Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/C6750B664D4C11EE9C0B5E3B4AD9E6FC.roa
File: C6750B664D4C11EE9C0B5E3B4AD9E6FC.roa (raw, json)
Hash identifier: XIm2iKO+oVR5uTVqwhV21gKH97qxkAhDdYqKTuUtp88=
Subject key identifier: AF:A9:45:E2:B6:D0:1B:24:21:88:41:6C:9C:83:85:AE:EF:16:41:51
Certificate issuer: /CN=F367D0C5AR/serialNumber=6C17A00CE7A5EE9B7072DA0B8CD628213074D001
Certificate serial: E6
Authority key identifier: 6C:17:A0:0C:E7:A5:EE:9B:70:72:DA:0B:8C:D6:28:21:30:74:D0:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/bBegDOel7ptwctoLjNYoITB00AE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/C6750B664D4C11EE9C0B5E3B4AD9E6FC.roa
Signing time: Thu 07 Sep 2023 07:04:24 +0000
ROA not before: Thu 07 Sep 2023 07:04:20 +0000
ROA not after: Sat 31 Aug 2024 07:04:20 +0000
asID: 37284
IP address blocks: 165.16.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/bBegDOel7ptwctoLjNYoITB00AE.crl
rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/bBegDOel7ptwctoLjNYoITB00AE.mft
rsync://rpki.afrinic.net/repository/arin/bBegDOel7ptwctoLjNYoITB00AE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367D0C5AR/serialNumber=6C17A00CE7A5EE9B7072DA0B8CD628213074D001
Validity
Not Before: Sep 7 07:04:20 2023 GMT
Not After : Aug 31 07:04:20 2024 GMT
Subject: CN=64f975f8-8b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7b:7c:b3:03:ef:69:d2:c1:d5:26:99:f9:f6:
19:63:7c:54:e3:25:a3:be:ce:02:80:e9:56:f3:13:
b8:15:4e:e9:52:34:f3:ec:75:10:a2:69:1c:44:88:
db:d5:7a:c1:0f:91:aa:26:75:14:f9:a8:3f:bf:65:
34:87:bb:21:cb:2e:67:7c:92:c2:77:a4:22:03:8d:
08:6c:29:db:ef:2c:99:4a:79:ad:aa:35:a3:3b:37:
ff:28:07:e1:3d:f7:4d:3d:5c:ce:8b:e5:94:b5:88:
45:e9:9a:46:83:a2:98:b7:d9:e4:ba:b7:65:ed:62:
23:2b:c6:a9:3e:cc:2e:bb:7e:67:72:52:d7:41:cc:
06:0d:cc:6d:ab:8f:71:63:50:a2:5d:df:29:3c:dc:
ac:c9:e1:c9:c9:32:ac:f0:92:62:37:8a:fd:be:d5:
1b:e1:65:31:47:65:c2:98:96:0d:69:23:70:34:40:
4b:d2:14:fd:ab:50:c8:e5:b8:b7:1a:1f:be:e9:c3:
ec:28:74:38:77:78:0b:a6:4a:4a:03:6b:4d:c0:5a:
1a:8e:90:be:bd:87:46:7c:b8:8d:4c:02:ab:9f:20:
a3:41:eb:51:4f:66:8f:20:30:12:05:97:e9:54:8f:
ed:5f:11:6f:87:c2:d1:ee:28:fb:cb:59:ef:fd:ae:
fc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A9:45:E2:B6:D0:1B:24:21:88:41:6C:9C:83:85:AE:EF:16:41:51
X509v3 Authority Key Identifier:
keyid:6C:17:A0:0C:E7:A5:EE:9B:70:72:DA:0B:8C:D6:28:21:30:74:D0:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/bBegDOel7ptwctoLjNYoITB00AE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/bBegDOel7ptwctoLjNYoITB00AE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/4D5FB986A48911ED90607E87F1222468/C6750B664D4C11EE9C0B5E3B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.0.0/17
