Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F8DE38A2DEB711EC9A71D187F1222468.roa
File: F8DE38A2DEB711EC9A71D187F1222468.roa (raw, json)
Hash identifier: 5JN5ArsWrTsRxBJYaW8xKKzFgGHAc/C+VCotCF5L4n0=
Subject key identifier: 57:68:71:BB:30:95:5A:D0:E8:96:E1:FA:A0:BD:E1:DF:91:AC:5E:16
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 04C9
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F8DE38A2DEB711EC9A71D187F1222468.roa
Signing time: Sat 28 May 2022 18:57:08 +0000
ROA not before: Sat 28 May 2022 18:57:03 +0000
ROA not after: Thu 28 May 2026 18:57:03 +0000
asID: 212238
IP address blocks: 192.142.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:16:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1225 (0x4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 28 18:57:03 2022 GMT
Not After : May 28 18:57:03 2026 GMT
Subject: CN=62927084-f86d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:37:3f:24:50:3f:04:a9:40:55:b1:c1:b8:74:
c7:e6:fe:f5:b0:a8:7a:6a:6a:fc:67:72:77:7c:6f:
f6:4d:44:e1:5f:13:db:e3:76:57:40:72:a3:80:c9:
06:86:ae:b5:dd:78:3f:e2:d7:c6:ee:b7:cf:ef:67:
0c:22:b7:47:55:58:14:46:e3:2e:ca:95:aa:e5:e8:
e9:7b:6e:4e:5b:8c:c2:11:67:b0:50:a4:50:6a:91:
e4:d3:a6:13:e4:9e:2c:23:7b:15:ca:dd:57:c3:3a:
19:fe:4c:1f:22:05:97:86:2b:4f:72:db:0d:37:73:
9f:34:22:e6:92:1a:a0:d6:49:3e:c0:e8:38:e1:27:
d0:12:d9:72:47:72:37:75:b5:c4:29:9d:39:77:29:
02:20:4c:0f:8d:19:38:e7:45:17:73:47:7d:e2:e8:
70:36:bb:ea:40:ea:cd:34:52:48:a4:70:96:9e:d3:
1f:f6:46:fc:9b:fe:bd:1d:46:c1:0d:53:25:cc:2a:
16:e6:93:cd:bd:12:7d:f8:88:25:bc:52:c3:ef:0d:
99:d9:81:be:47:02:9f:cc:d9:43:63:0a:94:ec:01:
d6:b8:7c:41:df:e9:28:97:45:96:26:f1:2c:5c:98:
48:d2:4b:2a:fd:2f:03:98:20:b3:af:83:61:3f:26:
2b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:68:71:BB:30:95:5A:D0:E8:96:E1:FA:A0:BD:E1:DF:91:AC:5E:16
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/F8DE38A2DEB711EC9A71D187F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.228.0/24
Signature Algorithm: sha256WithRSAEncryption
15:9d:28:35:c6:4a:56:cc:84:3e:7a:e7:ef:7d:aa:4c:8f:94:
c7:9a:98:c6:08:b1:6d:93:f4:80:c9:b0:9a:48:97:c7:01:0d:
81:97:8d:2c:4b:2a:67:38:13:1c:90:5e:55:0f:b1:b4:95:2b:
d3:6b:f2:6e:1c:73:3d:bc:18:a8:1d:b9:a6:cc:d4:20:fe:a0:
e2:44:9d:07:b5:3b:6c:42:e5:99:74:c0:f1:8f:b0:88:cc:cd:
2b:ed:84:8c:04:b5:a3:25:7d:9e:e5:4f:4b:53:cd:75:06:61:
73:17:c1:95:8e:9b:3d:2b:9a:68:03:b5:8e:a3:6c:46:b4:61:
72:c5:31:ea:5a:4f:55:6b:0a:a5:24:0e:0a:62:47:1f:38:8f:
57:84:a5:d0:82:89:00:36:f3:99:a7:52:2f:d1:d1:bd:d1:2a:
06:3d:3c:d7:65:4c:30:bd:4e:7c:0c:79:3d:31:e8:e9:ce:c7:
30:0b:0f:17:c9:a2:0f:a6:05:c0:cc:82:c7:4b:b5:4a:cf:6f:
e0:e0:db:46:9f:62:01:94:c5:41:ee:f0:a5:81:2f:0c:69:4d:
63:7f:61:b0:1b:f4:1b:63:80:3d:53:00:e9:cf:5b:8b:91:1d:
1b:26:1c:28:71:4b:9b:ec:36:4d:28:04:b8:2d:d7:25:25:e9:
43:aa:b7:34
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBMkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yMjA1MjgxODU3MDNaFw0yNjA1MjgxODU3MDNaMBgxFjAU
BgNVBAMMDTYyOTI3MDg0LWY4NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCyNz8kUD8EqUBVscG4dMfm/vWwqHpqavxncnd8b/ZNROFfE9vjdldAcqOA
yQaGrrXdeD/i18but8/vZwwit0dVWBRG4y7Klarl6Ol7bk5bjMIRZ7BQpFBqkeTT
phPkniwjexXK3VfDOhn+TB8iBZeGK09y2w03c580IuaSGqDWST7A6DjhJ9AS2XJH
cjd1tcQpnTl3KQIgTA+NGTjnRRdzR33i6HA2u+pA6s00UkikcJae0x/2Rvyb/r0d
RsENUyXMKhbmk829En34iCW8UsPvDZnZgb5HAp/M2UNjCpTsAda4fEHf6SiXRZYm
8SxcmEjSSyr9LwOYILOvg2E/Jit5AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUV2hx
uzCVWtDoluH6oL3h35GsXhYwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4L0Y4REUzOEEyREVCNzExRUM5QTcxRDE4N0YxMjIyNDY4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADAjuQwDQYJKoZIhvcNAQELBQAD
ggEBABWdKDXGSlbMhD565+99qkyPlMeamMYIsW2T9IDJsJpIl8cBDYGXjSxLKmc4
ExyQXlUPsbSVK9Nr8m4ccz28GKgduabM1CD+oOJEnQe1O2xC5Zl0wPGPsIjMzSvt
hIwEtaMlfZ7lT0tTzXUGYXMXwZWOmz0rmmgDtY6jbEa0YXLFMepaT1VrCqUkDgpi
Rx84j1eEpdCCiQA285mnUi/R0b3RKgY9PNdlTDC9TnwMeT0x6OnOxzALDxfJog+m
BcDMgsdLtUrPb+Dg20afYgGUxUHu8KWBLwxpTWN/YbAb9BtjgD1TAOnPW4uRHRsm
HChxS5vsNk0oBLgt1yUl6UOqtzQ=
-----END CERTIFICATE-----
Generated at Wed May 8 02:08:58 2024 by rpki-client on console-ams.rpki-client.org