Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B177F9653A011EE93FD36604AD9E6FC.roa
File: 2B177F9653A011EE93FD36604AD9E6FC.roa (raw, json)
Hash identifier: mpjACRL/8kUzCkSE+Gpt0a1RuPCF/rJ2qw6dntAIHII=
Subject key identifier: 09:19:BC:E2:F9:DB:AF:4D:E1:49:37:21:E0:26:15:74:C0:C8:52:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3982
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B177F9653A011EE93FD36604AD9E6FC.roa
Signing time: Fri 15 Sep 2023 08:16:28 +0000
ROA not before: Fri 15 Sep 2023 08:16:25 +0000
ROA not after: Sat 08 Jun 2024 08:16:25 +0000
asID: 138152
IP address blocks: 156.232.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14722 (0x3982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 08:16:25 2023 GMT
Not After : Jun 8 08:16:25 2024 GMT
Subject: CN=650412dc-978c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8e:13:fb:40:76:7f:ff:2c:e4:eb:82:9e:ba:
20:f6:c2:88:80:c9:46:f5:ee:c2:54:74:a4:8e:ad:
1e:61:4f:43:b0:97:07:6e:78:b9:51:44:d9:7c:fa:
55:31:5e:5f:78:26:51:dd:d4:70:d1:a2:32:de:85:
c4:98:e1:7f:9e:62:49:04:29:a1:bd:2b:02:7b:cf:
d3:13:82:1c:4e:96:5e:bc:ad:d7:8c:4a:94:db:33:
e1:d8:1a:3a:ec:e2:fb:aa:e5:0a:4a:b2:d5:f3:b2:
5a:10:50:d4:89:47:f3:31:cb:f7:8e:0b:d9:26:b4:
9a:7c:74:eb:ec:82:cb:a9:19:4f:d0:ee:be:39:e7:
23:49:83:66:11:9b:5d:61:4c:6b:50:b8:02:e4:34:
f2:01:41:da:5b:37:a9:86:cd:f1:a8:b1:7e:dc:7f:
6d:7e:9c:91:fa:f9:09:f2:f7:5b:4e:68:33:2c:23:
ec:0d:31:62:ab:e6:82:e0:d7:d8:ee:0a:d8:6c:1a:
ea:63:50:51:f2:71:57:2f:4c:33:73:45:de:a0:24:
4d:5b:57:02:30:38:ca:82:d5:f8:6a:2a:71:bf:c7:
fe:10:98:2f:b9:07:df:66:5e:a5:47:f2:43:d4:bd:
b5:93:07:b6:cd:e2:06:7c:3d:c4:9e:4d:6d:1b:f4:
92:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:19:BC:E2:F9:DB:AF:4D:E1:49:37:21:E0:26:15:74:C0:C8:52:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2B177F9653A011EE93FD36604AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.6.0/24
Signature Algorithm: sha256WithRSAEncryption
40:3a:1c:8a:0e:54:3a:b6:bd:2c:e9:7b:f1:a1:c7:1f:4c:1f:
71:4d:42:f5:ff:a7:90:1a:b3:24:bb:9b:9d:65:14:5d:ef:17:
d4:38:ad:20:4c:64:c9:a1:c6:a3:ec:ed:c1:01:57:f4:5a:89:
de:61:12:b5:ff:8f:41:de:9f:5f:63:cd:11:f1:49:88:98:15:
c3:07:54:ec:38:d1:83:c4:75:b2:8b:1c:c2:18:66:c2:2c:bb:
ef:bf:a4:5f:7a:a2:de:7e:a0:5d:e9:e0:91:04:47:11:3f:0e:
6d:96:c1:09:b0:a1:45:81:46:f0:89:ee:cc:5f:53:47:d6:3a:
db:a3:4f:38:00:51:8e:f5:e1:52:62:49:d1:fb:7d:25:67:08:
89:7c:af:e8:61:62:a3:2f:ef:fe:16:c0:38:b8:b7:5e:6a:d9:
27:5f:a1:5b:7a:e2:88:1c:d7:a7:70:01:79:0f:21:a8:21:97:
43:8e:fa:91:4c:64:70:a9:5a:60:0c:24:9a:bb:c8:98:2d:3a:
3f:df:a3:d4:be:a4:2d:f0:dd:d3:1c:3a:c2:01:15:62:4f:15:
53:bd:4a:65:c7:46:ae:86:d8:2f:6b:14:55:6e:9b:96:61:9b:
d4:9e:a4:34:0c:98:16:97:f1:f8:ad:ca:d7:d4:3f:01:c7:e4:
2f:15:86:00
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICOYIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA5MTUwODE2MjVaFw0yNDA2MDgwODE2MjVaMBgxFjAU
BgNVBAMTDTY1MDQxMmRjLTk3OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCijhP7QHZ//yzk64KeuiD2woiAyUb17sJUdKSOrR5hT0OwlwdueLlRRNl8
+lUxXl94JlHd1HDRojLehcSY4X+eYkkEKaG9KwJ7z9MTghxOll68rdeMSpTbM+HY
Gjrs4vuq5QpKstXzsloQUNSJR/Mxy/eOC9kmtJp8dOvsgsupGU/Q7r455yNJg2YR
m11hTGtQuALkNPIBQdpbN6mGzfGosX7cf21+nJH6+Qny91tOaDMsI+wNMWKr5oLg
19juCthsGupjUFHycVcvTDNzRd6gJE1bVwIwOMqC1fhqKnG/x/4QmC+5B99mXqVH
8kPUvbWTB7bN4gZ8PcSeTW0b9JJDAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUCRm8
4vnbr03hSTch4CYVdMDIUswwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzJCMTc3Rjk2NTNBMDExRUU5M0ZEMzY2MDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc6AYwDQYJKoZIhvcNAQELBQAD
ggEBAEA6HIoOVDq2vSzpe/Ghxx9MH3FNQvX/p5AasyS7m51lFF3vF9Q4rSBMZMmh
xqPs7cEBV/Raid5hErX/j0Hen19jzRHxSYiYFcMHVOw40YPEdbKLHMIYZsIsu++/
pF96ot5+oF3p4JEERxE/Dm2WwQmwoUWBRvCJ7sxfU0fWOtujTzgAUY714VJiSdH7
fSVnCIl8r+hhYqMv7/4WwDi4t15q2SdfoVt64ogc16dwAXkPIaghl0OO+pFMZHCp
WmAMJJq7yJgtOj/fo9S+pC3w3dMcOsIBFWJPFVO9SmXHRq6G2C9rFFVum5Zhm9Se
pDQMmBaX8fitytfUPwHH5C8VhgA=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:06 2024 by rpki-client on console-fra.rpki-client.org