Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/C069B486B24311EEB2664F99775412E6.roa
File: C069B486B24311EEB2664F99775412E6.roa (raw, json)
Hash identifier: NeIq4SLTxB0EhIQzCliNvAbug3avKsYrABorphJD/7A=
Subject key identifier: 2B:93:D1:06:8F:17:38:2B:43:85:2A:DE:44:3F:5B:E2:62:17:AE:3F
Certificate issuer: /CN=F367EEA2AR/serialNumber=567CAF99182B9E274FB9A6D6908878AB01C34281
Certificate serial: B5
Authority key identifier: 56:7C:AF:99:18:2B:9E:27:4F:B9:A6:D6:90:88:78:AB:01:C3:42:81
Authority info access: rsync://rpki.afrinic.net/repository/arin/VnyvmRgrnidPuabWkIh4qwHDQoE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/C069B486B24311EEB2664F99775412E6.roa
Signing time: Sat 13 Jan 2024 18:44:16 +0000
ROA not before: Sat 13 Jan 2024 18:44:12 +0000
ROA not after: Tue 01 Jan 2030 18:44:12 +0000
asID: 37697
IP address blocks: 160.119.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/VnyvmRgrnidPuabWkIh4qwHDQoE.crl
rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/VnyvmRgrnidPuabWkIh4qwHDQoE.mft
rsync://rpki.afrinic.net/repository/arin/VnyvmRgrnidPuabWkIh4qwHDQoE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367EEA2AR/serialNumber=567CAF99182B9E274FB9A6D6908878AB01C34281
Validity
Not Before: Jan 13 18:44:12 2024 GMT
Not After : Jan 1 18:44:12 2030 GMT
Subject: CN=65a2d9ff-df44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b2:a6:c3:66:8a:6b:44:af:f1:5f:9f:a8:c6:
2e:8d:b2:de:00:9c:cd:53:3f:2e:3f:5f:a0:5e:ac:
c3:3e:c9:17:8c:66:b2:a4:36:33:ac:9c:cc:35:1f:
6b:d0:17:12:6b:48:9a:c1:88:fc:60:18:f8:5a:9f:
f2:12:82:73:66:94:45:9b:66:87:ba:fa:3d:78:d8:
ff:51:f1:b9:2c:90:0e:52:72:59:f5:7d:16:64:ab:
c1:ca:10:1c:07:de:37:96:4b:5f:ee:c8:ab:76:48:
6c:2b:ad:6f:b8:62:55:47:3b:fd:fe:c5:ad:8e:e5:
69:37:c7:d7:46:54:64:d3:8a:98:0e:3d:3f:20:b2:
29:55:25:45:c9:fc:13:5d:da:97:5a:47:73:cc:35:
db:b3:f1:8d:66:2b:37:0c:43:cc:d9:ac:50:41:c2:
0c:49:7b:ea:f7:d3:58:0a:f3:1a:3e:d9:3c:96:ac:
2f:3a:c7:09:c7:7b:38:ad:5c:ed:a1:f0:83:bd:cd:
a4:6f:ef:18:49:0f:d8:c7:2a:d5:7f:dd:ea:c1:dd:
fd:15:ea:24:16:03:c6:09:d0:ea:bc:f7:94:76:23:
eb:29:0a:90:dc:2b:12:ca:2a:4a:c5:68:2b:4a:e8:
06:65:9d:bb:32:44:19:9d:bc:84:19:b5:aa:d5:a8:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:93:D1:06:8F:17:38:2B:43:85:2A:DE:44:3F:5B:E2:62:17:AE:3F
X509v3 Authority Key Identifier:
keyid:56:7C:AF:99:18:2B:9E:27:4F:B9:A6:D6:90:88:78:AB:01:C3:42:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/VnyvmRgrnidPuabWkIh4qwHDQoE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/VnyvmRgrnidPuabWkIh4qwHDQoE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367EEA2/A459C8A22EB411EE89BAC3784AD9E6FC/C069B486B24311EEB2664F99775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.112.0/21
