Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4EA10D473F711EF8DB4AE8B762E951A.roa
File: C4EA10D473F711EF8DB4AE8B762E951A.roa (raw, json)
Hash identifier: O+emFaWPz3Hws7y7Rr7D98Hac6ObWD/ZEPZUaogVWlg=
Subject key identifier: 01:F9:61:EF:E8:07:A2:2F:11:84:56:09:66:88:C1:40:05:4D:46:EF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B735
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4EA10D473F711EF8DB4AE8B762E951A.roa
Signing time: Mon 16 Sep 2024 06:49:07 +0000
ROA not before: Mon 16 Sep 2024 06:49:04 +0000
ROA not after: Fri 08 Aug 2025 06:49:04 +0000
asID: 133861
IP address blocks: 45.207.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46901 (0xb735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:49:04 2024 GMT
Not After : Aug 8 06:49:04 2025 GMT
Subject: CN=66e7d4e3-f7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c3:d4:56:43:5d:e2:48:4b:da:31:be:95:2f:
c2:9f:4e:b7:df:4a:80:12:34:16:02:63:4f:e7:b2:
ed:62:59:49:39:37:f2:da:1a:7d:0f:49:0a:bb:2a:
02:c1:6c:c4:b2:c4:2f:d8:08:0a:5b:42:59:03:6a:
1f:39:83:b3:e7:7f:43:38:72:9b:9f:4e:31:17:09:
22:24:88:b8:26:6f:02:28:50:7e:af:d8:1f:2b:d3:
46:88:c1:99:b5:ab:24:6e:9a:72:01:34:6e:01:39:
08:9e:63:73:69:7d:09:93:43:46:f8:d1:b2:6c:93:
b8:12:ca:2c:13:42:16:1c:27:f3:fc:46:cd:f4:22:
7f:82:c4:2d:56:5e:a0:ea:a4:1b:95:23:d3:2b:d6:
27:bc:75:c6:d1:5a:74:19:11:52:a5:78:b4:8d:00:
c3:ef:71:99:04:da:bd:f2:06:63:d4:d6:2a:ca:f5:
07:af:69:1a:e1:6a:7a:00:4d:f9:02:c9:6c:b7:22:
25:20:99:f6:8e:b1:54:0d:d7:17:20:df:0f:92:01:
01:ca:6e:e7:51:e4:7f:be:41:5e:4f:9f:1f:93:5c:
f6:0e:83:68:64:2b:88:b5:bb:62:0d:7b:fe:36:bd:
98:c5:f1:c3:73:6d:5c:51:b8:d9:9e:9f:bb:d7:fa:
65:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F9:61:EF:E8:07:A2:2F:11:84:56:09:66:88:C1:40:05:4D:46:EF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4EA10D473F711EF8DB4AE8B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.33.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:d2:1a:8c:13:f1:0e:c6:0e:19:fa:4d:dd:c3:5f:69:96:97:
b4:eb:a3:be:1e:ec:4b:cb:72:e3:f8:df:63:2e:2b:bd:18:e5:
77:6c:3a:12:01:5b:8a:08:80:fc:56:e0:48:4a:60:d5:2e:6c:
45:b4:80:7e:96:11:11:38:1e:0f:91:37:83:d9:df:57:b7:2d:
18:5f:9f:b2:cd:eb:24:a5:af:2c:5e:6b:53:c7:84:8f:9c:40:
a3:a4:25:80:2d:aa:13:46:09:28:04:e2:45:c0:7d:cd:f4:e5:
de:0f:4d:e3:55:65:5d:e3:aa:53:d7:21:ca:87:b8:89:e7:41:
58:0d:fd:c4:f9:9d:a8:e5:9d:08:e1:8e:42:84:3b:86:63:cd:
19:9a:ec:5a:49:d5:ca:bf:20:04:b2:86:cd:70:ca:25:e3:65:
28:f4:f5:c8:53:7b:ed:fd:41:46:c2:dd:03:6e:81:77:4e:1a:
95:22:d8:58:1a:15:11:ce:4b:a7:fa:6f:48:ae:40:74:57:db:
98:be:f0:1f:2f:99:cc:e0:ea:31:b3:49:12:bc:3b:ae:14:9e:
05:99:03:06:3a:95:a5:0b:6d:01:94:8d:9b:d7:94:69:c5:d8:
3d:2c:16:ec:46:02:3f:54:21:0f:b9:d3:34:2d:43:f5:4e:37:
4f:6c:52:1b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALc1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE2MDY0OTA0WhcNMjUwODA4MDY0OTA0WjAYMRYw
FAYDVQQDEw02NmU3ZDRlMy1mN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwMPUVkNd4khL2jG+lS/Cn06330qAEjQWAmNP57LtYllJOTfy2hp9D0kK
uyoCwWzEssQv2AgKW0JZA2ofOYOz539DOHKbn04xFwkiJIi4Jm8CKFB+r9gfK9NG
iMGZtaskbppyATRuATkInmNzaX0Jk0NG+NGybJO4EsosE0IWHCfz/EbN9CJ/gsQt
Vl6g6qQblSPTK9YnvHXG0Vp0GRFSpXi0jQDD73GZBNq98gZj1NYqyvUHr2ka4Wp6
AE35AslstyIlIJn2jrFUDdcXIN8PkgEBym7nUeR/vkFeT58fk1z2DoNoZCuItbti
DXv+Nr2YxfHDc21cUbjZnp+71/pl5QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAH5
Ye/oB6IvEYRWCWaIwUAFTUbvMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DNEVBMTBENDczRjcxMUVGOERCNEFFOEI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8hMA0GCSqGSIb3DQEBCwUA
A4IBAQAL0hqME/EOxg4Z+k3dw19plpe066O+HuxLy3Lj+N9jLiu9GOV3bDoSAVuK
CID8VuBISmDVLmxFtIB+lhEROB4PkTeD2d9Xty0YX5+yzeskpa8sXmtTx4SPnECj
pCWALaoTRgkoBOJFwH3N9OXeD03jVWVd46pT1yHKh7iJ50FYDf3E+Z2o5Z0I4Y5C
hDuGY80ZmuxaSdXKvyAEsobNcMol42Uo9PXIU3vt/UFGwt0DboF3ThqVIthYGhUR
zkun+m9IrkB0V9uYvvAfL5nM4Ooxs0kSvDuuFJ4FmQMGOpWlC20BlI2b15Rpxdg9
LBbsRgI/VCEPudM0LUP1TjdPbFIb
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:49 2024 by rpki-client on console-ams.rpki-client.org