Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/9649BB6C044611EDB29055BAF1222468.roa
File: 9649BB6C044611EDB29055BAF1222468.roa (raw, json)
Hash identifier: d/F6y4VormsMuMxcF8j8qwWop/Wfs4Iw7VKKyd/luGU=
Subject key identifier: FD:D7:65:5B:8A:92:B8:D5:F7:23:C1:49:A4:AA:E3:83:31:8B:25:8E
Certificate issuer: /CN=F364C81DAR/serialNumber=0D27394E9CDE92155E4599D68410992D708BF244
Certificate serial: 0492
Authority key identifier: 0D:27:39:4E:9C:DE:92:15:5E:45:99:D6:84:10:99:2D:70:8B:F2:44
Authority info access: rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/9649BB6C044611EDB29055BAF1222468.roa
Signing time: Fri 15 Jul 2022 14:01:13 +0000
ROA not before: Fri 15 Jul 2022 14:01:03 +0000
ROA not after: Mon 15 Jul 2024 14:01:03 +0000
asID: 327822
IP address blocks: 169.255.20.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.mft
rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1170 (0x492)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364C81DAR/serialNumber=0D27394E9CDE92155E4599D68410992D708BF244
Validity
Not Before: Jul 15 14:01:03 2022 GMT
Not After : Jul 15 14:01:03 2024 GMT
Subject: CN=62d17329-833b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cd:25:99:19:43:4e:0f:9b:9d:20:7e:20:50:
ee:fe:45:f2:35:dd:5f:99:71:29:52:81:b8:a2:7c:
08:17:1d:9e:2d:24:fc:91:03:2a:da:21:91:a2:d0:
77:3b:b9:f1:c9:82:6d:0d:45:7b:c0:1e:01:8b:bd:
32:82:27:7d:41:3a:5e:7b:11:66:16:44:01:1e:53:
7c:ce:e7:94:a8:a1:10:9e:12:fc:36:7f:e5:33:09:
6c:a1:bf:bd:fe:62:62:49:2c:be:2f:50:ef:85:c0:
1a:22:71:57:55:2d:32:79:4c:5c:01:de:d8:f9:de:
4a:4e:00:7c:f3:b5:93:ba:dc:6d:48:a8:90:9f:20:
08:43:87:ec:9b:ff:e5:e9:8c:e0:df:72:28:06:b3:
e6:87:a5:43:64:55:7a:2a:b9:d5:ab:59:f6:3a:87:
3d:9a:77:cb:9a:7a:0f:d3:ba:f6:4e:27:7e:af:96:
ce:bc:2b:9b:d6:71:b6:a2:60:bf:d4:d4:a1:4f:0b:
95:18:3f:a1:71:c9:c3:fa:f9:46:58:4f:7b:3c:21:
66:96:59:1b:db:26:24:16:66:37:97:42:7e:bc:a3:
13:a0:37:9e:b7:74:8d:ff:c6:1d:63:c9:30:b5:68:
58:30:11:e6:77:db:f4:1f:89:b7:5e:8d:3b:b1:a0:
19:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D7:65:5B:8A:92:B8:D5:F7:23:C1:49:A4:AA:E3:83:31:8B:25:8E
X509v3 Authority Key Identifier:
keyid:0D:27:39:4E:9C:DE:92:15:5E:45:99:D6:84:10:99:2D:70:8B:F2:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/DSc5TpzekhVeRZnWhBCZLXCL8kQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/DSc5TpzekhVeRZnWhBCZLXCL8kQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C81D/57069ECC890E11E98E15F062F8AEA228/9649BB6C044611EDB29055BAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.20.0/22
