Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07DF163853A011EEA5ECC15F4AD9E6FC.roa
File: 07DF163853A011EEA5ECC15F4AD9E6FC.roa (raw, json)
Hash identifier: Z1KeorLrfAPJLAQ3js58HJ5L1x+EENmHF4ywRvnQQbM=
Subject key identifier: 86:51:1B:BD:65:C5:7F:5A:9B:8E:C7:1F:6E:FA:BA:BE:8D:24:33:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3980
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07DF163853A011EEA5ECC15F4AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:15:29 +0000
ROA not before: Fri 15 Sep 2023 08:15:25 +0000
ROA not after: Sat 08 Jun 2024 08:15:25 +0000
asID: 138152
IP address blocks: 156.232.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14720 (0x3980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 08:15:25 2023 GMT
Not After : Jun 8 08:15:25 2024 GMT
Subject: CN=650412a1-b182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:88:1b:3f:c6:55:87:f2:de:21:81:42:11:
9c:c8:6f:b0:4f:c0:d8:7f:6a:8f:be:f1:ca:dd:d6:
4d:80:28:1e:fd:4a:71:10:ec:94:9b:b7:29:4e:69:
54:c8:3d:da:f9:23:93:4b:5d:aa:a3:57:3e:63:a9:
3b:f0:5c:99:23:8f:67:a4:48:8a:d3:c0:fc:c8:38:
e8:3c:98:f7:07:a5:e2:17:ce:c8:b3:cf:51:ab:f3:
e2:64:9a:71:61:f1:68:82:9b:0d:aa:cb:49:21:f6:
74:89:cf:c2:1f:09:ea:7d:a0:56:3b:20:9b:b5:6d:
c6:cd:11:b1:c1:23:70:7b:86:5f:66:b3:da:e3:57:
13:4b:6d:81:4e:8d:49:e1:8d:2b:80:f1:a0:56:ca:
f6:21:4f:2d:d0:47:42:5f:27:39:a6:1e:62:01:25:
dc:17:8c:a6:a8:ac:c1:43:a2:08:a3:c1:d7:19:91:
c2:90:05:f9:4e:5d:3f:3a:1e:b1:df:c3:04:3a:b8:
6b:c1:a1:ab:5a:e1:a0:d1:29:bc:79:80:8d:02:f0:
0a:7d:29:83:4f:bf:21:af:c5:0d:3e:20:ad:78:31:
bc:b6:b6:93:1f:fa:0a:1d:90:00:39:8c:39:87:63:
5a:07:0c:e0:f1:80:b6:83:ab:43:c7:81:72:60:81:
d4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:51:1B:BD:65:C5:7F:5A:9B:8E:C7:1F:6E:FA:BA:BE:8D:24:33:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/07DF163853A011EEA5ECC15F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.7.0/24
Signature Algorithm: sha256WithRSAEncryption
23:cc:d4:91:2c:4c:87:87:e7:42:b4:d4:7b:d0:ad:51:e0:12:
e5:fc:43:06:a5:90:7f:f8:29:41:57:72:a0:5d:06:9b:48:b3:
72:75:86:f7:1e:f3:a8:3e:cb:ee:e2:ea:25:61:4e:9b:ea:11:
6f:0d:0c:f2:14:67:53:e8:b7:01:46:21:fa:7b:46:24:87:20:
a7:e9:31:4d:bf:d2:68:d9:bf:be:c2:a9:96:97:60:27:de:2f:
7a:d3:7c:51:0a:c4:80:0f:79:20:ea:6d:46:52:63:92:da:bd:
96:f2:0b:4b:b1:a6:ee:53:40:49:8a:47:15:de:e3:75:84:c5:
f6:87:72:a7:f5:25:1c:31:55:de:10:bf:75:52:53:2e:5e:10:
43:14:72:df:ee:0d:1d:d1:f7:d8:fa:98:22:82:13:90:67:77:
fb:9b:a5:ac:2f:83:55:0c:07:23:8b:b6:ab:ee:03:44:a6:39:
71:15:8b:a9:33:36:9b:0f:38:b9:53:56:68:92:0e:60:96:19:
c2:48:d9:27:d1:32:b0:f9:a2:18:9d:93:6d:b6:e3:87:bf:65:
85:85:f7:d8:f2:b6:64:fd:90:17:2c:b9:7b:ab:44:af:22:6c:
63:63:ef:23:a9:04:5f:26:93:bd:10:04:65:32:10:02:35:1e:
90:38:87:b9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOYAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA5MTUwODE1MjVaFw0yNDA2MDgwODE1MjVaMBgxFjAU
BgNVBAMTDTY1MDQxMmExLWIxODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCaHogbP8ZVh/LeIYFCEZzIb7BPwNh/ao++8crd1k2AKB79SnEQ7JSbtylO
aVTIPdr5I5NLXaqjVz5jqTvwXJkjj2ekSIrTwPzIOOg8mPcHpeIXzsizz1Gr8+Jk
mnFh8WiCmw2qy0kh9nSJz8IfCep9oFY7IJu1bcbNEbHBI3B7hl9ms9rjVxNLbYFO
jUnhjSuA8aBWyvYhTy3QR0JfJzmmHmIBJdwXjKaorMFDogijwdcZkcKQBflOXT86
HrHfwwQ6uGvBoata4aDRKbx5gI0C8Ap9KYNPvyGvxQ0+IK14Mby2tpMf+godkAA5
jDmHY1oHDODxgLaDq0PHgXJggdQvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUhlEb
vWXFf1qbjscfbvq6vo0kM3kwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzA3REYxNjM4NTNBMDExRUVBNUVDQzE1RjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc6AcwDQYJKoZIhvcNAQELBQAD
ggEBACPM1JEsTIeH50K01HvQrVHgEuX8QwalkH/4KUFXcqBdBptIs3J1hvce86g+
y+7i6iVhTpvqEW8NDPIUZ1PotwFGIfp7RiSHIKfpMU2/0mjZv77CqZaXYCfeL3rT
fFEKxIAPeSDqbUZSY5LavZbyC0uxpu5TQEmKRxXe43WExfaHcqf1JRwxVd4Qv3VS
Uy5eEEMUct/uDR3R99j6mCKCE5Bnd/ubpawvg1UMByOLtqvuA0SmOXEVi6kzNpsP
OLlTVmiSDmCWGcJI2SfRMrD5ohidk22244e/ZYWF99jytmT9kBcsuXurRK8ibGNj
7yOpBF8mk70QBGUyEAI1HpA4h7k=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:48 2024 by rpki-client on console-ams.rpki-client.org