Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/61224064CC9311EEB1E237C1775412E6.roa
File: 61224064CC9311EEB1E237C1775412E6.roa (raw, json)
Hash identifier: LYUVvkGrRZs1PeVX4syafozw7/GLOd5lVGBvJZdLXKY=
Subject key identifier: 38:65:71:4C:69:D8:A2:69:86:73:FE:E3:39:5F:51:02:3A:B3:C1:2E
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 08CA
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/61224064CC9311EEB1E237C1775412E6.roa
Signing time: Fri 16 Feb 2024 06:19:46 +0000
ROA not before: Fri 16 Feb 2024 06:19:42 +0000
ROA not after: Tue 14 Feb 2034 06:19:42 +0000
asID: 60707
IP address blocks: 192.142.108.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2250 (0x8ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Feb 16 06:19:42 2024 GMT
Not After : Feb 14 06:19:42 2034 GMT
Subject: CN=65cefe82-1254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:19:48:6c:45:4c:9c:53:08:f8:40:79:f3:98:
d5:91:d9:fb:0e:60:35:6d:61:ea:21:69:af:29:e4:
9d:27:a8:a8:a8:60:6b:27:ee:d3:00:76:97:94:33:
3b:56:96:b3:49:62:b7:da:eb:ae:24:93:15:ac:fd:
59:1a:27:1d:5d:0c:46:4e:bf:2b:18:2f:39:ab:87:
fe:99:60:cc:f7:94:36:40:86:a1:9f:4c:25:0b:28:
8c:de:be:10:b1:5f:f5:29:9d:60:0e:10:34:ab:73:
e6:08:21:b6:43:6d:b6:0d:23:de:32:14:4b:cc:46:
f1:2f:0a:df:08:be:b0:ba:ab:72:fe:a7:b2:0f:e4:
c9:b4:6e:db:8b:93:7c:12:eb:b5:74:dd:d1:82:1e:
30:63:51:e4:1a:99:1b:9d:8d:b3:39:02:87:ba:05:
46:5f:1c:f1:1e:c3:fc:18:c1:8b:70:e1:16:5f:5b:
21:de:b9:11:ca:c7:0e:fc:35:b4:8e:09:77:20:eb:
eb:fc:9d:e4:8e:b4:bd:72:ee:73:9a:1f:c4:8d:78:
ea:61:83:c3:40:49:af:b8:94:9e:70:74:ed:4d:2d:
ce:08:8b:32:33:46:7a:ef:c8:73:22:9a:44:c7:2f:
74:96:6f:52:6f:8a:f2:59:6f:aa:be:30:b9:ef:2c:
21:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:65:71:4C:69:D8:A2:69:86:73:FE:E3:39:5F:51:02:3A:B3:C1:2E
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/61224064CC9311EEB1E237C1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.108.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:d6:10:36:77:28:54:61:60:34:c9:38:c3:03:09:3d:ed:cd:
81:5d:b4:e8:48:64:90:48:cf:3b:aa:77:b6:05:3b:b2:d2:fd:
c3:c4:ab:8b:47:6d:3d:07:3f:7c:40:5a:b2:38:2d:a4:49:f1:
93:0b:ed:5a:5a:32:cc:a7:e1:58:33:1f:5b:7b:32:42:9b:3e:
5c:57:ec:34:10:80:24:59:81:a0:21:70:5f:f3:f3:5f:f7:36:
55:a4:d4:50:31:02:a1:1b:14:11:d9:ca:af:1c:f0:9d:b9:b4:
ad:d9:2a:5b:16:e7:6e:9d:7e:8e:b3:9b:12:a1:9e:f5:39:45:
09:79:9f:47:c5:4f:ac:08:25:ac:d9:6f:af:21:13:3a:f3:df:
c8:0d:37:05:95:66:36:1b:de:9d:c5:29:fb:a5:4f:69:2c:1f:
d6:46:99:06:13:12:01:1f:a7:ac:36:aa:b6:9e:e2:e8:95:09:
19:d7:fe:20:ea:41:b5:3e:55:cf:ca:2f:c6:03:47:b0:7e:38:
ae:9f:68:49:c5:3f:d7:92:8b:03:9f:4e:cb:19:5e:c9:2d:a7:
c2:b0:9b:ee:2a:25:36:6b:07:71:35:9f:dd:df:88:23:1c:de:
58:7c:80:b3:a0:24:ca:73:40:b1:7b:41:4f:a2:e6:e7:50:9a:
fa:fe:24:72
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCMowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yNDAyMTYwNjE5NDJaFw0zNDAyMTQwNjE5NDJaMBgxFjAU
BgNVBAMTDTY1Y2VmZTgyLTEyNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8GUhsRUycUwj4QHnzmNWR2fsOYDVtYeohaa8p5J0nqKioYGsn7tMAdpeU
MztWlrNJYrfa664kkxWs/VkaJx1dDEZOvysYLzmrh/6ZYMz3lDZAhqGfTCULKIze
vhCxX/UpnWAOEDSrc+YIIbZDbbYNI94yFEvMRvEvCt8IvrC6q3L+p7IP5Mm0btuL
k3wS67V03dGCHjBjUeQamRudjbM5Aoe6BUZfHPEew/wYwYtw4RZfWyHeuRHKxw78
NbSOCXcg6+v8neSOtL1y7nOaH8SNeOphg8NASa+4lJ5wdO1NLc4IizIzRnrvyHMi
mkTHL3SWb1JvivJZb6q+MLnvLCGrAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUOGVx
TGnYommGc/7jOV9RAjqzwS4wHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzYxMjI0MDY0Q0M5MzExRUVCMUUyMzdDMTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALAjmwwDQYJKoZIhvcNAQELBQAD
ggEBAGzWEDZ3KFRhYDTJOMMDCT3tzYFdtOhIZJBIzzuqd7YFO7LS/cPEq4tHbT0H
P3xAWrI4LaRJ8ZML7VpaMsyn4VgzH1t7MkKbPlxX7DQQgCRZgaAhcF/z81/3NlWk
1FAxAqEbFBHZyq8c8J25tK3ZKlsW526dfo6zmxKhnvU5RQl5n0fFT6wIJazZb68h
Ezrz38gNNwWVZjYb3p3FKfulT2ksH9ZGmQYTEgEfp6w2qrae4uiVCRnX/iDqQbU+
Vc/KL8YDR7B+OK6faEnFP9eSiwOfTssZXsktp8Kwm+4qJTZrB3E1n93fiCMc3lh8
gLOgJMpzQLF7QU+i5udQmvr+JHI=
-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:16 2024 by rpki-client on console-fra.rpki-client.org