Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F3AFCDAAD6D111EEAB171997775412E6.roa
File: F3AFCDAAD6D111EEAB171997775412E6.roa (raw, json)
Hash identifier: pzVcoikjRd5kBQQBkN8RD4GAK76FMzHKo0b/mdKF3fM=
Subject key identifier: 35:B5:C9:69:59:C1:04:A9:2E:D7:87:3A:C2:9B:FE:9A:B5:4D:67:FD
Certificate issuer: /CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Certificate serial: 04D4
Authority key identifier: 6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
Authority info access: rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F3AFCDAAD6D111EEAB171997775412E6.roa
Signing time: Thu 29 Feb 2024 07:12:52 +0000
ROA not before: Thu 29 Feb 2024 07:12:48 +0000
ROA not after: Tue 28 Feb 2034 07:12:48 +0000
asID: 20011
IP address blocks: 168.210.82.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.mft
rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1236 (0x4d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AR/serialNumber=6C602A26FB2C46670722DFC73F72FC4B6A73EBC4
Validity
Not Before: Feb 29 07:12:48 2024 GMT
Not After : Feb 28 07:12:48 2034 GMT
Subject: CN=65e02e74-1ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f4:93:f7:e9:ab:2f:1c:d1:bf:82:c6:30:f0:
59:a1:ed:83:14:5e:bf:8d:5d:35:6c:40:da:b7:d7:
54:21:e6:4e:29:0c:15:55:b2:77:80:21:3f:50:cb:
54:15:d4:9d:b7:3e:75:b8:55:11:7f:cb:a3:61:54:
d6:5e:29:7f:5f:63:1c:57:30:e9:c4:6d:09:55:66:
08:0d:d1:5c:7f:8f:aa:4b:ae:3f:4f:38:24:4f:f8:
19:f7:80:6c:f3:1f:f9:0e:0e:9c:89:39:17:6a:d5:
f0:c4:56:6c:49:76:33:d6:4f:03:d2:49:7f:56:24:
4e:98:0d:45:2a:6b:09:d6:60:0b:b1:51:51:c6:e5:
a6:a8:91:ae:0c:01:36:69:9b:40:92:4d:aa:8b:20:
f0:85:1a:a0:62:1d:bd:08:67:1a:c8:33:49:24:1c:
c7:e0:06:52:87:ec:ec:88:c5:1c:a9:bc:9a:1f:b8:
08:09:c5:2f:6d:7d:f6:70:91:1b:e5:f1:3d:42:74:
bf:59:0c:43:11:de:03:01:da:1b:9b:e0:f0:99:98:
84:0a:ee:9d:17:db:ff:2d:c1:b8:69:28:6f:76:a5:
71:52:89:89:28:d5:34:33:cd:20:3b:33:21:12:97:
83:c3:c7:e8:ee:0f:e8:fb:09:1d:a0:fa:78:1b:20:
40:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B5:C9:69:59:C1:04:A9:2E:D7:87:3A:C2:9B:FE:9A:B5:4D:67:FD
X509v3 Authority Key Identifier:
keyid:6C:60:2A:26:FB:2C:46:67:07:22:DF:C7:3F:72:FC:4B:6A:73:EB:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/bGAqJvssRmcHIt_HP3L8S2pz68Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bGAqJvssRmcHIt_HP3L8S2pz68Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/51AB2D5E87D511EB93B75247F8AEA228/F3AFCDAAD6D111EEAB171997775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.210.82.0/23
