Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0656260672611EE86155F1B4AD9E6FC.roa
File: F0656260672611EE86155F1B4AD9E6FC.roa (raw, json)
Hash identifier: wAf6ptfWLcM16Z8hzrnDrSqp9pNnmy95Kzwwi2T46Hg=
Subject key identifier: E1:F5:DB:59:AA:2E:4A:F2:A8:A4:96:ED:A7:58:C6:31:B0:40:16:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3E19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0656260672611EE86155F1B4AD9E6FC.roa
Signing time: Tue 10 Oct 2023 04:39:04 +0000
ROA not before: Tue 10 Oct 2023 04:39:00 +0000
ROA not after: Mon 30 Sep 2024 04:39:00 +0000
asID: 133771
IP address blocks: 45.195.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15897 (0x3e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 10 04:39:00 2023 GMT
Not After : Sep 30 04:39:00 2024 GMT
Subject: CN=6524d567-83e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:88:c9:ae:09:41:09:0f:9e:6b:02:55:57:87:
07:f6:5f:78:28:18:00:16:95:01:11:d6:a3:78:f4:
d7:1e:d8:f3:26:6d:06:8b:fe:05:55:d7:b7:58:1a:
d5:0c:fa:f5:36:f3:62:f3:90:1c:48:b9:b1:c5:4c:
30:e7:2a:8a:93:02:ef:00:a7:32:74:8e:76:bf:69:
f6:a3:54:62:42:14:83:97:cf:03:db:1c:37:e3:bc:
cf:5b:c6:16:1d:1d:ef:37:0b:9a:cd:1c:56:93:51:
7e:14:a6:22:15:37:37:b2:5f:fd:9f:43:e0:d2:f7:
57:91:64:6d:cb:66:31:2d:b2:ba:b2:6f:ce:e2:d6:
b9:c5:77:a3:7d:ab:f9:3a:f1:9f:84:58:a8:69:64:
6c:11:5c:b4:df:73:76:03:c6:f3:23:3c:b6:0d:18:
33:fd:96:58:65:f7:07:b7:33:14:c8:aa:c0:c9:93:
77:da:5b:aa:f8:3c:13:c7:6c:bf:f2:fe:17:9a:27:
8a:4c:ba:e4:c9:08:70:57:bf:31:03:8f:7c:99:a6:
25:41:6e:59:8a:57:de:d1:40:3e:9c:e1:9d:4d:07:
12:84:7c:a3:a3:71:54:f5:ec:17:79:fa:bf:6f:1d:
77:bd:0f:35:df:34:77:f9:36:05:df:79:45:0f:c1:
42:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F5:DB:59:AA:2E:4A:F2:A8:A4:96:ED:A7:58:C6:31:B0:40:16:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0656260672611EE86155F1B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.253.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:2b:ae:d7:04:b1:3f:fd:da:6d:d5:38:cf:e3:c8:f7:82:7e:
86:e3:43:6c:d4:64:b4:be:d0:71:e1:76:82:fc:6c:2f:ba:77:
28:60:e9:b8:29:fb:2b:89:2e:91:af:15:59:a7:da:05:32:f4:
bc:9f:4d:bd:92:d1:8d:b1:72:ae:f3:45:ff:d8:38:16:b9:80:
e0:41:9c:58:cb:60:e3:1c:7f:da:a9:85:34:a5:44:72:4e:43:
cb:0b:56:21:fb:bc:fd:06:b1:d5:a5:1a:1c:fb:e2:79:82:31:
58:2b:b6:50:45:87:6c:ec:70:a8:0a:90:00:f8:f6:f8:fd:1d:
2d:98:93:05:82:f9:dd:77:b3:87:e7:e7:91:2d:e1:7e:7b:ee:
e8:cb:43:fd:0e:3d:5a:54:a3:1f:ee:b3:54:07:99:4b:ab:73:
9b:6f:48:86:75:af:76:b5:32:18:b4:af:e3:20:50:7c:c2:20:
dd:7a:69:28:b7:34:85:36:5c:5e:8e:ce:5b:b4:12:07:b7:a5:
27:25:30:c4:f6:82:ae:71:58:d2:63:af:bc:6c:f9:bb:bd:6e:
38:9a:89:33:62:0d:fa:b7:a5:fb:c9:96:46:1e:45:7e:6c:56:
6a:cd:4d:9a:c9:bd:aa:97:fa:3e:19:d9:bf:42:81:76:a9:6a:
d4:c1:4b:cb
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICPhkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEwMTAwNDM5MDBaFw0yNDA5MzAwNDM5MDBaMBgxFjAU
BgNVBAMTDTY1MjRkNTY3LTgzZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWiMmuCUEJD55rAlVXhwf2X3goGAAWlQER1qN49Nce2PMmbQaL/gVV17dY
GtUM+vU282LzkBxIubHFTDDnKoqTAu8ApzJ0jna/afajVGJCFIOXzwPbHDfjvM9b
xhYdHe83C5rNHFaTUX4UpiIVNzeyX/2fQ+DS91eRZG3LZjEtsrqyb87i1rnFd6N9
q/k68Z+EWKhpZGwRXLTfc3YDxvMjPLYNGDP9llhl9we3MxTIqsDJk3faW6r4PBPH
bL/y/heaJ4pMuuTJCHBXvzEDj3yZpiVBblmKV97RQD6c4Z1NBxKEfKOjcVT17Bd5
+r9vHXe9DzXfNHf5NgXfeUUPwUJRAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU4fXb
WaouSvKopJbtp1jGMbBAFgowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0YwNjU2MjYwNjcyNjExRUU4NjE1NUYxQjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtw/0wDQYJKoZIhvcNAQELBQAD
ggEBAK0rrtcEsT/92m3VOM/jyPeCfobjQ2zUZLS+0HHhdoL8bC+6dyhg6bgp+yuJ
LpGvFVmn2gUy9LyfTb2S0Y2xcq7zRf/YOBa5gOBBnFjLYOMcf9qphTSlRHJOQ8sL
ViH7vP0GsdWlGhz74nmCMVgrtlBFh2zscKgKkAD49vj9HS2YkwWC+d13s4fn55Et
4X577ujLQ/0OPVpUox/us1QHmUurc5tvSIZ1r3a1Mhi0r+MgUHzCIN16aSi3NIU2
XF6Ozlu0Ege3pSclMMT2gq5xWNJjr7xs+bu9bjiaiTNiDfq3pfvJlkYeRX5sVmrN
TZrJvaqX+j4Z2b9CgXapatTBS8s=
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org