Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8208C78F9FD11ED852D3A534AD9E6FC.roa
File: F8208C78F9FD11ED852D3A534AD9E6FC.roa (raw, json)
Hash identifier: FnJaLjBbda0hXx3nv8o5gLJcIBeHOLlmohK5MCxBsx0=
Subject key identifier: AF:05:09:E5:CA:E1:0C:D5:57:08:46:EA:46:57:92:08:C9:0D:C9:5A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 272B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8208C78F9FD11ED852D3A534AD9E6FC.roa
Signing time: Wed 24 May 2023 06:41:10 +0000
ROA not before: Wed 24 May 2023 06:41:07 +0000
ROA not after: Wed 15 May 2024 06:41:07 +0000
asID: 27947
IP address blocks: 45.199.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10027 (0x272b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 06:41:07 2023 GMT
Not After : May 15 06:41:07 2024 GMT
Subject: CN=646db186-ee72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4f:d5:9a:75:b2:ff:03:ec:32:8e:42:32:c6:
ae:01:e0:fb:0d:93:8a:27:0c:ae:d2:94:d3:0b:4a:
16:80:f3:09:75:b8:2a:b1:dd:54:e3:af:5f:f9:3b:
83:e0:89:99:d7:3d:b0:15:c3:74:1b:d9:b6:3a:71:
91:de:e4:86:98:cd:72:2b:a8:f8:c8:91:f4:d9:4d:
32:9a:37:85:5a:27:2d:54:47:3e:f7:07:02:79:1f:
51:bc:3f:b9:9f:6d:dc:fe:e0:01:20:a3:fe:7a:19:
01:3b:87:5e:24:2e:85:fa:c8:bf:c1:41:32:93:8a:
09:15:32:5f:5a:3d:6d:cf:69:43:31:37:d5:2f:e4:
0a:82:46:c1:34:bf:a7:59:4b:b9:dc:68:d9:f1:cf:
6e:85:d9:d7:6b:8b:8d:30:58:f2:45:23:f4:60:0d:
1b:9a:80:bf:0a:04:7f:ca:af:d7:4e:1e:0e:0f:f6:
90:ad:c8:75:d1:a3:86:61:7c:de:e4:53:b9:21:0e:
c6:a9:95:51:62:36:92:de:4c:dd:91:8c:0d:88:5a:
5f:6c:81:e9:2f:6c:ed:3e:b9:84:b6:93:20:cb:00:
45:4b:be:fe:93:35:0b:a1:c8:21:55:04:ad:e3:66:
30:48:db:b3:cb:6c:c3:9f:53:29:10:35:45:33:92:
57:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:05:09:E5:CA:E1:0C:D5:57:08:46:EA:46:57:92:08:C9:0D:C9:5A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8208C78F9FD11ED852D3A534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.178.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cf:59:2c:d6:d3:86:5c:99:ce:da:c1:c7:36:4e:61:89:1a:
32:3b:e4:78:3a:ef:78:01:a4:11:3e:78:5d:ab:3c:fc:a3:e3:
e4:06:f5:1c:c0:7f:ce:f9:e1:51:3f:6b:6f:f8:44:cb:ec:84:
5a:a5:c7:cb:a8:b9:c9:06:b4:59:6c:49:2d:d5:bf:f3:08:e6:
f1:62:45:55:da:20:90:9a:37:a6:e4:9c:f1:58:0f:b8:ac:d4:
52:4a:1c:bf:2b:69:b6:b3:68:b6:b7:af:ed:10:bd:66:cb:71:
da:24:bb:c7:f8:2d:c0:ea:03:77:41:ab:22:2d:0f:82:bc:7c:
cd:6b:57:69:9f:a6:61:e5:dd:cd:be:60:b3:16:90:5e:e2:e8:
df:f4:08:68:ee:8f:ce:e4:5c:ab:b8:db:ea:2e:01:f2:cd:b9:
dd:62:8c:0a:cb:83:d6:a2:9b:8d:51:31:7a:0a:2b:65:0e:9a:
c2:82:7d:73:3d:de:ca:5b:c5:3f:ac:a2:b0:1e:ee:33:6d:ed:
d3:c1:28:8c:35:e4:c4:28:99:28:bc:44:ef:1d:46:31:d1:5a:
dd:e5:17:3c:81:04:8c:82:21:4a:9e:25:22:82:f7:04:ab:c7:
60:d2:fb:53:2c:de:8d:8b:3c:5a:2f:82:a3:0f:4d:80:40:6a:
25:eb:d0:51
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJyswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjQwNjQxMDdaFw0yNDA1MTUwNjQxMDdaMBgxFjAU
BgNVBAMTDTY0NmRiMTg2LWVlNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNT9WadbL/A+wyjkIyxq4B4PsNk4onDK7SlNMLShaA8wl1uCqx3VTjr1/5
O4PgiZnXPbAVw3Qb2bY6cZHe5IaYzXIrqPjIkfTZTTKaN4VaJy1URz73BwJ5H1G8
P7mfbdz+4AEgo/56GQE7h14kLoX6yL/BQTKTigkVMl9aPW3PaUMxN9Uv5AqCRsE0
v6dZS7ncaNnxz26F2ddri40wWPJFI/RgDRuagL8KBH/Kr9dOHg4P9pCtyHXRo4Zh
fN7kU7khDsaplVFiNpLeTN2RjA2IWl9sgekvbO0+uYS2kyDLAEVLvv6TNQuhyCFV
BK3jZjBI27PLbMOfUykQNUUzklfNAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUrwUJ
5crhDNVXCEbqRleSCMkNyVowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0Y4MjA4Qzc4RjlGRDExRUQ4NTJEM0E1MzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtx7IwDQYJKoZIhvcNAQELBQAD
ggEBAHHPWSzW04Zcmc7awcc2TmGJGjI75Hg673gBpBE+eF2rPPyj4+QG9RzAf875
4VE/a2/4RMvshFqlx8uouckGtFlsSS3Vv/MI5vFiRVXaIJCaN6bknPFYD7is1FJK
HL8rabazaLa3r+0QvWbLcdoku8f4LcDqA3dBqyItD4K8fM1rV2mfpmHl3c2+YLMW
kF7i6N/0CGjuj87kXKu42+ouAfLNud1ijArLg9aim41RMXoKK2UOmsKCfXM93spb
xT+sorAe7jNt7dPBKIw15MQomSi8RO8dRjHRWt3lFzyBBIyCIUqeJSKC9wSrx2DS
+1Ms3o2LPFovgqMPTYBAaiXr0FE=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:47 2024 by rpki-client on console-fra.rpki-client.org