Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D010BD2E983111EF92C68B47762E951A.roa
File: D010BD2E983111EF92C68B47762E951A.roa (raw, json)
Hash identifier: vR+A42zihi21lD8r7nyx3zOJws8CZS9425tGOovp0QQ=
Subject key identifier: 37:D4:3D:5F:6C:6D:FF:B1:1A:D1:ED:65:CF:47:8C:9F:66:15:93:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB65
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D010BD2E983111EF92C68B47762E951A.roa
Signing time: Fri 01 Nov 2024 09:15:18 +0000
ROA not before: Fri 01 Nov 2024 09:15:14 +0000
ROA not after: Thu 05 Dec 2024 09:15:14 +0000
asID: 6079
IP address blocks: 45.202.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52069 (0xcb65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 09:15:14 2024 GMT
Not After : Dec 5 09:15:14 2024 GMT
Subject: CN=67249c26-d6e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:45:4c:71:cb:f0:bc:b9:99:bf:f3:18:e1:e0:
90:fb:1a:0e:d7:40:70:9a:a5:c7:a3:bc:1f:e8:0d:
d8:df:e1:27:e5:d7:b8:02:d6:f1:ff:9a:e1:0d:26:
46:c4:bb:f7:11:d7:89:79:d7:36:3a:48:b0:24:31:
b2:3f:df:50:1e:dc:e7:0c:6d:f5:60:8c:2e:44:9b:
6a:44:eb:8c:b2:d2:79:60:68:56:9c:45:93:a3:1c:
95:ee:9d:6e:a0:de:4f:4c:ff:b7:cc:69:76:a4:d8:
2b:68:b8:0d:4a:4a:5c:85:29:d7:34:24:96:38:ad:
30:f4:3e:63:6c:4f:94:1f:1d:a3:81:fb:4a:41:75:
e1:12:94:a9:a2:72:52:a0:46:b6:0f:b6:4c:93:8d:
8e:9c:8a:c1:ee:10:23:96:c7:31:c6:c1:e3:7b:3a:
a0:63:33:ca:28:62:b3:93:99:84:0b:f2:a4:ab:97:
1c:3a:02:1e:bb:7e:6f:68:63:87:a2:71:8b:b1:62:
3f:89:c5:12:78:ba:80:7a:7a:8b:14:d8:4a:5e:0f:
a4:53:2d:c0:a9:92:5f:ef:3a:17:17:5f:94:7e:be:
ef:f9:2a:00:22:4f:93:f6:bd:66:19:dd:15:a3:c3:
ac:76:7e:25:c9:d9:b2:09:e9:93:a4:66:b3:e7:a2:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D4:3D:5F:6C:6D:FF:B1:1A:D1:ED:65:CF:47:8C:9F:66:15:93:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D010BD2E983111EF92C68B47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.114.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ec:17:45:f8:94:d5:18:d8:44:0a:6b:e2:54:4f:50:45:44:
f9:76:e8:03:95:1d:de:e6:6e:f2:a2:01:d6:58:5f:0c:e7:b9:
bc:93:79:d7:b0:0a:d7:ec:b4:11:bb:74:5d:a9:5b:c4:5b:67:
f4:33:6b:dc:90:76:b4:47:bd:78:d8:1e:48:f8:7b:70:97:f3:
a6:40:d0:3c:7e:e1:43:86:96:ef:a3:da:56:9d:7d:9a:4a:bc:
fa:7b:27:89:ed:d7:ac:90:dc:05:3d:bc:06:49:b4:1a:21:5e:
ec:f9:63:60:de:ab:71:ab:89:0e:87:8b:21:04:8f:e4:4a:0c:
b9:79:0c:a5:d4:26:99:61:b7:2a:2b:7e:8d:77:b3:6b:1d:54:
62:c7:cf:ee:24:d7:92:2d:29:40:cf:d0:be:11:1b:03:41:04:
ad:1a:fa:bc:2d:00:67:22:7b:f6:23:1e:84:39:cc:ec:4d:3e:
9f:d6:1f:a5:ec:37:d5:c4:59:27:6d:e6:8b:09:b4:04:c2:f7:
80:33:2b:2f:13:8c:02:8f:dd:1e:63:6d:46:86:ec:64:33:32:
ec:62:43:63:69:2f:e9:b0:1b:41:b4:56:8d:a1:ff:04:40:bc:
f7:d3:38:d5:f0:7e:e6:12:e6:f4:68:cf:e0:77:1b:2e:74:e1:
67:e5:43:76
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMtlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTAxMDkxNTE0WhcNMjQxMjA1MDkxNTE0WjAYMRYw
FAYDVQQDEw02NzI0OWMyNi1kNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwEVMccvwvLmZv/MY4eCQ+xoO10BwmqXHo7wf6A3Y3+En5de4Atbx/5rh
DSZGxLv3EdeJedc2OkiwJDGyP99QHtznDG31YIwuRJtqROuMstJ5YGhWnEWToxyV
7p1uoN5PTP+3zGl2pNgraLgNSkpchSnXNCSWOK0w9D5jbE+UHx2jgftKQXXhEpSp
onJSoEa2D7ZMk42OnIrB7hAjlscxxsHjezqgYzPKKGKzk5mEC/Kkq5ccOgIeu35v
aGOHonGLsWI/icUSeLqAenqLFNhKXg+kUy3AqZJf7zoXF1+Ufr7v+SoAIk+T9r1m
Gd0Vo8Osdn4lydmyCemTpGaz56J8OwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDfU
PV9sbf+xGtHtZc9HjJ9mFZO4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EMDEwQkQyRTk4MzExMUVGOTJDNjhCNDc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcpyMA0GCSqGSIb3DQEBCwUA
A4IBAQB47BdF+JTVGNhECmviVE9QRUT5dugDlR3e5m7yogHWWF8M57m8k3nXsArX
7LQRu3RdqVvEW2f0M2vckHa0R7142B5I+Htwl/OmQNA8fuFDhpbvo9pWnX2aSrz6
eyeJ7deskNwFPbwGSbQaIV7s+WNg3qtxq4kOh4shBI/kSgy5eQyl1CaZYbcqK36N
d7NrHVRix8/uJNeSLSlAz9C+ERsDQQStGvq8LQBnInv2Ix6EOczsTT6f1h+l7DfV
xFknbeaLCbQEwveAMysvE4wCj90eY21GhuxkMzLsYkNjaS/psBtBtFaNof8EQLz3
0zjV8H7mEub0aM/gdxsudOFn5UN2
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org