Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A5813A417C11EE917494154AD9E6FC.roa
File: C8A5813A417C11EE917494154AD9E6FC.roa (raw, json)
Hash identifier: 3UPKMSpWOmCG7cCLPBmltCDRWNPuFP9iNp+9j4pBo2g=
Subject key identifier: A7:0C:6B:4A:C3:33:F6:D5:D7:AA:0F:88:5D:D8:1F:61:F6:4B:91:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36D7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A5813A417C11EE917494154AD9E6FC.roa
Signing time: Wed 23 Aug 2023 06:17:49 +0000
ROA not before: Wed 23 Aug 2023 06:17:46 +0000
ROA not after: Sat 21 Sep 2024 06:17:46 +0000
asID: 147019
IP address blocks: 45.194.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14039 (0x36d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 06:17:46 2023 GMT
Not After : Sep 21 06:17:46 2024 GMT
Subject: CN=64e5a48d-4310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:13:9b:d4:07:24:da:4a:80:7a:fa:68:c6:6c:
cc:32:a9:93:e0:8e:28:9e:b1:15:67:f7:fc:75:e2:
8e:42:81:ab:2d:72:10:41:cd:37:3c:a6:40:73:91:
4c:0b:08:83:d4:d4:1c:7a:68:4b:fd:8c:c5:cf:8b:
dc:e4:0b:d5:c5:b3:47:ff:12:2d:92:7b:d9:ab:3f:
55:80:c7:af:54:18:77:be:cb:df:f5:c9:79:60:d7:
14:41:09:3d:5b:74:dc:2a:de:8a:f9:f8:fb:7d:69:
d4:7d:15:5a:f7:2f:4a:c6:51:07:82:4d:5d:85:28:
08:4d:64:af:07:d0:fb:5f:20:fc:34:cc:2a:73:08:
a8:02:f5:9b:fb:4c:23:b2:69:69:3b:77:84:56:35:
43:75:eb:82:a0:20:99:37:c1:bd:72:52:bb:b2:9f:
67:d5:89:2d:65:b8:dc:57:e8:e0:ca:53:b4:46:22:
9e:e1:f0:bb:f1:86:33:cf:d8:04:53:81:66:1d:fd:
bf:01:50:90:08:b9:d3:aa:3c:8e:cc:b4:b9:68:7d:
41:e2:6e:d9:0b:bb:60:cf:13:91:f0:4c:29:70:d7:
ee:8e:83:7b:6b:55:b8:b8:92:1d:c5:0b:35:34:d6:
9b:30:76:4f:73:9a:67:84:7d:20:04:c5:82:69:81:
aa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0C:6B:4A:C3:33:F6:D5:D7:AA:0F:88:5D:D8:1F:61:F6:4B:91:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C8A5813A417C11EE917494154AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.61.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:fc:99:00:cd:aa:c7:e5:b0:25:a7:cf:78:d4:40:40:1d:75:
2b:2d:96:16:f7:39:c5:76:ce:c0:e4:fd:b8:a5:b0:3a:22:32:
62:3e:d6:f5:2c:cd:d8:20:7b:50:0a:fc:2d:31:d6:87:92:6d:
f6:6d:fa:63:3c:c4:45:70:df:0c:63:73:99:5e:88:06:6b:f2:
c9:4f:25:db:e0:95:ae:4b:e7:0e:92:8c:d8:1a:ee:c5:7c:69:
ae:aa:ca:e7:7a:ad:09:bc:4c:45:3b:99:16:76:5b:39:32:1f:
9c:ad:6b:c4:10:8b:0c:30:e4:c3:ea:c3:a4:35:af:3d:c0:1c:
9d:35:88:8c:ef:17:0d:66:d4:79:74:3c:92:9a:33:27:23:1c:
54:c9:19:a7:02:c1:50:05:1e:e2:ed:68:8c:1a:15:6a:99:01:
1c:b5:6b:32:3b:15:80:61:33:ee:3f:ec:e6:4b:f0:ad:77:83:
28:df:8c:19:95:07:45:31:b1:a4:69:cb:90:9b:a4:2b:3c:8e:
74:cc:68:ae:99:55:13:fa:cc:b9:70:51:11:fc:2b:7e:c1:76:
43:bf:50:45:f7:82:b5:ac:6c:81:e1:ab:31:e2:4e:44:79:c0:
f4:1f:dd:b7:2b:44:97:4a:76:40:80:02:6c:fa:0d:b5:64:c3:
cb:2b:3e:a2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNtcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MjMwNjE3NDZaFw0yNDA5MjEwNjE3NDZaMBgxFjAU
BgNVBAMTDTY0ZTVhNDhkLTQzMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCsE5vUByTaSoB6+mjGbMwyqZPgjiiesRVn9/x14o5CgastchBBzTc8pkBz
kUwLCIPU1Bx6aEv9jMXPi9zkC9XFs0f/Ei2Se9mrP1WAx69UGHe+y9/1yXlg1xRB
CT1bdNwq3or5+Pt9adR9FVr3L0rGUQeCTV2FKAhNZK8H0PtfIPw0zCpzCKgC9Zv7
TCOyaWk7d4RWNUN164KgIJk3wb1yUruyn2fViS1luNxX6ODKU7RGIp7h8LvxhjPP
2ARTgWYd/b8BUJAIudOqPI7MtLlofUHibtkLu2DPE5HwTClw1+6Og3trVbi4kh3F
CzU01pswdk9zmmeEfSAExYJpgarNAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUpwxr
SsMz9tXXqg+IXdgfYfZLkSMwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0M4QTU4MTNBNDE3QzExRUU5MTc0OTQxNTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtwj0wDQYJKoZIhvcNAQELBQAD
ggEBAKz8mQDNqsflsCWnz3jUQEAddSstlhb3OcV2zsDk/bilsDoiMmI+1vUszdgg
e1AK/C0x1oeSbfZt+mM8xEVw3wxjc5leiAZr8slPJdvgla5L5w6SjNga7sV8aa6q
yud6rQm8TEU7mRZ2WzkyH5yta8QQiwww5MPqw6Q1rz3AHJ01iIzvFw1m1Hl0PJKa
MycjHFTJGacCwVAFHuLtaIwaFWqZARy1azI7FYBhM+4/7OZL8K13gyjfjBmVB0Ux
saRpy5CbpCs8jnTMaK6ZVRP6zLlwURH8K37BdkO/UEX3grWsbIHhqzHiTkR5wPQf
3bcrRJdKdkCAAmz6DbVkw8srPqI=
-----END CERTIFICATE-----
Generated at Tue May 7 01:58:06 2024 by rpki-client on console-fra.rpki-client.org