Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BA34441C7CD511EEAFB45B494AD9E6FC.roa
File: BA34441C7CD511EEAFB45B494AD9E6FC.roa (raw, json)
Hash identifier: NJytIbtr6lmlBUu+LXrfLJKc/++TaWkb3MTy1rmzOZs=
Subject key identifier: 6E:BC:F2:09:7C:46:5E:3D:EB:6E:54:4D:B9:19:C3:2A:CC:08:09:46
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C9D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BA34441C7CD511EEAFB45B494AD9E6FC.roa
Signing time: Mon 06 Nov 2023 18:53:09 +0000
ROA not before: Mon 06 Nov 2023 18:53:06 +0000
ROA not after: Mon 06 Nov 2028 18:53:06 +0000
asID: 207990
IP address blocks: 161.123.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3229 (0xc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 6 18:53:06 2023 GMT
Not After : Nov 6 18:53:06 2028 GMT
Subject: CN=65493615-49f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:33:b1:05:6d:c8:a9:2e:5c:98:61:30:42:f3:
b7:1a:25:a9:16:c7:a6:3f:c3:e0:3e:81:f3:5a:3c:
b4:bf:0c:d6:e9:af:df:fe:87:02:54:75:79:a4:48:
0b:f2:4a:0f:db:cf:e8:30:e3:e3:55:e9:c0:dd:c5:
be:65:e2:0a:97:51:86:94:8b:33:c5:a9:40:42:fb:
e0:34:0d:73:9b:76:a6:64:38:25:ee:6b:ac:83:ab:
91:6f:a0:da:bf:b4:a9:e2:d4:5a:21:c1:a3:72:35:
b3:51:2b:dc:0f:07:6e:3d:7e:f0:93:37:14:15:05:
4c:8f:ba:03:37:41:b4:44:13:5e:c2:c0:82:23:a1:
94:53:d7:8d:9a:1f:5f:2b:31:a4:9a:ef:87:7b:84:
b1:85:90:dc:f5:be:18:ae:73:3e:45:66:88:ba:e0:
41:c4:28:a0:8a:df:73:d8:74:76:58:f4:38:0d:06:
d5:39:f1:f4:2d:c1:f8:4e:ed:a5:bf:f6:df:20:db:
50:7a:ae:b4:97:06:8b:26:af:7d:35:59:1e:e2:60:
76:f7:8f:46:d6:af:0d:49:8f:cf:22:97:a5:4b:d7:
bf:2d:8e:d8:05:dd:c7:3d:32:c3:5f:e8:11:0e:7c:
92:d4:76:2c:72:1b:32:3d:1f:60:bf:54:12:55:36:
c9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BC:F2:09:7C:46:5E:3D:EB:6E:54:4D:B9:19:C3:2A:CC:08:09:46
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BA34441C7CD511EEAFB45B494AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.48.0/24
Signature Algorithm: sha256WithRSAEncryption
06:5d:69:14:5b:82:60:ce:7f:26:a8:44:91:25:a5:f5:ea:ba:
1a:09:6b:80:32:dc:37:93:e6:3f:1c:a1:2e:53:f6:96:c7:2d:
78:ad:12:5c:56:1a:23:3e:03:d8:47:aa:4d:86:72:50:b3:68:
bf:90:b9:f3:89:7f:bd:66:9e:09:bb:1e:85:59:ea:0b:6a:74:
c8:2f:f6:1a:83:2f:d9:d2:2d:92:aa:54:51:e3:88:94:1f:b6:
91:7b:74:05:25:26:5e:03:30:7f:2d:1d:0b:86:e7:77:8d:7a:
b9:19:9b:fe:c4:9a:d0:eb:c7:b3:f8:cf:49:e2:9b:06:4b:b9:
06:3c:4d:af:2d:4f:94:d8:eb:db:81:64:92:de:41:4e:63:6f:
24:b8:e8:f3:05:bf:94:1f:92:70:2c:71:ed:9e:f9:d4:67:58:
dc:35:27:64:3d:f9:3d:86:c3:f2:52:47:12:01:af:ba:b7:63:
0e:65:fb:6f:bd:30:b0:e8:83:8d:39:f7:c6:12:06:bf:0b:5f:
4e:6f:0f:4b:ea:1c:8a:21:a0:db:a9:68:1b:5e:79:8a:da:0d:
de:99:08:60:69:51:d9:65:a3:4b:9a:66:bd:c1:9b:04:e2:e6:
30:d3:b1:5a:36:a9:3f:8d:31:1d:4e:23:82:3b:9c:29:d7:90:
40:73:f5:c5
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzExMDYxODUzMDZaFw0yODExMDYxODUzMDZaMBgxFjAU
BgNVBAMTDTY1NDkzNjE1LTQ5ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDBM7EFbcipLlyYYTBC87caJakWx6Y/w+A+gfNaPLS/DNbpr9/+hwJUdXmk
SAvySg/bz+gw4+NV6cDdxb5l4gqXUYaUizPFqUBC++A0DXObdqZkOCXua6yDq5Fv
oNq/tKni1FohwaNyNbNRK9wPB249fvCTNxQVBUyPugM3QbREE17CwIIjoZRT142a
H18rMaSa74d7hLGFkNz1vhiucz5FZoi64EHEKKCK33PYdHZY9DgNBtU58fQtwfhO
7aW/9t8g21B6rrSXBosmr301WR7iYHb3j0bWrw1Jj88il6VL178tjtgF3cc9MsNf
6BEOfJLUdixyGzI9H2C/VBJVNsnFAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUbrzy
CXxGXj3rblRNuRnDKswICUYwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4L0JBMzQ0NDFDN0NENTExRUVBRkI0NUI0OTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChezAwDQYJKoZIhvcNAQELBQAD
ggEBAAZdaRRbgmDOfyaoRJElpfXquhoJa4Ay3DeT5j8coS5T9pbHLXitElxWGiM+
A9hHqk2GclCzaL+QufOJf71mngm7HoVZ6gtqdMgv9hqDL9nSLZKqVFHjiJQftpF7
dAUlJl4DMH8tHQuG53eNerkZm/7EmtDrx7P4z0nimwZLuQY8Ta8tT5TY69uBZJLe
QU5jbyS46PMFv5QfknAsce2e+dRnWNw1J2Q9+T2Gw/JSRxIBr7q3Yw5l+2+9MLDo
g40598YSBr8LX05vD0vqHIohoNupaBteeYraDd6ZCGBpUdllo0uaZr3BmwTi5jDT
sVo2qT+NMR1OI4I7nCnXkEBz9cU=
-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org