Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A0D650741FE611EEA581D9564AD9E6FC.roa
File: A0D650741FE611EEA581D9564AD9E6FC.roa (raw, json)
Hash identifier: 4X7uyXFVFJqX4GGsTMIZ7FCaSZpyNx/8eH96JBdxyzw=
Subject key identifier: CC:4F:33:00:0B:3A:23:F8:70:91:75:65:7D:F8:DE:0D:73:E4:13:4C
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0B53
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A0D650741FE611EEA581D9564AD9E6FC.roa
Signing time: Tue 11 Jul 2023 12:29:50 +0000
ROA not before: Tue 11 Jul 2023 12:29:46 +0000
ROA not after: Thu 11 Jul 2024 12:29:46 +0000
asID: 133499
IP address blocks: 161.123.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2899 (0xb53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Jul 11 12:29:46 2023 GMT
Not After : Jul 11 12:29:46 2024 GMT
Subject: CN=64ad4b3e-6d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:18:27:11:ae:ca:f7:a7:d8:f9:c7:45:a9:8d:
ba:24:05:84:ce:f3:d4:b5:e3:c2:d4:e9:24:b1:dd:
7e:e0:57:62:c3:c4:04:1d:2a:32:e2:2a:f7:13:1c:
f9:ac:cc:4b:8d:da:5c:57:0a:f3:f4:ab:f2:5a:dd:
0e:33:68:ca:1f:a9:8b:b4:5b:8f:49:05:2f:22:28:
05:5e:9b:e9:d5:ca:0a:24:0a:e8:01:22:36:bc:24:
63:78:47:08:c5:a0:da:99:17:dd:c7:2a:5f:42:d7:
69:78:fa:66:d1:62:c2:dd:35:77:39:b8:e4:22:28:
eb:a9:fc:c8:fa:af:85:ca:89:c5:96:9d:67:75:67:
03:0b:d0:eb:a4:fb:b5:c4:f2:3e:63:b2:74:89:95:
eb:14:a7:7f:8d:6c:ab:af:9d:e4:4a:14:b9:62:4b:
e5:4d:af:fd:4f:61:e8:f9:c6:e7:6a:b6:5b:78:de:
2c:91:69:0e:3f:3c:82:4e:8e:50:c3:92:21:8f:1c:
d2:e7:ca:20:8c:83:f0:40:01:9d:c4:fc:b9:8f:2c:
99:cf:9b:14:e1:ef:1f:79:6e:75:ca:52:86:ab:15:
61:f3:d4:37:c1:7a:a2:45:94:32:0b:83:a9:0d:2d:
e8:8f:71:c9:0f:f7:e7:5d:91:4f:49:02:d9:d5:ad:
c2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4F:33:00:0B:3A:23:F8:70:91:75:65:7D:F8:DE:0D:73:E4:13:4C
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/A0D650741FE611EEA581D9564AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.70.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ef:e6:32:91:27:dc:df:d8:22:10:52:b7:7e:94:b0:61:c0:
7f:b9:26:be:f2:3f:52:f2:e3:b9:04:af:f7:85:1f:57:bf:a6:
4b:42:24:77:83:61:10:b7:90:6c:b0:11:e0:6d:39:10:0e:e9:
2a:81:8e:75:cf:d2:f1:0a:a0:e3:a3:b5:4b:5e:96:50:ca:ae:
b2:0a:1c:dc:a7:d1:a7:33:ea:05:e2:56:fd:bc:e4:48:10:ac:
74:e6:bd:c1:65:53:23:3b:9c:c5:27:46:9a:67:14:e9:23:32:
9c:fb:8a:97:d5:09:c2:6e:a0:9d:24:74:ec:fc:98:90:16:af:
51:51:e3:f1:25:df:3d:80:0a:a6:d1:f3:e2:87:2c:a3:ba:42:
42:ce:68:1f:38:be:c2:e8:50:0f:4d:92:40:31:fc:1b:79:b2:
5b:8b:ff:cf:c0:2c:b8:c9:07:67:c6:f4:43:90:da:1e:9c:f8:
af:2a:f2:4e:aa:10:6d:48:81:48:2c:cd:24:2e:5f:f7:4c:21:
46:1a:f2:2c:90:1c:29:98:b2:24:25:26:67:c1:f0:3d:0c:9e:
b3:ba:49:db:d8:2c:55:d7:78:74:36:71:a7:b4:a7:78:d5:e4:
4a:cd:92:e1:fe:96:6c:21:af:9e:77:0b:14:24:87:d2:10:7d:
76:dc:68:48
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzA3MTExMjI5NDZaFw0yNDA3MTExMjI5NDZaMBgxFjAU
BgNVBAMTDTY0YWQ0YjNlLTZkNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2GCcRrsr3p9j5x0WpjbokBYTO89S148LU6SSx3X7gV2LDxAQdKjLiKvcT
HPmszEuN2lxXCvP0q/Ja3Q4zaMofqYu0W49JBS8iKAVem+nVygokCugBIja8JGN4
RwjFoNqZF93HKl9C12l4+mbRYsLdNXc5uOQiKOup/Mj6r4XKicWWnWd1ZwML0Ouk
+7XE8j5jsnSJlesUp3+NbKuvneRKFLliS+VNr/1PYej5xudqtlt43iyRaQ4/PIJO
jlDDkiGPHNLnyiCMg/BAAZ3E/LmPLJnPmxTh7x95bnXKUoarFWHz1DfBeqJFlDIL
g6kNLeiPcckP9+ddkU9JAtnVrcJ9AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUzE8z
AAs6I/hwkXVlffjeDXPkE0wwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4L0EwRDY1MDc0MUZFNjExRUVBNTgxRDk1NjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChe0YwDQYJKoZIhvcNAQELBQAD
ggEBABHv5jKRJ9zf2CIQUrd+lLBhwH+5Jr7yP1Ly47kEr/eFH1e/pktCJHeDYRC3
kGywEeBtORAO6SqBjnXP0vEKoOOjtUtellDKrrIKHNyn0acz6gXiVv285EgQrHTm
vcFlUyM7nMUnRppnFOkjMpz7ipfVCcJuoJ0kdOz8mJAWr1FR4/El3z2ACqbR8+KH
LKO6QkLOaB84vsLoUA9NkkAx/Bt5sluL/8/ALLjJB2fG9EOQ2h6c+K8q8k6qEG1I
gUgszSQuX/dMIUYa8iyQHCmYsiQlJmfB8D0MnrO6SdvYLFXXeHQ2cae0p3jV5ErN
kuH+lmwhr553CxQkh9IQfXbcaEg=
-----END CERTIFICATE-----
Generated at Sat May 18 04:04:07 2024 by rpki-client on console-ams.rpki-client.org