Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6A445EA0C911EF9DCC0E6A762E951A.roa
File: 2E6A445EA0C911EF9DCC0E6A762E951A.roa (raw, json)
Hash identifier: UVHO3iKkBEbz1T6tjwplysA223Yy8RIZ3buvDlsSegc=
Subject key identifier: 9F:7C:1C:61:FF:CD:43:14:E0:3E:4E:F1:1F:0D:86:68:4B:77:C9:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D15E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6A445EA0C911EF9DCC0E6A762E951A.roa
Signing time: Tue 12 Nov 2024 07:39:00 +0000
ROA not before: Tue 12 Nov 2024 07:38:56 +0000
ROA not after: Wed 11 Dec 2024 07:38:56 +0000
asID: 395793
IP address blocks: 156.243.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53598 (0xd15e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 12 07:38:56 2024 GMT
Not After : Dec 11 07:38:56 2024 GMT
Subject: CN=67330614-34e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e8:e6:c7:8f:62:38:5c:70:be:9e:5c:7c:e7:
3b:0a:53:ef:91:b3:c6:1d:de:60:47:52:ff:09:15:
02:c1:82:44:94:4c:32:15:b4:e5:7d:b5:72:59:16:
79:f2:b5:95:52:ed:6d:3b:e1:b0:a0:7b:7d:f1:d0:
29:55:b8:85:c8:3f:f2:97:00:49:64:4e:b9:1a:1d:
c3:ff:e6:4e:06:0e:9e:4b:9f:53:43:e3:62:11:aa:
03:de:e6:ca:d8:43:eb:35:33:0c:c3:88:d0:8b:69:
b4:44:3d:93:98:f5:f8:db:10:9e:c4:6d:60:30:9c:
36:a8:2d:13:8f:45:f4:62:6c:57:03:71:15:89:43:
7a:f1:92:03:0f:8b:3b:7c:a7:79:9b:61:88:74:14:
f1:3f:01:6b:bc:9c:a5:d7:4e:8f:38:fd:1c:27:b9:
94:0a:ae:62:aa:71:57:32:d6:95:04:99:5a:9a:31:
41:38:15:67:bc:7c:8b:1e:92:b3:1f:80:0c:96:5c:
c7:90:3f:af:7f:2a:be:c2:2e:38:ed:88:e8:75:95:
6d:57:52:e0:c0:69:97:aa:8e:3b:42:d7:29:26:62:
d7:0f:91:73:b7:66:5f:8b:b7:c5:4f:91:d0:97:cd:
0a:75:38:88:ae:ed:12:a7:6e:73:76:5c:bc:2a:e0:
11:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7C:1C:61:FF:CD:43:14:E0:3E:4E:F1:1F:0D:86:68:4B:77:C9:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6A445EA0C911EF9DCC0E6A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.223.0/24
Signature Algorithm: sha256WithRSAEncryption
75:20:fc:2d:3e:a6:27:ee:d0:c5:40:05:38:23:e0:e2:84:b4:
79:76:83:10:29:14:74:12:bb:c4:78:7f:48:11:c9:c6:31:04:
55:f6:86:3b:22:5a:82:1c:77:8d:e2:4a:52:0b:31:12:76:30:
cb:37:a9:e3:e5:08:39:a2:19:d3:8f:4a:18:7d:65:2b:c0:10:
a3:7a:67:e8:c8:95:a7:93:16:b9:fb:a0:b8:8e:a0:10:7b:10:
d5:f0:c9:b1:e6:1e:04:76:84:39:72:75:79:9a:37:7c:89:6a:
fa:f5:69:cb:ef:f2:ea:26:fd:10:ab:a7:35:2c:6c:d3:17:21:
5f:3a:9c:09:82:43:f1:22:cb:a1:74:94:dc:71:7e:89:59:2e:
e7:2c:fe:2b:96:b3:c4:54:08:1e:cb:62:83:56:d9:a7:53:b0:
26:9e:0f:d9:1e:e2:36:42:c7:5e:f5:3e:d5:f7:9c:0d:46:a5:
bb:28:9a:b9:00:3d:1d:92:36:ea:d7:21:04:58:61:67:11:27:
f8:a1:f2:ed:d8:70:4d:1f:b1:f3:f1:2c:3a:0d:6e:90:03:a3:
70:a2:78:c6:16:ab:2a:29:5b:d5:8d:9f:13:6f:0e:a4:8d:b0:
a1:84:ec:b7:c8:df:fc:ba:c7:1e:0e:17:6c:60:be:25:06:e8:
13:74:b4:4e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANFeMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTEyMDczODU2WhcNMjQxMjExMDczODU2WjAYMRYw
FAYDVQQDEw02NzMzMDYxNC0zNGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzujmx49iOFxwvp5cfOc7ClPvkbPGHd5gR1L/CRUCwYJElEwyFbTlfbVy
WRZ58rWVUu1tO+GwoHt98dApVbiFyD/ylwBJZE65Gh3D/+ZOBg6eS59TQ+NiEaoD
3ubK2EPrNTMMw4jQi2m0RD2TmPX42xCexG1gMJw2qC0Tj0X0YmxXA3EViUN68ZID
D4s7fKd5m2GIdBTxPwFrvJyl106POP0cJ7mUCq5iqnFXMtaVBJlamjFBOBVnvHyL
HpKzH4AMllzHkD+vfyq+wi447YjodZVtV1LgwGmXqo47QtcpJmLXD5Fzt2Zfi7fF
T5HQl80KdTiIru0Sp25zdly8KuARWwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJ98
HGH/zUMU4D5O8R8NhmhLd8n2MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yRTZBNDQ1RUEwQzkxMUVGOURDQzBFNkE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPPfMA0GCSqGSIb3DQEBCwUA
A4IBAQB1IPwtPqYn7tDFQAU4I+DihLR5doMQKRR0ErvEeH9IEcnGMQRV9oY7IlqC
HHeN4kpSCzESdjDLN6nj5Qg5ohnTj0oYfWUrwBCjemfoyJWnkxa5+6C4jqAQexDV
8Mmx5h4EdoQ5cnV5mjd8iWr69WnL7/LqJv0Qq6c1LGzTFyFfOpwJgkPxIsuhdJTc
cX6JWS7nLP4rlrPEVAgey2KDVtmnU7Amng/ZHuI2Qsde9T7V95wNRqW7KJq5AD0d
kjbq1yEEWGFnESf4ofLt2HBNH7Hz8Sw6DW6QA6NwonjGFqsqKVvVjZ8Tbw6kjbCh
hOy3yN/8usceDhdsYL4lBugTdLRO
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:24 2024 by rpki-client on console-ams.rpki-client.org