Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E5662DD4A17A11EEAB16F955D25BE465.roa
File: E5662DD4A17A11EEAB16F955D25BE465.roa (raw, json)
Hash identifier: nQB8uEKFdXSZvidfMMlhgfBX43bi5bFfOgAaXmAWfUM=
Subject key identifier: 5D:6C:54:FF:3A:FD:82:72:82:60:C2:F8:82:4D:38:88:CC:A3:55:11
Certificate issuer: /CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Certificate serial: 0134
Authority key identifier: 93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
Authority info access: rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E5662DD4A17A11EEAB16F955D25BE465.roa
Signing time: Sat 23 Dec 2023 10:06:10 +0000
ROA not before: Sat 23 Dec 2023 10:06:07 +0000
ROA not after: Mon 23 Dec 2030 10:06:07 +0000
asID: 327697
IP address blocks: 139.26.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.mft
rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308 (0x134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAR/serialNumber=933F70DB9817B848F8C0861A824B10117DC5192C
Validity
Not Before: Dec 23 10:06:07 2023 GMT
Not After : Dec 23 10:06:07 2030 GMT
Subject: CN=6586b112-4c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:21:a5:df:06:7b:60:f5:a0:10:cc:d4:34:
af:9b:6f:ac:77:1f:32:32:ea:88:e0:93:a2:71:fb:
31:e1:01:e2:89:b6:ae:20:ea:54:b1:6c:a0:16:c3:
4d:90:f6:47:98:bc:15:b0:03:db:33:5d:f0:d4:78:
5b:b0:a7:90:e8:1d:da:0a:35:4e:38:28:8b:43:51:
0b:0f:a5:f9:bd:3f:7c:0b:87:1b:14:9b:aa:9a:06:
e5:32:65:2a:78:a1:33:d5:49:81:94:cf:6e:2e:ae:
96:27:ab:b8:68:97:a6:75:47:3b:eb:33:e1:4d:63:
ba:aa:ce:d3:57:3e:a7:90:b2:bf:8a:d8:99:77:a3:
1d:68:43:c9:16:a8:45:51:46:a7:db:54:74:7d:11:
1d:92:9d:0a:41:29:b0:cf:38:c3:34:6e:a2:63:ed:
21:86:7d:37:8d:c7:47:c9:39:90:8f:d4:7b:92:67:
13:03:02:8a:9c:d0:8e:c6:bc:ad:92:bd:f4:99:16:
01:ae:c8:6d:4e:2c:05:f1:ec:1f:11:46:66:16:31:
f8:b2:ed:46:98:42:b0:a1:e1:42:ad:a6:4d:1c:78:
70:67:4c:e1:42:a2:54:b4:e7:a0:ad:f5:ca:ff:46:
74:26:2b:30:c4:1c:29:b4:99:54:15:7b:5d:34:7b:
73:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6C:54:FF:3A:FD:82:72:82:60:C2:F8:82:4D:38:88:CC:A3:55:11
X509v3 Authority Key Identifier:
keyid:93:3F:70:DB:98:17:B8:48:F8:C0:86:1A:82:4B:10:11:7D:C5:19:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/kz9w25gXuEj4wIYagksQEX3FGSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kz9w25gXuEj4wIYagksQEX3FGSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/493E462EBCDA11EDA1FB0FB0F1222468/E5662DD4A17A11EEAB16F955D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.26.128.0/17
Signature Algorithm: sha256WithRSAEncryption
