Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/48815194FFF611EEB7B2CF0C017001B1.roa
File: 48815194FFF611EEB7B2CF0C017001B1.roa (raw, json)
Hash identifier: D4ZOtAC47VS1ZnE8gxDvuNgN/naFW3V/gpkFVCsnwIA=
Subject key identifier: 01:AE:A5:6E:DB:6D:B9:3B:C5:43:4C:39:29:1B:09:C8:07:88:9F:63
Certificate issuer: /CN=F366C302AR/serialNumber=8D733C954E664DE047FBEF038DD12DE7B0F1B4D6
Certificate serial: 06
Authority key identifier: 8D:73:3C:95:4E:66:4D:E0:47:FB:EF:03:8D:D1:2D:E7:B0:F1:B4:D6
Authority info access: rsync://rpki.afrinic.net/repository/arin/jXM8lU5mTeBH--8DjdEt57DxtNY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/48815194FFF611EEB7B2CF0C017001B1.roa
Signing time: Sun 21 Apr 2024 15:46:14 +0000
ROA not before: Sun 21 Apr 2024 15:46:10 +0000
ROA not after: Wed 23 Apr 2025 15:46:10 +0000
asID: 37628
IP address blocks: 129.205.64.0/20 maxlen: 20
129.205.64.0/24 maxlen: 24
129.205.65.0/24 maxlen: 24
129.205.66.0/24 maxlen: 24
129.205.67.0/24 maxlen: 24
129.205.68.0/24 maxlen: 24
129.205.69.0/24 maxlen: 24
129.205.70.0/24 maxlen: 24
129.205.71.0/24 maxlen: 24
129.205.72.0/24 maxlen: 24
129.205.73.0/24 maxlen: 24
129.205.74.0/24 maxlen: 24
129.205.75.0/24 maxlen: 24
129.205.76.0/24 maxlen: 24
129.205.77.0/24 maxlen: 24
129.205.78.0/24 maxlen: 24
129.205.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/jXM8lU5mTeBH--8DjdEt57DxtNY.crl
rsync://rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/jXM8lU5mTeBH--8DjdEt57DxtNY.mft
rsync://rpki.afrinic.net/repository/arin/jXM8lU5mTeBH--8DjdEt57DxtNY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366C302AR/serialNumber=8D733C954E664DE047FBEF038DD12DE7B0F1B4D6
Validity
Not Before: Apr 21 15:46:10 2024 GMT
Not After : Apr 23 15:46:10 2025 GMT
Subject: CN=662534c6-11b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ce:b2:02:96:ec:7f:53:5c:6c:7f:33:22:ac:
53:87:01:c9:37:bb:00:7a:73:d4:af:c6:97:db:16:
e5:c7:43:bd:55:e3:83:52:0c:af:71:b3:98:aa:f1:
4c:45:ad:7d:ba:e2:7f:6a:be:4d:25:f6:05:9f:a6:
82:fa:35:77:fd:1b:83:1c:e6:6c:23:e2:3a:29:23:
d9:70:e3:06:4a:b8:c5:45:05:99:72:3b:00:54:83:
3b:cc:cc:f2:83:c5:2e:64:0f:42:ba:a0:94:ae:3d:
e6:79:cf:37:70:e4:79:53:24:ed:16:e8:9b:59:a4:
29:a5:6b:46:9b:52:69:43:e8:d5:80:fa:ef:06:d2:
f3:39:57:a0:9f:6b:51:69:9e:cb:57:5b:11:25:c9:
bb:3b:7f:ce:34:1c:28:c1:d8:f6:97:82:a7:fd:00:
31:bd:04:59:5c:2e:fe:40:3f:e3:36:c3:f6:94:9a:
ec:e7:7f:2a:4b:9d:36:02:bc:1a:95:b1:27:66:f9:
a9:0e:67:37:fd:fd:3f:b1:73:eb:a7:e4:52:9c:b8:
59:5c:21:49:84:43:9f:43:3d:4b:4f:3f:cf:9d:82:
7e:59:ca:85:a6:d9:83:64:3c:88:c0:08:98:ad:b5:
fd:6c:85:d8:7d:5e:a4:7d:17:5e:1f:68:ed:a2:5f:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AE:A5:6E:DB:6D:B9:3B:C5:43:4C:39:29:1B:09:C8:07:88:9F:63
X509v3 Authority Key Identifier:
