Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/D88002927E8C11EC95A915885A40D577.roa
File: D88002927E8C11EC95A915885A40D577.roa (raw, json)
Hash identifier: zp+bksguNWi/6Gwbfy/elTDlK43kW6UD+PYcX23ze0Y=
Subject key identifier: 2F:65:A3:8D:17:DF:79:40:34:91:E8:99:6C:F2:DB:A9:F0:57:31:88
Certificate issuer: /CN=F3670369AR/serialNumber=29591C65533EFD08972F4A975BEC41C65B445EE0
Certificate serial: 05
Authority key identifier: 29:59:1C:65:53:3E:FD:08:97:2F:4A:97:5B:EC:41:C6:5B:44:5E:E0
Authority info access: rsync://rpki.afrinic.net/repository/arin/KVkcZVM-_QiXL0qXW-xBxltEXuA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/D88002927E8C11EC95A915885A40D577.roa
Signing time: Wed 26 Jan 2022 09:46:33 +0000
ROA not before: Wed 26 Jan 2022 09:46:29 +0000
ROA not after: Tue 26 Jan 2049 09:46:29 +0000
asID: 37611
IP address blocks: 156.155.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/KVkcZVM-_QiXL0qXW-xBxltEXuA.crl
rsync://rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/KVkcZVM-_QiXL0qXW-xBxltEXuA.mft
rsync://rpki.afrinic.net/repository/arin/KVkcZVM-_QiXL0qXW-xBxltEXuA.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3670369AR/serialNumber=29591C65533EFD08972F4A975BEC41C65B445EE0
Validity
Not Before: Jan 26 09:46:29 2022 GMT
Not After : Jan 26 09:46:29 2049 GMT
Subject: CN=61f11879-6ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:1b:16:c2:47:c8:b6:6d:81:3c:d8:2d:ed:
de:e9:85:35:a6:8a:f4:1c:45:bd:57:93:55:1e:5d:
6e:89:52:67:09:3c:b6:a4:8c:b4:a5:41:3a:2a:03:
0d:89:9e:d4:5e:52:00:2a:fc:e6:8e:5d:ee:55:78:
e4:a0:bc:c1:5b:c2:24:9c:2e:0f:35:40:8e:be:ce:
e3:1f:77:86:4e:e7:1c:d2:73:79:ba:3e:0c:13:e2:
6b:9e:43:d9:f5:74:00:ae:3b:6f:f5:e0:b2:ad:06:
05:1c:de:9e:f2:48:85:9d:73:44:2b:22:45:9e:98:
7c:65:05:2c:4c:31:a4:84:23:bf:32:01:35:28:e6:
9c:8d:20:ba:6d:27:49:cc:2d:81:5a:13:6f:8c:42:
da:b0:03:55:4c:33:9d:1f:65:92:45:65:c9:73:0d:
83:c6:a5:0b:45:97:bd:36:77:1f:3c:c0:77:eb:ed:
96:89:a9:20:e1:92:28:66:80:1b:ca:1d:f2:ba:d6:
59:ad:44:01:9b:48:51:cf:a2:57:a2:7d:ee:b5:c8:
0b:9f:98:ad:12:2d:98:7d:6a:e1:40:72:f7:53:0e:
32:de:93:cc:d3:fa:62:af:cf:23:15:cb:17:15:bf:
fd:3a:71:e5:85:33:32:c0:6c:16:87:39:f0:f9:5f:
fa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:65:A3:8D:17:DF:79:40:34:91:E8:99:6C:F2:DB:A9:F0:57:31:88
X509v3 Authority Key Identifier:
keyid:29:59:1C:65:53:3E:FD:08:97:2F:4A:97:5B:EC:41:C6:5B:44:5E:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/KVkcZVM-_QiXL0qXW-xBxltEXuA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/KVkcZVM-_QiXL0qXW-xBxltEXuA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/565052907E7811EC9FAD14CB5A40D577/D88002927E8C11EC95A915885A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.155.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:2b:4b:8f:4a:75:ce:b0:69:e4:e5:1b:47:41:56:1b:89:63:
