Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA1EBCD273F511EFB51CE17F762E951A.roa
File: CA1EBCD273F511EFB51CE17F762E951A.roa (raw, json)
Hash identifier: 93uEOWcXKRer9RO5MXK2PjfWGq3MwjkyfsKQLyT9b/s=
Subject key identifier: 02:DB:60:4D:A4:52:ED:BC:91:41:B8:FB:A9:C4:45:6A:2F:3D:CD:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B719
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA1EBCD273F511EFB51CE17F762E951A.roa
Signing time: Mon 16 Sep 2024 06:34:57 +0000
ROA not before: Mon 16 Sep 2024 06:34:52 +0000
ROA not after: Fri 08 Aug 2025 06:34:52 +0000
asID: 133861
IP address blocks: 45.207.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46873 (0xb719)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:34:52 2024 GMT
Not After : Aug 8 06:34:52 2025 GMT
Subject: CN=66e7d191-fcdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7f:14:d4:bf:be:ee:41:21:d0:84:b5:42:f3:
32:78:45:90:7a:6e:df:36:0b:24:36:cd:bb:2d:67:
aa:78:3e:8a:13:90:05:07:ed:96:39:1e:40:61:64:
b8:1a:de:05:0c:61:3a:50:da:ae:6c:45:7a:e8:5a:
70:cf:b5:c7:e7:7c:14:02:bb:c6:0a:a0:92:3e:c9:
f6:53:40:ac:33:c0:65:d8:12:8e:89:3b:94:ae:ce:
96:b0:b6:cd:f3:cc:ed:9f:ba:0c:df:12:74:54:c2:
68:c5:9c:6d:39:3d:fd:06:7a:01:b9:80:a4:6f:f6:
68:1a:5a:46:0f:0b:8c:3c:21:71:7c:02:88:2c:e6:
a5:06:33:90:6b:44:46:3f:2b:60:75:8b:f7:14:e4:
a9:4f:76:78:71:7c:a5:c9:6d:89:2d:bf:7b:0f:3e:
6d:72:7b:87:61:eb:04:68:40:87:da:b0:b9:c8:50:
da:cc:c8:fb:7d:3a:f5:b6:78:3b:d1:15:0a:e0:07:
bd:35:8b:c3:e8:fc:60:e9:a6:da:b4:5e:c6:5d:3d:
81:98:0e:8c:05:8c:bb:04:bd:46:28:6a:c5:13:7d:
c0:82:ba:43:b6:84:c8:45:28:71:b9:14:5b:d3:9d:
6c:a0:ea:45:bc:d3:a1:31:88:41:f9:fe:a4:6e:da:
ea:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DB:60:4D:A4:52:ED:BC:91:41:B8:FB:A9:C4:45:6A:2F:3D:CD:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CA1EBCD273F511EFB51CE17F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.47.0/24
Signature Algorithm: sha256WithRSAEncryption
16:78:30:c2:02:af:d3:a9:2b:2a:de:a0:5e:5a:20:4b:a9:a7:
ed:7e:e8:67:a4:b9:0b:58:ae:28:f5:c9:f1:eb:a6:03:ba:53:
90:f9:50:d4:23:f6:40:3f:fd:94:05:60:3e:4f:03:6c:00:72:
2e:c8:20:a5:81:4f:11:ea:cb:e2:28:18:29:3d:9b:bf:5a:a3:
35:56:cf:fe:0b:a4:90:3c:09:89:43:49:fd:cc:10:60:1d:10:
7b:14:df:cd:67:25:b4:01:12:d4:4b:9f:a7:5f:66:1a:08:0c:
d6:46:6e:1b:39:bd:81:3c:9f:4d:36:cb:77:43:0f:33:4b:cb:
c0:b2:a9:55:0c:53:92:f0:22:87:71:6b:eb:76:56:ce:42:7b:
1b:48:7a:4f:f0:6d:29:e6:1e:a4:cf:d6:d4:be:08:76:88:68:
96:7a:b6:1b:08:4f:23:df:73:ef:1b:f0:16:ed:f2:d4:97:b4:
46:70:3e:3d:4d:d8:2c:6c:22:10:ac:cc:88:2d:2f:3f:3e:8b:
be:33:ef:c1:55:9a:79:af:89:9e:14:1b:a0:ca:a4:6c:e0:ab:
5a:2c:f5:5e:b5:f5:e6:a0:77:af:d4:c9:48:9b:21:38:4b:15:
65:02:e1:7d:46:04:a9:a0:af:94:21:a0:59:52:e3:63:83:56:
a1:a5:97:54
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALcZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE2MDYzNDUyWhcNMjUwODA4MDYzNDUyWjAYMRYw
FAYDVQQDEw02NmU3ZDE5MS1mY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnH8U1L++7kEh0IS1QvMyeEWQem7fNgskNs27LWeqeD6KE5AFB+2WOR5A
YWS4Gt4FDGE6UNqubEV66Fpwz7XH53wUArvGCqCSPsn2U0CsM8Bl2BKOiTuUrs6W
sLbN88ztn7oM3xJ0VMJoxZxtOT39BnoBuYCkb/ZoGlpGDwuMPCFxfAKILOalBjOQ
a0RGPytgdYv3FOSpT3Z4cXylyW2JLb97Dz5tcnuHYesEaECH2rC5yFDazMj7fTr1
tng70RUK4Ae9NYvD6Pxg6abatF7GXT2BmA6MBYy7BL1GKGrFE33AgrpDtoTIRShx
uRRb051soOpFvNOhMYhB+f6kbtrqdQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFALb
YE2kUu28kUG4+6nERWovPc0lMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DQTFFQkNEMjczRjUxMUVGQjUxQ0UxN0Y3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8vMA0GCSqGSIb3DQEBCwUA
A4IBAQAWeDDCAq/TqSsq3qBeWiBLqaftfuhnpLkLWK4o9cnx66YDulOQ+VDUI/ZA
P/2UBWA+TwNsAHIuyCClgU8R6sviKBgpPZu/WqM1Vs/+C6SQPAmJQ0n9zBBgHRB7
FN/NZyW0ARLUS5+nX2YaCAzWRm4bOb2BPJ9NNst3Qw8zS8vAsqlVDFOS8CKHcWvr
dlbOQnsbSHpP8G0p5h6kz9bUvgh2iGiWerYbCE8j33PvG/AW7fLUl7RGcD49Tdgs
bCIQrMyILS8/Pou+M+/BVZp5r4meFBugyqRs4KtaLPVetfXmoHev1MlImyE4SxVl
AuF9RgSpoK+UIaBZUuNjg1ahpZdU
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:49 2024 by rpki-client on console-ams.rpki-client.org