Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/959756E87AC111ECA97A17DD5A40D577.roa
File: 959756E87AC111ECA97A17DD5A40D577.roa (raw, json)
Hash identifier: EtZ5MpyHhFRaOaA8DQmwbGMpLUpVYSUGCKOgg2p42oM=
Subject key identifier: A2:44:53:DD:90:D3:2A:C9:2A:87:E1:5A:27:5E:C1:98:F9:29:01:AC
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 041E
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/959756E87AC111ECA97A17DD5A40D577.roa
Signing time: Fri 21 Jan 2022 13:54:00 +0000
ROA not before: Fri 21 Jan 2022 13:53:55 +0000
ROA not after: Wed 21 Jan 2026 13:53:55 +0000
asID: 210334
IP address blocks: 192.142.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1054 (0x41e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jan 21 13:53:55 2022 GMT
Not After : Jan 21 13:53:55 2026 GMT
Subject: CN=61eabaf8-f8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:24:21:3f:79:12:2e:c7:48:42:c8:75:bb:67:
bb:06:4c:66:b6:e1:e7:e8:19:c0:50:d0:29:f7:51:
56:67:7c:84:04:c9:68:d8:5e:2f:7c:ef:96:b5:2a:
f3:3a:07:8f:01:50:ec:7a:da:9b:0c:9a:1e:93:18:
8f:41:fc:98:09:74:92:97:ff:ab:5d:51:3f:c3:f3:
84:16:6e:3b:9c:b0:4a:de:14:ef:62:16:6a:8e:bb:
6e:c0:ef:c0:1e:f0:45:fa:c1:e7:84:e2:0a:89:4a:
3c:30:0c:12:ba:72:ed:4d:50:ea:c0:06:28:a9:73:
d1:ba:99:ea:37:e2:2d:94:25:e9:17:b8:92:c2:7f:
45:49:d8:1c:77:df:fa:7d:f3:58:78:94:7e:87:57:
e0:0a:e6:42:74:dc:35:41:4d:90:94:60:eb:dd:45:
3d:03:78:06:83:a6:6e:47:61:11:40:91:8b:38:60:
bd:ee:86:74:61:b8:6b:cf:29:94:15:cb:ce:3f:b1:
a0:73:8c:91:1a:53:5e:ed:3d:a1:63:b7:a4:5b:db:
66:55:4d:af:8d:79:69:f5:04:13:e3:f2:a1:7d:4c:
eb:ce:a4:dd:a4:da:ec:34:e3:b3:dc:76:df:14:04:
a7:22:43:be:ef:df:3f:22:63:3e:e6:c0:d5:82:e0:
cc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:44:53:DD:90:D3:2A:C9:2A:87:E1:5A:27:5E:C1:98:F9:29:01:AC
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/959756E87AC111ECA97A17DD5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.56.0/22
Signature Algorithm: sha256WithRSAEncryption
02:78:dd:2d:86:4d:23:8d:9f:b5:4b:99:7e:29:cf:47:15:e3:
fe:28:37:05:d7:40:42:2c:8c:49:11:7e:25:ff:ae:e8:7e:1e:
d2:2e:01:93:c4:d5:33:d9:b2:ad:6b:07:61:58:e6:25:8f:b6:
05:bb:74:50:b7:f7:7d:db:e6:bd:eb:fa:b9:fb:2f:5c:b1:28:
6c:a9:c9:15:4b:32:44:31:4c:7e:35:2a:47:7c:a2:75:ad:de:
3b:30:34:64:5c:2a:99:8a:a0:c8:02:ed:9d:33:46:67:94:ef:
97:6f:a0:30:8e:ad:87:62:e8:00:70:c3:1c:06:38:16:72:8c:
0e:ff:61:3e:de:4b:08:c9:55:13:d9:db:5c:78:26:1f:ec:cc:
b8:a2:76:d7:ed:e1:c5:4b:66:6b:f1:25:9c:ec:12:b1:bb:ad:
ed:8a:81:8f:a4:e1:98:f6:89:2f:43:0c:b9:74:80:03:1e:88:
a2:e3:14:c8:39:e7:da:6b:82:f0:62:91:d0:bf:c9:dc:a5:47:
a0:e8:46:b8:85:ce:03:06:a4:2b:ad:c3:f4:43:ad:89:4e:aa:
ea:36:70:72:d6:d7:3b:21:84:1d:bd:07:0e:53:86:85:73:0d:
f4:09:54:5e:1b:e9:dc:15:a7:2f:17:95:f4:e3:91:a0:8b:bc:
4b:0f:37:a5
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yMjAxMjExMzUzNTVaFw0yNjAxMjExMzUzNTVaMBgxFjAU
BgNVBAMMDTYxZWFiYWY4LWY4Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDLJCE/eRIux0hCyHW7Z7sGTGa24efoGcBQ0Cn3UVZnfIQEyWjYXi9875a1
KvM6B48BUOx62psMmh6TGI9B/JgJdJKX/6tdUT/D84QWbjucsEreFO9iFmqOu27A
78Ae8EX6weeE4gqJSjwwDBK6cu1NUOrABiipc9G6meo34i2UJekXuJLCf0VJ2Bx3
3/p981h4lH6HV+AK5kJ03DVBTZCUYOvdRT0DeAaDpm5HYRFAkYs4YL3uhnRhuGvP
KZQVy84/saBzjJEaU17tPaFjt6Rb22ZVTa+NeWn1BBPj8qF9TOvOpN2k2uw047Pc
dt8UBKciQ77v3z8iYz7mwNWC4MyrAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUokRT
3ZDTKskqh+FaJ17BmPkpAawwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4Lzk1OTc1NkU4N0FDMTExRUNBOTdBMTdERDVBNDBENTc3LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALAjjgwDQYJKoZIhvcNAQELBQAD
ggEBAAJ43S2GTSONn7VLmX4pz0cV4/4oNwXXQEIsjEkRfiX/ruh+HtIuAZPE1TPZ
sq1rB2FY5iWPtgW7dFC3933b5r3r+rn7L1yxKGypyRVLMkQxTH41Kkd8onWt3jsw
NGRcKpmKoMgC7Z0zRmeU75dvoDCOrYdi6ABwwxwGOBZyjA7/YT7eSwjJVRPZ21x4
Jh/szLiidtft4cVLZmvxJZzsErG7re2KgY+k4Zj2iS9DDLl0gAMeiKLjFMg559pr
gvBikdC/ydylR6DoRriFzgMGpCutw/RDrYlOquo2cHLW1zshhB29Bw5ThoVzDfQJ
VF4b6dwVpy8XlfTjkaCLvEsPN6U=
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:39:40 2024 by rpki-client on console-ams.rpki-client.org