Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C6F3D84A62F11EE995AD19E775412E6.roa
File: 2C6F3D84A62F11EE995AD19E775412E6.roa (raw, json)
Hash identifier: 3ftH3tSUYvqXH2yNlxSzRjplMAdJbm2m5j2UtmrcBIc=
Subject key identifier: 67:8C:EE:2D:B0:B2:F2:64:FC:82:52:54:D4:65:75:21:C0:FF:E0:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 595B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C6F3D84A62F11EE995AD19E775412E6.roa
Signing time: Fri 29 Dec 2023 09:46:43 +0000
ROA not before: Fri 29 Dec 2023 09:46:40 +0000
ROA not after: Mon 04 Nov 2024 09:46:40 +0000
asID: 5065
IP address blocks: 156.229.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22875 (0x595b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 29 09:46:40 2023 GMT
Not After : Nov 4 09:46:40 2024 GMT
Subject: CN=658e9583-46c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:43:8b:bd:47:32:e0:b2:11:9d:65:8b:b1:f6:
00:0c:3b:5f:21:e1:fa:b6:12:90:d2:df:85:59:a7:
f8:2c:a3:d6:a2:9a:f4:85:31:04:22:96:6a:1c:6f:
ef:17:66:b2:52:8c:9e:18:a5:c3:cf:12:8d:4e:36:
ce:49:7c:30:65:11:9c:44:bc:64:e3:ed:e4:2d:46:
8c:00:82:b5:f7:79:22:a9:db:52:e0:66:3e:31:b2:
f0:f9:c5:01:b0:f6:45:70:b3:a9:01:45:1b:0a:5f:
6d:7b:d8:5a:65:f6:20:4f:b5:53:18:bb:ce:9d:ca:
b0:d1:77:c6:85:0f:32:c9:82:d1:d0:6f:9f:d3:f1:
c9:2a:1d:14:c4:f5:68:ba:87:a4:49:0e:54:e8:24:
59:a5:53:14:dc:90:bb:9a:db:de:b7:4e:72:12:1e:
d3:75:f2:5a:95:4b:78:07:d9:c5:7e:75:d2:1d:cf:
2e:aa:23:ee:9f:36:50:8f:a2:0f:95:90:35:2c:fe:
d2:be:9f:58:ef:9c:e4:8f:5e:31:c9:5b:33:92:28:
e4:ef:cc:c3:8c:f7:72:80:f0:c8:fb:60:ae:41:ad:
5e:c3:4c:0b:1d:f0:4e:f4:9d:20:64:f1:61:84:5e:
e0:4c:74:bc:c7:71:d1:a4:02:af:bf:00:38:10:06:
ce:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:8C:EE:2D:B0:B2:F2:64:FC:82:52:54:D4:65:75:21:C0:FF:E0:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C6F3D84A62F11EE995AD19E775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.55.0/24
Signature Algorithm: sha256WithRSAEncryption
83:dc:a7:17:30:db:7c:7a:cb:c2:7d:b1:89:33:45:8a:55:d7:
9f:40:a1:70:aa:c0:f4:bf:cc:a8:b5:46:49:c9:2d:36:18:3b:
98:0c:6c:f9:ce:6d:f2:4d:ac:9b:06:52:e6:d6:27:31:1e:77:
8c:41:de:9c:a8:6b:e3:3c:5b:55:7c:05:d6:6b:cf:f8:27:09:
ce:1e:9b:e9:39:50:ff:5a:f0:22:ac:95:37:d3:52:3d:a9:da:
da:61:c0:36:a8:1b:4d:c9:7c:29:f4:16:c4:9a:d4:41:ce:7f:
fd:c1:b8:ec:25:6d:ae:93:29:78:41:a8:bc:2b:f2:dc:25:9d:
be:4a:a4:89:af:86:d4:1e:35:a7:ce:2f:43:4f:74:bc:91:d4:
65:78:0d:13:13:fd:0f:c5:ae:7b:b3:1d:63:44:8e:5b:47:4f:
9e:43:30:3b:7f:4f:35:b0:19:54:a3:67:ef:40:2b:dd:0b:f3:
bd:d2:1d:e9:c3:16:d5:e4:4d:d1:50:2a:b7:fc:9b:84:63:ff:
af:97:50:d0:5a:e6:2b:56:47:28:0a:70:ea:fa:a2:d1:af:14:
36:d9:31:34:73:24:e7:28:64:28:ee:0b:b3:aa:6c:79:81:c4:
3c:03:61:87:67:b6:60:1c:3a:c5:42:35:5e:1f:b8:ff:f6:0a:
69:57:86:34
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICWVswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEyMjkwOTQ2NDBaFw0yNDExMDQwOTQ2NDBaMBgxFjAU
BgNVBAMTDTY1OGU5NTgzLTQ2YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDpQ4u9RzLgshGdZYux9gAMO18h4fq2EpDS34VZp/gso9aimvSFMQQilmoc
b+8XZrJSjJ4YpcPPEo1ONs5JfDBlEZxEvGTj7eQtRowAgrX3eSKp21LgZj4xsvD5
xQGw9kVws6kBRRsKX2172Fpl9iBPtVMYu86dyrDRd8aFDzLJgtHQb5/T8ckqHRTE
9Wi6h6RJDlToJFmlUxTckLua2963TnISHtN18lqVS3gH2cV+ddIdzy6qI+6fNlCP
og+VkDUs/tK+n1jvnOSPXjHJWzOSKOTvzMOM93KA8Mj7YK5BrV7DTAsd8E70nSBk
8WGEXuBMdLzHcdGkAq+/ADgQBs6nAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUZ4zu
LbCy8mT8glJU1GV1IcD/4OwwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzJDNkYzRDg0QTYyRjExRUU5OTVBRDE5RTc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc5TcwDQYJKoZIhvcNAQELBQAD
ggEBAIPcpxcw23x6y8J9sYkzRYpV159AoXCqwPS/zKi1RknJLTYYO5gMbPnObfJN
rJsGUubWJzEed4xB3pyoa+M8W1V8BdZrz/gnCc4em+k5UP9a8CKslTfTUj2p2tph
wDaoG03JfCn0FsSa1EHOf/3BuOwlba6TKXhBqLwr8twlnb5KpImvhtQeNafOL0NP
dLyR1GV4DRMT/Q/FrnuzHWNEjltHT55DMDt/TzWwGVSjZ+9AK90L873SHenDFtXk
TdFQKrf8m4Rj/6+XUNBa5itWRygKcOr6otGvFDbZMTRzJOcoZCjuC7OqbHmBxDwD
YYdntmAcOsVCNV4fuP/2CmlXhjQ=
-----END CERTIFICATE-----
Generated at Sun May 5 02:33:14 2024 by rpki-client on console-fra.rpki-client.org