Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BC551510E13311EEBD82E9AB775412E6.roa
File: BC551510E13311EEBD82E9AB775412E6.roa (raw, json)
Hash identifier: XOM+6hcbZhs357BVUcZ8VQ9E629ksbDjpOJ3m1CnbM4=
Subject key identifier: 58:2D:9F:4B:70:98:1A:7D:71:18:8F:1F:E5:0C:A5:B7:21:B3:02:3D
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0D5D
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BC551510E13311EEBD82E9AB775412E6.roa
Signing time: Wed 13 Mar 2024 12:18:01 +0000
ROA not before: Wed 13 Mar 2024 12:17:58 +0000
ROA not after: Wed 13 Mar 2030 12:17:58 +0000
asID: 212738
IP address blocks: 161.123.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3421 (0xd5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Mar 13 12:17:58 2024 GMT
Not After : Mar 13 12:17:58 2030 GMT
Subject: CN=65f19979-9dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5f:55:30:0d:ad:ae:8e:5b:72:de:57:1d:82:
65:35:fb:96:ea:50:b4:b9:fd:18:bb:0e:61:3f:16:
18:e2:73:85:f6:4e:39:2c:43:95:0c:35:8c:46:c3:
e4:66:72:06:7a:fe:63:e5:b7:20:ed:45:86:e1:c2:
75:30:7f:45:51:43:0d:64:56:1f:e9:c6:8d:b0:3e:
6b:92:16:04:cc:ca:c7:b6:5f:3d:46:9f:29:46:e4:
65:63:11:01:07:2f:f0:5e:be:44:e4:ab:89:05:b4:
98:5b:9d:0d:42:eb:22:25:62:7a:81:57:51:3e:3e:
97:f8:3b:fb:b7:93:96:68:f4:60:8c:3d:e6:60:e1:
79:79:23:5e:af:1e:96:26:c6:41:1b:17:05:77:50:
2b:9e:2c:c6:ed:02:b6:d3:06:f4:40:d4:87:22:7b:
f7:a6:7d:f0:bb:70:fd:c0:9c:47:e3:9e:f8:77:35:
54:45:b2:a6:cc:49:bf:0f:ec:98:db:6b:de:57:a9:
6f:03:85:a3:bd:fc:e9:dd:04:40:ac:5e:39:b1:3b:
43:75:28:53:30:ae:b0:2d:70:88:5e:fa:9b:10:a1:
a3:60:5b:21:f0:e3:e6:bd:78:3d:95:69:90:9f:1b:
dc:ff:b5:df:86:ee:0b:b5:c0:b7:3f:1e:af:fa:97:
56:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2D:9F:4B:70:98:1A:7D:71:18:8F:1F:E5:0C:A5:B7:21:B3:02:3D
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/BC551510E13311EEBD82E9AB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.246.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d2:ad:75:fd:79:3a:e9:23:8a:1c:40:fc:bd:67:d4:53:c1:
db:23:a8:60:e9:1b:58:fa:1d:55:6c:5a:25:8b:87:fb:92:e2:
ad:12:31:a8:b7:f2:3e:d9:98:ea:6b:21:9a:2f:bc:e5:2a:db:
01:58:b8:56:bd:89:d9:39:3f:01:9d:9f:8d:61:df:f1:3b:13:
77:28:a3:77:31:55:b3:6c:55:34:cc:fe:fe:84:11:7e:13:a5:
f3:71:bc:80:0a:04:7e:66:6b:46:6b:61:43:4c:c8:33:9d:72:
02:3c:9f:43:0b:76:09:17:e5:b7:ec:28:11:e5:c8:ac:21:ed:
d4:9e:17:a4:e0:8b:c7:8a:f5:83:2c:97:50:42:1e:d4:2d:fa:
4d:6f:dc:c7:de:9a:06:ae:01:8c:16:a3:e5:e6:43:0b:0a:ef:
08:75:b4:15:a8:97:4b:75:5e:1c:26:ea:22:b2:ae:e2:f7:3d:
be:c3:c5:b9:17:14:38:c9:0a:bb:36:5c:9b:ed:5a:3c:7e:06:
10:52:0c:de:9c:6d:79:40:9c:ba:71:14:eb:55:44:ef:46:34:
6c:96:a8:47:0e:87:d6:40:a3:0e:99:4a:7a:df:69:97:71:6d:
f5:fa:73:af:77:1d:9e:c1:14:1c:e0:d3:8b:fb:e1:1e:c8:fb:
15:ba:8e:48
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDV0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yNDAzMTMxMjE3NThaFw0zMDAzMTMxMjE3NThaMBgxFjAU
BgNVBAMTDTY1ZjE5OTc5LTlkYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDFX1UwDa2ujlty3lcdgmU1+5bqULS5/Ri7DmE/Fhjic4X2TjksQ5UMNYxG
w+RmcgZ6/mPltyDtRYbhwnUwf0VRQw1kVh/pxo2wPmuSFgTMyse2Xz1GnylG5GVj
EQEHL/BevkTkq4kFtJhbnQ1C6yIlYnqBV1E+Ppf4O/u3k5Zo9GCMPeZg4Xl5I16v
HpYmxkEbFwV3UCueLMbtArbTBvRA1Icie/emffC7cP3AnEfjnvh3NVRFsqbMSb8P
7Jjba95XqW8DhaO9/OndBECsXjmxO0N1KFMwrrAtcIhe+psQoaNgWyHw4+a9eD2V
aZCfG9z/td+G7gu1wLc/Hq/6l1YPAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUWC2f
S3CYGn1xGI8f5QyltyGzAj0wHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4L0JDNTUxNTEwRTEzMzExRUVCRDgyRTlBQjc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChe/YwDQYJKoZIhvcNAQELBQAD
ggEBAKTSrXX9eTrpI4ocQPy9Z9RTwdsjqGDpG1j6HVVsWiWLh/uS4q0SMai38j7Z
mOprIZovvOUq2wFYuFa9idk5PwGdn41h3/E7E3coo3cxVbNsVTTM/v6EEX4TpfNx
vIAKBH5ma0ZrYUNMyDOdcgI8n0MLdgkX5bfsKBHlyKwh7dSeF6Tgi8eK9YMsl1BC
HtQt+k1v3MfemgauAYwWo+XmQwsK7wh1tBWol0t1Xhwm6iKyruL3Pb7DxbkXFDjJ
Crs2XJvtWjx+BhBSDN6cbXlAnLpxFOtVRO9GNGyWqEcOh9ZAow6ZSnrfaZdxbfX6
c693HZ7BFBzg04v74R7I+xW6jkg=
-----END CERTIFICATE-----
Generated at Fri May 24 02:53:22 2024 by rpki-client on console-fra.rpki-client.org