Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38708B32014311EFAB220D2E017001B1.roa
File: 38708B32014311EFAB220D2E017001B1.roa (raw, json)
Hash identifier: KhdfFdejt9n0KUuaZRXPk4iSIK8ifHb3+X/ImplDpro=
Subject key identifier: 3D:03:38:F6:0C:C2:FC:E1:69:53:45:85:43:3F:83:CA:04:E7:C5:07
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 840C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38708B32014311EFAB220D2E017001B1.roa
Signing time: Tue 23 Apr 2024 07:29:29 +0000
ROA not before: Tue 23 Apr 2024 07:29:26 +0000
ROA not after: Sat 11 May 2024 07:29:26 +0000
asID: 7029
IP address blocks: 156.238.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33804 (0x840c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 07:29:26 2024 GMT
Not After : May 11 07:29:26 2024 GMT
Subject: CN=66276359-5df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f9:ae:23:71:60:97:b0:6a:c0:fc:d8:d9:b9:
09:39:f8:06:46:23:90:ec:9e:44:94:d2:49:e8:2e:
10:23:60:89:e7:84:1f:dc:b2:2e:26:b1:18:2f:56:
88:f1:39:8f:f7:94:61:a0:48:72:4b:cf:7c:87:c8:
04:9d:0d:e4:6b:ed:16:3a:87:68:ab:54:ca:98:76:
57:f1:f2:80:21:b5:55:e9:90:78:cb:20:59:bb:af:
dc:aa:90:ca:65:c3:14:8e:6b:3d:ba:41:9d:f6:67:
7d:c3:5c:fe:68:46:e0:d9:80:d2:0f:52:d9:e2:c8:
00:d8:44:ca:2d:79:c5:b3:ae:ac:83:72:32:11:72:
7a:81:58:a2:5a:80:63:f9:71:39:c6:e4:5f:3b:97:
da:65:82:dc:fe:0d:1a:8e:4e:8d:77:1c:14:c9:bb:
f4:31:36:43:04:7a:69:b3:f2:e3:39:ed:c2:95:4d:
86:20:53:23:b9:8e:cb:ed:a5:c1:09:2a:68:03:10:
55:0f:a9:5f:ab:15:ed:a9:59:1d:1d:87:5b:70:c6:
66:b0:92:e2:a8:cf:60:49:a1:1d:7e:0f:8e:1a:d0:
28:97:c3:5c:0d:9a:19:2c:92:d0:38:47:2b:03:c8:
ef:9e:c5:65:64:40:a7:ae:f4:8d:67:a6:a2:e7:82:
9a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:03:38:F6:0C:C2:FC:E1:69:53:45:85:43:3F:83:CA:04:E7:C5:07
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/38708B32014311EFAB220D2E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:9f:77:5c:bd:3c:0e:de:7c:34:ed:89:e3:6a:ae:17:eb:75:
5a:9e:72:92:4d:48:60:25:7e:bc:df:11:9c:88:66:84:de:5b:
dd:de:18:c7:1c:a1:b8:9b:41:d3:17:18:36:a6:53:5f:a9:ac:
82:f4:5d:77:aa:9f:b0:a6:26:5b:ff:ff:7a:a2:99:1a:e6:15:
26:c8:1d:a9:47:76:6e:e2:12:2d:4b:39:34:6b:9d:d7:0c:cd:
2f:e8:c1:82:50:55:66:4f:84:8c:0f:50:47:7e:e9:b1:b0:93:
e1:4a:28:cd:ab:37:db:a2:86:62:9b:61:e0:c6:13:04:71:e5:
75:4e:e1:49:c6:49:19:9f:b2:cb:df:c5:b2:20:ae:01:51:b5:
1a:db:eb:eb:c2:4d:2e:fd:32:2c:76:92:00:77:b2:2b:e7:59:
2e:4f:60:47:d4:7b:f8:92:9b:01:7e:aa:10:8d:f7:cb:c6:f6:
db:94:63:a4:b1:b0:37:b4:d0:50:06:e7:4c:86:89:83:12:dd:
92:c9:b4:44:c3:2e:53:3c:14:a1:9f:6a:a1:f8:f8:4f:7e:a9:
6c:dc:69:3e:9c:d5:d7:5d:67:5d:54:a9:c3:a3:db:72:8e:a9:
1d:03:70:fe:61:74:86:97:02:f7:7b:d1:97:32:32:1f:8e:69:
79:4c:30:ae
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIQMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDIzMDcyOTI2WhcNMjQwNTExMDcyOTI2WjAYMRYw
FAYDVQQDEw02NjI3NjM1OS01ZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzPmuI3Fgl7BqwPzY2bkJOfgGRiOQ7J5ElNJJ6C4QI2CJ54Qf3LIuJrEY
L1aI8TmP95RhoEhyS898h8gEnQ3ka+0WOodoq1TKmHZX8fKAIbVV6ZB4yyBZu6/c
qpDKZcMUjms9ukGd9md9w1z+aEbg2YDSD1LZ4sgA2ETKLXnFs66sg3IyEXJ6gVii
WoBj+XE5xuRfO5faZYLc/g0ajk6NdxwUybv0MTZDBHpps/LjOe3ClU2GIFMjuY7L
7aXBCSpoAxBVD6lfqxXtqVkdHYdbcMZmsJLiqM9gSaEdfg+OGtAol8NcDZoZLJLQ
OEcrA8jvnsVlZECnrvSNZ6ai54KalQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFD0D
OPYMwvzhaVNFhUM/g8oE58UHMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zODcwOEIzMjAxNDMxMUVGQUIyMjBEMkUwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnO6wMA0GCSqGSIb3DQEBCwUA
A4IBAQBvn3dcvTwO3nw07Ynjaq4X63VannKSTUhgJX683xGciGaE3lvd3hjHHKG4
m0HTFxg2plNfqayC9F13qp+wpiZb//96opka5hUmyB2pR3Zu4hItSzk0a53XDM0v
6MGCUFVmT4SMD1BHfumxsJPhSijNqzfbooZim2HgxhMEceV1TuFJxkkZn7LL38Wy
IK4BUbUa2+vrwk0u/TIsdpIAd7Ir51kuT2BH1Hv4kpsBfqoQjffLxvbblGOksbA3
tNBQBudMhomDEt2SybREwy5TPBShn2qh+PhPfqls3Gk+nNXXXWddVKnDo9tyjqkd
A3D+YXSGlwL3e9GXMjIfjml5TDCu
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:51 2024 by rpki-client on console-ams.rpki-client.org