Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AC515C42D6D311EEB9744A9A775412E6.roa
File: AC515C42D6D311EEB9744A9A775412E6.roa (raw, json)
Hash identifier: 4wjBkEUcARYf3pnSVrvSkSU0KfndRSbtzqu21Hg7Duk=
Subject key identifier: 57:22:4B:9F:CD:43:DE:AF:21:6A:7B:D6:A7:D5:B3:D5:8D:CF:F6:30
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04F4
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AC515C42D6D311EEB9744A9A775412E6.roa
Signing time: Thu 29 Feb 2024 07:25:11 +0000
ROA not before: Thu 29 Feb 2024 07:25:07 +0000
ROA not after: Tue 28 Feb 2034 07:25:07 +0000
asID: 20011
IP address blocks: 168.210.216.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1268 (0x4f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:25:07 2024 GMT
Not After : Feb 28 07:25:07 2034 GMT
Subject: CN=65e03157-cb9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:59:b7:82:29:5c:0c:02:08:21:a3:33:2b:e7:
d5:65:4b:b9:50:84:6c:ac:ea:34:d5:5d:05:53:75:
db:b9:49:fd:62:d5:90:f0:63:cf:9e:2b:79:3f:c3:
50:a4:16:9d:d7:8f:ef:00:3d:9a:8d:ed:1a:61:54:
43:d2:3c:31:1d:66:46:9f:ef:58:64:b1:15:f3:ba:
6e:cf:89:6e:5b:59:63:e0:63:53:4a:ac:d0:8b:e3:
38:e6:43:37:40:2c:4f:6a:d8:3e:8d:3c:9e:63:4c:
e2:01:8f:d3:2d:ec:30:26:a9:b3:2f:1f:42:16:ed:
11:7a:aa:43:70:bf:9f:1d:5b:5e:d0:4d:c1:65:f0:
16:bc:a6:1a:c6:46:d9:0d:aa:89:40:f4:42:b1:52:
74:13:be:94:89:78:05:b3:f5:0f:f7:b2:be:b9:aa:
85:9d:c4:93:a7:74:0f:57:1c:72:65:b0:f0:3e:d6:
ce:07:fb:f9:61:9b:9f:b3:6d:0c:d1:5e:c8:f2:3c:
33:20:bc:74:1c:79:41:47:99:69:89:12:15:aa:a2:
66:3e:21:bf:02:e6:c8:b9:1a:dd:91:d4:63:23:8d:
f1:1d:bb:58:40:93:04:36:f2:a2:e4:76:79:a1:7f:
d0:4b:d2:7a:08:52:e7:7a:a2:f2:7e:ce:88:98:a3:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:22:4B:9F:CD:43:DE:AF:21:6A:7B:D6:A7:D5:B3:D5:8D:CF:F6:30
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AC515C42D6D311EEB9744A9A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.216.0/21
Signature Algorithm: sha256WithRSAEncryption
24:22:c0:cf:16:65:10:c6:34:33:dd:c7:bd:2b:d6:bb:a2:9a:
b1:3b:c4:f5:57:b2:ca:32:a5:35:b2:93:70:c5:03:ff:6d:d0:
b4:ad:a3:64:ed:3c:2c:00:13:b1:3a:b3:4e:98:7c:9a:fc:64:
a8:ce:a5:b7:cb:f6:e2:20:e2:2b:be:de:f3:51:ae:67:90:0c:
c3:41:96:af:f5:e8:cb:43:bb:84:ca:4e:de:f9:5c:e4:1b:0b:
41:78:e7:2a:98:bf:8f:73:be:7b:a6:d7:dd:31:a0:53:05:5d:
d3:29:79:42:93:73:01:fb:1b:29:09:a1:93:ee:32:4e:eb:a9:
8d:48:c4:df:ef:2c:c8:ca:24:c0:ee:3d:e0:77:a0:f6:70:c0:
ba:dd:c1:39:c1:48:ce:49:21:bd:10:f2:19:a1:1a:13:f9:e7:
15:d2:c9:20:a4:86:9d:03:3d:6f:cf:5d:8c:f7:df:76:da:60:
c7:55:ed:f4:32:51:f9:25:ee:a1:48:e1:c3:a6:cc:60:55:82:
fa:00:c7:60:a7:9f:d1:ad:43:86:2e:93:64:1b:83:df:68:f6:
b0:92:23:d6:4c:94:b1:9c:f7:58:dd:33:33:6d:e2:be:f3:57:
dd:59:53:6a:80:b9:08:6e:6e:ea:aa:75:10:e8:9f:c5:f6:a0:
1b:35:60:4f
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBPQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBUjExMC8GA1UEBRMoNkM2MDJBMjZGQjJDNDY2NzA3MjJERkM3M0Y3MkZD
NEI2QTczRUJDNDAeFw0yNDAyMjkwNzI1MDdaFw0zNDAyMjgwNzI1MDdaMBgxFjAU
BgNVBAMTDTY1ZTAzMTU3LWNiOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDAWbeCKVwMAgghozMr59VlS7lQhGys6jTVXQVTddu5Sf1i1ZDwY8+eK3k/
w1CkFp3Xj+8APZqN7RphVEPSPDEdZkaf71hksRXzum7PiW5bWWPgY1NKrNCL4zjm
QzdALE9q2D6NPJ5jTOIBj9Mt7DAmqbMvH0IW7RF6qkNwv58dW17QTcFl8Ba8phrG
RtkNqolA9EKxUnQTvpSJeAWz9Q/3sr65qoWdxJOndA9XHHJlsPA+1s4H+/lhm5+z
bQzRXsjyPDMgvHQceUFHmWmJEhWqomY+Ib8C5si5Gt2R1GMjjfEdu1hAkwQ28qLk
dnmhf9BL0noIUud6ovJ+zoiYo1sfAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUVyJL
n81D3q8hanvWp9Wz1Y3P9jAwHwYDVR0jBBgwFoAUbGAqJvssRmcHIt/HP3L8S2pz
68QwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVBMjI4L2JHQXFK
dnNzUm1jSEl0X0hQM0w4UzJwejY4US5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JHQXFKdnNzUm1jSEl0X0hQM0w4UzJwejY4US5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVB
MjI4L0FDNTE1QzQyRDZEMzExRUVCOTc0NEE5QTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOo0tgwDQYJKoZIhvcNAQELBQAD
ggEBACQiwM8WZRDGNDPdx70r1ruimrE7xPVXssoypTWyk3DFA/9t0LSto2TtPCwA
E7E6s06YfJr8ZKjOpbfL9uIg4iu+3vNRrmeQDMNBlq/16MtDu4TKTt75XOQbC0F4
5yqYv49zvnum190xoFMFXdMpeUKTcwH7GykJoZPuMk7rqY1IxN/vLMjKJMDuPeB3
oPZwwLrdwTnBSM5JIb0Q8hmhGhP55xXSySCkhp0DPW/PXYz333baYMdV7fQyUfkl
7qFI4cOmzGBVgvoAx2Cnn9GtQ4Yuk2Qbg99o9rCSI9ZMlLGc91jdMzNt4r7zV91Z
U2qAuQhubuqqdRDon8X2oBs1YE8=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org