Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5717A0039111EF9A8319FE007001B1.roa
File: DE5717A0039111EF9A8319FE007001B1.roa (raw, json)
Hash identifier: QWaelS5rYFLvwqZIma3MCXgp1F8Yi0NiKCsIKsq7/fo=
Subject key identifier: FA:A7:01:E0:DC:D6:5A:71:71:41:33:58:56:2D:C6:56:48:53:D3:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8621
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5717A0039111EF9A8319FE007001B1.roa
Signing time: Fri 26 Apr 2024 05:57:31 +0000
ROA not before: Fri 26 Apr 2024 05:57:27 +0000
ROA not after: Sun 29 Dec 2024 05:57:27 +0000
asID: 138195
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34337 (0x8621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 05:57:27 2024 GMT
Not After : Dec 29 05:57:27 2024 GMT
Subject: CN=662b424b-5ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:04:0b:6f:7c:aa:f5:b5:cc:87:d5:09:db:9d:
7a:77:cf:6f:b9:10:3e:62:ca:af:5c:00:95:f4:f7:
21:34:d1:c8:fe:05:74:84:4c:cf:94:89:56:50:03:
dc:64:cc:3e:a5:1e:ba:7f:be:bc:9c:00:c7:ef:e2:
5d:10:63:58:7d:af:00:7f:1f:f5:33:0d:70:32:bd:
1e:e8:14:9b:68:41:ea:df:2d:3a:60:90:1b:e7:5c:
8a:c3:08:94:58:e5:21:5c:1f:64:ae:c3:9d:d2:c9:
d0:72:ff:ff:db:86:26:4b:45:33:ed:01:42:1e:23:
31:07:1e:6e:b9:3d:a2:d5:09:af:d5:d8:c4:0c:67:
38:bb:bc:ff:c9:b9:f7:c0:ba:6a:ee:b7:61:33:7c:
89:55:22:62:e8:99:32:b5:3c:58:36:a0:d5:a7:eb:
2e:ef:61:fc:40:6e:a2:3a:d2:43:72:1a:b1:8e:39:
3a:43:bf:b7:11:c2:a2:4d:39:47:a0:7e:2f:f5:a1:
d9:9a:7b:cc:7d:56:8f:a7:ba:ea:a9:20:17:c7:db:
9b:08:d6:7d:a7:ac:00:97:b6:c7:f8:47:fa:8f:60:
8e:41:cf:f8:9d:99:94:86:75:04:df:18:ea:dc:2d:
47:fa:d7:f3:3e:ed:45:9a:e1:a0:5f:5f:1e:47:4b:
0a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A7:01:E0:DC:D6:5A:71:71:41:33:58:56:2D:C6:56:48:53:D3:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DE5717A0039111EF9A8319FE007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:4c:35:1e:74:1e:b4:fc:51:de:29:f6:61:f7:ac:0b:bc:2d:
44:43:3d:75:a3:eb:ed:6e:c0:5a:5a:f7:b1:e7:68:b4:64:9a:
9c:e8:81:ad:b9:da:cc:aa:d8:5e:66:94:de:a8:38:d1:1d:7a:
92:3e:1b:f1:69:bb:ce:1c:b8:15:82:1d:25:d0:66:da:63:f0:
ba:56:1c:dd:ca:b8:87:2d:b6:66:72:c8:1b:f7:ee:06:02:29:
a0:a9:f7:39:1b:ac:92:cd:55:8d:0b:12:0b:c6:23:48:fe:ff:
83:d7:94:27:c4:1a:a3:f3:6f:4b:68:b4:04:34:68:14:67:43:
41:73:1f:e5:e4:7c:f3:86:ee:df:cd:c3:98:55:1c:b0:66:9e:
41:fe:41:dc:47:cd:4a:d5:52:c4:d5:12:5f:d6:a3:bf:71:ce:
c7:e8:e3:3c:80:67:c0:a7:4b:ff:c7:98:95:e4:04:5f:f7:43:
09:30:19:4b:3a:b2:19:92:0d:3c:55:91:3b:dd:22:48:18:be:
cf:8b:db:d8:3b:86:2e:fd:ca:13:40:4b:a8:27:f7:a5:63:0d:
88:49:94:04:40:99:4e:1a:ff:1e:d0:f6:96:cc:69:34:68:60:
85:b3:1a:5a:b8:60:95:bb:28:49:48:db:d4:5e:85:f0:f2:88:
06:cb:f0:09
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDAIYhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDU1NzI3WhcNMjQxMjI5MDU1NzI3WjAYMRYw
FAYDVQQDEw02NjJiNDI0Yi01YmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyQQLb3yq9bXMh9UJ2516d89vuRA+YsqvXACV9PchNNHI/gV0hEzPlIlW
UAPcZMw+pR66f768nADH7+JdEGNYfa8Afx/1Mw1wMr0e6BSbaEHq3y06YJAb51yK
wwiUWOUhXB9krsOd0snQcv//24YmS0Uz7QFCHiMxBx5uuT2i1Qmv1djEDGc4u7z/
ybn3wLpq7rdhM3yJVSJi6JkytTxYNqDVp+su72H8QG6iOtJDchqxjjk6Q7+3EcKi
TTlHoH4v9aHZmnvMfVaPp7rqqSAXx9ubCNZ9p6wAl7bH+Ef6j2COQc/4nZmUhnUE
3xjq3C1H+tfzPu1FmuGgX18eR0sKowIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPqn
AeDc1lpxcUEzWFYtxlZIU9P6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ERTU3MTdBMDAzOTExMUVGOUE4MzE5RkUwMDcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnOowDQYJKoZIhvcNAQELBQAD
ggEBAIpMNR50HrT8Ud4p9mH3rAu8LURDPXWj6+1uwFpa97HnaLRkmpzoga252syq
2F5mlN6oONEdepI+G/Fpu84cuBWCHSXQZtpj8LpWHN3KuIcttmZyyBv37gYCKaCp
9zkbrJLNVY0LEgvGI0j+/4PXlCfEGqPzb0totAQ0aBRnQ0FzH+XkfPOG7t/Nw5hV
HLBmnkH+QdxHzUrVUsTVEl/Wo79xzsfo4zyAZ8CnS//HmJXkBF/3QwkwGUs6shmS
DTxVkTvdIkgYvs+L29g7hi79yhNAS6gn96VjDYhJlARAmU4a/x7Q9pbMaTRoYIWz
Glq4YJW7KElI29RehfDyiAbL8Ak=
-----END CERTIFICATE-----
Generated at Sat May 18 04:04:02 2024 by rpki-client on console-ams.rpki-client.org