Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/614EA70A5CFC11EE829F2B464AD9E6FC.roa
File: 614EA70A5CFC11EE829F2B464AD9E6FC.roa (raw, json)
Hash identifier: RV8ITjun0aqJYLeapOJdMX1QpiVxFsLiA1U++8795Dw=
Subject key identifier: 2F:BD:B8:C4:C2:9D:11:94:31:E2:77:49:2B:03:0E:F2:5B:7E:E9:61
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C19
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/614EA70A5CFC11EE829F2B464AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:09:13 +0000
ROA not before: Wed 27 Sep 2023 06:09:10 +0000
ROA not after: Mon 30 Sep 2030 06:09:10 +0000
asID: 203020
IP address blocks: 161.123.214.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Sep 27 06:09:10 2023 GMT
Not After : Sep 30 06:09:10 2030 GMT
Subject: CN=6513c709-d3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d8:41:51:5c:fe:ea:bc:57:79:87:ad:fd:84:
7a:d1:4a:71:ea:62:4c:44:35:b9:1c:9b:f6:a3:6e:
79:32:19:64:0a:a7:41:30:39:ce:c3:f6:eb:4c:f5:
fc:8f:b7:fe:ee:af:80:01:e2:10:5d:8f:51:7c:44:
25:32:12:f4:db:ff:b1:50:19:37:45:f1:4a:80:97:
0a:11:6e:84:1e:c8:44:fa:1c:17:24:24:17:99:83:
12:3b:e1:5c:db:25:ad:22:bf:bd:2b:0c:7c:11:09:
2f:5a:09:de:71:3f:ca:80:72:b1:30:c0:41:f0:07:
b2:ec:a2:82:a5:f6:29:c5:60:04:0f:4c:fe:19:eb:
e7:b7:d0:5d:47:34:41:6c:3b:5e:8d:37:73:4f:4c:
61:12:9b:62:a4:82:0c:3c:ff:13:91:d3:61:d5:90:
38:98:d9:f1:09:08:1e:39:15:87:bd:0e:f3:3d:9d:
32:05:bb:d3:51:6e:7e:79:2d:de:ad:60:64:64:41:
84:82:02:6d:95:5e:0b:78:be:7f:23:5e:e3:ff:35:
b3:6c:3f:08:f2:49:85:6e:96:6f:0e:62:8a:14:77:
48:d8:e6:78:c6:42:59:ce:bb:21:53:f2:58:9e:f9:
1c:06:73:96:11:ed:14:c3:80:20:21:c4:78:d5:72:
66:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BD:B8:C4:C2:9D:11:94:31:E2:77:49:2B:03:0E:F2:5B:7E:E9:61
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/614EA70A5CFC11EE829F2B464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.214.0/23
Signature Algorithm: sha256WithRSAEncryption
29:b6:69:93:17:ba:0f:ad:58:dd:4f:50:c6:6e:b5:ee:f9:c3:
97:e9:53:5f:94:97:99:1a:8c:db:b0:46:0a:4a:70:59:36:23:
0a:12:65:58:73:4c:a9:11:f0:3f:c8:50:a5:c6:e8:ed:18:18:
e2:a7:fd:71:e4:b5:2f:0c:59:98:a5:06:2e:c7:d1:5c:ee:0d:
a5:b7:63:8e:a2:e3:b1:7b:77:f5:f4:b8:30:e6:37:49:a8:21:
45:88:6f:f8:c0:90:bd:e6:34:86:c4:2c:a8:51:a2:90:bf:db:
14:e4:c8:1f:b1:a8:11:e5:bc:51:02:f7:aa:f9:e5:40:81:f0:
73:ab:a3:76:4c:d2:d1:c6:3a:3c:93:cb:8c:a3:46:d8:d7:73:
1f:a1:7a:94:2e:a1:98:7b:a6:c6:e2:59:1a:38:52:a3:25:e4:
4b:d9:86:14:20:11:db:b6:71:2d:eb:2b:b8:a9:dc:72:e5:d7:
80:03:ac:23:a7:b4:00:77:8d:0f:63:bc:b3:22:71:fd:c1:82:
2a:e9:07:cb:a0:96:8b:63:88:f7:14:b2:c6:dd:39:82:72:7f:
f9:03:70:95:92:44:4c:d9:63:41:f4:9e:59:e9:99:9b:eb:e1:
24:f4:d6:4a:eb:c0:20:c4:c5:a4:ff:d9:fd:29:6a:5c:07:67:
85:c3:46:81
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzA5MjcwNjA5MTBaFw0zMDA5MzAwNjA5MTBaMBgxFjAU
BgNVBAMTDTY1MTNjNzA5LWQzYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCr2EFRXP7qvFd5h639hHrRSnHqYkxENbkcm/ajbnkyGWQKp0EwOc7D9utM
9fyPt/7ur4AB4hBdj1F8RCUyEvTb/7FQGTdF8UqAlwoRboQeyET6HBckJBeZgxI7
4VzbJa0iv70rDHwRCS9aCd5xP8qAcrEwwEHwB7LsooKl9inFYAQPTP4Z6+e30F1H
NEFsO16NN3NPTGESm2Kkggw8/xOR02HVkDiY2fEJCB45FYe9DvM9nTIFu9NRbn55
Ld6tYGRkQYSCAm2VXgt4vn8jXuP/NbNsPwjySYVulm8OYooUd0jY5njGQlnOuyFT
8lie+RwGc5YR7RTDgCAhxHjVcmbBAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUL724
xMKdEZQx4ndJKwMO8lt+6WEwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4LzYxNEVBNzBBNUNGQzExRUU4MjlGMkI0NjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGhe9YwDQYJKoZIhvcNAQELBQAD
ggEBACm2aZMXug+tWN1PUMZute75w5fpU1+Ul5kajNuwRgpKcFk2IwoSZVhzTKkR
8D/IUKXG6O0YGOKn/XHktS8MWZilBi7H0VzuDaW3Y46i47F7d/X0uDDmN0moIUWI
b/jAkL3mNIbELKhRopC/2xTkyB+xqBHlvFEC96r55UCB8HOro3ZM0tHGOjyTy4yj
RtjXcx+hepQuoZh7psbiWRo4UqMl5EvZhhQgEdu2cS3rK7ip3HLl14ADrCOntAB3
jQ9jvLMicf3BgirpB8uglotjiPcUssbdOYJyf/kDcJWSREzZY0H0nlnpmZvr4ST0
1krrwCDExaT/2f0palwHZ4XDRoE=
-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org