Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7C51EF1A7CD411EEA4107C454AD9E6FC.roa
File: 7C51EF1A7CD411EEA4107C454AD9E6FC.roa (raw, json)
Hash identifier: W9nselaUC9Jlg1iPJ3hOCJN5LNLLF4RW+8zlOTh2fQc=
Subject key identifier: 0A:6C:C3:6A:91:0C:05:7E:5E:F3:0F:5C:91:E7:F8:43:18:06:56:93
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C7B
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7C51EF1A7CD411EEA4107C454AD9E6FC.roa
Signing time: Mon 06 Nov 2023 18:44:16 +0000
ROA not before: Mon 06 Nov 2023 18:44:12 +0000
ROA not after: Mon 06 Nov 2028 18:44:12 +0000
asID: 207990
IP address blocks: 161.123.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3195 (0xc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 6 18:44:12 2023 GMT
Not After : Nov 6 18:44:12 2028 GMT
Subject: CN=654933ff-64e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1e:b1:1c:02:65:ed:26:a2:f5:59:fd:7f:60:
fe:b2:35:23:9d:ca:58:bc:c8:9c:5a:3f:de:9b:f4:
67:63:ad:2c:4a:19:9e:58:cd:cd:fb:f4:83:54:44:
55:b3:4a:bc:4e:fe:8f:43:f6:bc:cd:39:f3:a4:a0:
e7:52:32:07:2b:da:91:b6:4a:89:71:d4:6d:77:c6:
25:25:7c:9b:d2:3f:53:ec:62:1c:a8:54:9e:d1:23:
69:32:fa:62:3d:8d:cd:c3:4b:e1:77:b7:57:dd:d5:
94:7d:1c:fc:75:b8:c3:0c:1d:ca:31:b1:ab:da:32:
61:2d:a3:e8:17:23:ee:d5:20:8e:c5:a3:19:68:71:
78:e8:71:5a:35:fa:5e:b9:b9:1d:73:81:a0:b7:8a:
de:46:a0:ef:d3:8d:63:d6:5b:5b:21:fe:6a:ea:ed:
52:04:50:3c:ff:12:12:2e:4b:e8:4d:91:ab:4e:23:
e2:eb:8b:19:af:2a:a1:a8:c2:b9:aa:64:1a:2f:f5:
33:fc:55:17:4a:bc:d9:11:78:51:28:c4:86:4c:33:
e6:27:57:c3:a0:44:f1:c5:72:3a:71:59:1d:9d:95:
6a:5d:0f:16:d7:8c:11:47:b6:f1:dc:92:60:13:af:
36:96:97:66:b9:0b:0c:0a:0e:b6:d5:76:a2:b3:6d:
1d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6C:C3:6A:91:0C:05:7E:5E:F3:0F:5C:91:E7:F8:43:18:06:56:93
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/7C51EF1A7CD411EEA4107C454AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.13.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:62:ba:17:7a:98:64:d2:43:1f:ef:b3:13:72:7b:1e:bc:59:
71:d6:a5:8f:72:99:d8:5e:79:74:e7:78:66:f9:45:06:05:05:
3b:f8:b1:cd:c8:22:d2:9f:1a:98:15:9e:d5:38:81:21:87:98:
66:9e:99:46:25:ad:24:b6:8e:8a:fd:eb:d6:c1:a9:0f:1e:48:
3f:62:ed:c9:87:2f:2d:a2:5c:9d:af:cc:5a:4e:8d:d2:f0:70:
f0:60:11:58:d1:7a:d3:0e:6e:f3:5a:c2:09:0a:47:a1:53:13:
31:31:b4:90:ef:bf:9c:d4:87:42:42:f8:74:ee:ad:24:0b:1a:
2d:ed:d5:0d:8f:78:5f:9a:21:f6:ce:df:00:93:d6:c7:26:85:
8a:d6:bd:70:25:8d:5a:c3:f8:a2:24:e9:d9:36:e1:94:1d:5e:
79:cb:62:b9:3c:46:66:a5:ee:b8:cd:9d:ad:18:18:79:f9:9e:
2a:07:9e:5b:81:37:f2:af:56:79:9e:fe:8f:de:2e:6a:c0:44:
92:1c:76:ad:ba:4e:17:55:15:59:61:19:fb:0b:38:00:6f:01:
96:60:2f:b5:96:e0:f9:99:44:5e:e8:a6:9a:6c:c9:22:da:4e:
98:10:f6:78:6d:40:b1:c5:3e:e3:59:d8:c5:7b:27:9b:c9:69:
df:63:43:11
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDHswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzExMDYxODQ0MTJaFw0yODExMDYxODQ0MTJaMBgxFjAU
BgNVBAMTDTY1NDkzM2ZmLTY0ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDMHrEcAmXtJqL1Wf1/YP6yNSOdyli8yJxaP96b9GdjrSxKGZ5Yzc379INU
RFWzSrxO/o9D9rzNOfOkoOdSMgcr2pG2Solx1G13xiUlfJvSP1PsYhyoVJ7RI2ky
+mI9jc3DS+F3t1fd1ZR9HPx1uMMMHcoxsavaMmEto+gXI+7VII7FoxlocXjocVo1
+l65uR1zgaC3it5GoO/TjWPWW1sh/mrq7VIEUDz/EhIuS+hNkatOI+LrixmvKqGo
wrmqZBov9TP8VRdKvNkReFEoxIZMM+YnV8OgRPHFcjpxWR2dlWpdDxbXjBFHtvHc
kmATrzaWl2a5CwwKDrbVdqKzbR0PAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUCmzD
apEMBX5e8w9ckef4QxgGVpMwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4LzdDNTFFRjFBN0NENDExRUVBNDEwN0M0NTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChew0wDQYJKoZIhvcNAQELBQAD
ggEBAFxiuhd6mGTSQx/vsxNyex68WXHWpY9ymdheeXTneGb5RQYFBTv4sc3IItKf
GpgVntU4gSGHmGaemUYlrSS2jor969bBqQ8eSD9i7cmHLy2iXJ2vzFpOjdLwcPBg
EVjRetMObvNawgkKR6FTEzExtJDvv5zUh0JC+HTurSQLGi3t1Q2PeF+aIfbO3wCT
1scmhYrWvXAljVrD+KIk6dk24ZQdXnnLYrk8Rmal7rjNna0YGHn5nioHnluBN/Kv
Vnme/o/eLmrARJIcdq26ThdVFVlhGfsLOABvAZZgL7WW4PmZRF7opppsySLaTpgQ
9nhtQLHFPuNZ2MV7J5vJad9jQxE=
-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org