Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2B714BF00F9D11EC9EBD1533D8A014CE.roa
File: 2B714BF00F9D11EC9EBD1533D8A014CE.roa (raw, json)
Hash identifier: fmzO71ZqsyC9d9DNNqDHDrtjVadtpkr4+6zOuMy9li8=
Subject key identifier: 05:D1:B0:6E:0C:28:17:20:83:52:04:6D:C6:D9:EB:91:58:2B:42:84
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0370
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2B714BF00F9D11EC9EBD1533D8A014CE.roa
Signing time: Tue 07 Sep 2021 05:33:46 +0000
ROA not before: Tue 07 Sep 2021 05:33:42 +0000
ROA not after: Wed 10 Sep 2025 05:33:42 +0000
asID: 64286
IP address blocks: 192.142.172.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 880 (0x370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 7 05:33:42 2021 GMT
Not After : Sep 10 05:33:42 2025 GMT
Subject: CN=6136f9b9-3ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fe:9a:7a:1b:f0:62:5b:6c:f3:01:58:45:a3:
03:57:70:a7:13:41:b6:f8:89:0c:92:a1:85:67:90:
b9:98:a3:7f:95:f2:95:fc:59:52:30:38:40:18:d7:
1d:5d:9a:8e:7e:0e:33:cd:a5:4a:83:89:eb:74:d0:
29:e1:9d:fc:04:6f:23:5f:63:9a:53:b7:8d:f2:95:
8c:96:00:10:3e:87:ed:07:a0:44:81:0e:f4:21:4f:
a1:8b:8a:35:1f:08:76:61:45:96:86:2f:d4:de:72:
1d:c1:9f:26:a3:d5:3d:9f:e3:88:45:df:5b:31:e3:
7a:36:69:09:9a:c2:a2:ba:8e:96:60:e1:77:b9:1c:
b1:f5:be:ef:b0:fb:3b:04:ee:c0:2b:01:a7:7b:1e:
0d:4e:f8:5d:6c:6b:a0:4b:fb:ca:78:37:e6:e2:56:
4f:8d:d6:85:cb:56:57:5a:ca:26:97:55:4f:4f:9a:
17:3b:69:86:7b:19:98:bb:be:85:da:d1:50:de:82:
d8:27:19:a6:d6:9e:fa:fe:21:62:8b:d5:27:1e:5f:
e4:75:a9:c5:af:0b:bc:00:ee:25:da:dc:0f:aa:03:
49:47:f5:5d:2f:14:fb:5b:7d:92:39:13:48:ac:6d:
44:b8:42:e8:9a:87:46:bc:93:b0:e3:2e:45:33:f8:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D1:B0:6E:0C:28:17:20:83:52:04:6D:C6:D9:EB:91:58:2B:42:84
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/2B714BF00F9D11EC9EBD1533D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.172.0/23
Signature Algorithm: sha256WithRSAEncryption
23:55:af:07:9b:6e:1e:32:23:3f:a6:79:6a:4d:9e:39:2b:68:
db:bf:b5:8e:95:69:49:ee:8c:34:60:38:3f:30:16:01:5e:e2:
48:c4:ec:99:54:de:65:a1:6c:8b:95:ab:76:3c:d1:ba:6c:50:
b8:41:f9:b6:d5:22:6c:8e:4f:a4:d1:43:7e:16:57:9f:ff:cb:
09:ea:2e:b0:cc:03:3b:bd:68:94:a6:b8:4c:8f:80:cc:91:41:
41:08:4d:1c:bd:4a:96:65:43:46:4b:9f:cd:33:56:c7:ad:f1:
5d:c2:0a:ea:02:b7:b6:01:74:9b:e0:7d:d0:58:89:40:ac:35:
85:f6:21:6f:41:69:4b:9e:e0:24:f1:7d:fd:c1:aa:aa:8c:88:
62:d4:75:e4:b9:87:79:8a:b1:e1:ba:86:68:6b:9c:0d:4e:a2:
98:cd:16:82:6a:e0:57:12:29:33:7e:88:77:58:e3:44:bd:92:
66:35:6a:c5:a6:43:a4:ed:03:5d:1c:7d:aa:90:76:74:01:b8:
7c:23:fa:94:9c:ab:68:de:52:37:3c:6d:a2:be:3c:2f:53:39:
58:90:84:e3:e0:30:4e:b6:b1:94:2d:42:c3:6b:ae:73:2e:c5:
16:ca:a1:75:6d:7f:fc:43:74:3f:5d:5d:88:e4:41:ac:3e:dc:
6c:85:5e:73
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yMTA5MDcwNTMzNDJaFw0yNTA5MTAwNTMzNDJaMBgxFjAU
BgNVBAMMDTYxMzZmOWI5LTNhYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJ/pp6G/BiW2zzAVhFowNXcKcTQbb4iQySoYVnkLmYo3+V8pX8WVIwOEAY
1x1dmo5+DjPNpUqDiet00CnhnfwEbyNfY5pTt43ylYyWABA+h+0HoESBDvQhT6GL
ijUfCHZhRZaGL9Tech3Bnyaj1T2f44hF31sx43o2aQmawqK6jpZg4Xe5HLH1vu+w
+zsE7sArAad7Hg1O+F1sa6BL+8p4N+biVk+N1oXLVldayiaXVU9Pmhc7aYZ7GZi7
voXa0VDegtgnGabWnvr+IWKL1SceX+R1qcWvC7wA7iXa3A+qA0lH9V0vFPtbfZI5
E0isbUS4Quiah0a8k7DjLkUz+CpPAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUBdGw
bgwoFyCDUgRtxtnrkVgrQoQwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzJCNzE0QkYwMEY5RDExRUM5RUJEMTUzM0Q4QTAxNENFLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHAjqwwDQYJKoZIhvcNAQELBQAD
ggEBACNVrwebbh4yIz+meWpNnjkraNu/tY6VaUnujDRgOD8wFgFe4kjE7JlU3mWh
bIuVq3Y80bpsULhB+bbVImyOT6TRQ34WV5//ywnqLrDMAzu9aJSmuEyPgMyRQUEI
TRy9SpZlQ0ZLn80zVset8V3CCuoCt7YBdJvgfdBYiUCsNYX2IW9BaUue4CTxff3B
qqqMiGLUdeS5h3mKseG6hmhrnA1OopjNFoJq4FcSKTN+iHdY40S9kmY1asWmQ6Tt
A10cfaqQdnQBuHwj+pScq2jeUjc8baK+PC9TOViQhOPgME62sZQtQsNrrnMuxRbK
oXVtf/xDdD9dXYjkQaw+3GyFXnM=
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org