Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/A9B09AD62D1C11EEA347F1234AD9E6FC.roa
File: A9B09AD62D1C11EEA347F1234AD9E6FC.roa (raw, json)
Hash identifier: k8maCaBjDOK4HBNXDdFN6dFUb9aMCtUUf4VMWJ8mqhE=
Subject key identifier: 14:15:33:64:F8:D6:B7:6C:DB:00:E8:BE:71:A9:E8:FB:1C:68:13:87
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 03CB
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/A9B09AD62D1C11EEA347F1234AD9E6FC.roa
Signing time: Fri 28 Jul 2023 07:59:22 +0000
ROA not before: Fri 28 Jul 2023 07:59:17 +0000
ROA not after: Sun 31 Jul 2033 07:59:17 +0000
asID: 3741
IP address blocks: 168.210.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 971 (0x3cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Jul 28 07:59:17 2023 GMT
Not After : Jul 31 07:59:17 2033 GMT
Subject: CN=64c3755a-5361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ac:0d:51:83:37:ac:78:9c:55:12:ba:57:06:
0e:b1:a7:0a:a2:94:34:c9:31:dc:8e:72:ab:9b:42:
86:73:8a:10:6b:bb:78:27:5d:5e:5a:4f:86:27:88:
0f:3f:15:2d:67:99:e3:13:de:e5:4c:33:64:d2:b1:
2b:62:52:2a:a2:9f:0e:59:44:28:91:b5:f6:fa:ca:
8f:a6:9c:62:bb:6d:81:36:4e:55:1d:4e:5d:29:c0:
93:d9:58:33:9b:fb:a0:5c:72:04:65:62:2d:82:92:
c0:61:6a:8e:e4:1a:9f:27:5c:6d:16:a9:2c:29:9f:
83:a7:d4:84:25:11:98:6e:98:6f:a7:12:92:2f:5e:
08:74:90:05:13:eb:b3:b9:59:07:04:5e:db:73:0b:
ce:4e:0b:2a:96:30:64:c9:92:51:12:8b:4b:df:60:
3f:9b:c5:c1:86:0b:23:d1:49:0b:99:3a:36:4e:77:
18:f0:17:39:29:68:14:df:e7:d8:dc:88:72:9b:b9:
22:18:ca:71:7d:f7:92:80:47:87:c7:12:68:32:be:
62:3e:37:f2:7b:b0:52:1e:4c:06:d7:6d:46:70:b4:
d8:92:35:45:7c:7e:b9:8d:c0:65:7c:e0:0b:2f:f6:
1b:a5:3e:35:fb:68:cd:89:0a:b6:17:d7:fb:45:ab:
f9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:15:33:64:F8:D6:B7:6C:DB:00:E8:BE:71:A9:E8:FB:1C:68:13:87
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/A9B09AD62D1C11EEA347F1234AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
44:66:23:37:4c:a7:3f:4a:8a:e9:d9:49:6d:1d:4b:5c:61:5a:
5c:8a:28:9c:3e:eb:93:a2:b6:52:a8:a1:4e:f8:b1:f7:4c:e2:
9a:f1:a8:95:53:11:47:7d:31:02:c9:b3:ff:fc:ea:0a:17:0b:
b6:a3:67:2b:6f:ea:52:e0:cc:97:9c:b2:92:25:41:20:38:c0:
b8:04:93:91:17:8c:cf:0a:62:5c:aa:54:d4:1a:5b:52:89:fb:
e8:5e:9a:43:fe:76:68:aa:4b:30:10:35:8a:0e:03:0b:61:87:
02:a1:58:4d:ac:de:af:bf:af:46:4a:c0:54:19:96:94:9b:9d:
b4:f7:d3:16:0c:5a:5f:49:8c:4d:98:80:85:8a:03:30:0a:39:
49:4a:43:3c:21:23:88:bc:e6:fc:94:63:fa:a6:06:eb:c7:a3:
4c:55:82:a0:e0:a5:e4:28:41:8f:dc:d6:69:0c:92:f3:e6:c5:
27:88:00:be:20:10:2d:12:ef:36:ab:22:04:a4:1f:dc:da:7a:
2b:67:b5:58:4c:d4:82:b5:47:82:33:ea:e8:a6:e2:41:4b:b6:
60:08:a7:2d:d5:1e:77:06:1b:6c:63:db:f9:00:b0:8c:55:44:
b7:60:6b:66:09:b8:4f:6c:8f:95:78:07:2d:37:cf:81:73:c5:
bc:8d:98:7f
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICA8swDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0IyMTZBUjExMC8GA1UEBRMoNkM2MDJBMjZGQjJDNDY2NzA3MjJERkM3M0Y3MkZD
NEI2QTczRUJDNDAeFw0yMzA3MjgwNzU5MTdaFw0zMzA3MzEwNzU5MTdaMBgxFjAU
BgNVBAMTDTY0YzM3NTVhLTUzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCmrA1RgzeseJxVErpXBg6xpwqilDTJMdyOcqubQoZzihBru3gnXV5aT4Yn
iA8/FS1nmeMT3uVMM2TSsStiUiqinw5ZRCiRtfb6yo+mnGK7bYE2TlUdTl0pwJPZ
WDOb+6BccgRlYi2CksBhao7kGp8nXG0WqSwpn4On1IQlEZhumG+nEpIvXgh0kAUT
67O5WQcEXttzC85OCyqWMGTJklESi0vfYD+bxcGGCyPRSQuZOjZOdxjwFzkpaBTf
59jciHKbuSIYynF995KAR4fHEmgyvmI+N/J7sFIeTAbXbUZwtNiSNUV8frmNwGV8
4Asv9hulPjX7aM2JCrYX1/tFq/nhAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUFBUz
ZPjWt2zbAOi+cano+xxoE4cwHwYDVR0jBBgwFoAUbGAqJvssRmcHIt/HP3L8S2pz
68QwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVBMjI4L2JHQXFK
dnNzUm1jSEl0X0hQM0w4UzJwejY4US5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JHQXFKdnNzUm1jSEl0X0hQM0w4UzJwejY4US5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVB
MjI4L0E5QjA5QUQ2MkQxQzExRUVBMzQ3RjEyMzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwCo0jANBgkqhkiG9w0BAQsFAAOC
AQEARGYjN0ynP0qK6dlJbR1LXGFaXIoonD7rk6K2UqihTvix90zimvGolVMRR30x
Asmz//zqChcLtqNnK2/qUuDMl5yykiVBIDjAuASTkReMzwpiXKpU1BpbUon76F6a
Q/52aKpLMBA1ig4DC2GHAqFYTazer7+vRkrAVBmWlJudtPfTFgxaX0mMTZiAhYoD
MAo5SUpDPCEjiLzm/JRj+qYG68ejTFWCoOCl5ChBj9zWaQyS8+bFJ4gAviAQLRLv
NqsiBKQf3Np6K2e1WEzUgrVHgjPq6KbiQUu2YAinLdUedwYbbGPb+QCwjFVEt2Br
Zgm4T2yPlXgHLTfPgXPFvI2Yfw==
-----END CERTIFICATE-----
Generated at Fri May 17 02:38:34 2024 by rpki-client on console-fra.rpki-client.org