Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/431D43923B2B11EE8D764B424AD9E6FC.roa
File: 431D43923B2B11EE8D764B424AD9E6FC.roa (raw, json)
Hash identifier: 7G9SSoO639sDgQSQBHgYiIPIQPwmZ6GjYCDVtYDRQNI=
Subject key identifier: 1F:78:48:5A:5B:3B:44:C8:6A:1A:EE:B7:66:68:03:84:AB:8E:7B:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35E5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/431D43923B2B11EE8D764B424AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:19:09 +0000
ROA not before: Tue 15 Aug 2023 05:19:06 +0000
ROA not after: Mon 27 May 2024 05:19:06 +0000
asID: 140627
IP address blocks: 156.247.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13797 (0x35e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:19:06 2023 GMT
Not After : May 27 05:19:06 2024 GMT
Subject: CN=64db0acd-c22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:48:d6:6a:49:5c:ee:d2:ee:ad:14:93:92:8f:
fe:6f:6a:b3:01:fb:f6:ec:ff:23:53:19:d1:e1:93:
fb:c2:5e:85:ad:fe:6b:8a:db:6c:8e:db:04:45:b4:
1f:b8:31:aa:4d:dc:00:e2:81:7b:d6:41:62:4e:e2:
9f:23:1a:0a:17:eb:cb:1a:2b:9d:5d:c2:2d:f9:3d:
9d:56:8d:6c:db:e3:58:3e:4a:6c:4e:a1:4a:7d:71:
04:98:29:53:fa:ed:a1:b5:66:18:32:ed:7d:54:79:
1c:25:bc:c3:c4:5b:6d:52:2c:c7:3f:6b:3a:24:f8:
88:63:7e:36:e3:73:96:ee:40:56:22:e1:dc:0e:d3:
b4:f3:23:90:4c:a6:07:eb:8d:00:cb:45:ff:db:71:
2a:fa:73:24:05:73:ba:5c:a5:a7:30:3b:a2:81:21:
d0:09:2e:eb:4f:e8:2e:12:c0:bf:c7:f1:c0:fd:39:
8d:d9:d8:00:89:ec:89:78:da:48:c5:31:fc:a0:c3:
38:b7:4a:53:b1:68:de:9d:f7:71:63:ec:1f:95:ad:
58:51:67:97:79:3b:60:d3:0f:a0:87:11:3b:4d:00:
5b:58:63:71:d7:2a:26:57:3e:f0:44:d9:2a:81:bb:
66:e9:15:75:92:11:fe:4a:ce:f7:57:15:3e:80:59:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:78:48:5A:5B:3B:44:C8:6A:1A:EE:B7:66:68:03:84:AB:8E:7B:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/431D43923B2B11EE8D764B424AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.145.0/24
Signature Algorithm: sha256WithRSAEncryption
29:49:62:15:95:9d:c4:16:d4:b6:54:cc:a2:0d:bb:1a:3e:4f:
75:4f:58:bf:35:c8:42:8e:17:da:c0:f8:8f:f1:7e:e0:d4:92:
1f:c4:e7:a7:de:12:c4:c3:71:8f:4c:b7:11:02:bb:4d:e2:9f:
1c:a2:38:42:86:90:0e:35:0b:ef:f4:df:41:96:87:5c:00:c0:
45:73:dd:81:a7:f9:a9:e0:cd:33:78:e9:0b:9f:e1:8d:8f:3d:
42:71:65:eb:82:b8:d9:30:67:9a:e3:7c:32:3b:7f:eb:fc:d5:
36:40:88:24:b5:7e:ca:10:b9:78:ae:ee:ad:d6:f1:eb:08:96:
3a:90:77:49:4d:34:e3:e6:49:6b:b0:f4:05:4f:06:ba:bf:d9:
99:23:17:7e:0d:2e:62:c5:78:5c:e3:f2:e5:3d:3d:11:d8:dc:
67:d5:24:97:8b:ce:d0:50:e0:95:5f:f4:eb:b4:02:bf:dc:1d:
70:da:30:f8:47:fa:fe:ad:8f:87:59:87:9a:67:97:14:34:1e:
bc:9e:f5:a6:8d:a8:d3:d9:65:5a:84:8a:f3:5f:b0:55:9c:25:
ba:b2:83:09:97:12:02:31:c0:37:1b:bc:af:2f:0f:8b:e2:4c:
05:22:f1:e6:11:78:e9:a3:3d:2d:58:3c:77:4f:6b:a3:5c:1d:
51:ee:35:16
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNeUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNTE5MDZaFw0yNDA1MjcwNTE5MDZaMBgxFjAU
BgNVBAMTDTY0ZGIwYWNkLWMyMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJSNZqSVzu0u6tFJOSj/5varMB+/bs/yNTGdHhk/vCXoWt/muK22yO2wRF
tB+4MapN3ADigXvWQWJO4p8jGgoX68saK51dwi35PZ1WjWzb41g+SmxOoUp9cQSY
KVP67aG1Zhgy7X1UeRwlvMPEW21SLMc/azok+Ihjfjbjc5buQFYi4dwO07TzI5BM
pgfrjQDLRf/bcSr6cyQFc7pcpacwO6KBIdAJLutP6C4SwL/H8cD9OY3Z2ACJ7Il4
2kjFMfygwzi3SlOxaN6d93Fj7B+VrVhRZ5d5O2DTD6CHETtNAFtYY3HXKiZXPvBE
2SqBu2bpFXWSEf5KzvdXFT6AWdeJAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUH3hI
Wls7RMhqGu63ZmgDhKuOe6kwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzQzMUQ0MzkyM0IyQjExRUU4RDc2NEI0MjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc95EwDQYJKoZIhvcNAQELBQAD
ggEBAClJYhWVncQW1LZUzKINuxo+T3VPWL81yEKOF9rA+I/xfuDUkh/E56feEsTD
cY9MtxECu03inxyiOEKGkA41C+/030GWh1wAwEVz3YGn+angzTN46Quf4Y2PPUJx
ZeuCuNkwZ5rjfDI7f+v81TZAiCS1fsoQuXiu7q3W8esIljqQd0lNNOPmSWuw9AVP
Brq/2ZkjF34NLmLFeFzj8uU9PRHY3GfVJJeLztBQ4JVf9Ou0Ar/cHXDaMPhH+v6t
j4dZh5pnlxQ0Hrye9aaNqNPZZVqEivNfsFWcJbqygwmXEgIxwDcbvK8vD4viTAUi
8eYReOmjPS1YPHdPa6NcHVHuNRY=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:07 2024 by rpki-client on console-fra.rpki-client.org