Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/7E32B2260DFF11EF971154F4007001B1.roa
File: 7E32B2260DFF11EF971154F4007001B1.roa (raw, json)
Hash identifier: mMlz9+L3Eog8WKMUxfqqOF5aG0LcyYUooSiKu/ea8uI=
Subject key identifier: 89:90:2A:29:06:56:BB:80:90:1D:74:E4:98:DD:76:ED:44:94:80:3F
Certificate issuer: /CN=F3688321AR/serialNumber=E2E805E89DDF907B2B528F42641B4FF762269B16
Certificate serial: 02
Authority key identifier: E2:E8:05:E8:9D:DF:90:7B:2B:52:8F:42:64:1B:4F:F7:62:26:9B:16
Authority info access: rsync://rpki.afrinic.net/repository/arin/4ugF6J3fkHsrUo9CZBtP92ImmxY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/7E32B2260DFF11EF971154F4007001B1.roa
Signing time: Thu 09 May 2024 12:27:26 +0000
ROA not before: Fri 10 May 2024 12:27:22 +0000
ROA not after: Tue 09 May 2034 12:27:22 +0000
asID: 328019
IP address blocks: 169.239.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/4ugF6J3fkHsrUo9CZBtP92ImmxY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/4ugF6J3fkHsrUo9CZBtP92ImmxY.mft
rsync://rpki.afrinic.net/repository/arin/4ugF6J3fkHsrUo9CZBtP92ImmxY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3688321AR/serialNumber=E2E805E89DDF907B2B528F42641B4FF762269B16
Validity
Not Before: May 10 12:27:22 2024 GMT
Not After : May 9 12:27:22 2034 GMT
Subject: CN=663cc12e-e750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ab:b7:67:2a:8c:d2:3f:92:92:16:0f:d0:0e:
28:0a:7d:72:93:f0:86:3d:0d:d5:84:0e:e4:ba:23:
7a:f6:ea:99:9e:7d:0f:dc:8f:a5:f0:b2:76:16:7a:
55:86:db:dc:26:0b:62:01:c3:69:74:88:51:55:b0:
6e:7e:d0:85:5e:67:44:48:27:94:2f:03:4f:91:08:
a1:59:27:c9:a4:8e:11:8d:4b:8f:49:36:10:52:7e:
c2:ce:d1:aa:a6:8d:56:12:04:39:29:9a:7a:7c:8a:
c1:38:e1:f6:46:88:b8:4f:fc:e5:dd:57:fd:e3:1c:
c6:52:0e:8b:e0:79:33:31:9d:52:e9:b6:cf:12:c7:
0a:96:5c:ba:5d:77:04:6b:5b:e4:84:be:a1:74:f0:
61:94:e4:39:af:31:71:df:a5:7a:fd:1e:df:ba:81:
dc:4e:73:fd:e8:1f:38:80:5a:d0:b2:60:1e:e1:0e:
eb:5b:0f:e6:74:65:14:d8:a3:2a:c8:91:8f:cc:57:
7d:dc:34:d8:dd:4f:c1:a6:d2:c4:a6:19:dc:72:15:
1f:cf:de:74:ed:98:5f:77:db:fe:ce:e7:40:3b:22:
12:ab:53:8a:47:0a:8e:61:11:ac:fb:8e:1d:fa:ab:
f7:27:4f:90:01:41:05:98:3c:a0:29:f3:bd:20:05:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:90:2A:29:06:56:BB:80:90:1D:74:E4:98:DD:76:ED:44:94:80:3F
X509v3 Authority Key Identifier:
keyid:E2:E8:05:E8:9D:DF:90:7B:2B:52:8F:42:64:1B:4F:F7:62:26:9B:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/4ugF6J3fkHsrUo9CZBtP92ImmxY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/4ugF6J3fkHsrUo9CZBtP92ImmxY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3688321/9CE7374E0DFC11EFBBC58B5B017001B1/7E32B2260DFF11EF971154F4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.140.0/22