Signature Algorithm: sha256WithRSAEncryption
07:56:d8:62:e6:23:e0:dd:29:b9:97:29:dd:40:4e:e6:a4:0c:
ac:87:c7:c0:d9:2b:40:45:33:cc:c3:f6:0c:d0:56:4e:9f:15:
58:b7:a9:bd:02:de:49:48:27:01:1e:24:98:56:ee:96:79:70:
aa:51:cb:d0:65:36:ea:45:a6:32:dd:c1:27:03:24:de:a3:6e:
68:64:ce:05:3e:d2:fa:93:63:d0:8c:ae:8b:e5:17:b5:d7:0b:
7f:79:d5:ba:98:e0:01:f2:00:1f:b0:61:90:6d:b5:ef:e5:d7:
df:c9:92:66:19:5e:d6:6d:44:41:51:61:c2:cd:60:a1:4d:dd:
88:3f:46:5d:0f:4d:db:9d:d5:a2:d0:33:97:2d:42:3d:2c:7d:
a2:c9:79:ea:85:bc:5a:9d:ff:22:4b:e6:7b:9c:70:00:19:5c:
51:e5:a7:7c:b6:5d:f6:9e:a2:5c:2b:6c:36:2b:58:d0:57:be:
d3:54:8c:f5:ae:48:cd:3f:6f:b0:fd:e5:32:4b:e6:16:c3:36:
45:cf:49:fd:49:58:f4:78:28:ec:5d:f1:9a:2f:0e:8a:51:a1:
3d:96:0d:48:85:8e:95:65:0f:09:00:49:e8:56:68:85:96:7a:
ec:68:a4:be:6a:52:fa:69:88:e6:bf:bb:0a:3f:c3:4b:e5:21:
87:73:e4:60
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICALUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0VFQTJBUjExMC8GA1UEBRMoNTY3Q0FGOTkxODJCOUUyNzRGQjlBNkQ2OTA4ODc4
QUIwMUMzNDI4MTAeFw0yNDAxMTMxODQ0MTJaFw0zMDAxMDExODQ0MTJaMBgxFjAU
BgNVBAMTDTY1YTJkOWZmLWRmNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDOsqbDZoprRK/xX5+oxi6Nst4AnM1TPy4/X6BerMM+yReMZrKkNjOsnMw1
H2vQFxJrSJrBiPxgGPhan/ISgnNmlEWbZoe6+j142P9R8bkskA5Scln1fRZkq8HK
EBwH3jeWS1/uyKt2SGwrrW+4YlVHO/3+xa2O5Wk3x9dGVGTTipgOPT8gsilVJUXJ
/BNd2pdaR3PMNduz8Y1mKzcMQ8zZrFBBwgxJe+r301gK8xo+2TyWrC86xwnHezit
XO2h8IO9zaRv7xhJD9jHKtV/3erB3f0V6iQWA8YJ0Oq895R2I+spCpDcKxLKKkrF
aCtK6AZlnbsyRBmdvIQZtarVqIIdAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUK5PR
Bo8XOCtDhSreRD9b4mIXrj8wHwYDVR0jBBgwFoAUVnyvmRgrnidPuabWkIh4qwHD
QoEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdFRUEyL0E0NTlDOEEyMkVCNDExRUU4OUJBQzM3ODRBRDlFNkZDL1ZueXZt
UmdybmlkUHVhYldrSWg0cXdIRFFvRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1ZueXZtUmdybmlkUHVhYldrSWg0cXdIRFFvRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdFRUEyL0E0NTlDOEEyMkVCNDExRUU4OUJBQzM3ODRBRDlF
NkZDL0MwNjlCNDg2QjI0MzExRUVCMjY2NEY5OTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOgd3AwDQYJKoZIhvcNAQELBQAD
ggEBAAdW2GLmI+DdKbmXKd1ATuakDKyHx8DZK0BFM8zD9gzQVk6fFVi3qb0C3klI
JwEeJJhW7pZ5cKpRy9BlNupFpjLdwScDJN6jbmhkzgU+0vqTY9CMrovlF7XXC395
1bqY4AHyAB+wYZBtte/l19/JkmYZXtZtREFRYcLNYKFN3Yg/Rl0PTdud1aLQM5ct
Qj0sfaLJeeqFvFqd/yJL5nuccAAZXFHlp3y2XfaeolwrbDYrWNBXvtNUjPWuSM0/
b7D95TJL5hbDNkXPSf1JWPR4KOxd8ZovDopRoT2WDUiFjpVlDwkASehWaIWWeuxo
pL5qUvppiOa/uwo/w0vlIYdz5GA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org