Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30E6FA5AF0BC11EEADECF750775412E6.roa
File: 30E6FA5AF0BC11EEADECF750775412E6.roa (raw, json)
Hash identifier: S8iulQ0pSXtRZ4E69Zg05+U88XKWrg8dTv1W3bv6SOY=
Subject key identifier: 6E:27:A5:00:75:29:D2:32:0B:12:98:92:C3:2D:50:11:78:47:05:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 812E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30E6FA5AF0BC11EEADECF750775412E6.roa
Signing time: Tue 02 Apr 2024 06:42:36 +0000
ROA not before: Tue 02 Apr 2024 06:42:33 +0000
ROA not after: Mon 29 Apr 2024 06:42:33 +0000
asID: 139646
IP address blocks: 156.249.28.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 29 Apr 2024 06:42:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33070 (0x812e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 06:42:33 2024 GMT
Not After : Apr 29 06:42:33 2024 GMT
Subject: CN=660ba8dc-a7f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ab:a3:2f:eb:4f:5e:88:b7:44:93:d2:4f:4e:
dd:90:bd:6b:6a:53:3e:6d:3b:af:93:c7:dc:5b:7a:
fe:05:e2:6b:26:62:cf:59:59:a8:a3:7e:be:52:b5:
f4:30:3c:bc:d6:32:01:98:23:59:9e:5e:f6:0a:ef:
21:3d:a1:4d:c6:26:9d:63:e2:3f:40:30:ac:b8:96:
9e:19:1d:28:6e:cc:43:5e:1b:c9:de:78:b7:24:7f:
cd:48:67:57:64:0c:09:5f:2a:1c:e8:61:a6:4a:cb:
85:56:ef:44:c7:2b:aa:aa:1d:3e:14:3e:1c:36:06:
bc:8b:f2:46:1b:51:99:73:a4:a4:d5:e9:8e:3f:a2:
83:12:22:15:08:07:f6:df:a3:30:56:42:b8:69:d8:
26:97:9e:12:cd:7a:91:2b:15:43:fd:b3:66:82:bd:
0b:a4:ad:90:83:b6:28:ca:19:66:2f:c1:53:e9:2f:
34:d1:04:d0:f5:52:42:b6:c1:20:e4:74:0b:80:0b:
a9:4f:ab:41:8a:9f:c3:e0:a0:37:df:66:24:7c:a2:
a0:af:d8:c8:b6:b9:1b:4f:e7:f1:91:5d:89:ab:be:
1a:cc:fc:3f:2c:1f:8a:3d:12:5f:bd:f4:3f:42:d7:
81:bd:dc:27:0a:3e:9f:ed:f8:1b:f8:9c:0a:74:55:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:27:A5:00:75:29:D2:32:0B:12:98:92:C3:2D:50:11:78:47:05:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/30E6FA5AF0BC11EEADECF750775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.28.0/23
Signature Algorithm: sha256WithRSAEncryption
68:be:37:64:6b:0b:5f:b7:c5:fb:39:ad:c3:58:95:bb:b1:09:
23:9e:d6:68:a8:b9:a6:5a:d1:0e:b6:d6:78:90:53:1a:70:03:
84:21:c5:b3:d1:f4:50:04:e9:c2:bc:36:0e:b2:ae:f8:86:34:
1b:3a:73:3f:5f:37:2b:a5:15:cd:0c:4b:fe:3d:e7:eb:cf:b1:
55:a7:8e:9f:52:78:7c:8d:56:b1:a9:50:bc:2b:a5:0a:5d:cf:
05:2a:b3:09:5b:3d:ff:35:48:4a:bc:65:43:9b:2f:47:bb:fd:
df:48:fa:17:b3:6f:12:10:8d:ee:cd:ad:04:ba:97:34:7f:2c:
f7:1a:08:13:2c:38:91:c3:86:17:16:74:24:e4:94:b9:06:08:
e3:7f:0c:70:9c:89:47:6a:23:c8:74:27:41:d9:35:3c:3d:8b:
6f:5f:c8:74:5b:61:de:1a:5b:6f:45:21:91:a3:a4:a4:0f:c4:
da:ca:1f:a7:ea:4f:f0:8b:55:7c:a7:63:9d:d5:c5:51:09:ab:
3b:b9:6b:e1:47:1b:05:6e:66:19:ec:82:2f:4a:63:ff:97:10:
9a:dd:24:d4:9a:06:45:a9:67:bc:37:d4:fe:c0:01:a3:f5:6d:
a5:ae:6a:6a:a3:40:8f:33:ec:50:6d:4f:64:3f:c0:f6:aa:85:
63:47:6c:f1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIEuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDAyMDY0MjMzWhcNMjQwNDI5MDY0MjMzWjAYMRYw
FAYDVQQDEw02NjBiYThkYy1hN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt6ujL+tPXoi3RJPST07dkL1ralM+bTuvk8fcW3r+BeJrJmLPWVmoo36+
UrX0MDy81jIBmCNZnl72Cu8hPaFNxiadY+I/QDCsuJaeGR0obsxDXhvJ3ni3JH/N
SGdXZAwJXyoc6GGmSsuFVu9Exyuqqh0+FD4cNga8i/JGG1GZc6Sk1emOP6KDEiIV
CAf236MwVkK4adgml54SzXqRKxVD/bNmgr0LpK2Qg7YoyhlmL8FT6S800QTQ9VJC
tsEg5HQLgAupT6tBip/D4KA332YkfKKgr9jItrkbT+fxkV2Jq74azPw/LB+KPRJf
vfQ/QteBvdwnCj6f7fgb+JwKdFUOUQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFG4n
pQB1KdIyCxKYksMtUBF4RwX1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zMEU2RkE1QUYwQkMxMUVFQURFQ0Y3NTA3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnPkcMA0GCSqGSIb3DQEBCwUA
A4IBAQBovjdkawtft8X7Oa3DWJW7sQkjntZoqLmmWtEOttZ4kFMacAOEIcWz0fRQ
BOnCvDYOsq74hjQbOnM/XzcrpRXNDEv+Pefrz7FVp46fUnh8jVaxqVC8K6UKXc8F
KrMJWz3/NUhKvGVDmy9Hu/3fSPoXs28SEI3uza0Eupc0fyz3GggTLDiRw4YXFnQk
5JS5BgjjfwxwnIlHaiPIdCdB2TU8PYtvX8h0W2HeGltvRSGRo6SkD8Tayh+n6k/w
i1V8p2Od1cVRCas7uWvhRxsFbmYZ7IIvSmP/lxCa3STUmgZFqWe8N9T+wAGj9W2l
rmpqo0CPM+xQbU9kP8D2qoVjR2zx
-----END CERTIFICATE-----
Generated at Mon Apr 29 05:25:33 2024 by rpki-client on console-ams.rpki-client.org