Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/96B78CCAB90711EDBA777CA4F1222468.roa
File: 96B78CCAB90711EDBA777CA4F1222468.roa (raw, json)
Hash identifier: uOnkXwg8nnGMr5yR+AMaHSyknnzaFzGFvAqM7gh72MY=
Subject key identifier: D9:78:ED:C2:8F:CC:36:85:4A:D6:AE:9A:1D:52:77:84:0C:91:E8:21
Certificate issuer: /CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Certificate serial: 11
Authority key identifier: D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/96B78CCAB90711EDBA777CA4F1222468.roa
Signing time: Thu 02 Mar 2023 14:36:16 +0000
ROA not before: Thu 02 Mar 2023 14:36:13 +0000
ROA not after: Mon 02 Mar 2026 14:36:13 +0000
asID: 33763
IP address blocks: 160.242.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.mft
rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AR/serialNumber=D9C0B233ACB063543574D3F5F327BEB8B2B99118
Validity
Not Before: Mar 2 14:36:13 2023 GMT
Not After : Mar 2 14:36:13 2026 GMT
Subject: CN=6400b460-05d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:e9:85:fe:f4:b9:53:0c:2a:aa:53:7b:44:
05:8d:31:78:a9:98:af:33:87:05:04:38:c8:cc:d7:
d2:c3:d5:0d:e1:e2:74:95:6f:1b:fe:6e:49:84:f1:
52:67:ec:18:37:00:87:94:a5:d8:18:a1:59:3d:57:
fc:61:80:a6:f3:f8:54:55:2d:b6:f7:ee:25:51:e9:
1c:b5:8e:71:8f:2d:10:63:0b:61:14:46:f1:ba:25:
26:d7:eb:6f:92:4e:44:6d:52:b4:71:c5:d4:e1:2c:
a7:33:b8:e9:d5:69:f8:0e:75:73:70:66:7b:e4:61:
b8:05:9f:3e:cc:3d:9c:2a:46:53:93:6a:5b:44:4e:
c2:42:64:b3:89:37:8a:ee:6e:ee:03:cb:b7:cc:98:
15:a5:9d:69:94:1a:91:f7:e4:33:8f:e4:8d:e4:41:
7e:eb:34:0a:db:8e:34:0e:b9:cf:80:1c:5f:d8:61:
7b:7d:0e:8b:e2:4f:25:ad:3c:56:a5:79:17:ef:c6:
fc:2b:0b:2a:92:66:f5:eb:dd:3d:dd:d2:72:c8:ba:
cd:e5:5d:3f:d6:d3:8c:fa:ef:45:e9:1b:ea:be:ea:
f6:e2:ff:58:58:4d:97:71:38:d6:e0:f5:22:57:46:
64:e2:b1:9f:bc:83:f7:68:9a:7a:db:7e:d6:57:21:
94:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:78:ED:C2:8F:CC:36:85:4A:D6:AE:9A:1D:52:77:84:0C:91:E8:21
X509v3 Authority Key Identifier:
keyid:D9:C0:B2:33:AC:B0:63:54:35:74:D3:F5:F3:27:BE:B8:B2:B9:91:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/2cCyM6ywY1Q1dNP18ye-uLK5kRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/2cCyM6ywY1Q1dNP18ye-uLK5kRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/5A411F9EB8EF11EDA5B09DDAF1222468/96B78CCAB90711EDBA777CA4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.242.31.0/24
Signature Algorithm: sha256WithRSAEncryption
de:56:4a:79:f7:9a:e1:45:5b:8b:af:52:89:f9:b7:1a:67:e5:
