Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3D73108C32411EFA7754475762E951A.roa
File: E3D73108C32411EFA7754475762E951A.roa (raw, json)
Hash identifier: lld6KdSjUVpHz9lkizGkBTOws9CVSMy/1AscB+61AqI=
Subject key identifier: 38:F9:5F:D1:22:39:E4:3F:71:B4:4B:21:85:F5:8D:AE:F1:A0:4A:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EA71
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3D73108C32411EFA7754475762E951A.roa
Signing time: Thu 26 Dec 2024 01:01:08 +0000
ROA not before: Thu 26 Dec 2024 01:01:04 +0000
ROA not after: Sat 01 Mar 2025 01:01:04 +0000
asID: 984
IP address blocks: 45.202.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60017 (0xea71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 01:01:04 2024 GMT
Not After : Mar 1 01:01:04 2025 GMT
Subject: CN=676caad4-b8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:76:aa:87:a6:4d:4e:75:8a:81:8d:b2:07:58:
d8:2e:7c:c2:b6:63:8f:f5:e4:f7:35:29:52:11:cf:
8b:03:04:6c:bc:95:0e:47:df:b3:ca:48:98:e7:ed:
3f:c5:d8:c5:7d:fa:62:f0:66:18:33:78:88:2f:8a:
19:93:3c:7a:14:54:7d:8a:44:80:e7:60:4f:9c:b3:
ba:d5:16:42:d3:93:dc:88:ce:b0:76:e6:44:5d:9c:
38:74:34:29:15:e9:d1:ec:d7:f5:3c:12:a1:35:bc:
e3:6f:2b:4f:81:b3:d3:1e:82:6f:ea:e9:72:24:48:
e3:3d:12:f2:b2:5a:71:bf:4e:62:cf:4f:e5:e2:fa:
6f:c5:e6:a5:e7:57:20:47:c6:7d:2c:7f:37:7e:e0:
81:5b:b6:ca:ca:a1:5d:a6:e7:f7:32:b1:9b:1f:a4:
94:b4:00:b9:94:1b:98:61:45:3c:16:e1:69:aa:0d:
01:04:e7:3e:15:07:d4:0f:1d:ae:d5:94:ca:85:9b:
e2:4a:b2:e1:43:93:99:b5:72:d0:f9:f9:38:b9:a6:
31:ee:a5:c8:f8:15:72:e0:bd:c5:e0:c0:dd:bc:6d:
89:df:be:70:47:24:6e:7f:07:cb:32:32:43:38:db:
05:e4:3d:82:71:6b:57:cd:f5:d9:27:b2:75:0e:07:
03:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F9:5F:D1:22:39:E4:3F:71:B4:4B:21:85:F5:8D:AE:F1:A0:4A:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3D73108C32411EFA7754475762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0f:52:d2:72:8a:86:27:55:3b:0c:38:1a:be:4d:d8:2d:aa:4a:
03:da:93:88:7c:e6:40:61:79:85:7a:94:18:7d:07:8a:f8:79:
80:c4:87:ae:08:d2:12:1b:19:e7:05:3b:58:a5:89:e3:50:5c:
21:f7:49:80:85:4f:67:30:0e:b9:d1:55:84:0d:ef:56:75:9c:
c5:6a:49:1b:6e:d3:ce:28:a1:1a:c1:dc:7a:b9:ba:34:e9:86:
bc:8c:28:b1:88:03:3b:ee:4d:45:d7:a2:4c:b6:67:55:e9:0b:
3a:7c:c8:a0:82:c9:87:4a:2a:1a:92:bb:dc:35:aa:48:0a:54:
bc:47:d4:3b:1b:10:e3:fa:41:14:5c:69:53:45:84:93:60:1c:
c5:25:71:b5:f4:11:37:22:79:4b:ed:f0:c4:27:56:af:6c:55:
d3:21:81:e3:a8:43:83:9b:ec:60:5b:8a:8d:14:a6:20:fb:4c:
69:ce:6c:7a:dc:28:41:34:21:8b:6f:27:c1:96:d1:d0:e5:6f:
d0:0d:3f:56:97:74:c2:3b:32:3e:58:3c:4a:58:d5:9c:63:27:
af:6f:c5:9c:94:20:17:ea:fe:c8:c5:40:cc:d4:9e:3d:47:26:
6a:40:6f:56:ca:2f:ba:ab:87:fb:65:cd:ed:9a:fd:d5:9d:48:
d1:45:2e:37
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOpxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI2MDEwMTA0WhcNMjUwMzAxMDEwMTA0WjAYMRYw
FAYDVQQDEw02NzZjYWFkNC1iOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxHaqh6ZNTnWKgY2yB1jYLnzCtmOP9eT3NSlSEc+LAwRsvJUOR9+zykiY
5+0/xdjFffpi8GYYM3iIL4oZkzx6FFR9ikSA52BPnLO61RZC05PciM6wduZEXZw4
dDQpFenR7Nf1PBKhNbzjbytPgbPTHoJv6ulyJEjjPRLyslpxv05iz0/l4vpvxeal
51cgR8Z9LH83fuCBW7bKyqFdpuf3MrGbH6SUtAC5lBuYYUU8FuFpqg0BBOc+FQfU
Dx2u1ZTKhZviSrLhQ5OZtXLQ+fk4uaYx7qXI+BVy4L3F4MDdvG2J375wRyRufwfL
MjJDONsF5D2CcWtXzfXZJ7J1DgcDHQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDj5
X9EiOeQ/cbRLIYX1ja7xoEpJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FM0Q3MzEwOEMzMjQxMUVGQTc3NTQ0NzU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGLcpAMA0GCSqGSIb3DQEBCwUA
A4IBAQAPUtJyioYnVTsMOBq+TdgtqkoD2pOIfOZAYXmFepQYfQeK+HmAxIeuCNIS
GxnnBTtYpYnjUFwh90mAhU9nMA650VWEDe9WdZzFakkbbtPOKKEawdx6ubo06Ya8
jCixiAM77k1F16JMtmdV6Qs6fMiggsmHSioakrvcNapIClS8R9Q7GxDj+kEUXGlT
RYSTYBzFJXG19BE3InlL7fDEJ1avbFXTIYHjqEODm+xgW4qNFKYg+0xpzmx63ChB
NCGLbyfBltHQ5W/QDT9Wl3TCOzI+WDxKWNWcYyevb8WclCAX6v7IxUDM1J49RyZq
QG9Wyi+6q4f7Zc3tmv3VnUjRRS43
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:54 2025 by rpki-client