Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F52C69FCA19E11EFA6AD1056762E951A.roa
File: F52C69FCA19E11EFA6AD1056762E951A.roa (raw, json)
Hash identifier: 41F68q3k0dmEZXXvz3JoXJIX5dvrxTJwveMggdbQBfg=
Subject key identifier: 18:D4:55:A6:4B:0E:89:96:FD:F1:66:C3:45:9C:C2:B3:35:93:B9:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D26A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F52C69FCA19E11EFA6AD1056762E951A.roa
Signing time: Wed 13 Nov 2024 09:09:16 +0000
ROA not before: Wed 13 Nov 2024 09:09:12 +0000
ROA not after: Sat 23 Nov 2024 09:09:12 +0000
asID: 39600
IP address blocks: 45.195.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53866 (0xd26a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 13 09:09:12 2024 GMT
Not After : Nov 23 09:09:12 2024 GMT
Subject: CN=67346cbc-a0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ee:2d:a2:6b:32:9e:c2:b1:93:d8:8e:ba:66:
7a:f1:e4:eb:c9:0c:7d:b2:08:a3:c3:c7:1a:43:78:
c4:bf:16:69:e1:29:4d:5a:fa:fa:70:59:44:99:23:
7d:6d:75:ad:ad:c4:e9:c1:35:bb:cc:49:05:49:bc:
60:7b:17:7c:21:a6:f1:67:a4:28:a8:37:fc:d4:ec:
84:d2:76:6b:fa:f1:65:dd:6e:b2:1a:b4:20:7b:77:
c2:ec:ad:9e:16:1e:d4:05:a1:38:8c:05:6a:30:74:
6f:b0:5d:b7:af:7e:48:ae:b4:ee:3e:36:ac:5d:fd:
5b:d2:8e:bd:70:90:b1:d7:d8:75:9c:fc:df:a8:e6:
d3:41:be:3d:84:20:d5:9a:fe:85:92:0f:25:89:10:
a2:d2:97:e1:41:36:3c:f7:8c:e6:fa:10:d6:fc:99:
c0:e5:79:a7:e3:7a:4b:96:2e:ca:a6:f5:b6:b9:97:
4c:73:f2:d2:82:77:68:4b:fc:2b:f9:eb:72:0a:48:
5c:8b:35:32:d3:d2:19:a0:2e:8c:f3:d1:28:af:e2:
7e:54:c0:e3:ba:89:da:3f:62:e1:4e:dd:63:a5:16:
76:01:a7:d2:42:6f:ee:45:51:37:58:22:1f:6f:59:
45:fe:44:d2:8f:63:6f:37:32:d0:22:18:fe:95:ba:
89:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D4:55:A6:4B:0E:89:96:FD:F1:66:C3:45:9C:C2:B3:35:93:B9:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F52C69FCA19E11EFA6AD1056762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.156.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:77:16:3e:03:c4:dd:a7:32:52:a3:74:0d:48:14:05:0e:1b:
af:c7:49:d6:ca:df:b0:d2:77:00:44:6a:41:a6:be:2c:c5:5f:
98:f1:d7:49:ab:a8:31:65:52:ed:ab:d7:2e:a9:74:18:cd:b2:
f8:ce:68:9c:f3:e4:79:77:3b:92:c9:de:1d:10:75:92:49:cf:
39:49:39:4d:11:32:f7:48:e0:2b:1b:ba:93:94:97:3b:ba:50:
cd:83:dd:c4:91:63:f6:74:7b:bf:6c:44:ce:06:48:93:73:14:
33:d4:32:be:09:09:45:b3:06:fa:1d:44:16:12:74:7d:5d:60:
c4:f6:e9:c2:c6:43:0b:07:1e:76:bd:b0:64:67:5f:ca:e1:d3:
d8:f8:88:16:6b:cb:d3:00:ac:cc:bf:9d:29:c9:d4:74:0d:72:
a2:83:b7:56:24:2d:fa:0e:54:1e:79:2a:3d:9a:11:0d:8d:46:
e7:22:35:49:b7:17:52:f6:21:fd:b4:74:7a:42:66:54:2b:d1:
7f:c9:dc:60:6d:d0:9f:78:4e:ce:06:8a:69:64:41:79:8a:60:
54:17:ae:ff:51:8a:64:34:ab:a6:40:4e:89:83:83:31:e2:37:
e8:29:c7:f5:37:27:3e:be:5d:09:5d:5f:29:2d:33:44:39:74:
43:ea:85:43
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANJqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTEzMDkwOTEyWhcNMjQxMTIzMDkwOTEyWjAYMRYw
FAYDVQQDEw02NzM0NmNiYy1hMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyO4tomsynsKxk9iOumZ68eTryQx9sgijw8caQ3jEvxZp4SlNWvr6cFlE
mSN9bXWtrcTpwTW7zEkFSbxgexd8IabxZ6QoqDf81OyE0nZr+vFl3W6yGrQge3fC
7K2eFh7UBaE4jAVqMHRvsF23r35IrrTuPjasXf1b0o69cJCx19h1nPzfqObTQb49
hCDVmv6Fkg8liRCi0pfhQTY894zm+hDW/JnA5Xmn43pLli7KpvW2uZdMc/LSgndo
S/wr+etyCkhcizUy09IZoC6M89Eor+J+VMDjuonaP2LhTt1jpRZ2AafSQm/uRVE3
WCIfb1lF/kTSj2NvNzLQIhj+lbqJXQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBjU
VaZLDomW/fFmw0WcwrM1k7m4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GNTJDNjlGQ0ExOUUxMUVGQTZBRDEwNTY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcOcMA0GCSqGSIb3DQEBCwUA
A4IBAQA9dxY+A8TdpzJSo3QNSBQFDhuvx0nWyt+w0ncARGpBpr4sxV+Y8ddJq6gx
ZVLtq9cuqXQYzbL4zmic8+R5dzuSyd4dEHWSSc85STlNETL3SOArG7qTlJc7ulDN
g93EkWP2dHu/bETOBkiTcxQz1DK+CQlFswb6HUQWEnR9XWDE9unCxkMLBx52vbBk
Z1/K4dPY+IgWa8vTAKzMv50pydR0DXKig7dWJC36DlQeeSo9mhENjUbnIjVJtxdS
9iH9tHR6QmZUK9F/ydxgbdCfeE7OBoppZEF5imBUF67/UYpkNKumQE6Jg4Mx4jfo
Kcf1Nyc+vl0JXV8pLTNEOXRD6oVD
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:54 2024 by rpki-client on console-fra.rpki-client.org