Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2BBB8C641FE611EE95E380554AD9E6FC.roa
File: 2BBB8C641FE611EE95E380554AD9E6FC.roa (raw, json)
Hash identifier: doCTC8RZUh9FgYt8HPVwVp/Pz1DPF4OVMA/7ZHFdtDw=
Subject key identifier: F8:50:A0:7D:82:1F:58:B3:DB:B2:52:24:9D:78:FD:56:90:0B:19:7A
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0B4D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2BBB8C641FE611EE95E380554AD9E6FC.roa
Signing time: Tue 11 Jul 2023 12:26:33 +0000
ROA not before: Tue 11 Jul 2023 12:26:30 +0000
ROA not after: Thu 11 Jul 2024 12:26:30 +0000
asID: 133499
IP address blocks: 161.123.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2893 (0xb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jul 11 12:26:30 2023 GMT
Not After : Jul 11 12:26:30 2024 GMT
Subject: CN=64ad4a79-34b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e7:1d:36:82:3e:bd:50:e1:73:ee:52:c5:b6:
72:e4:2d:4c:44:d5:e7:53:3e:6e:cf:5c:ce:b5:52:
21:04:ca:d3:0a:48:2b:61:41:a9:81:ee:4e:dd:e3:
47:98:d5:e6:7c:43:8b:cb:1e:d2:ef:c0:94:ab:e9:
d5:78:47:d2:32:ee:51:6a:e8:ab:17:1a:00:79:5e:
2f:14:13:c2:17:1d:3e:16:09:e5:ac:f0:32:9f:82:
38:5d:66:a6:7d:c5:3f:b6:c9:0a:fe:7f:de:c1:69:
54:ef:b1:c3:46:21:96:99:c4:70:90:cd:ba:a4:f8:
84:fe:1a:21:c6:74:19:e7:b7:f0:00:bd:78:1b:af:
26:78:73:a6:69:29:c7:ed:7d:ed:42:b3:7b:22:0f:
a4:cc:95:ca:07:a7:d6:1e:6a:0c:61:86:47:49:55:
b5:79:0b:39:06:e5:54:2e:78:e3:21:d7:f1:77:9a:
00:67:c2:97:6c:89:26:4b:b6:ff:d1:6b:a1:dc:e4:
37:db:ce:a7:db:e3:05:f6:16:fd:89:44:97:45:47:
0a:f9:e1:80:d4:20:b2:71:d9:42:6f:b6:f6:e2:6b:
4b:24:ac:5f:13:34:43:19:7c:ad:17:bf:bd:bf:00:
fb:82:71:30:c3:ac:28:a4:43:c7:ea:03:a4:d5:1d:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:50:A0:7D:82:1F:58:B3:DB:B2:52:24:9D:78:FD:56:90:0B:19:7A
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/2BBB8C641FE611EE95E380554AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.212.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:16:ea:16:58:38:f7:1c:d4:e3:25:f4:c1:62:18:c7:f6:ad:
73:4b:ab:a3:71:3c:a8:1e:fc:e9:ff:78:40:e6:44:50:ee:9f:
00:a2:e9:52:ac:31:bc:7c:54:fc:fc:34:a0:21:f0:85:a4:cf:
aa:ee:98:06:95:ae:6c:1f:d4:59:3a:b3:4c:57:1d:30:ff:94:
21:0c:24:c4:e9:4f:50:0f:5a:d6:3e:db:b0:54:05:6a:44:86:
ed:27:3c:b7:00:03:90:7b:fa:ef:d3:f4:82:52:3a:ef:6f:71:
f0:54:47:e0:aa:9a:34:d3:3a:08:b4:2b:11:f3:0e:4f:6d:bd:
b1:df:e0:f3:ed:58:5b:b8:3d:b3:4d:9d:39:a6:c5:2a:c3:21:
99:ec:6e:70:60:39:72:ab:5b:c2:93:07:57:e1:b0:f3:a0:d1:
e6:fd:2f:9c:78:af:84:d8:f1:2b:a5:9c:e7:96:1a:39:d7:00:
c4:d5:60:19:4b:63:a7:c8:29:19:36:d6:fd:ba:92:6a:f2:36:
1c:b6:a6:35:9a:fe:3c:0c:ce:12:8e:fe:76:c0:5b:a2:5f:f7:
f3:77:47:c9:bb:c3:2b:ad:8b:be:5f:13:e4:a8:de:bb:6f:98:
a4:3f:66:66:c3:41:0c:b4:14:38:13:d7:56:ea:8f:89:d9:2d:
8e:4b:77:e3
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC00wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzA3MTExMjI2MzBaFw0yNDA3MTExMjI2MzBaMBgxFjAU
BgNVBAMTDTY0YWQ0YTc5LTM0YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDH5x02gj69UOFz7lLFtnLkLUxE1edTPm7PXM61UiEEytMKSCthQamB7k7d
40eY1eZ8Q4vLHtLvwJSr6dV4R9Iy7lFq6KsXGgB5Xi8UE8IXHT4WCeWs8DKfgjhd
ZqZ9xT+2yQr+f97BaVTvscNGIZaZxHCQzbqk+IT+GiHGdBnnt/AAvXgbryZ4c6Zp
Kcftfe1Cs3siD6TMlcoHp9YeagxhhkdJVbV5CzkG5VQueOMh1/F3mgBnwpdsiSZL
tv/Ra6Hc5Dfbzqfb4wX2Fv2JRJdFRwr54YDUILJx2UJvtvbia0skrF8TNEMZfK0X
v72/APuCcTDDrCikQ8fqA6TVHevhAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU+FCg
fYIfWLPbslIknXj9VpALGXowHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4LzJCQkI4QzY0MUZFNjExRUU5NUUzODA1NTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChe9QwDQYJKoZIhvcNAQELBQAD
ggEBAAwW6hZYOPcc1OMl9MFiGMf2rXNLq6NxPKge/On/eEDmRFDunwCi6VKsMbx8
VPz8NKAh8IWkz6rumAaVrmwf1Fk6s0xXHTD/lCEMJMTpT1APWtY+27BUBWpEhu0n
PLcAA5B7+u/T9IJSOu9vcfBUR+CqmjTTOgi0KxHzDk9tvbHf4PPtWFu4PbNNnTmm
xSrDIZnsbnBgOXKrW8KTB1fhsPOg0eb9L5x4r4TY8SulnOeWGjnXAMTVYBlLY6fI
KRk21v26kmryNhy2pjWa/jwMzhKO/nbAW6Jf9/N3R8m7wyuti75fE+So3rtvmKQ/
ZmbDQQy0FDgT11bqj4nZLY5Ld+M=
-----END CERTIFICATE-----
Generated at Sat May 18 04:04:06 2024 by rpki-client on console-ams.rpki-client.org