Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/8B670370B9F411EE8011A4A2775412E6.roa
File: 8B670370B9F411EE8011A4A2775412E6.roa (raw, json)
Hash identifier: QLbAJ7w4VFSGN3tV1lmHGMYQFWGKyfAkAHm3NYt+IuE=
Subject key identifier: 39:68:EE:62:B9:7B:D0:B6:CB:A6:5F:60:09:DF:92:7C:AF:B9:0C:0C
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 0255
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/8B670370B9F411EE8011A4A2775412E6.roa
Signing time: Tue 23 Jan 2024 13:37:26 +0000
ROA not before: Tue 23 Jan 2024 13:37:22 +0000
ROA not after: Wed 22 Jan 2025 13:37:22 +0000
asID: 174
IP address blocks: 66.251.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 30 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 597 (0x255)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Jan 23 13:37:22 2024 GMT
Not After : Jan 22 13:37:22 2025 GMT
Subject: CN=65afc116-3a91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:56:5e:df:48:e4:2d:3d:e9:a5:09:c2:b3:
de:f7:16:62:5e:67:03:11:0d:1d:ab:a2:ff:dc:ca:
24:b5:f2:4b:aa:7e:a2:e5:e0:78:17:47:ff:60:6d:
d8:32:48:e7:25:08:33:4c:1d:67:17:2f:e3:5a:be:
a7:d7:9b:52:d9:1b:fa:2c:33:4f:91:60:cb:7c:7a:
b1:a5:68:03:3a:b3:f5:70:40:56:a9:08:a2:98:3e:
53:bd:40:c0:64:3f:3a:77:98:f9:e2:69:e7:a1:01:
22:24:a9:8f:c0:d9:bc:16:07:29:12:cb:59:bc:19:
bd:0f:12:05:c7:39:a9:8c:93:29:2a:fa:aa:3f:e9:
25:e2:49:96:7a:b0:82:89:b4:b7:45:56:7b:66:94:
08:bf:cb:07:8e:e5:47:52:2d:5a:2e:79:63:1a:00:
48:2e:55:fa:ad:c3:a5:21:46:be:fb:24:0c:ae:a9:
7c:7b:ba:1b:c0:01:90:7b:93:e0:00:50:46:f5:8a:
80:58:f3:b0:91:f0:71:77:fb:dd:8a:62:c8:e9:64:
78:b9:27:1c:24:d9:e4:6f:60:c5:64:6d:1b:22:11:
1c:7f:8d:06:da:f5:6d:c1:f5:02:5a:1c:1c:93:58:
01:68:07:33:b4:9f:7e:6b:9f:e1:00:c0:2c:7f:b1:
38:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:68:EE:62:B9:7B:D0:B6:CB:A6:5F:60:09:DF:92:7C:AF:B9:0C:0C
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/8B670370B9F411EE8011A4A2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.185.0/24
Signature Algorithm: sha256WithRSAEncryption
df:6f:21:b4:8d:8f:7f:6f:38:18:fc:5f:7f:0c:48:9c:21:a7:
bc:ea:43:a1:48:08:9d:83:ca:fb:f3:85:75:07:d6:ff:a4:52:
1f:a6:76:3e:9c:d9:8a:66:32:30:14:64:4d:e3:35:b6:64:7a:
ad:8e:6e:be:7f:f1:4e:93:51:52:a6:69:73:93:82:1f:bb:1c:
65:ca:29:20:5f:e9:89:51:d6:7e:9f:09:9a:68:72:96:85:0a:
ac:b7:ff:d5:15:c3:29:32:29:b5:16:e2:be:bc:fd:24:eb:44:
df:41:58:5d:1d:11:0e:71:0c:89:2c:ee:a7:14:91:ff:87:12:
3f:a0:08:c4:ad:41:8d:02:01:2f:ea:db:3a:79:e9:59:9f:62:
b8:de:75:3a:3f:50:2d:24:e9:69:da:2e:9f:74:5b:c3:80:13:
42:e4:63:87:8c:10:20:f9:a6:cf:77:c4:3b:60:59:4c:a3:27:
86:6c:8d:33:35:cc:03:57:ad:69:20:89:b6:07:ee:f7:d3:11:
0c:95:45:ee:b7:54:c4:e4:2c:9b:fa:3b:20:ab:c8:6a:cf:6f:
21:30:d6:ba:7e:ca:41:1e:b7:cb:c9:d8:a1:fc:10:e0:89:30:
b5:f6:6e:75:dd:94:ca:de:0f:f3:36:5b:8a:b8:6b:71:b7:90:
fb:28:0e:3b
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTlGOUNBUjExMC8GA1UEBRMoMDlGQjMxMzZFQ0Q1RTNEN0NGMDBCMzJDMTIxRjEy
RThBRkQwQTYwMTAeFw0yNDAxMjMxMzM3MjJaFw0yNTAxMjIxMzM3MjJaMBgxFjAU
BgNVBAMTDTY1YWZjMTE2LTNhOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCzC1Ze30jkLT3ppQnCs973FmJeZwMRDR2rov/cyiS18kuqfqLl4HgXR/9g
bdgySOclCDNMHWcXL+NavqfXm1LZG/osM0+RYMt8erGlaAM6s/VwQFapCKKYPlO9
QMBkPzp3mPniaeehASIkqY/A2bwWBykSy1m8Gb0PEgXHOamMkykq+qo/6SXiSZZ6
sIKJtLdFVntmlAi/yweO5UdSLVoueWMaAEguVfqtw6UhRr77JAyuqXx7uhvAAZB7
k+AAUEb1ioBY87CR8HF3+92KYsjpZHi5Jxwk2eRvYMVkbRsiERx/jQba9W3B9QJa
HByTWAFoBzO0n35rn+EAwCx/sTi1AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUOWju
Yrl70LbLpl9gCd+SfK+5DAwwHwYDVR0jBBgwFoAUCfsxNuzV49fPALMsEh8S6K/Q
pgEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjU5RjlDLzFEMjI5OTZFN0EwOTExRURCRDQyMjE4NUYxMjIyNDY4L0Nmc3hO
dXpWNDlmUEFMTXNFaDhTNktfUXBnRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L0Nmc3hOdXpWNDlmUEFMTXNFaDhTNktfUXBnRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjU5RjlDLzFEMjI5OTZFN0EwOTExRURCRDQyMjE4NUYxMjIy
NDY4LzhCNjcwMzcwQjlGNDExRUU4MDExQTRBMjc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABC+7kwDQYJKoZIhvcNAQELBQAD
ggEBAN9vIbSNj39vOBj8X38MSJwhp7zqQ6FICJ2DyvvzhXUH1v+kUh+mdj6c2Ypm
MjAUZE3jNbZkeq2Obr5/8U6TUVKmaXOTgh+7HGXKKSBf6YlR1n6fCZpocpaFCqy3
/9UVwykyKbUW4r68/STrRN9BWF0dEQ5xDIks7qcUkf+HEj+gCMStQY0CAS/q2zp5
6VmfYrjedTo/UC0k6WnaLp90W8OAE0LkY4eMECD5ps93xDtgWUyjJ4ZsjTM1zANX
rWkgibYH7vfTEQyVRe63VMTkLJv6OyCryGrPbyEw1rp+ykEet8vJ2KH8EOCJMLX2
bnXdlMreD/M2W4q4a3G3kPsoDjs=
-----END CERTIFICATE-----
Generated at Sun Apr 28 03:10:31 2024 by rpki-client on console-ams.rpki-client.org