Signature Algorithm: sha256WithRSAEncryption
97:e2:0f:9e:64:e9:54:92:91:54:51:f0:1c:00:34:ea:29:ef:
43:a1:5a:71:49:58:02:05:ca:7b:45:3d:dd:68:cd:99:c7:93:
fd:0a:c3:3f:a4:64:aa:5a:d4:48:62:79:05:7d:32:94:f7:d6:
03:a2:dc:9a:01:7a:e2:79:bc:07:40:b9:2a:f3:66:89:fa:a3:
50:33:e2:a0:14:cf:c7:78:58:0e:92:2a:19:fd:01:cd:0b:9f:
f5:f6:40:79:e6:7a:5e:33:67:ca:46:67:18:f1:ad:59:61:0a:
01:e0:91:81:2c:3a:bb:6a:77:ba:19:98:7c:08:c4:eb:4b:58:
17:77:af:60:9c:c2:b6:2a:a7:4a:7f:40:c4:de:40:1e:d6:5c:
32:e6:cf:bf:47:33:1f:0c:d5:12:de:bf:13:5f:91:e2:09:f6:
36:33:62:e8:ea:8a:4d:cf:83:88:62:cb:79:1e:be:28:88:1d:
b1:2f:e6:4b:dd:0d:99:1c:4b:75:81:9b:1c:b2:75:34:14:73:
92:9c:1c:60:7a:d7:5d:48:58:74:9a:50:6a:43:83:2e:f3:5b:
d3:be:34:66:88:f5:15:04:01:da:4c:6e:34:23:5f:24:ea:09:
eb:9b:ad:de:ec:3f:7b:63:d5:c0:c2:fa:f7:26:e2:e4:ce:ef:
d8:1d:bd:00
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBUjExMC8GA1UEBRMoNkM2MDJBMjZGQjJDNDY2NzA3MjJERkM3M0Y3MkZD
NEI2QTczRUJDNDAeFw0yNDAyMjkwNzEyNDhaFw0zNDAyMjgwNzEyNDhaMBgxFjAU
BgNVBAMTDTY1ZTAyZTc0LTFiYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDE9JP36asvHNG/gsYw8Fmh7YMUXr+NXTVsQNq311Qh5k4pDBVVsneAIT9Q
y1QV1J23PnW4VRF/y6NhVNZeKX9fYxxXMOnEbQlVZggN0Vx/j6pLrj9POCRP+Bn3
gGzzH/kODpyJORdq1fDEVmxJdjPWTwPSSX9WJE6YDUUqawnWYAuxUVHG5aaoka4M
ATZpm0CSTaqLIPCFGqBiHb0IZxrIM0kkHMfgBlKH7OyIxRypvJofuAgJxS9tffZw
kRvl8T1CdL9ZDEMR3gMB2hub4PCZmIQK7p0X2/8twbhpKG92pXFSiYko1TQzzSA7
MyESl4PDx+juD+j7CR2g+ngbIEBxAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUNbXJ
aVnBBKku14c6wpv+mrVNZ/0wHwYDVR0jBBgwFoAUbGAqJvssRmcHIt/HP3L8S2pz
68QwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVBMjI4L2JHQXFK
dnNzUm1jSEl0X0hQM0w4UzJwejY4US5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JHQXFKdnNzUm1jSEl0X0hQM0w4UzJwejY4US5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdCMjE2LzUxQUIyRDVFODdENTExRUI5M0I3NTI0N0Y4QUVB
MjI4L0YzQUZDREFBRDZEMTExRUVBQjE3MTk5Nzc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGo0lIwDQYJKoZIhvcNAQELBQAD
ggEBAJfiD55k6VSSkVRR8BwANOop70OhWnFJWAIFyntFPd1ozZnHk/0Kwz+kZKpa
1EhieQV9MpT31gOi3JoBeuJ5vAdAuSrzZon6o1Az4qAUz8d4WA6SKhn9Ac0Ln/X2
QHnmel4zZ8pGZxjxrVlhCgHgkYEsOrtqd7oZmHwIxOtLWBd3r2CcwrYqp0p/QMTe
QB7WXDLmz79HMx8M1RLevxNfkeIJ9jYzYujqik3Pg4hiy3keviiIHbEv5kvdDZkc
S3WBmxyydTQUc5KcHGB6111IWHSaUGpDgy7zW9O+NGaI9RUEAdpMbjQjXyTqCeub
rd7sP3tj1cDC+vcm4uTO79gdvQA=
-----END CERTIFICATE-----
Generated at Sat May 18 03:48:48 2024 by rpki-client on console-fra.rpki-client.org