Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4835E205B9D11EFA86D3C5D762E951A.roa
File: B4835E205B9D11EFA86D3C5D762E951A.roa (raw, json)
Hash identifier: nzH+zbdlDQrW0tft/vwoHS0K8vcSg6jSH9KIxL2m0Mw=
Subject key identifier: 44:C5:F0:4A:24:03:BD:27:A1:05:43:50:BD:14:CA:00:BC:AE:16:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A7C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4835E205B9D11EFA86D3C5D762E951A.roa
Signing time: Fri 16 Aug 2024 07:03:57 +0000
ROA not before: Fri 16 Aug 2024 07:03:53 +0000
ROA not after: Thu 21 Aug 2025 07:03:53 +0000
asID: 138995
IP address blocks: 45.207.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42948 (0xa7c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 16 07:03:53 2024 GMT
Not After : Aug 21 07:03:53 2025 GMT
Subject: CN=66bef9dd-5fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:8a:ce:7f:e1:0d:e2:cb:71:ad:3d:bd:65:
eb:9f:77:9e:f8:42:b3:d6:a7:9f:7a:bb:0f:2d:ff:
46:f0:74:85:7c:2b:24:e5:d2:64:45:b5:bc:ee:da:
31:d1:bd:e4:42:2a:e0:3e:12:7a:e4:a6:fc:eb:88:
5b:fc:db:ad:68:5e:b3:3d:ae:57:65:63:08:8e:fa:
4e:e6:00:8e:0b:83:55:18:f3:76:6c:35:ce:18:8d:
ff:ed:82:7c:36:89:02:49:f5:f6:f8:38:b6:ef:89:
2c:76:f8:77:b8:49:30:c0:04:6f:5b:4d:51:87:c8:
60:27:cf:ed:8d:5d:fa:cf:0d:df:42:94:91:f8:b0:
02:43:66:20:43:16:68:de:d8:5e:4b:ea:8c:ff:76:
53:ad:ca:da:ea:0b:0f:e2:ec:14:80:be:5c:b3:16:
6d:93:f1:cf:75:4b:5b:4c:d9:78:82:43:eb:1d:15:
da:5a:2b:b8:cb:b7:ad:af:90:dd:77:9a:7d:0c:9e:
b5:5e:3a:9c:76:38:2b:7a:0b:83:d4:4a:44:7f:f1:
8b:7b:a6:32:95:33:eb:66:31:3a:ab:4f:92:82:dd:
9c:d8:f2:03:0b:24:e4:86:12:6c:52:62:65:a2:4b:
3f:f9:82:63:ac:23:fb:d0:9f:7c:05:80:c4:7d:27:
8c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C5:F0:4A:24:03:BD:27:A1:05:43:50:BD:14:CA:00:BC:AE:16:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4835E205B9D11EFA86D3C5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:14:06:e7:cb:d9:22:66:2f:a8:76:88:b5:98:be:ce:bc:dc:
0c:0a:39:05:ab:a0:e5:af:5d:a4:0d:42:a4:14:f7:51:2d:e0:
d1:a1:4d:e8:e6:40:d0:92:92:47:ec:0c:1d:0e:00:74:85:fd:
68:c3:8c:9b:1c:31:1d:80:bf:dd:93:2a:ac:9f:8f:9b:3b:f7:
b9:17:b5:c0:6d:a3:12:96:34:92:43:b7:9f:d3:4f:67:ba:9b:
9e:e7:c1:82:93:0b:64:57:72:29:00:57:08:3f:9c:59:68:1b:
7f:28:59:2b:96:b1:72:db:f1:97:58:b0:ee:9e:e5:43:68:32:
a0:fb:62:16:c0:43:c7:88:17:4c:3e:37:90:6b:70:50:97:26:
d3:e6:ba:01:41:4d:8b:57:90:65:09:89:b1:a8:b8:e5:ae:3a:
2d:bf:28:c6:5a:1d:9c:b5:12:4a:b7:fa:64:13:94:62:ad:9b:
33:4c:d5:15:8c:95:26:a9:fd:08:ed:37:79:35:c0:93:01:ff:
50:85:05:82:26:e2:61:cd:a3:35:5e:18:77:6b:c2:21:be:7c:
d3:fb:b2:10:3e:05:64:38:76:cc:ef:a8:3b:29:b7:3b:f1:ef:
c7:5a:88:e8:44:21:2b:d6:e6:6e:13:9c:23:e5:db:ed:b5:e5:
e0:a7:7b:b9
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAKfEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwODE2MDcwMzUzWhcNMjUwODIxMDcwMzUzWjAYMRYw
FAYDVQQDEw02NmJlZjlkZC01ZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy7mKzn/hDeLLca09vWXrn3ee+EKz1qefersPLf9G8HSFfCsk5dJkRbW8
7tox0b3kQirgPhJ65Kb864hb/NutaF6zPa5XZWMIjvpO5gCOC4NVGPN2bDXOGI3/
7YJ8NokCSfX2+Di274ksdvh3uEkwwARvW01Rh8hgJ8/tjV36zw3fQpSR+LACQ2Yg
QxZo3theS+qM/3ZTrcra6gsP4uwUgL5csxZtk/HPdUtbTNl4gkPrHRXaWiu4y7et
r5Ddd5p9DJ61XjqcdjgreguD1EpEf/GLe6YylTPrZjE6q0+Sgt2c2PIDCyTkhhJs
UmJloks/+YJjrCP70J98BYDEfSeMfQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFETF
8EokA70noQVDUL0UygC8rhbWMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CNDgzNUUyMDVCOUQxMUVGQTg2RDNDNUQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8EMA0GCSqGSIb3DQEBCwUA
A4IBAQBdFAbny9kiZi+odoi1mL7OvNwMCjkFq6Dlr12kDUKkFPdRLeDRoU3o5kDQ
kpJH7AwdDgB0hf1ow4ybHDEdgL/dkyqsn4+bO/e5F7XAbaMSljSSQ7ef009nupue
58GCkwtkV3IpAFcIP5xZaBt/KFkrlrFy2/GXWLDunuVDaDKg+2IWwEPHiBdMPjeQ
a3BQlybT5roBQU2LV5BlCYmxqLjlrjotvyjGWh2ctRJKt/pkE5RirZszTNUVjJUm
qf0I7Td5NcCTAf9QhQWCJuJhzaM1Xhh3a8IhvnzT+7IQPgVkOHbM76g7Kbc78e/H
WojoRCEr1uZuE5wj5dvtteXgp3u5
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:44 2024 by rpki-client on console-fra.rpki-client.org