95:b2:79:c0:f6:c6:8c:e1:f0:d8:a3:f9:67:2b:d5:ef:c1:c0:
0e:e3:99:03:54:dc:16:e6:52:c3:2b:54:4d:5b:66:93:83:69:
f8:9d:5e:01:a5:f8:c1:e1:ba:1a:df:0c:03:55:e6:cc:04:fd:
e3:d0:e7:a5:98:3b:be:3d:3c:3c:a6:8c:a2:27:94:46:f3:69:
b3:78:4b:7a:0f:fa:d0:cc:e4:5b:e4:0d:b6:5b:d6:e7:07:88:
89:bb:39:1b:e4:5e:d8:8f:3e:de:70:02:c8:7a:f8:b1:9a:67:
98:d3:c0:3e:91:4b:b2:f6:eb:4f:86:1d:70:f2:c9:1e:f5:ad:
47:77:0c:ad:f1:07:be:b3:26:c4:c0:da:fd:0e:84:e8:ea:7e:
82:e8:26:29:51:01:98:4a:4d:52:4c:8d:48:05:77:97:42:5f:
dc:40:ca:41:68:52:d4:ab:2b:12:b7:07:2c:e3:f0:05:d4:ef:
c5:6b:df:2f:9b:a8:48:a9:b7:09:13:fc:57:5e:3d:6f:c6:87:
be:62:07:ef:1c:cf:24:f8:06:65:36:06:d7:ad:cc:c0:e9:13:
8c:35:85:53:88:a8:d7:6b:8f:c5:62:fa:f3:bd:07:09:2d:21:
e1:02:d5:f2:9a:17:a7:37:02:25:e8:25:7b:f8:f2:2b:c2:4d:
5e:b3:2e:6c
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICATQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NDMyMUFBUjExMC8GA1UEBRMoOTMzRjcwREI5ODE3Qjg0OEY4QzA4NjFBODI0QjEw
MTE3REM1MTkyQzAeFw0yMzEyMjMxMDA2MDdaFw0zMDEyMjMxMDA2MDdaMBgxFjAU
BgNVBAMTDTY1ODZiMTEyLTRjMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC40iGl3wZ7YPWgEMzUNK+bb6x3HzIy6ojgk6Jx+zHhAeKJtq4g6lSxbKAW
w02Q9keYvBWwA9szXfDUeFuwp5DoHdoKNU44KItDUQsPpfm9P3wLhxsUm6qaBuUy
ZSp4oTPVSYGUz24urpYnq7hol6Z1RzvrM+FNY7qqztNXPqeQsr+K2Jl3ox1oQ8kW
qEVRRqfbVHR9ER2SnQpBKbDPOMM0bqJj7SGGfTeNx0fJOZCP1HuSZxMDAoqc0I7G
vK2SvfSZFgGuyG1OLAXx7B8RRmYWMfiy7UaYQrCh4UKtpk0ceHBnTOFColS056Ct
9cr/RnQmKzDEHCm0mVQVe100e3PpAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUXWxU
/zr9gnKCYML4gk04iMyjVREwHwYDVR0jBBgwFoAUkz9w25gXuEj4wIYagksQEX3F
GSwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQzMjFBLzQ5M0U0NjJFQkNEQTExRURBMUZCMEZCMEYxMjIyNDY4L2t6OXcy
NWdYdUVqNHdJWWFna3NRRVgzRkdTdy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2t6OXcyNWdYdUVqNHdJWWFna3NRRVgzRkdTdy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjQzMjFBLzQ5M0U0NjJFQkNEQTExRURBMUZCMEZCMEYxMjIy
NDY4L0U1NjYyREQ0QTE3QTExRUVBQjE2Rjk1NUQyNUJFNDY1LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAeLGoAwDQYJKoZIhvcNAQELBQAD
ggEBAJWyecD2xozh8Nij+Wcr1e/BwA7jmQNU3BbmUsMrVE1bZpODafidXgGl+MHh
uhrfDANV5swE/ePQ56WYO749PDymjKInlEbzabN4S3oP+tDM5FvkDbZb1ucHiIm7
ORvkXtiPPt5wAsh6+LGaZ5jTwD6RS7L260+GHXDyyR71rUd3DK3xB76zJsTA2v0O
hOjqfoLoJilRAZhKTVJMjUgFd5dCX9xAykFoUtSrKxK3Byzj8AXU78Vr3y+bqEip
twkT/FdePW/Gh75iB+8czyT4BmU2BtetzMDpE4w1hVOIqNdrj8Vi+vO9BwktIeEC
1fKaF6c3AiXoJXv48ivCTV6zLmw=
-----END CERTIFICATE-----
Generated at Sun May 19 02:39:30 2024 by rpki-client on console-fra.rpki-client.org