Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AE7760EE2D1D11EEB91017274AD9E6FC.roa
File: AE7760EE2D1D11EEB91017274AD9E6FC.roa (raw, json)
Hash identifier: DuRnYsZB0zzQPmipWKS3Q7RsDHiUzRSb0FMSGp3kIyg=
Subject key identifier: F8:B9:3D:59:FE:A0:8B:E1:7C:94:DA:D5:C8:FB:B9:1D:3D:70:4C:DE
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 03D3
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AE7760EE2D1D11EEB91017274AD9E6FC.roa
Signing time: Fri 28 Jul 2023 08:06:40 +0000
ROA not before: Fri 28 Jul 2023 08:06:36 +0000
ROA not after: Sun 31 Jul 2033 08:06:36 +0000
asID: 20011
IP address blocks: 168.210.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979 (0x3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Jul 28 08:06:36 2023 GMT
Not After : Jul 31 08:06:36 2033 GMT
Subject: CN=64c37710-eff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:05:33:da:b2:97:a2:80:78:be:62:e3:13:9a:
e5:04:c7:ca:0c:85:f5:50:6f:7f:36:f5:dd:dc:63:
bc:7b:a6:17:01:87:0e:36:d4:eb:71:12:12:74:af:
65:f3:ba:cd:49:70:f6:c3:bd:9c:61:ac:f2:67:33:
77:7d:a9:5a:35:cd:56:d9:dc:31:56:07:c8:36:a4:
c5:59:05:ff:56:95:a8:a4:2e:50:76:32:43:2b:e8:
51:b6:eb:86:56:af:2f:5f:99:74:93:52:3e:0a:bf:
0f:08:b7:7f:1a:6d:60:dc:5a:e7:34:db:34:15:e8:
4d:c9:05:5e:c6:bf:25:36:0d:33:47:cc:51:b6:c3:
fa:b5:78:01:07:42:7f:c8:dd:1e:3b:df:00:5b:7d:
ae:f1:d8:53:e6:54:36:d1:da:31:ad:cb:7a:cf:15:
91:eb:ef:b2:0f:80:c9:6b:83:e7:9b:b6:3c:94:ee:
e6:5c:ed:9d:73:30:57:54:47:42:e6:d6:45:af:d6:
05:7c:85:89:0f:d9:b1:23:b3:c2:b2:bd:8d:e6:e3:
82:5f:f5:46:ec:cc:f2:45:c6:77:94:36:a0:ca:ea:
1d:20:47:2a:af:96:0c:12:03:2f:c9:42:52:27:ce:
16:89:09:4a:06:53:b8:a1:0b:13:20:35:af:20:a4:
e1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B9:3D:59:FE:A0:8B:E1:7C:94:DA:D5:C8:FB:B9:1D:3D:70:4C:DE
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/AE7760EE2D1D11EEB91017274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.12.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:a6:be:3e:8d:fd:e6:c5:ab:0f:8e:86:7d:1b:07:e0:51:c4:
31:e2:e3:df:56:08:67:b7:1c:2c:73:cf:de:83:11:d2:e4:27:
f0:3a:34:25:20:bc:6a:bb:a1:b0:4b:ac:94:44:80:d5:78:47:
7c:e6:9d:f1:38:8e:55:c8:aa:c6:b1:ff:2c:22:ea:18:7a:0d:
0a:22:30:e5:28:93:e1:eb:d0:b8:ff:18:a0:b8:cb:e8:b8:a1:
0c:dc:7a:e6:a3:04:dc:fb:1b:c0:b1:d1:fd:7b:c8:96:70:54:
65:79:8d:00:89:c8:80:a5:6a:ae:fa:a1:24:b0:fa:0d:49:ed:
49:de:c2:7b:b8:1b:33:5e:60:9d:d6:b8:11:cb:8d:40:44:18:
ea:a2:2a:ff:42:9f:db:7c:0b:65:d4:95:af:93:77:c5:e2:0d:
8f:75:24:83:56:29:34:b2:5e:38:33:1b:6d:85:24:4b:2d:90:
2a:1f:68:57:0d:37:4d:3d:b8:09:9d:3d:73:f9:e7:65:64:a7:
1f:da:23:a0:3c:c3:cb:c2:8d:1a:f9:07:01:04:fc:31:58:d3:
00:04:d0:ee:b8:04:a8:3d:61:5e:d9:13:c7:10:ad:b7:b4:c0:
13:da:90:e2:84:a3:f4:ec:58:6b:05:59:7e:c1:0d:fc:81:02:
b3:d7:8e:a9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0IyMTZBUjExMC8GA1UEBRMoNkM2MDJBMjZGQjJDNDY2NzA3MjJERkM3M0Y3MkZD
NEI2QTczRUJDNDAeFw0yMzA3MjgwODA2MzZaFw0zMzA3MzEwODA2MzZaMBgxFjAU
BgNVBAMTDTY0YzM3NzEwLWVmZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCmBTPaspeigHi+YuMTmuUEx8oMhfVQb3829d3cY7x7phcBhw421OtxEhJ0
r2Xzus1JcPbDvZxhrPJnM3d9qVo1zVbZ3DFWB8g2pMVZBf9WlaikLlB2MkMr6FG2
64ZWry9fmXSTUj4Kvw8It38abWDcWuc02zQV6E3JBV7GvyU2DTNHzFG2w/q1eAEH
Qn/I3R473wBbfa7x2FPmVDbR2jGty3rPFZHr77IPgMlrg+ebtjyU7uZc7Z1zMFdU
R0Lm1kWv1gV8hYkP2bEjs8KyvY3m44Jf9UbszPJFxneUNqDK6h0gRyqvlgwSAy/J
QlInzhaJCUoGU7ihCxMgNa8gpOELAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU+Lk9
Wf6gi+F8lNrVyPu5HT1wTN4wHwYDVR0jBBgwFoAUbGAqJvssRmcHIt/HP3L8S2pz
68QwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVBMjI4L2JHQXFK
dnNzUm1jSEl0X0hQM0w4UzJwejY4US5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JHQXFKdnNzUm1jSEl0X0hQM0w4UzJwejY4US5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVB
MjI4L0FFNzc2MEVFMkQxRDExRUVCOTEwMTcyNzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo0gwwDQYJKoZIhvcNAQELBQAD
ggEBAA6mvj6N/ebFqw+Ohn0bB+BRxDHi499WCGe3HCxzz96DEdLkJ/A6NCUgvGq7
obBLrJREgNV4R3zmnfE4jlXIqsax/ywi6hh6DQoiMOUok+Hr0Lj/GKC4y+i4oQzc
euajBNz7G8Cx0f17yJZwVGV5jQCJyIClaq76oSSw+g1J7Unewnu4GzNeYJ3WuBHL
jUBEGOqiKv9Cn9t8C2XUla+Td8XiDY91JINWKTSyXjgzG22FJEstkCofaFcNN009
uAmdPXP552Vkpx/aI6A8w8vCjRr5BwEE/DFY0wAE0O64BKg9YV7ZE8cQrbe0wBPa
kOKEo/TsWGsFWX7BDfyBArPXjqk=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:29 2024 by rpki-client on console-fra.rpki-client.org