Signature Algorithm: sha256WithRSAEncryption
11:1c:fa:c8:98:7b:9d:2f:3f:a1:0c:fc:f1:e4:42:39:a7:74:
fb:f7:bb:f5:3d:b4:6d:4d:27:5d:2f:fa:be:fa:fc:e1:f2:f8:
91:5c:94:dd:e4:38:6c:7c:e4:05:62:61:8a:1d:12:3d:65:0e:
dc:49:f5:93:2b:ac:61:cc:09:b4:3b:b1:9b:c8:36:cd:d0:ec:
a7:98:e3:18:43:f1:bd:74:6a:54:87:09:99:d3:f7:bb:2c:2f:
a5:8f:a6:42:be:68:02:28:09:fd:bc:cd:11:78:97:32:53:4a:
72:db:b0:1f:2b:af:eb:ce:57:51:a1:23:96:a3:9f:ed:79:d0:
65:0a:33:60:af:64:8a:4d:2d:3d:2f:f1:cf:b6:38:ca:41:8c:
4a:ff:5c:a7:0c:ac:33:09:78:e1:fc:49:32:fa:b3:15:15:7f:
d8:28:9e:d1:ca:7d:a0:8d:9a:a3:88:13:f0:d4:d0:fa:3e:a9:
87:45:23:96:5e:7a:03:b4:3c:22:ce:ef:81:92:55:b5:97:d9:
88:49:4d:01:cf:fd:1d:d4:dc:e6:79:fb:d1:3d:38:c7:3f:ce:
2b:5a:24:4f:b6:af:91:ec:b4:c9:15:98:94:5f:1b:44:d5:14:
09:33:73:0f:21:df:58:08:0c:31:a3:50:23:bf:f3:5e:21:a5:
0f:31:99:b9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NEM4MURBUjExMC8GA1UEBRMoMEQyNzM5NEU5Q0RFOTIxNTVFNDU5OUQ2ODQxMDk5
MkQ3MDhCRjI0NDAeFw0yMjA3MTUxNDAxMDNaFw0yNDA3MTUxNDAxMDNaMBgxFjAU
BgNVBAMMDTYyZDE3MzI5LTgzM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDAzSWZGUNOD5udIH4gUO7+RfI13V+ZcSlSgbiifAgXHZ4tJPyRAyraIZGi
0Hc7ufHJgm0NRXvAHgGLvTKCJ31BOl57EWYWRAEeU3zO55SooRCeEvw2f+UzCWyh
v73+YmJJLL4vUO+FwBoicVdVLTJ5TFwB3tj53kpOAHzztZO63G1IqJCfIAhDh+yb
/+XpjODfcigGs+aHpUNkVXoqudWrWfY6hz2ad8uaeg/TuvZOJ36vls68K5vWcbai
YL/U1KFPC5UYP6FxycP6+UZYT3s8IWaWWRvbJiQWZjeXQn68oxOgN563dI3/xh1j
yTC1aFgwEeZ32/QfibdejTuxoBlvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU/ddl
W4qSuNX3I8FJpKrjgzGLJY4wHwYDVR0jBBgwFoAUDSc5TpzekhVeRZnWhBCZLXCL
8kQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjRDODFELzU3MDY5RUNDODkwRTExRTk4RTE1RjA2MkY4QUVBMjI4L0RTYzVU
cHpla2hWZVJabldoQkNaTFhDTDhrUS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L0RTYzVUcHpla2hWZVJabldoQkNaTFhDTDhrUS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjRDODFELzU3MDY5RUNDODkwRTExRTk4RTE1RjA2MkY4QUVB
MjI4Lzk2NDlCQjZDMDQ0NjExRURCMjkwNTVCQUYxMjIyNDY4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKp/xQwDQYJKoZIhvcNAQELBQAD
ggEBABEc+siYe50vP6EM/PHkQjmndPv3u/U9tG1NJ10v+r76/OHy+JFclN3kOGx8
5AViYYodEj1lDtxJ9ZMrrGHMCbQ7sZvINs3Q7KeY4xhD8b10alSHCZnT97ssL6WP
pkK+aAIoCf28zRF4lzJTSnLbsB8rr+vOV1GhI5ajn+150GUKM2CvZIpNLT0v8c+2
OMpBjEr/XKcMrDMJeOH8STL6sxUVf9gontHKfaCNmqOIE/DU0Po+qYdFI5ZeegO0
PCLO74GSVbWX2YhJTQHP/R3U3OZ5+9E9OMc/zitaJE+2r5HstMkVmJRfG0TVFAkz
cw8h31gIDDGjUCO/814hpQ8xmbk=
-----END CERTIFICATE-----
Generated at Sun May 19 01:46:28 2024 by rpki-client on console-ams.rpki-client.org