nowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0IzNDVDQzYyQzE2NzExRUVBNUM5OTBCRDc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzycwDQYJKoZIhvcNAQELBQAD
ggEBAFq3sw7gCkZXYR0YgQp21WEr+40zl++dqwJWIWWZU2rp8WZDGBrhulzPYDY1
twgzTwZstTpS3S1lNGdeB4KKxMtp9zUXhxgYHJkHPPSsbQVNIVQ6xKkpis7Am8wu
tZYgVZM5V9oBdDMrHiIe/BHT8wCyyvdp4wf57A2dDCVtya6Hx77xNTzM+PPB6Sr8
7duPTrkBZQVzB+W6vw8OGYoP52ckDpv+60s9yc03/ji7u/NCRJ8IBG1M0rovZAEQ
XSI3rrSosp/1+ImIF2hPtMyhTK0Xw1xhJvtHskzofFETpOLb/LWrrRUnnaKLigYh
KyHsJwNCkF5WJVLbPRZ9Hiqf/Z8=
-----END CERTIFICATE-----
Generated at Tue May 7 01:58:06 2024 by rpki-client on console-fra.rpki-client.org