Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E080F88408EC11EE92FC760E4AD9E6FC.roa
File: E080F88408EC11EE92FC760E4AD9E6FC.roa (raw, json)
Hash identifier: wVSvGk/ZKqJh8A29gFv32p93mJuTEqT3waHDz7dHPDE=
Subject key identifier: 55:95:20:A1:E3:D6:5E:77:BB:B1:09:16:1B:69:99:17:C6:A5:77:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2AA0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E080F88408EC11EE92FC760E4AD9E6FC.roa
Signing time: Mon 12 Jun 2023 06:46:37 +0000
ROA not before: Mon 12 Jun 2023 06:46:34 +0000
ROA not after: Sat 25 May 2024 06:46:34 +0000
asID: 131178
IP address blocks: 45.201.208.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10912 (0x2aa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 06:46:34 2023 GMT
Not After : May 25 06:46:34 2024 GMT
Subject: CN=6486bf4d-0403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:66:da:f9:0a:62:d3:1c:cc:a3:e1:cc:86:fb:
67:83:ad:a8:f3:1f:6c:7b:17:3f:cf:4c:0a:21:8d:
9d:c2:02:35:a8:ac:df:92:8b:77:58:57:6a:8a:a6:
74:23:6d:f6:01:22:bf:33:97:e6:62:5e:47:e1:19:
83:26:74:7f:d0:56:09:84:40:6a:ad:01:82:7a:29:
88:0a:59:8f:82:8d:84:23:07:d4:a6:ea:c6:2d:2b:
09:c1:0a:2c:7b:69:d3:85:96:d1:78:01:87:97:89:
7e:4f:5d:b1:45:a4:09:68:cb:fd:ba:33:2d:3b:e6:
a2:85:51:d6:56:8a:92:7b:26:c6:98:60:9c:bd:0f:
d4:d8:4a:33:60:a2:bb:cc:5d:b7:2c:06:6a:b0:92:
d8:ca:7b:ec:14:cf:38:c6:9e:b1:ba:7f:3a:ac:d6:
eb:14:9b:ff:0f:44:ed:2e:b3:50:2e:60:e7:3c:0a:
3a:85:9f:f3:94:d7:44:b9:0f:28:cb:b1:a5:f0:08:
e1:ff:0f:75:a1:3d:ec:6e:75:86:09:b6:5c:55:98:
f7:67:2d:87:1a:78:83:f6:50:7f:c3:20:b3:5b:a9:
a9:59:70:14:88:62:a6:5e:2c:62:84:9c:3e:55:fa:
6f:f1:dc:ff:54:1d:64:92:12:a2:4c:07:0a:00:aa:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:95:20:A1:E3:D6:5E:77:BB:B1:09:16:1B:69:99:17:C6:A5:77:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E080F88408EC11EE92FC760E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.208.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:e8:85:12:46:8d:8f:61:81:26:59:ad:69:0d:fc:b7:94:36:
6c:c4:a1:94:ef:5b:68:87:85:f2:f0:3f:77:56:63:cb:30:5d:
72:b3:b2:9a:e7:e8:0b:db:22:14:e6:c5:2b:fc:d0:2d:30:30:
a7:0c:da:9d:05:80:78:08:18:e9:ed:73:95:b8:2c:e4:ef:fa:
93:00:43:9d:45:75:11:5b:ac:83:f9:82:91:df:aa:48:1f:08:
7a:4e:66:17:73:a4:ea:fa:78:c4:59:8f:dd:b7:ca:a4:c5:6b:
2d:82:8c:d8:17:f3:95:88:d0:fa:ce:82:aa:58:93:03:24:92:
2f:52:61:63:00:85:4c:93:bd:ec:6b:17:51:fe:64:12:a8:cc:
25:cf:e4:2b:f3:75:bf:8b:c7:f8:fe:75:4c:17:67:6c:88:f5:
db:bf:b4:c5:f3:89:73:41:97:c5:0f:5d:e2:18:b6:90:3d:9d:
2e:9b:0a:99:fd:93:ff:01:9a:a5:74:29:32:e5:c7:e2:b1:5d:
83:00:7a:b3:79:81:d9:a3:cd:03:5d:d5:0c:78:de:a2:2f:1c:
65:17:bf:5d:00:a5:03:3c:5d:6c:2f:e1:8e:cc:2a:ce:a1:ce:
fc:3f:80:17:34:c7:0a:d3:e9:8a:1c:47:14:b7:48:be:0e:ec:
76:5f:ad:de
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICKqAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTIwNjQ2MzRaFw0yNDA1MjUwNjQ2MzRaMBgxFjAU
BgNVBAMTDTY0ODZiZjRkLTA0MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDrZtr5CmLTHMyj4cyG+2eDrajzH2x7Fz/PTAohjZ3CAjWorN+Si3dYV2qK
pnQjbfYBIr8zl+ZiXkfhGYMmdH/QVgmEQGqtAYJ6KYgKWY+CjYQjB9Sm6sYtKwnB
Cix7adOFltF4AYeXiX5PXbFFpAloy/26My075qKFUdZWipJ7JsaYYJy9D9TYSjNg
orvMXbcsBmqwktjKe+wUzzjGnrG6fzqs1usUm/8PRO0us1AuYOc8CjqFn/OU10S5
DyjLsaXwCOH/D3WhPexudYYJtlxVmPdnLYcaeIP2UH/DILNbqalZcBSIYqZeLGKE
nD5V+m/x3P9UHWSSEqJMBwoAquCpAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUVZUg
oePWXne7sQkWG2mZF8ald9UwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0UwODBGODg0MDhFQzExRUU5MkZDNzYwRTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtydAwDQYJKoZIhvcNAQELBQAD
ggEBALXohRJGjY9hgSZZrWkN/LeUNmzEoZTvW2iHhfLwP3dWY8swXXKzsprn6Avb
IhTmxSv80C0wMKcM2p0FgHgIGOntc5W4LOTv+pMAQ51FdRFbrIP5gpHfqkgfCHpO
ZhdzpOr6eMRZj923yqTFay2CjNgX85WI0PrOgqpYkwMkki9SYWMAhUyTvexrF1H+
ZBKozCXP5Cvzdb+Lx/j+dUwXZ2yI9du/tMXziXNBl8UPXeIYtpA9nS6bCpn9k/8B
mqV0KTLlx+KxXYMAerN5gdmjzQNd1Qx43qIvHGUXv10ApQM8XWwv4Y7MKs6hzvw/
gBc0xwrT6YocRxS3SL4O7HZfrd4=
-----END CERTIFICATE-----
Generated at Thu May 2 17:18:24 2024 by rpki-client on console-ams.rpki-client.org