Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5AB217808F211EE939916204AD9E6FC.roa
File: C5AB217808F211EE939916204AD9E6FC.roa (raw, json)
Hash identifier: LjRfuVrV3N6qzjvOyU36LbsPdLXfYDOhiA0XqLeF9ls=
Subject key identifier: 69:21:AC:E0:DB:08:2B:F8:F3:34:CB:3E:EA:90:AE:2E:BC:F5:B6:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AF7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5AB217808F211EE939916204AD9E6FC.roa
Signing time: Mon 12 Jun 2023 07:28:49 +0000
ROA not before: Mon 12 Jun 2023 07:28:45 +0000
ROA not after: Sat 25 May 2024 07:28:45 +0000
asID: 131178
IP address blocks: 45.201.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10999 (0x2af7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 07:28:45 2023 GMT
Not After : May 25 07:28:45 2024 GMT
Subject: CN=6486c931-ba93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0b:0c:cc:22:e4:77:c8:98:b2:04:39:32:6a:
fb:a6:7d:44:6b:f3:4d:67:e7:e6:62:5f:96:35:f3:
cd:8c:69:1a:92:5e:a0:e9:d2:72:96:49:5c:c4:cd:
be:4e:c6:4f:63:68:cb:19:b7:c7:c8:04:5d:aa:7f:
03:76:ff:37:8b:4e:38:6f:a4:27:2a:2c:66:2c:8f:
fd:50:a4:71:d3:1e:fb:de:83:da:a9:02:bf:c2:2c:
6f:34:9b:e0:ca:1e:91:5b:e6:47:b5:2b:73:97:1b:
44:9f:93:4c:0e:b6:43:91:b0:ef:5c:09:11:e8:12:
0c:23:2b:d5:a7:b8:97:4d:62:84:66:7e:d4:e2:8d:
00:47:cd:b6:5a:dd:46:23:45:ee:63:ac:80:68:82:
61:8b:ca:d9:b2:86:a2:52:0d:dd:ff:96:36:15:69:
50:4f:71:ea:09:e6:84:56:8f:53:c6:62:bd:8a:b6:
e9:c7:77:7a:e4:37:e1:7f:2e:ee:03:bb:6b:86:9e:
70:5a:67:d6:70:cc:ab:4c:1d:2e:9f:2b:32:41:92:
cb:d8:e7:71:29:e1:9d:bf:b8:c8:49:55:09:26:39:
50:47:a3:ff:f4:75:7f:6b:f2:47:6d:96:9d:6d:c4:
0c:01:50:73:a5:98:4c:92:10:97:46:03:f7:0b:56:
68:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:21:AC:E0:DB:08:2B:F8:F3:34:CB:3E:EA:90:AE:2E:BC:F5:B6:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5AB217808F211EE939916204AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.162.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:83:7a:92:67:45:1c:5e:5f:3e:ca:b5:ec:0e:b2:e1:d4:19:
b5:13:94:97:d5:73:3c:ab:df:8c:b8:6a:1b:39:af:23:99:07:
4b:a1:a2:01:79:45:ae:39:d0:b5:f4:20:b4:b1:2b:a9:8c:65:
3b:51:e0:c3:af:8e:6a:93:b1:e0:95:e9:99:ee:13:a1:cf:17:
04:48:dc:ed:95:5c:1b:40:47:c6:80:65:2f:30:bd:5f:aa:6d:
f5:bc:10:1a:82:aa:0e:8a:00:19:0f:ef:c8:68:86:e8:4d:7e:
29:15:54:cc:11:2f:25:ec:42:0d:1a:f1:93:aa:49:1b:c8:bb:
9e:25:97:6d:5d:e6:e7:13:b3:ee:3f:ca:45:0e:08:6e:d3:43:
3e:6a:64:c0:45:b8:97:5e:a6:43:ef:70:80:7e:fb:0d:65:93:
9f:64:02:24:5e:5d:ee:28:d7:05:36:e1:bf:2b:ef:0a:69:f3:
02:79:0f:b5:7f:39:1e:68:75:c5:7d:8b:35:5c:a2:02:7f:1b:
2f:69:50:4c:39:d8:9e:2f:7e:a8:c5:13:eb:be:b7:75:fe:83:
c7:82:37:1c:fb:bc:e1:11:b7:95:6e:79:2c:79:98:03:ee:49:
1e:50:39:8b:64:3c:e7:87:28:fc:be:52:04:e5:47:ee:da:70:
89:47:47:d3
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKvcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNzI4NDVaFw0yNDA1MjUwNzI4NDVaMBgxFjAU
BgNVBAMTDTY0ODZjOTMxLWJhOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDuCwzMIuR3yJiyBDkyavumfURr801n5+ZiX5Y1882MaRqSXqDp0nKWSVzE
zb5Oxk9jaMsZt8fIBF2qfwN2/zeLTjhvpCcqLGYsj/1QpHHTHvveg9qpAr/CLG80
m+DKHpFb5ke1K3OXG0Sfk0wOtkORsO9cCRHoEgwjK9WnuJdNYoRmftTijQBHzbZa
3UYjRe5jrIBogmGLytmyhqJSDd3/ljYVaVBPceoJ5oRWj1PGYr2KtunHd3rkN+F/
Lu4Du2uGnnBaZ9ZwzKtMHS6fKzJBksvY53Ep4Z2/uMhJVQkmOVBHo//0dX9r8kdt
lp1txAwBUHOlmEySEJdGA/cLVmi1AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUaSGs
4NsIK/jzNMs+6pCuLrz1tuMwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0M1QUIyMTc4MDhGMjExRUU5Mzk5MTYyMDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyaIwDQYJKoZIhvcNAQELBQAD
ggEBAKODepJnRRxeXz7KtewOsuHUGbUTlJfVczyr34y4ahs5ryOZB0uhogF5Ra45
0LX0ILSxK6mMZTtR4MOvjmqTseCV6ZnuE6HPFwRI3O2VXBtAR8aAZS8wvV+qbfW8
EBqCqg6KABkP78hohuhNfikVVMwRLyXsQg0a8ZOqSRvIu54ll21d5ucTs+4/ykUO
CG7TQz5qZMBFuJdepkPvcIB++w1lk59kAiReXe4o1wU24b8r7wpp8wJ5D7V/OR5o
dcV9izVcogJ/Gy9pUEw52J4vfqjFE+u+t3X+g8eCNxz7vOERt5VueSx5mAPuSR5Q
OYtkPOeHKPy+UgTlR+7acIlHR9M=
-----END CERTIFICATE-----
Generated at Thu May 2 17:42:59 2024 by rpki-client on console-fra.rpki-client.org