Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC94E33408EC11EEA13E6E0E4AD9E6FC.roa
File: DC94E33408EC11EEA13E6E0E4AD9E6FC.roa (raw, json)
Hash identifier: izVymHS9SJKdx2xOdzHtavj/vr3S4RLNtLBzes4qqWg=
Subject key identifier: 66:04:13:E7:AD:1D:47:6A:31:E1:BA:D6:DB:E5:FB:A7:55:0C:A5:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2A9E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC94E33408EC11EEA13E6E0E4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:46:30 +0000
ROA not before: Mon 12 Jun 2023 06:46:27 +0000
ROA not after: Tue 28 May 2024 06:46:27 +0000
asID: 212552
IP address blocks: 45.195.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10910 (0x2a9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:46:27 2023 GMT
Not After : May 28 06:46:27 2024 GMT
Subject: CN=6486bf46-dfea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e6:7e:8b:ea:22:de:94:c3:7e:e0:4a:9f:48:
25:41:08:3a:12:72:31:b8:d5:fc:5a:bf:2f:96:4d:
3e:22:d9:79:17:7e:e3:5c:b4:7a:cd:91:44:d7:8a:
94:f0:2d:b0:ae:d7:af:4c:49:18:40:a7:f3:51:f8:
d2:11:69:14:34:af:ea:02:01:80:8b:1b:1f:c7:9b:
ce:4c:8c:44:3a:78:38:f8:27:76:04:f5:f5:7d:3c:
75:ef:35:a7:4b:31:72:de:9f:1c:27:14:d7:ca:74:
06:05:f0:0d:ad:a5:db:cc:87:8f:5c:5a:7a:0a:bc:
97:37:13:1d:1b:bd:b7:ff:2c:43:4d:ad:94:97:c1:
e9:41:21:88:99:1a:b1:33:43:ae:3d:2f:9c:0d:23:
67:1a:dd:32:4a:c5:f8:47:bf:59:b9:d1:08:10:9c:
ff:f6:9c:65:7e:39:0e:4b:d6:c5:89:e2:4a:17:f0:
e1:6c:f5:62:ee:ee:50:99:1b:4a:e6:cd:15:cc:71:
88:e2:69:7f:e4:e5:14:19:ae:ce:36:ff:0f:c9:23:
0e:66:21:64:31:cc:5c:0f:11:a8:44:c1:f6:d7:d7:
89:70:5c:49:b0:d1:9c:8a:1c:8d:b4:b7:2d:4c:3d:
85:b0:69:b1:0b:f5:15:cf:9e:c8:c2:45:71:09:5f:
d5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:04:13:E7:AD:1D:47:6A:31:E1:BA:D6:DB:E5:FB:A7:55:0C:A5:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC94E33408EC11EEA13E6E0E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.200.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:55:ac:67:47:99:76:e7:44:76:7f:23:de:f0:d0:32:c0:15:
c2:82:80:a7:5c:15:4d:e7:33:76:db:49:be:44:41:19:d9:99:
20:46:10:2c:d7:7a:bc:32:a6:fc:5e:79:a6:df:7c:e9:b1:32:
21:c3:31:99:6b:5a:c3:12:14:2b:16:e6:30:1b:03:6c:a8:fe:
18:af:d3:61:19:47:66:53:b2:7d:f4:92:4f:30:24:4b:da:7e:
07:5f:d7:ca:4a:1a:cd:d4:a9:55:24:fd:3b:8e:c6:dd:b7:2d:
af:dd:3d:41:e1:c1:a6:4f:1f:57:1d:d2:49:9a:a8:12:4d:2d:
26:cb:bc:ac:33:08:41:e9:31:93:c0:9d:d1:6d:04:84:42:4d:
37:c1:15:c5:d4:ec:a1:ed:d0:f1:44:3d:b6:f6:9a:97:84:c3:
75:77:5d:51:1b:a8:cd:77:34:58:8d:c2:be:db:38:1b:a8:63:
97:8c:88:86:f8:bf:cb:e3:a4:29:14:cb:ca:e4:b3:a4:1e:c0:
65:cf:14:b8:52:cb:63:79:79:a4:10:2d:48:f1:e6:f9:b3:25:
22:7d:21:5b:7d:37:a6:b8:6e:45:94:b1:f7:24:fd:fe:86:19:
be:2a:d2:e8:81:13:88:8c:c5:bf:0d:fd:10:47:e1:44:dd:43:
3c:82:85:09
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKp4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNjQ2MjdaFw0yNDA1MjgwNjQ2MjdaMBgxFjAU
BgNVBAMTDTY0ODZiZjQ2LWRmZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDd5n6L6iLelMN+4EqfSCVBCDoScjG41fxavy+WTT4i2XkXfuNctHrNkUTX
ipTwLbCu169MSRhAp/NR+NIRaRQ0r+oCAYCLGx/Hm85MjEQ6eDj4J3YE9fV9PHXv
NadLMXLenxwnFNfKdAYF8A2tpdvMh49cWnoKvJc3Ex0bvbf/LENNrZSXwelBIYiZ
GrEzQ649L5wNI2ca3TJKxfhHv1m50QgQnP/2nGV+OQ5L1sWJ4koX8OFs9WLu7lCZ
G0rmzRXMcYjiaX/k5RQZrs42/w/JIw5mIWQxzFwPEahEwfbX14lwXEmw0ZyKHI20
ty1MPYWwabEL9RXPnsjCRXEJX9WZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUZgQT
560dR2ox4brW2+X7p1UMpXowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0RDOTRFMzM0MDhFQzExRUVBMTNFNkUwRTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtw8gwDQYJKoZIhvcNAQELBQAD
ggEBAJxVrGdHmXbnRHZ/I97w0DLAFcKCgKdcFU3nM3bbSb5EQRnZmSBGECzXerwy
pvxeeabffOmxMiHDMZlrWsMSFCsW5jAbA2yo/hiv02EZR2ZTsn30kk8wJEvafgdf
18pKGs3UqVUk/TuOxt23La/dPUHhwaZPH1cd0kmaqBJNLSbLvKwzCEHpMZPAndFt
BIRCTTfBFcXU7KHt0PFEPbb2mpeEw3V3XVEbqM13NFiNwr7bOBuoY5eMiIb4v8vj
pCkUy8rks6QewGXPFLhSy2N5eaQQLUjx5vmzJSJ9IVt9N6a4bkWUsfck/f6GGb4q
0uiBE4iMxb8N/RBH4UTdQzyChQk=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org