Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3183CC80CCF911EFB404D87D762E951A.roa
File: 3183CC80CCF911EFB404D87D762E951A.roa (raw, json)
Hash identifier: A518Yy5ySqbrEcRvfqR9tiEA0U3m8oSkd7X9HJZs1UQ=
Subject key identifier: DE:A8:C2:16:E0:B6:9D:B8:07:EB:81:15:6E:11:3F:A7:5E:2F:E4:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FC31
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3183CC80CCF911EFB404D87D762E951A.roa
Signing time: Tue 07 Jan 2025 13:13:32 +0000
ROA not before: Tue 07 Jan 2025 13:13:28 +0000
ROA not after: Mon 13 Dec 2027 13:13:28 +0000
asID: 17561
IP address blocks: 156.237.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64561 (0xfc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 13:13:28 2025 GMT
Not After : Dec 13 13:13:28 2027 GMT
Subject: CN=677d287c-d2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:2d:d1:2d:45:69:f4:b4:65:e7:4d:58:a1:
b5:c5:e1:9c:3e:2f:74:02:81:eb:cc:11:48:72:58:
11:d4:31:c5:5b:d7:5b:b8:7a:24:ca:5e:c1:cd:36:
81:12:2d:bc:55:5a:11:e3:92:31:8f:c3:99:a4:30:
a4:d1:7f:ed:70:09:a5:7e:48:37:57:c2:ab:85:8a:
78:88:7d:86:2e:d0:96:e2:f6:25:6a:09:e9:de:10:
c5:91:eb:1e:d0:8c:1e:b9:a9:82:8e:de:ca:bd:b0:
7d:ac:48:16:e3:ca:9a:e4:ee:51:eb:bd:12:e0:97:
23:b4:86:68:77:6f:02:eb:5d:4e:b2:51:bf:2d:cf:
65:44:79:d2:3e:31:54:b6:17:e7:aa:ee:0b:8f:16:
48:48:38:63:3b:94:18:be:1d:96:91:9d:c7:7a:1b:
a9:4a:45:fa:2e:94:9b:4a:ec:4c:4b:4d:93:a8:8b:
58:ff:07:20:7c:15:22:d0:67:66:65:72:8b:b0:c5:
fb:75:89:7a:fc:09:bd:b6:78:d4:5a:1a:1d:0e:27:
cd:12:43:cf:b9:9b:a1:2f:2a:3a:49:b3:c1:cc:4d:
25:e2:29:93:37:a3:0a:37:59:25:4b:ba:2a:44:01:
4e:85:ac:68:a1:83:0f:0b:a4:0c:21:6a:d0:6e:9b:
11:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A8:C2:16:E0:B6:9D:B8:07:EB:81:15:6E:11:3F:A7:5E:2F:E4:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3183CC80CCF911EFB404D87D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:2c:97:e0:a0:f4:fd:40:1b:58:e2:0c:1b:6f:ce:5f:2b:94:
23:9b:d8:3c:7b:8e:22:5f:75:5c:1f:b7:ad:8a:7a:30:69:28:
4d:2b:f5:7b:3a:61:ef:34:bb:04:bb:b6:ac:7c:a4:13:d6:d3:
54:51:33:28:0c:ce:91:56:10:6a:18:9b:b2:56:39:06:75:ff:
ac:a5:c0:01:99:48:00:69:a7:6f:4e:93:0b:8c:a7:76:e0:cf:
11:c6:f7:23:a3:3c:db:0b:66:37:f3:1a:20:1c:64:5a:b9:96:
df:c2:e0:d2:fe:5a:52:29:45:a5:2e:33:46:f6:76:dc:73:46:
a6:57:83:1c:b0:d2:f7:ad:5b:d4:5f:b4:14:b5:dd:c5:3f:4e:
b0:8f:33:35:60:20:83:e6:16:a4:b7:0b:29:98:c9:ac:dc:a8:
4b:78:f5:bd:17:7b:e5:17:5f:8a:c2:a2:22:66:1c:95:92:4e:
d9:e4:ee:c5:49:bf:f6:81:58:99:7d:d8:22:33:54:92:77:13:
47:f4:24:e2:d0:c6:a7:56:62:91:56:e6:e2:cc:ed:b7:b0:42:
9e:b1:eb:4e:a6:85:72:63:f6:b0:dd:8e:73:2f:5e:e2:fc:b1:
ae:67:14:a9:f3:ff:0e:20:77:e3:d5:73:7f:85:be:6d:a2:3c:
90:f6:46:21
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPwxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MTMxMzI4WhcNMjcxMjEzMTMxMzI4WjAYMRYw
FAYDVQQDEw02NzdkMjg3Yy1kMmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs5Qt0S1FafS0ZedNWKG1xeGcPi90AoHrzBFIclgR1DHFW9dbuHokyl7B
zTaBEi28VVoR45Ixj8OZpDCk0X/tcAmlfkg3V8KrhYp4iH2GLtCW4vYlagnp3hDF
kese0IweuamCjt7KvbB9rEgW48qa5O5R670S4JcjtIZod28C611OslG/Lc9lRHnS
PjFUthfnqu4LjxZISDhjO5QYvh2WkZ3HehupSkX6LpSbSuxMS02TqItY/wcgfBUi
0GdmZXKLsMX7dYl6/Am9tnjUWhodDifNEkPPuZuhLyo6SbPBzE0l4imTN6MKN1kl
S7oqRAFOhaxooYMPC6QMIWrQbpsRJwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFN6o
whbgtp24B+uBFW4RP6deL+QPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zMTgzQ0M4MENDRjkxMUVGQjQwNEQ4N0Q3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnO0CMA0GCSqGSIb3DQEBCwUA
A4IBAQBLLJfgoPT9QBtY4gwbb85fK5Qjm9g8e44iX3VcH7etinowaShNK/V7OmHv
NLsEu7asfKQT1tNUUTMoDM6RVhBqGJuyVjkGdf+spcABmUgAaadvTpMLjKd24M8R
xvcjozzbC2Y38xogHGRauZbfwuDS/lpSKUWlLjNG9nbcc0amV4McsNL3rVvUX7QU
td3FP06wjzM1YCCD5haktwspmMms3KhLePW9F3vlF1+KwqIiZhyVkk7Z5O7FSb/2
gViZfdgiM1SSdxNH9CTi0ManVmKRVubizO23sEKesetOpoVyY/aw3Y5zL17i/LGu
ZxSp8/8OIHfj1XN/hb5tojyQ9kYh
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:44:17 2025 by rpki-client