Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07DC0828DD011EE8EDA986C4AD9E6FC.roa
File: F07DC0828DD011EE8EDA986C4AD9E6FC.roa (raw, json)
Hash identifier: ABXmwyqqCH89g83BbJ7nTR7sYTmGk/blAoo/bftE8U0=
Subject key identifier: DF:47:D5:26:58:B4:6A:7B:40:89:4C:B0:F8:32:DF:70:EF:89:4E:50
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4C5B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07DC0828DD011EE8EDA986C4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 09:31:42 +0000
ROA not before: Sat 03 Feb 2024 09:31:39 +0000
ROA not after: Thu 08 Aug 2024 09:31:39 +0000
asID: 133861
IP address blocks: 45.207.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19547 (0x4c5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 3 09:31:39 2024 GMT
Not After : Aug 8 09:31:39 2024 GMT
Subject: CN=6565b37e-3ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9c:b8:28:42:d9:06:d1:d2:b3:43:67:df:56:
63:b6:71:2f:32:40:d2:4d:fe:50:5f:1c:49:30:14:
be:8a:4e:02:a4:3d:a5:83:64:f2:1c:8c:1f:41:36:
e1:ef:ef:15:25:b3:75:79:0b:e2:69:2c:32:b7:9b:
00:06:18:8b:98:91:c0:4f:cf:ca:c3:fe:60:bb:28:
e4:26:69:6c:39:9e:1a:47:76:89:05:42:0b:06:80:
18:af:d0:b8:aa:0a:51:2b:15:2d:be:11:ab:cd:2e:
5a:cd:82:13:47:46:25:25:ed:0b:3f:9a:cb:52:0c:
01:fa:78:fb:e5:18:36:0a:ba:42:57:b7:08:50:8a:
aa:e0:20:86:eb:6e:42:fc:61:13:3c:22:2d:91:10:
7a:14:42:ea:e9:bc:3e:74:0a:ad:8a:e4:b2:19:3f:
bb:a2:d1:43:93:f1:03:db:8a:83:24:93:4c:64:66:
11:4b:58:4f:72:d5:1c:dd:41:93:63:32:f2:ac:4a:
9a:db:65:ab:48:f6:6d:da:29:5c:cb:09:cc:7d:3d:
15:dc:1d:23:23:25:ff:31:58:8c:0e:a8:12:e5:e8:
94:c2:ce:fd:89:70:86:44:82:e9:a5:0f:df:b4:44:
7e:23:d4:97:38:2d:67:01:00:84:5e:25:90:ec:ff:
bc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:D5:26:58:B4:6A:7B:40:89:4C:B0:F8:32:DF:70:EF:89:4E:50
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07DC0828DD011EE8EDA986C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3f:d1:7b:79:9a:27:1f:f9:5c:f2:e7:42:e5:45:26:f0:40:
b7:ee:03:ff:3e:f1:66:f1:d1:c1:01:9b:05:e4:6c:fe:52:d0:
00:fb:6c:28:b9:33:67:26:c2:85:e1:6e:80:80:d0:d4:b6:c2:
62:e5:e5:d2:f0:fe:8b:a6:41:4c:67:e3:16:54:73:bb:9f:4e:
9f:ad:77:bf:82:a0:64:39:22:5a:ea:ca:4e:23:cd:ec:21:1c:
22:c3:5f:f0:43:66:42:af:7c:76:11:35:68:75:47:2c:ec:2c:
82:ab:8e:b5:e3:a9:9c:9c:0e:3e:54:b3:2e:e1:6f:5b:a1:df:
0f:c6:5f:5e:64:2f:ba:65:07:5d:92:13:6e:74:d0:32:7a:60:
63:94:0d:fc:94:4e:8e:65:6e:44:af:76:7b:93:db:58:cf:b4:
68:35:03:af:26:fb:fd:f9:ca:ae:e3:18:54:97:e7:3c:c9:40:
73:2d:c1:5f:0a:6d:d9:28:8b:0e:8a:2e:ab:9e:ce:e7:2a:f0:
e2:41:fd:dd:e4:15:c4:ba:29:38:73:7e:12:6c:8b:9d:84:bc:
58:a1:1b:52:4b:e9:9a:af:e0:3d:ae:a1:a2:9d:c5:b9:b0:cd:
0a:8f:0f:54:c7:32:7b:41:4d:d4:90:fa:b6:e6:c6:9d:b8:41:
bc:98:77:53
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICTFswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAyMDMwOTMxMzlaFw0yNDA4MDgwOTMxMzlaMBgxFjAU
BgNVBAMTDTY1NjViMzdlLTNlZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCjnLgoQtkG0dKzQ2ffVmO2cS8yQNJN/lBfHEkwFL6KTgKkPaWDZPIcjB9B
NuHv7xUls3V5C+JpLDK3mwAGGIuYkcBPz8rD/mC7KOQmaWw5nhpHdokFQgsGgBiv
0LiqClErFS2+EavNLlrNghNHRiUl7Qs/mstSDAH6ePvlGDYKukJXtwhQiqrgIIbr
bkL8YRM8Ii2REHoUQurpvD50Cq2K5LIZP7ui0UOT8QPbioMkk0xkZhFLWE9y1Rzd
QZNjMvKsSprbZatI9m3aKVzLCcx9PRXcHSMjJf8xWIwOqBLl6JTCzv2JcIZEguml
D9+0RH4j1Jc4LWcBAIReJZDs/7yDAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU30fV
Jli0antAiUyw+DLfcO+JTlAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0YwN0RDMDgyOEREMDExRUU4RURBOTg2QzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtzygwDQYJKoZIhvcNAQELBQAD
ggEBADo/0Xt5micf+Vzy50LlRSbwQLfuA/8+8Wbx0cEBmwXkbP5S0AD7bCi5M2cm
woXhboCA0NS2wmLl5dLw/oumQUxn4xZUc7ufTp+td7+CoGQ5Ilrqyk4jzewhHCLD
X/BDZkKvfHYRNWh1RyzsLIKrjrXjqZycDj5Usy7hb1uh3w/GX15kL7plB12SE250
0DJ6YGOUDfyUTo5lbkSvdnuT21jPtGg1A68m+/35yq7jGFSX5zzJQHMtwV8Kbdko
iw6KLquezucq8OJB/d3kFcS6KThzfhJsi52EvFihG1JL6Zqv4D2uoaKdxbmwzQqP
D1THMntBTdSQ+rbmxp24QbyYd1M=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org