Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D25BE8719B11EF84767048762E951A.roa
File: B8D25BE8719B11EF84767048762E951A.roa (raw, json)
Hash identifier: vcQA0pb5VCjdBisd/q/3L7/7jd5xMk5/tNwonWz7u9I=
Subject key identifier: C0:2E:86:C4:B0:A3:F0:62:EC:2F:B8:65:4D:E4:8F:44:90:1A:16:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B508
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D25BE8719B11EF84767048762E951A.roa
Signing time: Fri 13 Sep 2024 06:45:11 +0000
ROA not before: Fri 13 Sep 2024 06:45:07 +0000
ROA not after: Fri 08 Aug 2025 06:45:07 +0000
asID: 133861
IP address blocks: 45.207.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46344 (0xb508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:45:07 2024 GMT
Not After : Aug 8 06:45:07 2025 GMT
Subject: CN=66e3df77-b1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:d1:d9:fa:93:ee:0f:13:a5:a6:7b:04:b4:
8c:3c:6f:1d:98:ad:64:a8:bf:ec:39:b8:5c:a2:0a:
d1:91:68:16:99:94:00:8b:0d:24:6a:ed:08:b4:0e:
10:72:fc:38:6c:55:19:5d:30:be:2c:73:73:7c:2f:
c6:20:16:73:b3:4e:9a:1b:a9:26:58:2b:36:e2:63:
99:36:82:8a:7c:ad:6e:37:e0:3c:d7:a1:0f:9d:30:
f0:b0:0f:35:e1:eb:6c:a5:ef:30:e7:1c:ec:07:de:
79:43:ff:2a:c7:8f:88:91:92:60:52:16:c5:d4:b0:
b5:63:87:64:99:1d:87:21:95:62:27:8d:aa:59:09:
26:09:63:c4:16:84:27:2d:94:9b:df:bb:36:98:bb:
7d:4b:ea:9a:24:72:f0:47:7f:b5:e3:c0:1c:e4:aa:
4e:50:09:38:e5:69:41:40:40:e6:c3:e7:b5:c5:e5:
bb:b2:c3:c9:0d:c9:35:b4:82:7e:e8:c6:92:7a:c9:
a7:bc:8d:40:25:a0:22:23:9d:75:3f:df:06:05:48:
4a:e6:60:e5:33:e5:e1:87:09:a0:b8:e8:44:16:f9:
94:e6:08:20:d7:e3:f1:8b:76:0b:6d:fd:0b:cf:86:
f1:f5:2e:c5:07:b9:40:98:49:e0:60:c0:1f:6a:3c:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2E:86:C4:B0:A3:F0:62:EC:2F:B8:65:4D:E4:8F:44:90:1A:16:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8D25BE8719B11EF84767048762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.47.0/24
Signature Algorithm: sha256WithRSAEncryption
62:01:1d:c6:72:86:c1:2e:20:c4:0e:1a:1c:f3:9c:7d:83:11:
3c:30:69:93:c5:80:d6:28:01:14:72:f5:8f:b8:22:df:1e:63:
78:8c:b9:6c:e3:8a:80:58:12:1c:04:09:b4:fd:f4:e6:a9:8d:
6a:c2:93:9e:55:fb:ef:8d:79:69:69:60:22:77:cb:e5:cc:68:
79:9d:66:58:a8:ca:14:45:6c:dd:13:4f:24:58:c8:32:87:bb:
f0:b4:69:b4:1a:b2:9a:6e:22:9e:c9:fb:82:26:09:83:46:72:
c5:94:30:43:0e:18:4c:f3:9b:d3:4b:1d:ca:b0:83:31:3e:bb:
57:fe:f0:76:88:bf:3f:48:04:71:e6:81:91:88:b0:a8:89:ed:
08:c5:62:c3:72:42:de:20:85:9d:5a:e1:4e:b2:1f:5a:1f:db:
5b:8a:df:5b:69:9b:7e:2f:61:28:d2:53:ea:64:05:eb:90:60:
1a:05:48:08:87:3a:41:7a:11:a0:98:cf:c9:a8:35:99:23:b4:
85:44:e4:16:be:2f:be:49:1d:21:e4:2e:cc:5b:62:47:19:f9:
3a:18:2e:b0:55:8e:45:ba:f1:20:40:bc:91:07:ad:d8:be:5a:
ee:cb:f4:32:51:bc:3f:6f:fa:ca:ab:ed:e9:69:83:b7:41:bf:
7c:e3:c6:e6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALUIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTEzMDY0NTA3WhcNMjUwODA4MDY0NTA3WjAYMRYw
FAYDVQQDEw02NmUzZGY3Ny1iMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAslrR2fqT7g8TpaZ7BLSMPG8dmK1kqL/sObhcogrRkWgWmZQAiw0kau0I
tA4Qcvw4bFUZXTC+LHNzfC/GIBZzs06aG6kmWCs24mOZNoKKfK1uN+A816EPnTDw
sA814etspe8w5xzsB955Q/8qx4+IkZJgUhbF1LC1Y4dkmR2HIZViJ42qWQkmCWPE
FoQnLZSb37s2mLt9S+qaJHLwR3+148Ac5KpOUAk45WlBQEDmw+e1xeW7ssPJDck1
tIJ+6MaSesmnvI1AJaAiI511P98GBUhK5mDlM+XhhwmguOhEFvmU5ggg1+Pxi3YL
bf0Lz4bx9S7FB7lAmEngYMAfajxCMwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMAu
hsSwo/Bi7C+4ZU3kj0SQGhY5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9COEQyNUJFODcxOUIxMUVGODQ3NjcwNDg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8vMA0GCSqGSIb3DQEBCwUA
A4IBAQBiAR3GcobBLiDEDhoc85x9gxE8MGmTxYDWKAEUcvWPuCLfHmN4jLls44qA
WBIcBAm0/fTmqY1qwpOeVfvvjXlpaWAid8vlzGh5nWZYqMoURWzdE08kWMgyh7vw
tGm0GrKabiKeyfuCJgmDRnLFlDBDDhhM85vTSx3KsIMxPrtX/vB2iL8/SARx5oGR
iLCoie0IxWLDckLeIIWdWuFOsh9aH9tbit9baZt+L2Eo0lPqZAXrkGAaBUgIhzpB
ehGgmM/JqDWZI7SFROQWvi++SR0h5C7MW2JHGfk6GC6wVY5FuvEgQLyRB63Yvlru
y/QyUbw/b/rKq+3paYO3Qb9848bm
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:46 2024 by rpki-client on console-ams.rpki-client.org