Signature Algorithm: sha256WithRSAEncryption
af:74:cb:7e:7b:a5:d0:81:51:c7:4e:70:84:49:3b:d8:f2:9b:
e7:fa:6d:e9:5c:64:30:9e:46:10:99:60:25:6f:40:09:9a:7d:
6e:33:19:e3:71:3b:7d:f5:a0:3e:c3:ac:c9:00:2d:66:07:66:
21:13:e6:08:4b:d9:e2:40:db:28:cf:ab:27:37:1a:ad:84:2e:
f2:c9:f2:e6:ac:7d:89:56:dc:09:cf:7a:ca:27:91:1b:25:72:
6f:5b:57:71:f3:b5:f2:70:84:0e:c8:f1:e3:9a:fb:ab:50:ca:
8d:c4:ac:84:66:bf:92:cc:4d:e6:ab:ff:88:26:8d:d6:d9:8d:
ce:60:a2:2b:05:57:ca:5a:c3:d3:1f:b0:d9:c1:be:bf:66:66:
60:fb:86:43:87:9f:78:bc:d9:6c:f4:2d:60:0b:1f:18:b6:39:
07:9a:67:34:48:6a:4d:83:4e:c1:94:6e:ef:77:de:c9:4d:d1:
97:83:e4:d2:94:f0:21:00:52:50:75:21:0c:fc:8b:46:8d:f9:
d4:8a:ee:60:9b:ff:6e:90:7b:07:01:6c:e2:a3:6a:42:7c:ac:
82:38:40:22:8a:ae:bc:bb:b4:0f:87:ca:5d:34:4c:0d:35:14:
a7:4c:84:9c:af:9a:e6:db:ff:1c:60:76:82:9f:e5:a8:6c:42:
a0:ba:f1:12
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0QwQzVBUjExMC8GA1UEBRMoNkMxN0EwMENFN0E1RUU5QjcwNzJEQTBCOENENjI4
MjEzMDc0RDAwMTAeFw0yMzA5MDcwNzA0MjBaFw0yNDA4MzEwNzA0MjBaMBgxFjAU
BgNVBAMTDTY0Zjk3NWY4LThiOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDge3yzA+9p0sHVJpn59hljfFTjJaO+zgKA6VbzE7gVTulSNPPsdRCiaRxE
iNvVesEPkaomdRT5qD+/ZTSHuyHLLmd8ksJ3pCIDjQhsKdvvLJlKea2qNaM7N/8o
B+E99009XM6L5ZS1iEXpmkaDopi32eS6t2XtYiMrxqk+zC67fmdyUtdBzAYNzG2r
j3FjUKJd3yk83KzJ4cnJMqzwkmI3iv2+1RvhZTFHZcKYlg1pI3A0QEvSFP2rUMjl
uLcaH77pw+wodDh3eAumSkoDa03AWhqOkL69h0Z8uI1MAqufIKNB61FPZo8gMBIF
l+lUj+1fEW+HwtHuKPvLWe/9rvyfAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUr6lF
4rbQGyQhiEFsnIOFru8WQVEwHwYDVR0jBBgwFoAUbBegDOel7ptwctoLjNYoITB0
0AEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdEMEM1LzRENUZCOTg2QTQ4OTExRUQ5MDYwN0U4N0YxMjIyNDY4L2JCZWdE
T2VsN3B0d2N0b0xqTllvSVRCMDBBRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2JCZWdET2VsN3B0d2N0b0xqTllvSVRCMDBBRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdEMEM1LzRENUZCOTg2QTQ4OTExRUQ5MDYwN0U4N0YxMjIy
NDY4L0M2NzUwQjY2NEQ0QzExRUU5QzBCNUUzQjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAelEAAwDQYJKoZIhvcNAQELBQAD
ggEBAK90y357pdCBUcdOcIRJO9jym+f6belcZDCeRhCZYCVvQAmafW4zGeNxO331
oD7DrMkALWYHZiET5ghL2eJA2yjPqyc3Gq2ELvLJ8uasfYlW3AnPesonkRslcm9b
V3HztfJwhA7I8eOa+6tQyo3ErIRmv5LMTear/4gmjdbZjc5goisFV8paw9MfsNnB
vr9mZmD7hkOHn3i82Wz0LWALHxi2OQeaZzRIak2DTsGUbu933slN0ZeD5NKU8CEA
UlB1IQz8i0aN+dSK7mCb/26QewcBbOKjakJ8rII4QCKKrry7tA+Hyl00TA01FKdM
hJyvmubb/xxgdoKf5ahsQqC68RI=
-----END CERTIFICATE-----
Generated at Fri May 24 02:52:51 2024 by rpki-client on console-fra.rpki-client.org