Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CD4B1C4507111EEA7CED63D4AD9E6FC.roa
File: 1CD4B1C4507111EEA7CED63D4AD9E6FC.roa (raw, json)
Hash identifier: J4d7OPts2Yxc/ZwSOMc9i1FRGEgsbsLC18iILempAEE=
Subject key identifier: 4B:EF:36:A1:85:46:69:B8:B4:99:24:2E:BF:74:42:B7:3A:97:31:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 393C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CD4B1C4507111EEA7CED63D4AD9E6FC.roa
Signing time: Mon 11 Sep 2023 07:02:04 +0000
ROA not before: Mon 11 Sep 2023 07:02:01 +0000
ROA not after: Fri 13 Sep 2024 07:02:01 +0000
asID: 9381
IP address blocks: 156.241.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14652 (0x393c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 11 07:02:01 2023 GMT
Not After : Sep 13 07:02:01 2024 GMT
Subject: CN=64febb6c-bee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:90:01:01:d3:8b:de:6b:17:99:09:ae:e1:3e:
f4:9f:8f:6c:4a:4b:50:9c:fd:50:de:48:ef:cf:4e:
f6:a5:97:2f:cf:58:46:92:a9:e5:27:24:e7:6d:0e:
9c:df:33:25:69:29:f8:d8:38:0b:ef:cd:48:03:71:
83:31:87:94:72:0b:56:7b:df:5e:29:e7:f7:42:a3:
5d:c4:07:c9:d8:bc:ce:eb:74:1a:d7:ea:22:e1:ce:
dc:43:e0:d9:8b:5b:12:67:81:30:13:8c:f4:39:18:
dd:1a:e3:4d:95:40:9a:da:a1:63:7a:aa:a2:ac:ec:
67:e3:f0:0f:12:44:f3:6b:ff:c3:63:86:b1:c5:80:
82:cf:07:32:ab:28:d3:35:fd:6d:dd:44:ca:7f:10:
ad:03:a2:eb:0a:25:49:81:2b:02:fa:2b:b1:2d:83:
0b:be:8d:00:9c:56:d1:89:eb:fe:d9:f2:8d:ae:d0:
a7:12:be:af:38:69:f9:d1:17:8f:9e:97:d6:fb:b8:
cc:5e:31:c3:c6:91:7c:5d:d4:0f:34:28:8c:52:e4:
ba:41:72:b6:39:84:35:15:dd:7b:5c:88:ca:c3:5b:
f2:e6:12:43:9e:23:a6:97:2c:c6:73:a6:52:f5:9c:
20:94:75:28:42:16:8c:23:11:28:b5:af:b6:91:29:
93:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EF:36:A1:85:46:69:B8:B4:99:24:2E:BF:74:42:B7:3A:97:31:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CD4B1C4507111EEA7CED63D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.1.0/24
Signature Algorithm: sha256WithRSAEncryption
23:43:fc:a0:55:30:4f:4a:b9:dd:3f:f1:aa:e2:5b:94:6d:c2:
9e:48:66:22:b5:22:00:a3:7f:7d:d7:7a:c4:d2:31:6c:b8:ed:
98:4a:2c:8e:01:6a:5d:25:8f:c0:80:7f:28:16:e4:8a:c1:49:
8f:6b:df:df:5e:1d:5f:79:60:78:f8:bc:21:42:3b:3e:ab:e6:
79:6a:cd:d4:a1:c9:6d:3b:fa:a4:f1:98:80:31:d5:f5:92:a5:
01:8f:af:12:d2:33:23:cc:8b:7f:2c:18:4c:d3:ef:8c:6d:cf:
dc:39:54:0e:ec:2d:df:71:29:4e:f0:10:28:d8:8b:d6:ea:e3:
9b:4d:98:37:1a:7b:18:59:00:7e:46:50:ac:33:bd:45:b9:a1:
3e:44:d2:ee:09:e1:18:a5:bf:78:aa:af:fb:88:e2:99:4b:ed:
17:71:89:c3:1b:eb:1f:60:2d:9b:c3:b8:16:26:a7:b6:1f:17:
b1:43:ca:0c:0e:e8:f1:ba:f7:6d:c0:25:9b:73:94:2d:77:92:
23:3b:96:0f:b6:18:66:72:a1:a1:a5:c1:a9:f7:13:41:fb:ef:
f7:91:2f:54:4f:1b:67:ab:38:d5:3c:cf:69:fe:15:d9:fd:44:
2e:87:16:c6:1c:a7:ce:28:e8:4b:4e:01:c4:33:74:e5:60:dd:
36:ad:ae:aa
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOTwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA5MTEwNzAyMDFaFw0yNDA5MTMwNzAyMDFaMBgxFjAU
BgNVBAMTDTY0ZmViYjZjLWJlZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfkAEB04veaxeZCa7hPvSfj2xKS1Cc/VDeSO/PTvally/PWEaSqeUnJOdt
DpzfMyVpKfjYOAvvzUgDcYMxh5RyC1Z7314p5/dCo13EB8nYvM7rdBrX6iLhztxD
4NmLWxJngTATjPQ5GN0a402VQJraoWN6qqKs7Gfj8A8SRPNr/8NjhrHFgILPBzKr
KNM1/W3dRMp/EK0DousKJUmBKwL6K7Etgwu+jQCcVtGJ6/7Z8o2u0KcSvq84afnR
F4+el9b7uMxeMcPGkXxd1A80KIxS5LpBcrY5hDUV3XtciMrDW/LmEkOeI6aXLMZz
plL1nCCUdShCFowjESi1r7aRKZOnAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUS+82
oYVGabi0mSQuv3RCtzqXMRgwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzFDRDRCMUM0NTA3MTExRUVBN0NFRDYzRDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc8QEwDQYJKoZIhvcNAQELBQAD
ggEBACND/KBVME9Kud0/8ariW5Rtwp5IZiK1IgCjf33XesTSMWy47ZhKLI4Bal0l
j8CAfygW5IrBSY9r399eHV95YHj4vCFCOz6r5nlqzdShyW07+qTxmIAx1fWSpQGP
rxLSMyPMi38sGEzT74xtz9w5VA7sLd9xKU7wECjYi9bq45tNmDcaexhZAH5GUKwz
vUW5oT5E0u4J4Rilv3iqr/uI4plL7RdxicMb6x9gLZvDuBYmp7YfF7FDygwO6PG6
923AJZtzlC13kiM7lg+2GGZyoaGlwan3E0H77/eRL1RPG2erONU8z2n+Fdn9RC6H
FsYcp84o6EtOAcQzdOVg3Tatrqo=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:49 2024 by rpki-client on console-ams.rpki-client.org