Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C717A436156911EE9D720A734AD9E6FC.roa
File: C717A436156911EE9D720A734AD9E6FC.roa (raw, json)
Hash identifier: n/SkMd6MEnGHuzf/blbyRYpDuwIfBAshSzJLgxkTAX0=
Subject key identifier: 91:04:7D:0B:03:73:50:20:44:CD:4F:45:93:F9:73:71:56:02:14:09
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2DCA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C717A436156911EE9D720A734AD9E6FC.roa
Signing time: Wed 28 Jun 2023 04:10:55 +0000
ROA not before: Wed 28 Jun 2023 04:10:52 +0000
ROA not after: Tue 07 May 2024 04:10:52 +0000
asID: 133929
IP address blocks: 45.200.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 04:10:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11722 (0x2dca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 28 04:10:52 2023 GMT
Not After : May 7 04:10:52 2024 GMT
Subject: CN=649bb2cf-744a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f7:a9:82:b2:c1:8e:be:cc:ac:84:af:e6:76:
d0:6c:01:3f:cf:7b:3c:41:45:ac:c8:36:32:a3:ef:
72:e1:66:ec:12:c5:a6:04:ef:d4:14:fa:a4:34:a2:
9e:50:e3:e6:5e:a4:b4:d1:c1:fc:5d:9c:3a:05:dd:
7a:63:1b:90:ce:27:06:4b:7a:86:8a:6a:60:e1:9f:
6a:b9:08:7b:16:41:60:52:48:66:e3:a1:9c:8c:59:
47:32:24:22:49:3f:c9:88:23:c9:0e:ce:00:2c:ef:
b9:c2:5d:f9:08:88:7d:f6:e0:f3:b2:cb:c7:41:4f:
0c:68:be:3b:7c:e7:e3:50:7b:ba:ac:b9:80:7c:72:
4c:42:c0:06:55:ab:f6:e7:43:c7:1f:5e:45:1a:9b:
c9:1e:13:6b:4b:68:e8:ec:d0:6f:a7:77:fa:f7:00:
44:52:fe:33:57:e4:93:b0:22:11:ff:c6:af:05:73:
e8:28:db:e2:ea:32:b5:60:f7:a5:74:72:ca:5d:74:
a0:e0:64:14:e0:92:81:c7:e8:57:2c:c5:2f:b7:fc:
7d:4c:4e:91:f2:32:1b:4a:e4:5a:35:0a:01:44:6a:
84:e8:4c:e4:a6:35:14:ee:a9:cd:3d:55:3a:ac:1b:
13:4d:b0:c4:2b:16:73:a0:7c:df:8d:b8:0d:5d:f3:
d9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:04:7D:0B:03:73:50:20:44:CD:4F:45:93:F9:73:71:56:02:14:09
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C717A436156911EE9D720A734AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.104.0/24
Signature Algorithm: sha256WithRSAEncryption
14:61:94:26:40:bb:a7:ca:80:4d:2e:d6:9b:d6:02:56:8c:0a:
8c:9f:25:47:42:93:63:90:be:76:4e:be:42:58:80:13:53:57:
f6:16:76:f7:52:c1:d0:16:33:4c:b2:dc:55:95:01:a2:95:da:
ca:0c:86:31:ec:3d:c3:45:e6:61:e0:9c:0e:bc:e8:44:21:95:
92:0f:2e:42:f1:73:4a:f9:a2:02:9a:af:7a:76:66:9f:d6:fb:
30:ae:50:5b:45:8e:77:aa:90:35:fc:0e:ae:1b:31:5b:aa:da:
2c:a2:6a:d3:df:4a:88:e7:52:b9:5c:c5:d8:ab:dd:02:1b:2f:
ea:01:1d:de:77:1f:51:c6:81:e5:57:4f:69:c1:fb:4f:4b:ff:
a6:9d:b9:31:ed:df:1c:eb:a9:a9:8e:df:98:4e:66:4d:7a:3a:
9d:6e:2a:17:e7:e0:31:dc:b0:82:28:63:ca:fd:e6:cd:99:c7:
6c:01:2b:1b:3b:f0:27:17:ef:42:6e:08:03:a4:47:26:67:8a:
8a:50:80:19:fa:a8:c1:dc:bf:89:ed:53:4b:99:da:e8:b4:9f:
01:aa:64:4c:c1:d4:44:1b:5d:c3:9d:36:6d:56:86:60:c8:2d:
c1:cd:4f:1b:21:ca:3e:1b:4a:a6:35:75:ba:58:a4:ea:6e:b2:
5a:a7:22:57
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICLcowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MjgwNDEwNTJaFw0yNDA1MDcwNDEwNTJaMBgxFjAU
BgNVBAMTDTY0OWJiMmNmLTc0NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC496mCssGOvsyshK/mdtBsAT/PezxBRazINjKj73LhZuwSxaYE79QU+qQ0
op5Q4+ZepLTRwfxdnDoF3XpjG5DOJwZLeoaKamDhn2q5CHsWQWBSSGbjoZyMWUcy
JCJJP8mII8kOzgAs77nCXfkIiH324POyy8dBTwxovjt85+NQe7qsuYB8ckxCwAZV
q/bnQ8cfXkUam8keE2tLaOjs0G+nd/r3AERS/jNX5JOwIhH/xq8Fc+go2+LqMrVg
96V0cspddKDgZBTgkoHH6FcsxS+3/H1MTpHyMhtK5Fo1CgFEaoToTOSmNRTuqc09
VTqsGxNNsMQrFnOgfN+NuA1d89mRAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUkQR9
CwNzUCBEzU9Fk/lzcVYCFAkwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0M3MTdBNDM2MTU2OTExRUU5RDcyMEE3MzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtyGgwDQYJKoZIhvcNAQELBQAD
ggEBABRhlCZAu6fKgE0u1pvWAlaMCoyfJUdCk2OQvnZOvkJYgBNTV/YWdvdSwdAW
M0yy3FWVAaKV2soMhjHsPcNF5mHgnA686EQhlZIPLkLxc0r5ogKar3p2Zp/W+zCu
UFtFjneqkDX8Dq4bMVuq2iyiatPfSojnUrlcxdir3QIbL+oBHd53H1HGgeVXT2nB
+09L/6aduTHt3xzrqamO35hOZk16Op1uKhfn4DHcsIIoY8r95s2Zx2wBKxs78CcX
70JuCAOkRyZniopQgBn6qMHcv4ntU0uZ2ui0nwGqZEzB1EQbXcOdNm1WhmDILcHN
Txshyj4bSqY1dbpYpOpuslqnIlc=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org