Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0FC64DE0062D11EF9274113F017001B1.roa
File: 0FC64DE0062D11EF9274113F017001B1.roa (raw, json)
Hash identifier: qbAR0Zep0Tzc0orniRs6I6tDeU6fDNVZpuq/YAh01Hw=
Subject key identifier: 93:0C:78:39:71:93:53:91:99:0E:A0:B9:2E:A2:7E:09:BC:D0:F1:8D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 86BA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0FC64DE0062D11EF9274113F017001B1.roa
Signing time: Mon 29 Apr 2024 13:33:28 +0000
ROA not before: Mon 29 Apr 2024 13:33:24 +0000
ROA not after: Sun 15 Sep 2024 13:33:24 +0000
asID: 142286
IP address blocks: 156.250.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34490 (0x86ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 13:33:24 2024 GMT
Not After : Sep 15 13:33:24 2024 GMT
Subject: CN=662fa1a8-eaec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:22:ac:1e:1b:9b:aa:47:1a:03:ff:64:59:7a:
ea:5c:c3:e0:07:45:ca:f0:46:ae:89:b9:53:73:9d:
5c:9e:95:58:29:64:66:54:76:26:e9:29:33:57:0f:
61:2d:1a:66:2c:ec:6b:a6:fd:26:30:e5:cd:01:02:
82:70:fa:93:e1:9d:64:52:df:65:53:24:8c:61:6b:
18:70:17:b2:a5:28:2a:a8:d0:68:bf:4b:fb:48:b7:
92:73:0c:85:65:86:16:e1:f8:ad:e4:1b:5e:23:b9:
e4:dd:43:87:87:37:17:43:44:95:12:f1:30:ec:fc:
aa:93:1a:a6:9f:4c:bd:e1:ac:37:e8:ab:f7:7e:a8:
30:a8:8c:47:d2:d8:6e:94:d7:d4:dc:e8:d7:7c:04:
0d:00:2a:39:2a:28:0d:ca:e2:f3:1d:0c:ec:71:59:
07:51:fc:a3:b3:29:5a:74:13:e0:d5:3a:19:eb:da:
42:5c:81:81:fd:3a:8a:90:7f:46:cd:db:98:36:fc:
87:e7:ac:2f:56:fc:4a:b6:4b:a7:fd:de:27:1b:50:
20:d3:55:d6:0b:bb:0c:b8:9f:93:54:c6:d2:48:75:
12:59:16:24:0d:58:7e:a3:85:bc:be:bc:36:e9:d5:
69:3f:0b:ad:25:b5:bc:4e:f0:32:30:fe:a4:86:99:
c6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0C:78:39:71:93:53:91:99:0E:A0:B9:2E:A2:7E:09:BC:D0:F1:8D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0FC64DE0062D11EF9274113F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.16.0/20
Signature Algorithm: sha256WithRSAEncryption
70:55:17:e4:f3:fd:de:51:45:cc:93:96:98:b9:50:c1:13:62:
6f:75:b6:67:ca:78:81:a5:93:f7:64:bb:f4:7b:19:79:df:c3:
1f:95:92:d1:9a:c1:e2:32:c1:b6:cd:65:ad:e5:81:40:d5:c6:
c0:14:dd:8d:bf:8c:ff:21:50:3d:24:43:b7:24:63:4c:5c:b4:
cb:85:44:67:a8:41:a6:36:af:62:10:89:a3:af:d7:d0:6b:49:
46:1c:5b:fb:70:be:4a:25:02:d5:c1:11:98:b5:e0:a2:82:af:
16:9a:1b:cc:cd:a1:f7:23:72:9f:dc:7b:7c:6f:dd:1c:0d:33:
e4:f0:3b:8e:35:2a:72:30:89:ce:c5:6d:4e:31:7b:c4:2b:43:
2d:2f:7b:ae:42:64:2a:41:2c:3b:61:f2:6f:4d:30:47:41:64:
03:b0:02:60:db:5a:49:f8:ff:29:98:b2:53:70:3e:46:8c:30:
9b:ce:80:9d:66:ca:f1:76:52:07:5d:d9:8d:2d:8e:82:f7:5e:
8c:46:2f:bc:69:34:71:e8:98:ae:5b:9d:5c:37:1a:bb:3a:f9:
8e:28:6c:ac:ee:a4:37:9f:54:e2:fb:0b:42:ab:50:da:c6:6d:
54:a5:4c:73:d8:7c:ac:ae:e6:c0:ae:05:a1:33:96:37:ca:0e:
79:db:4b:61
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIa6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI5MTMzMzI0WhcNMjQwOTE1MTMzMzI0WjAYMRYw
FAYDVQQDEw02NjJmYTFhOC1lYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3yKsHhubqkcaA/9kWXrqXMPgB0XK8EauiblTc51cnpVYKWRmVHYm6Skz
Vw9hLRpmLOxrpv0mMOXNAQKCcPqT4Z1kUt9lUySMYWsYcBeypSgqqNBov0v7SLeS
cwyFZYYW4fit5BteI7nk3UOHhzcXQ0SVEvEw7Pyqkxqmn0y94aw36Kv3fqgwqIxH
0thulNfU3OjXfAQNACo5KigNyuLzHQzscVkHUfyjsyladBPg1ToZ69pCXIGB/TqK
kH9GzduYNvyH56wvVvxKtkun/d4nG1Ag01XWC7sMuJ+TVMbSSHUSWRYkDVh+o4W8
vrw26dVpPwutJbW8TvAyMP6khpnG1QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJMM
eDlxk1ORmQ6guS6ifgm80PGNMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8wRkM2NERFMDA2MkQxMUVGOTI3NDExM0YwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnPoQMA0GCSqGSIb3DQEBCwUA
A4IBAQBwVRfk8/3eUUXMk5aYuVDBE2JvdbZnyniBpZP3ZLv0exl538MflZLRmsHi
MsG2zWWt5YFA1cbAFN2Nv4z/IVA9JEO3JGNMXLTLhURnqEGmNq9iEImjr9fQa0lG
HFv7cL5KJQLVwRGYteCigq8WmhvMzaH3I3Kf3Ht8b90cDTPk8DuONSpyMInOxW1O
MXvEK0MtL3uuQmQqQSw7YfJvTTBHQWQDsAJg21pJ+P8pmLJTcD5GjDCbzoCdZsrx
dlIHXdmNLY6C916MRi+8aTRx6JiuW51cNxq7OvmOKGys7qQ3n1Ti+wtCq1Daxm1U
pUxz2HysrubArgWhM5Y3yg5520th
-----END CERTIFICATE-----
Generated at Sat May 18 01:44:51 2024 by rpki-client on console-ams.rpki-client.org