Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C7522DFAB30011EF96F5BA51762E951A.roa
File: C7522DFAB30011EF96F5BA51762E951A.roa (raw, json)
Hash identifier: XqkF36kkFcgU5RdmKk4zb/kSOra3D7Fq4OtvjJN/eqU=
Subject key identifier: FE:24:B3:48:2A:FC:31:27:3F:5A:CF:41:DF:06:39:D1:C4:31:77:CE
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0B56
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C7522DFAB30011EF96F5BA51762E951A.roa
Signing time: Thu 05 Dec 2024 12:02:21 +0000
ROA not before: Thu 05 Dec 2024 12:02:16 +0000
ROA not after: Wed 06 Dec 2034 12:02:16 +0000
asID: 6206
IP address blocks: 192.142.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2902 (0xb56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR
Validity
Not Before: Dec 5 12:02:16 2024 GMT
Not After : Dec 6 12:02:16 2034 GMT
Subject: CN=6751964d-3fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:55:dc:d7:2d:ce:53:19:85:80:7c:df:1a:b2:
95:69:87:95:46:35:d8:5a:17:be:94:81:a7:d4:8e:
14:92:8a:8c:bb:2e:01:4f:35:6c:b6:c0:77:78:35:
95:c9:e4:e7:aa:af:d3:b8:c8:16:3b:d3:63:37:f2:
63:c4:37:4d:f0:4c:b9:25:a9:e0:39:95:76:55:05:
f3:09:49:c1:43:2a:26:ed:1a:44:05:8e:7f:c7:ba:
13:92:a4:43:1e:2d:a0:8a:12:03:40:6b:17:b2:c3:
da:3e:e7:53:35:96:d7:b4:4c:18:08:9c:73:b5:38:
8a:d9:4c:0a:67:69:75:5a:2b:a2:2f:5a:e5:a8:53:
27:06:0a:06:e7:91:8e:1a:ca:0d:61:e2:b4:2e:44:
83:44:9d:ce:c2:fc:c8:56:e8:b5:d8:04:41:e6:22:
27:2f:f9:73:dd:db:df:8f:38:3b:38:50:da:5f:78:
38:59:4a:e6:05:90:bc:ce:5c:9e:f8:1f:56:94:47:
f5:63:66:f1:f4:3a:c2:05:68:cd:a4:4c:e4:89:82:
98:97:42:41:d7:c2:ef:62:c9:a4:ff:fd:3f:db:ff:
a5:a2:b4:12:cf:8b:67:71:fa:fd:2e:dd:54:f0:6e:
38:6f:2c:86:25:a7:d2:88:36:51:0c:32:f3:f1:e4:
64:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:24:B3:48:2A:FC:31:27:3F:5A:CF:41:DF:06:39:D1:C4:31:77:CE
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C7522DFAB30011EF96F5BA51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:aa:3d:de:0b:90:59:62:cc:99:5a:7e:74:57:6d:49:a0:57:
1c:6e:26:e9:5e:5d:f4:99:82:99:d1:fd:da:79:10:88:d9:4d:
2c:b8:c1:2d:b3:67:7a:1d:40:91:63:a8:d1:68:68:b4:a2:b0:
86:d9:3f:84:4e:a2:4b:73:ba:d9:26:03:84:ba:14:4a:2d:df:
2e:a0:fe:ce:fe:99:fc:58:f6:a8:05:db:0f:da:82:95:2a:f6:
e5:18:66:e9:0a:9f:d0:13:e4:fa:d0:23:6e:88:b3:97:8d:22:
87:52:14:da:38:66:88:6b:66:58:7a:bf:29:77:5c:42:6a:b3:
bb:02:2b:5f:99:2a:c6:a1:3b:7e:7e:19:6a:92:03:8c:8c:66:
db:c4:5a:7a:4d:a8:89:91:1d:70:46:20:04:38:0a:38:a9:b2:
64:b0:a3:81:eb:8d:b4:f6:94:bd:ea:29:76:47:76:09:16:8d:
ed:35:94:cb:3a:bb:ce:e9:3b:1c:2d:0c:2d:98:0e:7e:21:2a:
b8:22:3c:14:a7:36:f4:55:40:c9:aa:7e:83:b7:7f:ec:69:bc:
fb:a9:ef:89:fa:75:c5:da:c9:2f:ad:3f:e2:e6:ed:2f:89:ff:
db:ad:39:ab:78:54:45:e5:a4:98:c3:35:95:ae:c4:4f:ea:f3:
e0:3e:17:2a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC1YwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yNDEyMDUxMjAyMTZaFw0zNDEyMDYxMjAyMTZaMBgxFjAU
BgNVBAMTDTY3NTE5NjRkLTNmYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJVdzXLc5TGYWAfN8aspVph5VGNdhaF76UgafUjhSSioy7LgFPNWy2wHd4
NZXJ5Oeqr9O4yBY702M38mPEN03wTLklqeA5lXZVBfMJScFDKibtGkQFjn/HuhOS
pEMeLaCKEgNAaxeyw9o+51M1lte0TBgInHO1OIrZTApnaXVaK6IvWuWoUycGCgbn
kY4ayg1h4rQuRINEnc7C/MhW6LXYBEHmIicv+XPd29+PODs4UNpfeDhZSuYFkLzO
XJ74H1aUR/VjZvH0OsIFaM2kTOSJgpiXQkHXwu9iyaT//T/b/6WitBLPi2dx+v0u
3VTwbjhvLIYlp9KINlEMMvPx5GSRAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU/iSz
SCr8MSc/Ws9B3wY50cQxd84wHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4L0M3NTIyREZBQjMwMDExRUY5NkY1QkE1MTc2MkU5NTFBLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADAjiEwDQYJKoZIhvcNAQELBQAD
ggEBAHqqPd4LkFlizJlafnRXbUmgVxxuJuleXfSZgpnR/dp5EIjZTSy4wS2zZ3od
QJFjqNFoaLSisIbZP4ROoktzutkmA4S6FEot3y6g/s7+mfxY9qgF2w/agpUq9uUY
ZukKn9AT5PrQI26Is5eNIodSFNo4ZohrZlh6vyl3XEJqs7sCK1+ZKsahO35+GWqS
A4yMZtvEWnpNqImRHXBGIAQ4CjipsmSwo4HrjbT2lL3qKXZHdgkWje01lMs6u87p
OxwtDC2YDn4hKrgiPBSnNvRVQMmqfoO3f+xpvPup74n6dcXayS+tP+Lm7S+J/9ut
Oat4VEXlpJjDNZWuxE/q8+A+Fyo=
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:30 2025 by rpki-client