Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E543CC24FE1A11EEA35955F5007001B1.roa
File: E543CC24FE1A11EEA35955F5007001B1.roa (raw, json)
Hash identifier: qO+r/F3+H9/dwvbTTaoJ1EmRDPGJ91+DrjJGIV8qhTw=
Subject key identifier: 6E:4B:46:8E:6A:EB:BD:46:A3:E4:18:31:2F:BD:94:6B:8F:B2:68:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 837C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E543CC24FE1A11EEA35955F5007001B1.roa
Signing time: Fri 19 Apr 2024 07:03:16 +0000
ROA not before: Fri 19 Apr 2024 07:03:13 +0000
ROA not after: Wed 22 May 2024 07:03:13 +0000
asID: 20473
IP address blocks: 45.200.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33660 (0x837c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 07:03:13 2024 GMT
Not After : May 22 07:03:13 2024 GMT
Subject: CN=66221734-4064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:73:57:a0:57:8e:ca:8a:0a:86:5a:bd:d1:e2:
64:1f:34:63:41:62:a2:3a:bf:60:a8:92:41:56:21:
78:30:c9:2e:4f:0d:71:42:07:22:25:0f:41:a0:1d:
35:06:63:fc:3a:5a:74:74:fa:4e:68:1c:98:fc:3c:
7b:09:34:16:c7:0d:75:83:24:99:c5:e5:76:d0:b4:
14:38:77:68:48:fb:7d:52:1c:39:70:fc:f4:42:97:
f0:2c:a8:36:34:34:00:07:a4:b8:9a:58:92:ad:0b:
45:f0:7e:0f:19:71:3d:6e:e6:f2:dd:9e:5f:c0:33:
4c:90:88:ee:8e:91:da:c6:50:0d:ed:e5:27:87:ed:
2a:15:98:4b:0a:72:01:ae:32:df:c4:e7:ad:34:63:
33:93:a8:de:71:77:e2:cc:42:b8:01:bb:b6:27:b9:
fa:ae:50:1b:b5:1d:e6:07:b1:61:27:7c:3f:31:30:
c2:2b:51:54:b1:cf:d3:0c:8c:0a:56:f3:d3:a6:fd:
92:30:7c:9a:d7:5d:e9:d0:1d:ba:1d:cf:66:cd:62:
d3:d6:08:b1:3e:b1:d0:ad:fe:0f:22:4e:80:e3:62:
23:e6:27:e4:94:7c:d8:d7:45:85:84:62:4b:59:7e:
a8:37:2d:50:78:a7:ca:01:d0:c6:2d:53:ff:8b:6b:
ee:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4B:46:8E:6A:EB:BD:46:A3:E4:18:31:2F:BD:94:6B:8F:B2:68:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E543CC24FE1A11EEA35955F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.121.0/24
Signature Algorithm: sha256WithRSAEncryption
73:01:8f:53:36:87:d6:c4:bc:a1:73:19:ef:90:2c:4a:59:9a:
d7:31:9d:c0:73:96:34:1f:cf:17:c8:b0:47:ee:fb:18:39:31:
10:c4:22:68:b0:4b:c3:a2:10:ac:12:fc:80:fb:b4:fd:13:5d:
1a:5c:8c:30:5d:bc:f4:7c:d3:b9:43:d3:58:a4:77:39:16:8e:
fe:27:d0:a3:f2:a9:f6:29:c7:84:e1:5e:de:54:74:90:23:ab:
1c:a0:5f:0b:5b:07:2b:1b:23:9f:32:4c:aa:14:b9:1a:30:48:
64:fa:16:fa:f0:98:19:e8:20:99:a9:1b:ec:38:e5:13:aa:d0:
f9:d3:7c:3b:9d:93:a3:8e:9e:3b:ea:ca:9d:f9:78:57:64:44:
b8:5c:5b:05:7e:88:73:b6:79:14:a0:17:58:9a:a0:39:47:ce:
a9:c9:7d:07:17:7e:60:89:6a:61:b6:4a:61:61:13:a8:25:ac:
25:83:8b:d1:23:52:dc:26:b9:9f:49:82:b8:54:c8:5f:75:9d:
58:f6:00:18:c8:cc:4a:e2:a3:1a:11:ad:ef:bc:b1:b7:11:03:
e0:b3:17:26:f2:03:c5:44:26:a8:6f:d3:05:7d:72:5c:57:c9:
89:6d:7c:cf:9c:95:41:d7:57:26:b2:52:25:46:22:5c:16:8b:
81:a8:53:ed
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIN8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDE5MDcwMzEzWhcNMjQwNTIyMDcwMzEzWjAYMRYw
FAYDVQQDEw02NjIyMTczNC00MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy3NXoFeOyooKhlq90eJkHzRjQWKiOr9gqJJBViF4MMkuTw1xQgciJQ9B
oB01BmP8Olp0dPpOaByY/Dx7CTQWxw11gySZxeV20LQUOHdoSPt9Uhw5cPz0Qpfw
LKg2NDQAB6S4mliSrQtF8H4PGXE9buby3Z5fwDNMkIjujpHaxlAN7eUnh+0qFZhL
CnIBrjLfxOetNGMzk6jecXfizEK4Abu2J7n6rlAbtR3mB7FhJ3w/MTDCK1FUsc/T
DIwKVvPTpv2SMHya113p0B26Hc9mzWLT1gixPrHQrf4PIk6A42Ij5ifklHzY10WF
hGJLWX6oNy1QeKfKAdDGLVP/i2vuXwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFG5L
Ro5q671Go+QYMS+9lGuPsmhVMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FNTQzQ0MyNEZFMUExMUVFQTM1OTU1RjUwMDcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALch5MA0GCSqGSIb3DQEBCwUA
A4IBAQBzAY9TNofWxLyhcxnvkCxKWZrXMZ3Ac5Y0H88XyLBH7vsYOTEQxCJosEvD
ohCsEvyA+7T9E10aXIwwXbz0fNO5Q9NYpHc5Fo7+J9Cj8qn2KceE4V7eVHSQI6sc
oF8LWwcrGyOfMkyqFLkaMEhk+hb68JgZ6CCZqRvsOOUTqtD503w7nZOjjp476sqd
+XhXZES4XFsFfohztnkUoBdYmqA5R86pyX0HF35giWphtkphYROoJawlg4vRI1Lc
JrmfSYK4VMhfdZ1Y9gAYyMxK4qMaEa3vvLG3EQPgsxcm8gPFRCaob9MFfXJcV8mJ
bXzPnJVB11cmslIlRiJcFouBqFPt
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org