Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BED4690912511EFB3F9915A762E951A.roa
File: 1BED4690912511EFB3F9915A762E951A.roa (raw, json)
Hash identifier: Abt9RUAv7yksTxXWYzbNmbJlbDsiuA4pPZSyL7KrtTQ=
Subject key identifier: 11:76:67:58:5B:B9:68:A7:5A:D5:F6:0F:B5:EF:3A:50:76:EB:9E:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C7E1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BED4690912511EFB3F9915A762E951A.roa
Signing time: Wed 23 Oct 2024 09:56:44 +0000
ROA not before: Wed 23 Oct 2024 09:56:40 +0000
ROA not after: Fri 29 Nov 2024 09:56:40 +0000
asID: 203020
IP address blocks: 156.233.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51169 (0xc7e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 09:56:40 2024 GMT
Not After : Nov 29 09:56:40 2024 GMT
Subject: CN=6718c85c-f2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:49:5e:20:93:b8:9f:2e:f8:b5:b2:3d:27:d9:
87:68:f4:6a:b9:21:63:a5:18:51:33:ff:df:6b:6e:
05:7f:d2:5b:00:26:4a:32:d7:91:78:4f:46:b6:16:
83:39:d0:5d:45:1d:6b:a2:8d:79:71:c8:2b:29:3d:
63:7a:17:af:5e:73:6c:cb:e5:cd:6c:bb:90:0f:d7:
3d:01:03:7f:82:fc:4e:cb:43:59:25:04:a0:21:44:
1b:be:b1:20:a0:45:b4:52:74:e7:88:c3:84:42:10:
ec:67:4c:e3:33:06:aa:18:6e:96:23:16:1c:1f:24:
5a:ab:19:9d:bc:70:cc:fd:e3:74:66:23:aa:1e:ba:
df:f3:59:aa:cc:4e:80:21:05:b0:23:c7:05:e1:b7:
b4:92:4a:f6:fd:5b:11:ea:fc:47:24:b1:2e:95:c6:
5f:bb:28:03:5c:4c:41:56:65:f0:5d:67:68:27:7e:
68:04:e2:19:d5:98:2e:d8:51:5c:bc:9e:f6:d0:14:
69:54:ff:1e:58:c2:a4:ab:a9:64:6a:ce:70:be:86:
9c:b2:ab:49:7f:6e:48:c1:30:4c:21:76:83:1a:51:
a6:5d:45:05:66:3a:27:60:a8:20:45:9c:7e:6c:fb:
cb:aa:be:70:52:cf:b4:6b:d6:00:8f:28:aa:cd:54:
b6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:76:67:58:5B:B9:68:A7:5A:D5:F6:0F:B5:EF:3A:50:76:EB:9E:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BED4690912511EFB3F9915A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.4.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:22:fd:82:e2:b7:17:95:4d:53:9a:36:77:93:a0:53:7d:29:
71:bd:df:b4:1c:a1:32:b8:d4:da:f0:82:98:4c:99:d9:3f:0a:
41:7c:b3:a2:c4:ea:38:7e:18:b7:fe:1d:64:cd:55:cb:1f:6b:
88:9c:a1:3f:cd:c3:e8:4f:b7:72:9c:e5:e9:f6:49:d6:bc:8d:
44:b8:cf:95:4d:f4:b7:f0:8b:1e:80:db:bb:c1:23:3d:5b:4a:
ea:e5:3a:91:6b:89:1b:88:a5:3e:88:3f:71:6f:6f:ab:00:9f:
bc:72:61:f2:9c:9a:63:37:46:76:b3:24:6f:9f:b3:88:95:fb:
92:c1:07:d6:ab:69:ea:54:41:85:91:de:f1:f4:a5:a7:43:ec:
59:62:90:f2:fa:f1:6e:1b:bc:04:82:58:b1:5a:1c:c3:c1:08:
42:43:c2:84:29:99:2a:a2:fb:f6:4e:58:60:11:6e:09:fa:91:
8f:2a:be:b3:ec:fe:f6:c8:cd:74:d0:de:e8:c8:d6:af:74:e3:
2c:eb:24:79:91:82:3e:13:a4:35:8c:1e:7c:2d:e0:8c:b4:c4:
39:7e:c7:4e:e8:1c:fc:0b:65:f0:ef:f8:50:e8:a5:4f:60:4a:
45:b9:f4:a9:71:69:80:13:4e:3f:e0:c0:a8:f5:0f:c9:14:d2:
e8:c6:39:a5
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMfhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDIzMDk1NjQwWhcNMjQxMTI5MDk1NjQwWjAYMRYw
FAYDVQQDEw02NzE4Yzg1Yy1mMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAokleIJO4ny74tbI9J9mHaPRquSFjpRhRM//fa24Ff9JbACZKMteReE9G
thaDOdBdRR1roo15ccgrKT1jehevXnNsy+XNbLuQD9c9AQN/gvxOy0NZJQSgIUQb
vrEgoEW0UnTniMOEQhDsZ0zjMwaqGG6WIxYcHyRaqxmdvHDM/eN0ZiOqHrrf81mq
zE6AIQWwI8cF4be0kkr2/VsR6vxHJLEulcZfuygDXExBVmXwXWdoJ35oBOIZ1Zgu
2FFcvJ720BRpVP8eWMKkq6lkas5wvoacsqtJf25IwTBMIXaDGlGmXUUFZjonYKgg
RZx+bPvLqr5wUs+0a9YAjyiqzVS28QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBF2
Z1hbuWinWtX2D7XvOlB2655bMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xQkVENDY5MDkxMjUxMUVGQjNGOTkxNUE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnOkEMA0GCSqGSIb3DQEBCwUA
A4IBAQAcIv2C4rcXlU1TmjZ3k6BTfSlxvd+0HKEyuNTa8IKYTJnZPwpBfLOixOo4
fhi3/h1kzVXLH2uInKE/zcPoT7dynOXp9knWvI1EuM+VTfS38IsegNu7wSM9W0rq
5TqRa4kbiKU+iD9xb2+rAJ+8cmHynJpjN0Z2syRvn7OIlfuSwQfWq2nqVEGFkd7x
9KWnQ+xZYpDy+vFuG7wEglixWhzDwQhCQ8KEKZkqovv2TlhgEW4J+pGPKr6z7P72
yM100N7oyNavdOMs6yR5kYI+E6Q1jB58LeCMtMQ5fsdO6Bz8C2Xw7/hQ6KVPYEpF
ufSpcWmAE04/4MCo9Q/JFNLoxjml
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:22 2024 by rpki-client on console-ams.rpki-client.org