Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCC40C473F611EFB8F8E885762E951A.roa
File: EBCC40C473F611EFB8F8E885762E951A.roa (raw, json)
Hash identifier: mCzjPS0iEPbZ5Yaamhm2xnYZP4xvc/7DqtXNjm3NycU=
Subject key identifier: 41:04:9E:A1:49:2D:69:EF:A8:1E:EB:E0:DC:6F:D6:85:83:84:72:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B729
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCC40C473F611EFB8F8E885762E951A.roa
Signing time: Mon 16 Sep 2024 06:43:03 +0000
ROA not before: Mon 16 Sep 2024 06:42:59 +0000
ROA not after: Fri 08 Aug 2025 06:42:59 +0000
asID: 133199
IP address blocks: 45.207.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46889 (0xb729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:42:59 2024 GMT
Not After : Aug 8 06:42:59 2025 GMT
Subject: CN=66e7d377-c3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9b:21:f9:fa:4a:58:21:11:59:72:35:00:4d:
73:87:16:53:b9:93:c6:eb:b4:33:58:ca:5c:68:92:
55:ad:ba:36:56:51:76:59:7e:3e:33:6f:a1:66:3d:
71:42:c8:3f:9c:1f:43:d4:f3:ac:cf:c7:e6:25:0d:
e9:39:05:22:ed:ea:f5:c9:9b:be:e5:0e:6c:0a:84:
54:a6:20:7e:5a:fa:72:b2:12:d3:47:25:b6:0c:76:
c4:2c:94:20:97:2c:4a:32:a6:9e:49:e1:69:9b:07:
00:af:52:a0:8a:ab:b8:fc:4a:7a:3b:c7:02:11:2d:
c7:f1:e7:b0:69:e8:af:9c:3d:61:bd:8c:02:4f:6f:
39:26:30:55:6c:14:9f:7b:5c:da:01:57:83:86:98:
f5:24:ec:27:8f:9f:36:f2:d9:8d:49:5e:2f:c8:44:
61:7f:a1:1f:40:ed:4c:00:d5:8c:b3:55:46:c7:0e:
48:38:80:4c:7c:fb:4c:02:c4:c2:71:10:60:3a:01:
23:b9:8d:2d:72:75:9e:72:2c:ff:67:5f:87:4d:77:
d5:42:56:af:ec:c3:5f:61:c6:74:2a:22:37:e1:85:
3a:1a:3a:3a:cd:be:0b:88:8e:57:e5:ab:ed:3d:85:
66:77:57:00:16:0e:ca:a3:88:34:78:4a:24:e9:54:
a0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:04:9E:A1:49:2D:69:EF:A8:1E:EB:E0:DC:6F:D6:85:83:84:72:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCC40C473F611EFB8F8E885762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.56.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ad:83:cb:d4:d8:b3:6c:33:c4:4b:f3:3c:60:fb:b0:7e:9b:
63:75:fb:a2:8d:b1:f6:b2:b8:c0:ee:6a:43:56:a4:07:ad:b1:
44:9a:fe:b0:31:46:c5:3a:2b:aa:e9:0a:ac:63:08:c3:11:8d:
fe:97:83:2b:b2:c1:4a:1b:9e:41:18:1a:54:69:12:e6:07:bf:
fe:0b:ba:69:89:13:df:23:69:1a:0d:e1:c6:90:b9:a9:ce:fe:
00:d0:d6:98:c0:8c:fd:98:32:9d:e2:b9:59:0e:e8:84:cd:02:
04:39:db:58:fd:3e:e5:16:d9:3f:77:23:77:90:b1:b0:22:70:
82:a6:bc:78:5c:8b:0f:ad:91:d4:58:bb:94:6e:de:9a:eb:b3:
35:9c:8f:80:36:47:cf:ec:6c:ee:05:3e:c7:b4:7e:50:f0:12:
f5:d1:8e:83:23:7a:51:a4:2a:c0:d4:4f:99:7c:b1:78:cf:3b:
ce:a1:75:bd:18:73:26:57:4c:91:a0:c9:2a:b1:48:fd:4d:70:
d3:91:14:11:93:99:a4:95:a1:18:a4:a9:53:1c:fa:57:13:e1:
91:85:7a:bc:6f:c3:f8:32:2f:a7:4f:1c:f0:03:cc:7b:75:44:
b4:8b:21:61:54:19:42:d3:b9:81:8b:63:47:5c:3b:d0:86:0a:
0d:28:33:39
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALcpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTE2MDY0MjU5WhcNMjUwODA4MDY0MjU5WjAYMRYw
FAYDVQQDEw02NmU3ZDM3Ny1jM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2psh+fpKWCERWXI1AE1zhxZTuZPG67QzWMpcaJJVrbo2VlF2WX4+M2+h
Zj1xQsg/nB9D1POsz8fmJQ3pOQUi7er1yZu+5Q5sCoRUpiB+WvpyshLTRyW2DHbE
LJQglyxKMqaeSeFpmwcAr1Kgiqu4/Ep6O8cCES3H8eewaeivnD1hvYwCT285JjBV
bBSfe1zaAVeDhpj1JOwnj5828tmNSV4vyERhf6EfQO1MANWMs1VGxw5IOIBMfPtM
AsTCcRBgOgEjuY0tcnWeciz/Z1+HTXfVQlav7MNfYcZ0KiI34YU6Gjo6zb4LiI5X
5avtPYVmd1cAFg7Ko4g0eEok6VSgXQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEEE
nqFJLWnvqB7r4Nxv1oWDhHJmMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FQkNDNDBDNDczRjYxMUVGQjhGOEU4ODU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc84MA0GCSqGSIb3DQEBCwUA
A4IBAQBYrYPL1NizbDPES/M8YPuwfptjdfuijbH2srjA7mpDVqQHrbFEmv6wMUbF
Oiuq6QqsYwjDEY3+l4MrssFKG55BGBpUaRLmB7/+C7ppiRPfI2kaDeHGkLmpzv4A
0NaYwIz9mDKd4rlZDuiEzQIEOdtY/T7lFtk/dyN3kLGwInCCprx4XIsPrZHUWLuU
bt6a67M1nI+ANkfP7GzuBT7HtH5Q8BL10Y6DI3pRpCrA1E+ZfLF4zzvOoXW9GHMm
V0yRoMkqsUj9TXDTkRQRk5mklaEYpKlTHPpXE+GRhXq8b8P4Mi+nTxzwA8x7dUS0
iyFhVBlC07mBi2NHXDvQhgoNKDM5
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:55 2024 by rpki-client on console-ams.rpki-client.org