Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3095736BDC311EFB504E987762E951A.roa
File: D3095736BDC311EFB504E987762E951A.roa (raw, json)
Hash identifier: kZUlqkA/oi5XqxUZelZa/9UuORFrwkKNgJTkjZ7fSc0=
Subject key identifier: 77:A0:78:D0:0C:9F:16:AD:E7:B4:14:87:3E:B9:4F:3F:28:08:C9:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E58F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3095736BDC311EFB504E987762E951A.roa
Signing time: Thu 19 Dec 2024 04:43:43 +0000
ROA not before: Thu 19 Dec 2024 04:43:39 +0000
ROA not after: Wed 10 Dec 2025 04:43:39 +0000
asID: 984
IP address blocks: 45.206.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58767 (0xe58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 19 04:43:39 2024 GMT
Not After : Dec 10 04:43:39 2025 GMT
Subject: CN=6763a47f-f46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:71:a5:89:c1:1f:29:99:34:01:95:16:9b:f8:
b0:0c:c9:d6:b4:f2:1f:95:6d:b6:3c:d5:8a:65:52:
e3:c7:c0:de:95:18:ea:95:39:12:a2:04:ed:09:89:
f5:3c:f6:8b:19:a1:ed:e2:08:1d:fa:87:8a:05:90:
d8:a7:eb:f0:8d:2c:c3:1c:e1:3d:93:8a:5c:ba:b9:
10:d8:df:a4:6a:b8:2c:32:d8:c0:87:51:8a:cb:3a:
f8:c9:4b:dd:36:d9:62:26:b7:1c:92:98:74:14:24:
8d:fc:87:57:ab:8d:2c:74:2d:4d:62:68:70:25:9e:
7e:10:8e:eb:2e:28:e1:a0:79:27:5f:e2:e0:6c:07:
8e:fb:a9:12:5c:2e:60:92:45:b4:50:13:bf:26:66:
19:85:26:09:1a:2b:89:22:18:87:a3:6f:f2:9d:cf:
7e:e1:8d:fe:36:63:04:18:37:84:ee:90:8c:69:c3:
d4:65:f2:97:da:df:e7:6e:19:fd:3c:94:59:b8:b2:
b9:29:a4:ff:60:90:a6:bb:0d:91:bd:c6:52:f4:49:
5a:8e:c7:e1:93:98:24:70:d0:bb:b0:0b:43:b1:ac:
c9:f7:6f:55:70:bc:45:3f:24:0c:0e:cd:c6:25:34:
7a:4f:d4:ce:14:e1:b2:62:7e:60:69:5f:ce:74:b1:
d7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A0:78:D0:0C:9F:16:AD:E7:B4:14:87:3E:B9:4F:3F:28:08:C9:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3095736BDC311EFB504E987762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.106.0/24
Signature Algorithm: sha256WithRSAEncryption
15:89:66:9a:75:6c:4a:5f:21:3a:95:68:d5:50:d5:82:48:9b:
e9:76:d9:69:e0:77:a7:cf:0a:23:38:5f:c8:44:61:c8:21:2a:
b9:24:69:7c:64:45:99:22:49:c2:1a:16:ee:0d:19:e9:ed:47:
94:61:1c:fe:26:80:60:33:83:1a:65:34:39:85:8c:42:0b:26:
32:94:c5:22:dc:2f:5e:f9:85:bf:d6:77:78:fd:f3:34:9b:f2:
2a:23:17:63:a2:fe:e5:f4:5d:20:f6:3d:86:f9:76:74:6e:19:
7f:96:eb:2e:40:d0:f2:55:df:34:99:34:02:18:2c:bc:5b:9e:
25:69:92:c5:da:9d:5e:72:5b:20:7e:64:d1:1b:fd:8e:23:ed:
8f:66:4e:ed:aa:26:56:44:05:55:a9:e7:0e:bb:ed:c8:18:00:
d8:63:7e:d2:e4:e1:85:86:3b:99:05:23:eb:1d:1b:36:0a:81:
5d:98:ab:50:05:cb:02:20:12:50:c5:c4:61:ad:05:f8:b7:24:
93:24:77:3c:c5:b5:3f:84:18:cf:63:2d:77:29:c9:1f:1d:7f:
45:a0:7c:fb:62:f7:08:18:b5:03:06:a6:7b:94:34:f2:10:35:
3d:67:9d:63:13:0b:c8:7c:5b:db:34:c3:44:4d:60:00:c1:b6:
50:99:8e:3f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOWPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjE5MDQ0MzM5WhcNMjUxMjEwMDQ0MzM5WjAYMRYw
FAYDVQQDEw02NzYzYTQ3Zi1mNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5HGlicEfKZk0AZUWm/iwDMnWtPIflW22PNWKZVLjx8DelRjqlTkSogTt
CYn1PPaLGaHt4ggd+oeKBZDYp+vwjSzDHOE9k4pcurkQ2N+kargsMtjAh1GKyzr4
yUvdNtliJrcckph0FCSN/IdXq40sdC1NYmhwJZ5+EI7rLijhoHknX+LgbAeO+6kS
XC5gkkW0UBO/JmYZhSYJGiuJIhiHo2/ync9+4Y3+NmMEGDeE7pCMacPUZfKX2t/n
bhn9PJRZuLK5KaT/YJCmuw2RvcZS9Elajsfhk5gkcNC7sAtDsazJ929VcLxFPyQM
Ds3GJTR6T9TOFOGyYn5gaV/OdLHXoQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHeg
eNAMnxat57QUhz65Tz8oCMn3MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EMzA5NTczNkJEQzMxMUVGQjUwNEU5ODc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc5qMA0GCSqGSIb3DQEBCwUA
A4IBAQAViWaadWxKXyE6lWjVUNWCSJvpdtlp4HenzwojOF/IRGHIISq5JGl8ZEWZ
IknCGhbuDRnp7UeUYRz+JoBgM4MaZTQ5hYxCCyYylMUi3C9e+YW/1nd4/fM0m/Iq
Ixdjov7l9F0g9j2G+XZ0bhl/lusuQNDyVd80mTQCGCy8W54laZLF2p1eclsgfmTR
G/2OI+2PZk7tqiZWRAVVqecOu+3IGADYY37S5OGFhjuZBSPrHRs2CoFdmKtQBcsC
IBJQxcRhrQX4tySTJHc8xbU/hBjPYy13KckfHX9FoHz7YvcIGLUDBqZ7lDTyEDU9
Z51jEwvIfFvbNMNETWAAwbZQmY4/
-----END CERTIFICATE-----
Generated at Wed Feb 5 10:00:18 2025 by rpki-client