Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1949C2C22EB11EF8C2C94457DDC24C2.roa
File: C1949C2C22EB11EF8C2C94457DDC24C2.roa (raw, json)
Hash identifier: kQQMenfFCzStbfclJznJNqsR7xPmLZaEfMuLIyxSCns=
Subject key identifier: 4B:51:30:47:71:16:A1:8A:BC:08:B9:79:36:15:D4:F2:4A:8B:9E:A6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8F1F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1949C2C22EB11EF8C2C94457DDC24C2.roa
Signing time: Wed 05 Jun 2024 03:29:03 +0000
ROA not before: Wed 05 Jun 2024 03:29:00 +0000
ROA not after: Sat 24 May 2025 03:29:00 +0000
asID: 38901
IP address blocks: 45.201.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36639 (0x8f1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 5 03:29:00 2024 GMT
Not After : May 24 03:29:00 2025 GMT
Subject: CN=665fdb7f-69f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8f:b6:b3:54:e1:b5:79:cb:85:d6:d4:94:64:
b9:93:7f:69:ae:f4:ff:eb:0e:88:d3:2f:f6:6b:61:
bb:4e:53:4a:ac:31:f4:5c:2a:ab:70:72:83:8c:6d:
00:4c:45:0f:44:04:de:21:a8:e3:79:fb:7a:58:7c:
99:fe:70:04:0a:ba:bb:3f:1b:c3:02:4e:40:b2:ab:
13:0b:bb:c5:81:6c:5a:25:52:fc:3f:c7:65:f2:64:
d5:2d:e6:2b:5b:bc:8c:2d:0a:7e:ba:a3:ba:b5:75:
ed:aa:b7:7f:7b:74:59:9e:a6:2e:84:8c:c1:90:3c:
51:54:57:b8:5a:27:55:4c:c7:d1:bc:8b:8e:a2:af:
84:0e:78:f8:9c:6a:7f:12:8c:b5:14:d5:f8:a0:e2:
c1:a3:ae:f3:49:65:3c:e0:0e:72:40:db:b4:05:36:
da:4e:d8:65:f5:dc:06:ec:90:72:34:29:a5:95:df:
c6:f3:e5:ef:9d:35:78:99:40:0e:8f:09:1d:26:98:
7c:f3:cc:f2:49:f3:a4:18:9b:98:69:ec:b0:7f:2d:
1c:24:e8:e5:87:55:4b:e6:2e:ba:50:44:01:11:c1:
df:b8:4a:0d:03:72:15:3f:c5:0a:66:f6:b3:1b:00:
e7:4d:50:d8:5a:16:49:59:82:c8:80:22:c0:f3:cb:
c4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:51:30:47:71:16:A1:8A:BC:08:B9:79:36:15:D4:F2:4A:8B:9E:A6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1949C2C22EB11EF8C2C94457DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.148.0/24
Signature Algorithm: sha256WithRSAEncryption
71:58:e7:d0:9e:f0:f0:34:75:e9:65:84:25:2d:a8:b7:17:a9:
e3:b1:5b:5f:59:cf:0f:40:bc:f4:31:f2:41:9f:7c:e6:25:cd:
af:bf:1f:74:3e:0f:78:0f:f8:f6:57:3c:61:c8:64:e7:8f:e1:
e2:81:81:be:a5:c8:ce:ea:e9:81:50:c1:75:5d:07:a4:50:a3:
eb:37:25:d1:b1:1c:51:68:d4:25:30:27:39:88:cf:ba:40:6f:
23:16:88:4b:98:3f:1b:54:33:8d:cf:22:8d:ff:98:cd:55:ec:
9d:b5:02:bb:f7:7f:21:4b:f2:58:a6:d0:b7:c2:f6:a5:1a:2c:
26:1d:cf:e3:b1:0e:96:a2:5c:e1:86:1f:a8:1d:c9:69:cd:75:
fc:89:d7:a3:63:4d:df:aa:bb:d9:05:b8:a8:74:35:27:58:7e:
2e:88:b7:3d:e7:b5:08:45:7a:9e:46:c5:21:d1:fa:96:8d:c9:
fc:d7:ae:46:40:1a:24:75:6d:58:43:97:fa:6e:17:a6:e5:68:
73:46:2e:a4:28:f4:eb:52:6a:a8:d5:ca:57:28:03:0a:83:5f:
00:10:f7:c4:f9:4c:37:b7:26:2f:40:10:8c:1b:c6:d5:52:48:
80:03:27:eb:58:0e:e9:ce:fd:14:4b:fb:fb:39:35:39:22:14:
9b:4f:10:d6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAI8fMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNjA1MDMyOTAwWhcNMjUwNTI0MDMyOTAwWjAYMRYw
FAYDVQQDEw02NjVmZGI3Zi02OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0I+2s1ThtXnLhdbUlGS5k39prvT/6w6I0y/2a2G7TlNKrDH0XCqrcHKD
jG0ATEUPRATeIajjeft6WHyZ/nAECrq7PxvDAk5AsqsTC7vFgWxaJVL8P8dl8mTV
LeYrW7yMLQp+uqO6tXXtqrd/e3RZnqYuhIzBkDxRVFe4WidVTMfRvIuOoq+EDnj4
nGp/Eoy1FNX4oOLBo67zSWU84A5yQNu0BTbaTthl9dwG7JByNCmlld/G8+XvnTV4
mUAOjwkdJph888zySfOkGJuYaeywfy0cJOjlh1VL5i66UEQBEcHfuEoNA3IVP8UK
ZvazGwDnTVDYWhZJWYLIgCLA88vEBQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEtR
MEdxFqGKvAi5eTYV1PJKi56mMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DMTk0OUMyQzIyRUIxMUVGOEMyQzk0NDU3RERDMjRDMi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcmUMA0GCSqGSIb3DQEBCwUA
A4IBAQBxWOfQnvDwNHXpZYQlLai3F6njsVtfWc8PQLz0MfJBn3zmJc2vvx90Pg94
D/j2VzxhyGTnj+HigYG+pcjO6umBUMF1XQekUKPrNyXRsRxRaNQlMCc5iM+6QG8j
FohLmD8bVDONzyKN/5jNVeydtQK7938hS/JYptC3wvalGiwmHc/jsQ6Wolzhhh+o
HclpzXX8idejY03fqrvZBbiodDUnWH4uiLc957UIRXqeRsUh0fqWjcn8165GQBok
dW1YQ5f6bhem5WhzRi6kKPTrUmqo1cpXKAMKg18AEPfE+Uw3tyYvQBCMG8bVUkiA
AyfrWA7pzv0US/v7OTU5IhSbTxDW
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:48 2024 by rpki-client on console-ams.rpki-client.org