Signature Algorithm: sha256WithRSAEncryption
87:6b:a5:96:0d:56:da:c0:ac:de:4f:b9:4b:95:22:2b:1e:82:
3d:c9:14:c1:00:47:ff:85:2b:65:62:7e:00:5a:2a:15:d9:68:
2e:45:81:c9:93:8e:71:3f:4e:a6:8c:6b:06:80:0b:73:22:ed:
e2:c7:a9:bf:a9:fa:6d:75:9b:36:78:98:1f:4b:cb:eb:66:58:
95:7b:d4:41:75:2a:73:8a:25:29:ec:db:b3:b8:95:26:cf:69:
21:ca:6b:9e:6e:47:8d:2e:75:8b:93:8f:59:22:aa:f5:94:d3:
38:73:e8:76:c9:e2:b0:95:8e:db:2d:a2:9b:2d:bc:56:34:2e:
dd:c8:a0:a5:3c:dd:9a:73:f0:0a:7c:a7:4f:71:45:63:63:94:
9e:9b:85:f0:4c:60:fc:e6:2c:04:d7:b7:75:c9:87:63:a8:02:
84:7b:41:fc:fc:11:1d:62:23:81:0a:4f:73:0d:bb:7b:68:61:
3e:8b:14:a9:f0:ec:64:4c:c1:50:8a:e6:f7:aa:37:21:44:86:
4c:76:d3:34:45:30:2f:7c:54:97:11:ee:44:05:51:5f:3b:30:
1c:24:4c:1d:90:b8:92:53:cd:66:26:7c:a4:ff:62:05:70:03:
ae:39:03:9f:a6:d8:0f:95:3e:4f:e3:e0:26:18:8e:ca:87:8c:
8b:39:35:66
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY4
ODMyMUFSMTEwLwYDVQQFEyhFMkU4MDVFODlEREY5MDdCMkI1MjhGNDI2NDFCNEZG
NzYyMjY5QjE2MB4XDTI0MDUxMDEyMjcyMloXDTM0MDUwOTEyMjcyMlowGDEWMBQG
A1UEAxMNNjYzY2MxMmUtZTc1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMOrt2cqjNI/kpIWD9AOKAp9cpPwhj0N1YQO5LojevbqmZ59D9yPpfCydhZ6
VYbb3CYLYgHDaXSIUVWwbn7QhV5nREgnlC8DT5EIoVknyaSOEY1Lj0k2EFJ+ws7R
qqaNVhIEOSmaenyKwTjh9kaIuE/85d1X/eMcxlIOi+B5MzGdUum2zxLHCpZcul13
BGtb5IS+oXTwYZTkOa8xcd+lev0e37qB3E5z/egfOIBa0LJgHuEO61sP5nRlFNij
KsiRj8xXfdw02N1PwabSxKYZ3HIVH8/edO2YX3fb/s7nQDsiEqtTikcKjmERrPuO
Hfqr9ydPkAFBBZg8oCnzvSAFX7kCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBSJkCop
Bla7gJAddOSY3XbtRJSAPzAfBgNVHSMEGDAWgBTi6AXond+QeytSj0JkG0/3Yiab
FjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODgzMjEvOUNFNzM3NEUwREZDMTFFRkJCQzU4QjVCMDE3MDAxQjEvNHVnRjZK
M2ZrSHNyVW85Q1pCdFA5MkltbXhZLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
NHVnRjZKM2ZrSHNyVW85Q1pCdFA5MkltbXhZLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2ODgzMjEvOUNFNzM3NEUwREZDMTFFRkJCQzU4QjVCMDE3MDAx
QjEvN0UzMkIyMjYwREZGMTFFRjk3MTE1NEY0MDA3MDAxQjEucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqnvjDANBgkqhkiG9w0BAQsFAAOC
AQEAh2ullg1W2sCs3k+5S5UiKx6CPckUwQBH/4UrZWJ+AFoqFdloLkWByZOOcT9O
poxrBoALcyLt4sepv6n6bXWbNniYH0vL62ZYlXvUQXUqc4olKezbs7iVJs9pIcpr
nm5HjS51i5OPWSKq9ZTTOHPodsnisJWO2y2imy28VjQu3cigpTzdmnPwCnynT3FF
Y2OUnpuF8Exg/OYsBNe3dcmHY6gChHtB/PwRHWIjgQpPcw27e2hhPosUqfDsZEzB
UIrm96o3IUSGTHbTNEUwL3xUlxHuRAVRXzswHCRMHZC4klPNZiZ8pP9iBXADrjkD
n6bYD5U+T+PgJhiOyoeMizk1Zg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:47 2024 by rpki-client on console-ams.rpki-client.org