keyid:8D:73:3C:95:4E:66:4D:E0:47:FB:EF:03:8D:D1:2D:E7:B0:F1:B4:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/jXM8lU5mTeBH--8DjdEt57DxtNY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/jXM8lU5mTeBH--8DjdEt57DxtNY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366C302/87B94634FEE611EEBE1E336D017001B1/48815194FFF611EEB7B2CF0C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.205.64.0/20
Signature Algorithm: sha256WithRSAEncryption
5f:ba:ec:5b:24:6d:23:d5:17:1b:c7:49:79:a7:0b:d6:01:33:
3a:f5:61:32:46:e3:da:73:f4:f9:31:d8:ff:90:88:49:12:0a:
62:4b:58:cc:fc:50:52:20:89:09:54:6c:9d:45:07:9e:5d:f7:
5d:44:a0:5b:7c:fa:6e:06:ea:dd:d8:df:5c:27:64:21:47:9a:
0a:ee:99:c2:c3:1b:5b:71:81:46:50:be:2c:da:3e:4d:82:bb:
cd:f7:b3:25:cc:a1:52:94:3e:22:43:8d:d8:14:a0:7e:d6:cc:
fb:6e:e0:48:8e:52:ca:58:37:43:dc:9a:23:13:ef:5a:cc:67:
ed:ed:0b:d8:f9:81:a6:75:6f:cd:6c:4c:01:21:87:86:6c:26:
bc:f2:44:cd:5d:e1:83:9e:37:ef:33:a6:88:0a:16:02:b8:ee:
aa:49:a0:e8:71:3e:49:79:cc:8d:77:17:46:e7:54:0d:9d:14:
0e:b2:72:73:e1:fc:f9:61:cc:f2:b4:3e:8e:12:f4:35:0b:f9:
a1:d5:bf:a2:17:83:ef:c0:c4:d1:32:62:ac:79:f5:86:4e:dc:
77:05:c0:ed:81:de:45:36:2b:49:98:2e:71:36:6f:13:4e:3e:
fc:d0:71:86:b7:0e:b5:09:7b:b8:5d:03:43:8c:19:03:6b:a7:
c5:9e:40:ef
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
QzMwMkFSMTEwLwYDVQQFEyg4RDczM0M5NTRFNjY0REUwNDdGQkVGMDM4REQxMkRF
N0IwRjFCNEQ2MB4XDTI0MDQyMTE1NDYxMFoXDTI1MDQyMzE1NDYxMFowGDEWMBQG
A1UEAxMNNjYyNTM0YzYtMTFiNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALLOsgKW7H9TXGx/MyKsU4cByTe7AHpz1K/Gl9sW5cdDvVXjg1IMr3GzmKrx
TEWtfbrif2q+TSX2BZ+mgvo1d/0bgxzmbCPiOikj2XDjBkq4xUUFmXI7AFSDO8zM
8oPFLmQPQrqglK495nnPN3DkeVMk7Rbom1mkKaVrRptSaUPo1YD67wbS8zlXoJ9r
UWmey1dbESXJuzt/zjQcKMHY9peCp/0AMb0EWVwu/kA/4zbD9pSa7Od/KkudNgK8
GpWxJ2b5qQ5nN/39P7Fz66fkUpy4WVwhSYRDn0M9S08/z52CflnKhabZg2Q8iMAI
mK21/WyF2H1epH0XXh9o7aJfs7MCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBQBrqVu
2225O8VDTDkpGwnIB4ifYzAfBgNVHSMEGDAWgBSNczyVTmZN4Ef77wON0S3nsPG0
1jAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkMzMDIvODdCOTQ2MzRGRUU2MTFFRUJFMUUzMzZEMDE3MDAxQjEvalhNOGxV
NW1UZUJILS04RGpkRXQ1N0R4dE5ZLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
alhNOGxVNW1UZUJILS04RGpkRXQ1N0R4dE5ZLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2NkMzMDIvODdCOTQ2MzRGRUU2MTFFRUJFMUUzMzZEMDE3MDAx
QjEvNDg4MTUxOTRGRkY2MTFFRUI3QjJDRjBDMDE3MDAxQjEucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBIHNQDANBgkqhkiG9w0BAQsFAAOC
AQEAX7rsWyRtI9UXG8dJeacL1gEzOvVhMkbj2nP0+THY/5CISRIKYktYzPxQUiCJ
CVRsnUUHnl33XUSgW3z6bgbq3djfXCdkIUeaCu6ZwsMbW3GBRlC+LNo+TYK7zfez
JcyhUpQ+IkON2BSgftbM+27gSI5Sylg3Q9yaIxPvWsxn7e0L2PmBpnVvzWxMASGH
hmwmvPJEzV3hg5437zOmiAoWArjuqkmg6HE+SXnMjXcXRudUDZ0UDrJyc+H8+WHM
8rQ+jhL0NQv5odW/oheD78DE0TJirHn1hk7cdwXA7YHeRTYrSZgucTZvE04+/NBx
hrcOtQl7uF0DQ4wZA2unxZ5A7w==
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:34 2024 by rpki-client on console-fra.rpki-client.org