Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/459F3DC0976C11EF9587546B762E951A.roa
File: 459F3DC0976C11EF9587546B762E951A.roa (raw, json)
Hash identifier: Ky7pzJA4Cy/YgyVdCmBVxFbKbnLcBh93WefZnUTSLCg=
Subject key identifier: A8:69:64:15:A6:89:2B:9E:7A:4B:A4:60:DC:5A:C2:20:FB:36:2C:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB3A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/459F3DC0976C11EF9587546B762E951A.roa
Signing time: Thu 31 Oct 2024 09:41:15 +0000
ROA not before: Thu 31 Oct 2024 09:41:12 +0000
ROA not after: Sat 21 Dec 2024 09:41:12 +0000
asID: 63139
IP address blocks: 156.227.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52026 (0xcb3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:41:12 2024 GMT
Not After : Dec 21 09:41:12 2024 GMT
Subject: CN=672350bb-fb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7d:23:fb:6d:1d:a7:0f:60:8d:7e:f6:de:b6:
6c:2f:85:95:c5:cf:67:ea:98:f6:88:2d:7a:63:9b:
14:0b:32:8a:a4:f8:ef:20:2a:b5:89:93:cc:29:35:
c1:3a:17:b8:e0:ab:dc:e9:24:a1:98:fb:6d:b9:c8:
7a:f9:6b:b0:34:ba:aa:2f:15:ea:b4:c4:74:53:71:
55:ed:f7:fd:25:10:16:af:6b:b7:07:13:5d:0a:ae:
a9:db:ec:fa:32:5a:4a:e8:f9:0a:f8:f1:ea:59:60:
0d:b2:6b:c5:36:62:00:16:9c:0d:6a:14:59:d3:3e:
5b:58:a4:0d:2c:9b:a3:af:7a:e5:c4:8d:29:fd:6e:
59:fc:4e:85:d4:de:c1:ea:f2:a8:69:65:5a:b2:f8:
a2:72:ac:99:ed:2c:00:1d:2f:b4:bd:fe:db:76:97:
85:80:f3:35:0d:8c:74:5c:40:e2:23:a4:25:b5:f8:
84:d9:2b:d6:01:0f:2c:2c:4d:55:98:71:8a:4c:45:
37:54:4a:17:89:c3:a6:e8:8a:62:20:9f:e8:e9:b2:
d4:22:9f:27:a0:bd:e3:e6:27:0f:67:1b:ec:c7:87:
25:12:9d:e0:c5:ea:2d:7e:52:90:70:6c:d1:3c:9e:
c3:cb:e7:7d:5c:7c:b2:27:c9:85:f0:f1:58:42:76:
0b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:69:64:15:A6:89:2B:9E:7A:4B:A4:60:DC:5A:C2:20:FB:36:2C:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/459F3DC0976C11EF9587546B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.252.0/22
Signature Algorithm: sha256WithRSAEncryption
53:3e:a6:ab:8d:d4:f0:da:7d:55:6f:6c:b8:1b:71:28:67:ea:
82:b4:09:7c:cf:36:6d:66:fe:a5:f9:e3:15:33:8e:c5:75:cd:
94:cf:e9:a4:b4:2f:e0:94:da:ac:b3:71:14:86:3a:9b:67:c3:
1c:29:d6:b5:75:b0:a2:40:c0:23:bd:7e:06:6a:94:9c:0f:6c:
86:b3:ec:4d:54:93:6e:d7:f6:d0:14:ed:8c:5c:ab:a6:c0:cf:
47:91:08:04:df:f4:74:cd:8f:e9:19:06:11:4f:5a:ef:1d:63:
a2:2e:ce:cd:c3:4c:62:8a:79:6e:d1:f0:73:94:55:31:50:cc:
c1:2a:26:90:8c:81:e3:1a:6c:c9:db:a4:47:18:86:d8:c0:2f:
eb:e1:a1:71:7e:16:1e:bf:a0:5f:d8:ac:91:4e:98:84:37:b2:
3c:01:7a:2b:e4:98:92:9b:1e:04:aa:65:8d:05:fe:5d:d0:95:
98:bc:96:db:e1:1a:b5:71:7b:27:56:0c:cf:cb:45:8a:e3:e6:
ff:83:16:62:df:91:ce:1a:de:ec:73:02:e6:5d:75:e4:32:a4:
6e:77:1b:f0:4c:22:db:a8:b3:6f:b6:29:de:13:bd:54:d8:9c:
8b:5f:7b:78:24:66:88:4d:81:c3:73:ea:1d:cb:e7:f6:53:5d:
1a:20:5c:84
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMs6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDMxMDk0MTEyWhcNMjQxMjIxMDk0MTEyWjAYMRYw
FAYDVQQDEw02NzIzNTBiYi1mYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw30j+20dpw9gjX723rZsL4WVxc9n6pj2iC16Y5sUCzKKpPjvICq1iZPM
KTXBOhe44Kvc6SShmPttuch6+WuwNLqqLxXqtMR0U3FV7ff9JRAWr2u3BxNdCq6p
2+z6MlpK6PkK+PHqWWANsmvFNmIAFpwNahRZ0z5bWKQNLJujr3rlxI0p/W5Z/E6F
1N7B6vKoaWVasviicqyZ7SwAHS+0vf7bdpeFgPM1DYx0XEDiI6QltfiE2SvWAQ8s
LE1VmHGKTEU3VEoXicOm6IpiIJ/o6bLUIp8noL3j5icPZxvsx4clEp3gxeotflKQ
cGzRPJ7Dy+d9XHyyJ8mF8PFYQnYLJQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKhp
ZBWmiSueekukYNxawiD7NizUMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80NTlGM0RDMDk3NkMxMUVGOTU4NzU0NkI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnOP8MA0GCSqGSIb3DQEBCwUA
A4IBAQBTPqarjdTw2n1Vb2y4G3EoZ+qCtAl8zzZtZv6l+eMVM47Fdc2Uz+mktC/g
lNqss3EUhjqbZ8McKda1dbCiQMAjvX4GapScD2yGs+xNVJNu1/bQFO2MXKumwM9H
kQgE3/R0zY/pGQYRT1rvHWOiLs7Nw0xiinlu0fBzlFUxUMzBKiaQjIHjGmzJ26RH
GIbYwC/r4aFxfhYev6Bf2KyRTpiEN7I8AXor5JiSmx4EqmWNBf5d0JWYvJbb4Rq1
cXsnVgzPy0WK4+b/gxZi35HOGt7scwLmXXXkMqRudxvwTCLbqLNvtineE71U2JyL
X3t4JGaITYHDc+ody+f2U10aIFyE
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:28 2024 by rpki-client on console-ams.rpki-client.org