Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F83352E9A711EE8E719A6C775412E6.roa
File: F0F83352E9A711EE8E719A6C775412E6.roa (raw, json)
Hash identifier: oDK0KYZhLZKEzk9NMvR0lWjvACK7zScKpNuMRZrByD4=
Subject key identifier: 23:34:CC:5C:DF:65:9F:F5:9C:3C:EA:46:C2:70:C3:9B:A0:C2:58:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 802D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F83352E9A711EE8E719A6C775412E6.roa
Signing time: Sun 24 Mar 2024 06:30:01 +0000
ROA not before: Sun 24 Mar 2024 06:29:57 +0000
ROA not after: Thu 27 Mar 2025 06:29:57 +0000
asID: 137263
IP address blocks: 45.195.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32813 (0x802d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 06:29:57 2024 GMT
Not After : Mar 27 06:29:57 2025 GMT
Subject: CN=65ffc869-0910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:88:0b:ef:6e:31:40:74:8a:f7:b5:ae:f4:
2f:b3:27:46:1e:e0:7a:6b:03:82:a1:5d:8d:42:ed:
5f:f6:78:d6:65:b2:6d:11:79:2e:9e:f9:a4:94:82:
c3:58:aa:c2:3e:7d:07:9a:6d:38:03:ec:63:73:c9:
2b:f1:5e:56:0b:7d:08:42:35:b0:24:0d:b6:f8:a3:
51:a7:4b:c8:bd:68:20:10:68:85:e5:67:ed:ad:a9:
61:47:79:c1:05:c9:03:07:1f:9a:5e:ad:1a:4b:f6:
1b:9b:e2:b7:8d:2d:1c:9f:4a:e6:f1:b3:9e:27:26:
95:50:06:30:23:d5:75:3d:95:c7:aa:66:0e:8d:ee:
e0:6b:96:7f:25:2d:01:bd:cf:d7:83:2a:24:45:22:
c3:e3:4e:c9:13:e6:26:1d:0c:9f:01:14:63:ca:cd:
a4:e6:ff:58:69:e1:c8:92:6c:22:b9:7a:62:bc:b8:
ad:e8:73:f8:f9:60:5b:5b:73:40:9d:2e:f2:bc:85:
56:54:fd:30:5a:3a:c3:c2:df:07:3b:e2:36:77:3e:
46:48:80:bd:63:b8:5a:f8:37:98:f0:cb:74:42:f3:
97:0e:0a:12:d4:fb:11:33:33:c3:7c:c3:79:c8:6f:
e7:dc:63:57:53:7d:2c:71:8a:b3:23:2e:ac:2c:78:
4a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:34:CC:5C:DF:65:9F:F5:9C:3C:EA:46:C2:70:C3:9B:A0:C2:58:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F83352E9A711EE8E719A6C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.24.0/24
Signature Algorithm: sha256WithRSAEncryption
76:b4:a6:41:cf:e0:30:88:52:32:48:e0:41:f9:ac:ec:95:76:
af:e6:a8:27:1a:25:6b:a1:72:f5:6c:00:44:fa:19:a9:31:4a:
11:c1:3b:74:58:f3:c8:1f:a9:60:a5:38:e9:9a:68:2f:5d:4d:
fa:4e:5f:b7:05:25:36:1d:a7:d9:a5:fb:bf:a0:1f:51:aa:a1:
97:ee:f5:85:85:c4:b7:16:8f:9c:db:2a:21:73:35:fd:6c:ba:
a1:e6:d5:d4:52:47:e7:60:f5:f0:31:7a:cc:a9:2c:c1:6d:65:
9a:af:5a:f3:8e:e4:64:d9:8b:77:34:82:f5:de:45:53:f3:b9:
15:ee:32:5b:7a:72:2c:4d:c7:bd:d2:40:a0:7e:8b:a4:22:55:
5e:d3:c0:86:8e:50:cc:58:7f:74:66:3b:ea:1e:a7:3b:f7:fe:
58:39:58:82:c6:c6:d3:64:4b:b1:3a:9d:24:63:50:c8:60:d3:
bc:4d:95:f3:e5:dc:1b:cd:23:b8:ab:19:1d:74:b2:84:a3:66:
29:8e:3a:d1:61:5b:70:f1:56:c2:72:03:38:d1:24:e6:d3:bc:
ec:00:e1:e5:77:63:c8:2d:ab:89:c8:ce:16:2b:41:9e:ab:1d:
c6:3d:2b:bb:7c:41:14:48:cb:bb:c5:b4:33:c0:66:59:7a:d3:
22:cb:d2:7e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIAtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwMzI0MDYyOTU3WhcNMjUwMzI3MDYyOTU3WjAYMRYw
FAYDVQQDEw02NWZmYzg2OS0wOTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtEWIC+9uMUB0ive1rvQvsydGHuB6awOCoV2NQu1f9njWZbJtEXkunvmk
lILDWKrCPn0Hmm04A+xjc8kr8V5WC30IQjWwJA22+KNRp0vIvWggEGiF5Wftralh
R3nBBckDBx+aXq0aS/Ybm+K3jS0cn0rm8bOeJyaVUAYwI9V1PZXHqmYOje7ga5Z/
JS0Bvc/XgyokRSLD407JE+YmHQyfARRjys2k5v9YaeHIkmwiuXpivLit6HP4+WBb
W3NAnS7yvIVWVP0wWjrDwt8HO+I2dz5GSIC9Y7ha+DeY8Mt0QvOXDgoS1PsRMzPD
fMN5yG/n3GNXU30scYqzIy6sLHhK/wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCM0
zFzfZZ/1nDzqRsJww5ugwlg/MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GMEY4MzM1MkU5QTcxMUVFOEU3MTlBNkM3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcMYMA0GCSqGSIb3DQEBCwUA
A4IBAQB2tKZBz+AwiFIySOBB+azslXav5qgnGiVroXL1bABE+hmpMUoRwTt0WPPI
H6lgpTjpmmgvXU36Tl+3BSU2HafZpfu/oB9RqqGX7vWFhcS3Fo+c2yohczX9bLqh
5tXUUkfnYPXwMXrMqSzBbWWar1rzjuRk2Yt3NIL13kVT87kV7jJbenIsTce90kCg
foukIlVe08CGjlDMWH90ZjvqHqc79/5YOViCxsbTZEuxOp0kY1DIYNO8TZXz5dwb
zSO4qxkddLKEo2YpjjrRYVtw8VbCcgM40STm07zsAOHld2PILauJyM4WK0Geqx3G
PSu7fEEUSMu7xbQzwGZZetMiy9J+
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:56 2024 by rpki-client on console-ams.rpki-client.org