b7:3a:cb:9a:f1:ae:4c:35:dd:33:a3:d9:e2:61:02:55:08:03:
c3:ac:90:4e:e3:62:3f:5f:64:10:bf:47:be:72:12:90:63:b8:
99:b1:1b:71:85:d0:9e:e8:f3:a5:55:a9:40:00:f2:8e:6b:df:
27:49:c9:ca:57:b0:0c:9a:60:80:4a:43:7c:a9:bb:dd:d0:c0:
03:01:14:6f:05:15:a3:62:47:ba:34:af:e7:90:ec:22:e8:a7:
07:db:25:8b:38:a1:a3:8d:67:3a:00:df:fe:3a:a8:06:3b:fc:
f3:8f:af:ea:af:ed:34:d9:79:d6:c0:b6:26:94:65:0d:3f:8e:
1a:30:0b:f2:d3:ba:b9:bf:c4:8b:3f:fa:2d:0d:0e:12:06:0f:
c8:3f:16:a3:b2:80:6d:70:c1:67:d9:6d:ac:9e:09:a4:a5:22:
8e:33:eb:5d:7c:37:e8:6c:d0:cc:47:61:6f:d5:23:00:81:21:
5a:8f:de:b1:5d:03:57:ea:3d:21:44:e4:7f:9a:59:08:4d:c0:
f4:ff:f1:98:2b:62:49:c6:df:41:60:80:7a:ef:92:6d:ad:14:
8f:60:1a:64:e5:ad:1e:be:cf:a4:0f:48:27:06:9c:02:db:c9:
44:89:8c:51
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgIBBTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY3
MDM2OUFSMTEwLwYDVQQFEygyOTU5MUM2NTUzM0VGRDA4OTcyRjRBOTc1QkVDNDFD
NjVCNDQ1RUUwMB4XDTIyMDEyNjA5NDYyOVoXDTQ5MDEyNjA5NDYyOVowGDEWMBQG
A1UEAwwNNjFmMTE4NzktNmVhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL6BGxbCR8i2bYE82C3t3umFNaaK9BxFvVeTVR5dbolSZwk8tqSMtKVBOioD
DYme1F5SACr85o5d7lV45KC8wVvCJJwuDzVAjr7O4x93hk7nHNJzebo+DBPia55D
2fV0AK47b/Xgsq0GBRzenvJIhZ1zRCsiRZ6YfGUFLEwxpIQjvzIBNSjmnI0gum0n
ScwtgVoTb4xC2rADVUwznR9lkkVlyXMNg8alC0WXvTZ3HzzAd+vtlompIOGSKGaA
G8od8rrWWa1EAZtIUc+iV6J97rXIC5+YrRItmH1q4UBy91MOMt6TzNP6Yq/PIxXL
FxW//Tpx5YUzMsBsFoc58Plf+pkCAwEAAaOCAqEwggKdMB0GA1UdDgQWBBQvZaON
F995QDSR6Jls8tup8FcxiDAfBgNVHSMEGDAWgBQpWRxlUz79CJcvSpdb7EHGW0Re
4DAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NzAzNjkvNTY1MDUyOTA3RTc4MTFFQzlGQUQxNENCNUE0MEQ1NzcvS1ZrY1pW
TS1fUWlYTDBxWFcteEJ4bHRFWHVBLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
S1ZrY1pWTS1fUWlYTDBxWFcteEJ4bHRFWHVBLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2NzAzNjkvNTY1MDUyOTA3RTc4MTFFQzlGQUQxNENCNUE0MEQ1
NzcvRDg4MDAyOTI3RThDMTFFQzk1QTkxNTg4NUE0MEQ1Nzcucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJybMA0GCSqGSIb3DQEBCwUAA4IB
AQA/K0uPSnXOsGnk5RtHQVYbiWO3Osua8a5MNd0zo9niYQJVCAPDrJBO42I/X2QQ
v0e+chKQY7iZsRtxhdCe6POlValAAPKOa98nScnKV7AMmmCASkN8qbvd0MADARRv
BRWjYke6NK/nkOwi6KcH2yWLOKGjjWc6AN/+OqgGO/zzj6/qr+002XnWwLYmlGUN
P44aMAvy07q5v8SLP/otDQ4SBg/IPxajsoBtcMFn2W2sngmkpSKOM+tdfDfobNDM
R2Fv1SMAgSFaj96xXQNX6j0hROR/mlkITcD0//GYK2JJxt9BYIB675JtrRSPYBpk
5a0evs+kD0gnBpwC28lEiYxR
-----END CERTIFICATE-----
Generated at Mon May 27 02:56:55 2024 by rpki-client on console-fra.rpki-client.org