f6:46:e0:78:bb:f9:d5:6c:01:b8:13:fd:e6:c0:a2:d9:95:2a:
5d:0e:74:40:8d:87:a1:66:bc:1e:b8:e0:51:e4:1e:d3:99:06:
23:a1:6b:05:c9:40:14:3d:8e:e9:09:09:fe:ce:5e:c3:38:ba:
78:73:4c:1f:3c:c4:b6:04:d4:df:ff:32:99:4b:1f:d6:7d:ef:
3a:9e:e6:8d:9f:7a:a0:47:08:d4:6b:22:6c:9a:3d:18:39:4f:
b7:dd:22:5f:79:47:d2:0f:82:82:4a:95:6d:4a:64:52:30:04:
79:30:5b:10:1e:be:69:a0:b9:7a:a0:e4:48:b5:78:db:d1:e2:
44:95:ca:d5:dd:88:18:68:73:cb:8a:d2:0d:95:a1:62:08:fb:
a8:57:2d:a7:38:6f:d6:1a:4f:a6:67:76:f4:07:80:34:82:53:
ad:31:33:88:8b:26:9b:a4:0a:9f:67:5a:7e:23:16:d0:7b:36:
6e:51:4f:47:82:fa:98:5b:61:12:f1:a0:0c:53:24:5a:fd:72:
2c:95:6a:0c:b5:a3:c8:cd:1b:c8:56:b9:6c:9e:b9:14:79:6e:
fd:d3:59:ba:71:31:9e:7b:75:eb:1d:c5:e3:70:b2:d8:6b:1d:
1a:74:6e:a5
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBETANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY4
ODZCM0FSMTEwLwYDVQQFEyhEOUMwQjIzM0FDQjA2MzU0MzU3NEQzRjVGMzI3QkVC
OEIyQjk5MTE4MB4XDTIzMDMwMjE0MzYxM1oXDTI2MDMwMjE0MzYxM1owGDEWMBQG
A1UEAwwNNjQwMGI0NjAtMDVkODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKeB6YX+9LlTDCqqU3tEBY0xeKmYrzOHBQQ4yMzX0sPVDeHidJVvG/5uSYTx
UmfsGDcAh5Sl2BihWT1X/GGApvP4VFUttvfuJVHpHLWOcY8tEGMLYRRG8bolJtfr
b5JORG1StHHF1OEspzO46dVp+A51c3Bme+RhuAWfPsw9nCpGU5NqW0ROwkJks4k3
iu5u7gPLt8yYFaWdaZQakffkM4/kjeRBfus0CtuONA65z4AcX9hhe30Oi+JPJa08
VqV5F+/G/CsLKpJm9evdPd3Scsi6zeVdP9bTjPrvRekb6r7q9uL/WFhNl3E41uD1
IldGZOKxn7yD92iaett+1lchlEsCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBTZeO3C
j8w2hUrWrpodUneEDJHoITAfBgNVHSMEGDAWgBTZwLIzrLBjVDV00/XzJ764srmR
GDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODg2QjMvNUE0MTFGOUVCOEVGMTFFREE1QjA5RERBRjEyMjI0NjgvMmNDeU02
eXdZMVExZE5QMTh5ZS11TEs1a1JnLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
MmNDeU02eXdZMVExZE5QMTh5ZS11TEs1a1JnLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2ODg2QjMvNUE0MTFGOUVCOEVGMTFFREE1QjA5RERBRjEyMjI0
NjgvOTZCNzhDQ0FCOTA3MTFFREJBNzc3Q0E0RjEyMjI0Njgucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKDyHzANBgkqhkiG9w0BAQsFAAOC
AQEA3lZKefea4UVbi69Sifm3Gmfl9kbgeLv51WwBuBP95sCi2ZUqXQ50QI2HoWa8
HrjgUeQe05kGI6FrBclAFD2O6QkJ/s5ewzi6eHNMHzzEtgTU3/8ymUsf1n3vOp7m
jZ96oEcI1GsibJo9GDlPt90iX3lH0g+CgkqVbUpkUjAEeTBbEB6+aaC5eqDkSLV4
29HiRJXK1d2IGGhzy4rSDZWhYgj7qFctpzhv1hpPpmd29AeANIJTrTEziIsmm6QK
n2dafiMW0Hs2blFPR4L6mFthEvGgDFMkWv1yLJVqDLWjyM0byFa5bJ65FHlu/dNZ
unExnnt16x3F43Cy2GsdGnRupQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org