Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EBC626614B11EF83799F4B762E951A.roa
File: E8EBC626614B11EF83799F4B762E951A.roa (raw, json)
Hash identifier: PdaDTik2krMp5w/0yqG1yuZFSi51LMtiwp1vm36jhPY=
Subject key identifier: BD:6F:BC:E0:3F:2E:1F:C4:FF:0F:94:71:6B:12:13:D0:AD:28:30:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: AD16
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EBC626614B11EF83799F4B762E951A.roa
Signing time: Fri 23 Aug 2024 12:33:33 +0000
ROA not before: Fri 23 Aug 2024 12:33:30 +0000
ROA not after: Fri 19 Dec 2025 12:33:30 +0000
asID: 141190
IP address blocks: 45.200.96.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44310 (0xad16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 12:33:30 2024 GMT
Not After : Dec 19 12:33:30 2025 GMT
Subject: CN=66c8819d-d4a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fc:7d:2b:31:a0:40:84:eb:19:6d:b9:82:a3:
8f:5c:ce:14:7d:df:bf:d8:2b:53:1c:be:3e:74:ef:
a9:b5:10:ec:da:27:40:f8:c6:04:40:40:e3:dc:04:
36:0e:d9:49:c1:14:aa:27:5f:cf:5d:b4:ea:bf:de:
d8:16:54:66:06:22:a3:ba:1d:16:5f:34:b6:cf:09:
65:22:eb:8a:dd:70:1b:c8:c0:95:ed:b5:b6:69:40:
9b:e9:f7:32:92:b7:de:55:02:70:2d:a1:46:7c:66:
cd:27:54:a7:67:32:bf:f6:6d:48:40:2a:ef:aa:a3:
c7:89:28:b0:1c:a9:eb:97:42:53:13:a2:9a:0e:5a:
02:3e:8b:d2:d9:ff:02:36:94:23:c1:07:84:1c:b1:
81:bb:6c:2f:d1:e2:67:fe:13:f4:1d:d5:62:1b:54:
1a:1d:0f:78:12:32:51:6c:69:8e:28:1f:51:e7:31:
e2:f7:b7:91:9f:77:b5:62:bd:8e:9d:40:86:dd:92:
aa:87:99:c3:0e:97:4c:b6:7e:95:c7:09:b6:d7:93:
ae:b0:d5:d3:1a:43:b6:89:13:e8:e8:7c:f0:ef:58:
37:f6:60:dd:67:98:42:93:e6:f9:8d:db:d0:17:32:
33:fc:b7:79:73:0a:30:e0:6d:8f:04:3f:8f:5a:d5:
05:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6F:BC:E0:3F:2E:1F:C4:FF:0F:94:71:6B:12:13:D0:AD:28:30:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8EBC626614B11EF83799F4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.96.0/21
Signature Algorithm: sha256WithRSAEncryption
bb:68:e7:0d:3f:27:d9:e5:ff:08:73:af:fd:3c:6b:48:2f:67:
35:e6:5f:d0:48:25:78:29:d7:e9:a7:0e:6f:7f:10:1c:8c:f7:
8c:f4:b7:c9:2f:86:08:be:46:b7:4c:90:2f:82:87:f7:84:7c:
7b:e2:9e:b0:bb:43:6c:9a:60:a0:74:b7:1e:74:4d:72:c6:84:
60:a8:04:d2:a3:b1:04:3f:86:64:e4:16:d5:65:b8:e9:49:db:
ac:48:76:32:6a:a2:60:df:f6:69:35:31:7b:7e:dd:f1:f4:70:
43:4e:33:8f:39:f7:42:68:bb:f1:25:22:a4:dc:97:45:6f:a3:
70:0f:f6:51:e2:b5:40:99:86:47:31:dc:ca:08:6f:d4:28:4d:
43:b8:6f:61:41:fd:41:3e:aa:b8:23:6a:2f:c3:92:8d:c9:df:
e8:28:13:2a:59:35:f0:b4:c7:58:30:3f:a5:10:a4:ce:37:5d:
f5:24:1d:85:4d:f3:66:75:e9:d9:60:34:24:b6:78:e9:79:39:
8c:ca:7f:a0:69:07:2a:2b:dd:70:ca:15:35:c4:c6:93:b8:6b:
c9:3a:21:4a:5d:c0:dd:12:e1:8d:87:d5:90:43:7e:ae:5d:09:
f5:6b:c4:9f:70:d1:82:71:50:55:cd:f1:c1:b4:f0:a0:5b:74:
1e:85:35:01
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAK0WMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwODIzMTIzMzMwWhcNMjUxMjE5MTIzMzMwWjAYMRYw
FAYDVQQDEw02NmM4ODE5ZC1kNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp/x9KzGgQITrGW25gqOPXM4Ufd+/2CtTHL4+dO+ptRDs2idA+MYEQEDj
3AQ2DtlJwRSqJ1/PXbTqv97YFlRmBiKjuh0WXzS2zwllIuuK3XAbyMCV7bW2aUCb
6fcykrfeVQJwLaFGfGbNJ1SnZzK/9m1IQCrvqqPHiSiwHKnrl0JTE6KaDloCPovS
2f8CNpQjwQeEHLGBu2wv0eJn/hP0HdViG1QaHQ94EjJRbGmOKB9R5zHi97eRn3e1
Yr2OnUCG3ZKqh5nDDpdMtn6Vxwm215OusNXTGkO2iRPo6Hzw71g39mDdZ5hCk+b5
jdvQFzIz/Ld5cwow4G2PBD+PWtUFQQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFL1v
vOA/Lh/E/w+UcWsSE9CtKDDOMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FOEVCQzYyNjYxNEIxMUVGODM3OTlGNEI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLchgMA0GCSqGSIb3DQEBCwUA
A4IBAQC7aOcNPyfZ5f8Ic6/9PGtIL2c15l/QSCV4Kdfppw5vfxAcjPeM9LfJL4YI
vka3TJAvgof3hHx74p6wu0NsmmCgdLcedE1yxoRgqATSo7EEP4Zk5BbVZbjpSdus
SHYyaqJg3/ZpNTF7ft3x9HBDTjOPOfdCaLvxJSKk3JdFb6NwD/ZR4rVAmYZHMdzK
CG/UKE1DuG9hQf1BPqq4I2ovw5KNyd/oKBMqWTXwtMdYMD+lEKTON131JB2FTfNm
denZYDQktnjpeTmMyn+gaQcqK91wyhU1xMaTuGvJOiFKXcDdEuGNh9WQQ36uXQn1
a8SfcNGCcVBVzfHBtPCgW3QehTUB
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:54 2024 by rpki-client on console-ams.rpki-client.org