Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4241E7689B8611EFBD876147762E951A.roa
File: 4241E7689B8611EFBD876147762E951A.roa (raw, json)
Hash identifier: 2YVajJXIfkBLPpXtz44qZBCgFIjVfnI85HryGXD8Jlg=
Subject key identifier: CC:62:21:02:2D:08:B1:76:28:30:5F:02:7F:C4:48:C7:8A:5C:F2:1B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CEB9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4241E7689B8611EFBD876147762E951A.roa
Signing time: Tue 05 Nov 2024 14:57:21 +0000
ROA not before: Tue 05 Nov 2024 14:57:17 +0000
ROA not after: Wed 04 Dec 2024 14:57:17 +0000
asID: 32708
IP address blocks: 156.236.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52921 (0xceb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 5 14:57:17 2024 GMT
Not After : Dec 4 14:57:17 2024 GMT
Subject: CN=672a3251-fa7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:fa:98:2b:e4:8d:81:3f:51:67:df:18:a6:
97:b5:0d:5d:0e:a8:73:e9:f7:98:1e:8f:71:08:b3:
2b:69:4f:74:28:ff:7c:ab:ff:e0:73:27:4c:c5:4c:
71:76:8d:d1:df:c6:54:da:56:99:83:ca:6c:d1:4e:
f7:c9:a3:9a:53:3e:fe:31:f7:03:46:ad:15:87:09:
af:0b:7e:37:db:96:d5:74:70:3f:37:e0:d9:93:84:
16:56:a7:cd:8a:d1:6d:ea:4d:c7:de:c6:43:ad:7a:
e0:49:8c:fc:f9:25:4c:07:93:16:08:d6:bb:db:d0:
dc:95:3c:de:98:71:d4:97:83:36:eb:df:cd:b3:59:
09:0b:ed:73:d5:e6:b1:e8:81:e2:1c:93:99:62:38:
6e:99:86:23:95:94:ba:f5:c1:51:56:2b:75:e0:53:
26:ee:ca:c2:5a:74:23:c6:d0:8e:52:ae:f2:15:0a:
ee:e3:29:77:1d:6d:5e:0d:fe:d9:de:77:1b:bc:a2:
ce:d1:44:cf:ec:4a:9f:90:6d:c9:76:0c:2d:83:5a:
12:d3:ee:7e:51:ff:3b:71:83:17:de:53:1e:95:e2:
39:70:44:53:93:bb:23:da:16:6a:67:13:4f:2b:bf:
44:4f:75:89:a5:d3:ac:f0:19:e9:d9:70:10:4c:d3:
53:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:62:21:02:2D:08:B1:76:28:30:5F:02:7F:C4:48:C7:8A:5C:F2:1B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4241E7689B8611EFBD876147762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.61.0/24
Signature Algorithm: sha256WithRSAEncryption
53:aa:00:d1:c1:11:ec:43:15:4b:55:ca:cb:18:e0:34:d0:ba:
8f:f9:f7:b0:70:64:b5:b3:9c:17:5c:81:08:f0:5f:ed:62:31:
1e:18:32:37:ba:eb:50:0f:a0:b1:e0:e7:06:ad:ce:a5:5b:69:
00:9e:4c:23:7e:4a:9a:ee:1f:14:db:96:4a:bf:7b:62:bd:bc:
f3:81:a9:b2:bd:87:23:81:e3:f5:1b:f8:94:41:c3:1f:45:c4:
9c:57:97:2d:d6:c2:e6:ea:3a:7a:e1:12:fd:29:04:72:75:a7:
98:fd:41:63:0e:dc:2c:27:0d:b5:73:19:3c:46:12:cf:b4:bb:
ef:19:c4:18:18:e0:56:8e:00:81:0f:f7:06:46:16:df:38:96:
6e:8d:d2:9d:82:ed:fb:a2:cc:00:cf:1b:c3:f1:0c:c0:08:70:
af:46:8d:10:92:db:6b:3b:70:fc:68:38:3f:6d:bc:57:53:ff:
d2:94:a2:bd:61:c8:92:6a:b7:7b:bd:1e:00:c9:7c:a5:59:d4:
43:cb:aa:69:16:12:84:2f:2b:78:ee:84:9e:f3:10:44:38:23:
33:1c:80:e1:4f:86:f9:30:f9:68:76:9e:4f:c5:0c:4f:94:23:
f9:fa:8c:f9:20:5a:a5:03:9e:d4:34:7f:0f:1c:65:71:d9:f1:
19:d2:9d:9e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAM65MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTA1MTQ1NzE3WhcNMjQxMjA0MTQ1NzE3WjAYMRYw
FAYDVQQDEw02NzJhMzI1MS1mYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw976mCvkjYE/UWffGKaXtQ1dDqhz6feYHo9xCLMraU90KP98q//gcydM
xUxxdo3R38ZU2laZg8ps0U73yaOaUz7+MfcDRq0VhwmvC34325bVdHA/N+DZk4QW
VqfNitFt6k3H3sZDrXrgSYz8+SVMB5MWCNa729DclTzemHHUl4M269/Ns1kJC+1z
1eax6IHiHJOZYjhumYYjlZS69cFRVit14FMm7srCWnQjxtCOUq7yFQru4yl3HW1e
Df7Z3ncbvKLO0UTP7EqfkG3Jdgwtg1oS0+5+Uf87cYMX3lMeleI5cERTk7sj2hZq
ZxNPK79ET3WJpdOs8Bnp2XAQTNNT1QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMxi
IQItCLF2KDBfAn/ESMeKXPIbMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80MjQxRTc2ODlCODYxMUVGQkQ4NzYxNDc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOw9MA0GCSqGSIb3DQEBCwUA
A4IBAQBTqgDRwRHsQxVLVcrLGOA00LqP+fewcGS1s5wXXIEI8F/tYjEeGDI3uutQ
D6Cx4OcGrc6lW2kAnkwjfkqa7h8U25ZKv3tivbzzgamyvYcjgeP1G/iUQcMfRcSc
V5ct1sLm6jp64RL9KQRydaeY/UFjDtwsJw21cxk8RhLPtLvvGcQYGOBWjgCBD/cG
RhbfOJZujdKdgu37oswAzxvD8QzACHCvRo0QkttrO3D8aDg/bbxXU//SlKK9YciS
ard7vR4AyXylWdRDy6ppFhKELyt47oSe8xBEOCMzHIDhT4b5MPlodp5PxQxPlCP5
+oz5IFqlA57UNH8PHGVx2fEZ0p2e
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:27 2024 by rpki-client on console-ams.rpki-client.org