Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4603ADB0A45411EFB052505D762E951A.roa
File: 4603ADB0A45411EFB052505D762E951A.roa (raw, json)
Hash identifier: ynkqcl2dofI7t3FpJY3K8JB9bjrg/r7h+7PCdhQOcwA=
Subject key identifier: 64:C6:D6:2F:21:3D:7C:18:3D:5C:29:BF:A7:89:B4:35:E4:84:CC:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D3E2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4603ADB0A45411EFB052505D762E951A.roa
Signing time: Sat 16 Nov 2024 19:52:13 +0000
ROA not before: Sat 16 Nov 2024 19:52:09 +0000
ROA not after: Tue 26 Nov 2024 19:52:09 +0000
asID: 153371
IP address blocks: 156.231.102.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54242 (0xd3e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 16 19:52:09 2024 GMT
Not After : Nov 26 19:52:09 2024 GMT
Subject: CN=6738f7ed-d71a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a2:11:64:77:72:35:1c:2e:7f:c4:26:8e:5d:
23:a3:1a:08:c2:f8:e0:cf:13:4a:b0:d9:b8:c8:03:
ff:b1:8f:ca:1d:b2:99:d4:ec:73:ff:11:0d:13:b3:
c3:f6:8a:f1:10:eb:41:f0:5f:57:11:ae:50:50:dd:
45:4a:f4:e6:af:ef:a1:76:65:96:8a:e2:e4:bc:71:
4a:ab:55:78:28:5a:aa:c4:82:f7:67:3b:eb:5b:f5:
92:82:de:d8:0d:b8:68:f8:f1:49:b2:75:1e:cf:fc:
ea:8b:20:69:71:3d:aa:e9:60:9c:2e:b1:92:1f:96:
83:b6:27:c0:df:5a:48:b2:94:dc:7e:16:65:5d:4b:
a0:0e:4d:da:da:68:87:13:4e:45:d7:6c:52:26:88:
41:f2:05:78:ea:95:16:69:76:a8:5e:d6:94:2e:f9:
cc:e4:da:7d:7a:a5:f4:b7:4b:54:05:e7:f0:76:e3:
71:11:6e:f7:77:a8:f9:09:4e:ee:d9:27:c9:9f:77:
b3:e8:5c:60:62:05:33:9d:11:50:c5:91:c6:8e:20:
6d:98:49:a4:4f:4c:dc:c1:62:81:6c:a1:5b:e1:84:
d7:25:b0:11:cb:57:11:9d:29:82:ff:ce:af:c7:ab:
b8:61:62:47:77:f3:6a:c9:ca:c4:1f:2c:7c:53:24:
36:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C6:D6:2F:21:3D:7C:18:3D:5C:29:BF:A7:89:B4:35:E4:84:CC:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4603ADB0A45411EFB052505D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.102.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:6a:2c:78:7d:1a:86:05:d2:c1:a8:2b:d9:fd:d7:79:89:80:
e7:99:7e:88:5e:f7:0d:d5:d4:1a:a9:69:4f:4b:15:8c:99:5a:
a9:5f:ba:4f:b9:c6:d6:ed:8f:ea:bc:93:41:7a:b2:9b:cf:64:
0f:f7:ba:b6:bb:c5:08:49:7f:3d:16:d6:75:7f:b7:93:0e:20:
5c:09:4e:79:4c:fd:0c:eb:2e:c8:b2:1b:a9:e5:2b:b4:98:22:
d7:09:51:45:28:61:de:f3:a9:66:90:1a:de:5d:71:a0:73:b8:
e3:e1:ab:69:00:51:93:a3:a5:8b:b4:74:b5:ba:3c:2b:4e:67:
78:bf:86:ec:c6:32:99:bc:73:d5:c4:a7:59:24:13:a2:ec:21:
99:9f:15:15:0e:6b:31:ff:0c:6c:d9:f6:57:d0:55:55:63:60:
e2:07:26:e2:99:08:fc:a0:be:98:fb:65:df:cf:60:a1:df:31:
63:be:c2:f2:aa:ed:5d:c1:e7:30:d8:0d:19:5e:eb:5e:5e:ff:
00:a1:29:73:55:20:cd:c7:a0:18:4d:bc:f2:4c:dd:88:c6:19:
89:1d:35:d8:7c:f9:7e:3b:6d:20:23:52:00:9e:c2:e0:4e:91:
88:3f:f0:c0:1d:f9:8a:c2:6b:10:bb:df:fc:01:b1:4a:cd:7c:
81:f6:99:73
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANPiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTE2MTk1MjA5WhcNMjQxMTI2MTk1MjA5WjAYMRYw
FAYDVQQDEw02NzM4ZjdlZC1kNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx6IRZHdyNRwuf8Qmjl0joxoIwvjgzxNKsNm4yAP/sY/KHbKZ1Oxz/xEN
E7PD9orxEOtB8F9XEa5QUN1FSvTmr++hdmWWiuLkvHFKq1V4KFqqxIL3ZzvrW/WS
gt7YDbho+PFJsnUez/zqiyBpcT2q6WCcLrGSH5aDtifA31pIspTcfhZlXUugDk3a
2miHE05F12xSJohB8gV46pUWaXaoXtaULvnM5Np9eqX0t0tUBefwduNxEW73d6j5
CU7u2SfJn3ez6FxgYgUznRFQxZHGjiBtmEmkT0zcwWKBbKFb4YTXJbARy1cRnSmC
/86vx6u4YWJHd/NqycrEHyx8UyQ2CQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGTG
1i8hPXwYPVwpv6eJtDXkhMw1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80NjAzQURCMEE0NTQxMUVGQjA1MjUwNUQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnOdmMA0GCSqGSIb3DQEBCwUA
A4IBAQCMaix4fRqGBdLBqCvZ/dd5iYDnmX6IXvcN1dQaqWlPSxWMmVqpX7pPucbW
7Y/qvJNBerKbz2QP97q2u8UISX89FtZ1f7eTDiBcCU55TP0M6y7Ishup5Su0mCLX
CVFFKGHe86lmkBreXXGgc7jj4atpAFGTo6WLtHS1ujwrTmd4v4bsxjKZvHPVxKdZ
JBOi7CGZnxUVDmsx/wxs2fZX0FVVY2DiBybimQj8oL6Y+2Xfz2Ch3zFjvsLyqu1d
wecw2A0ZXuteXv8AoSlzVSDNx6AYTbzyTN2IxhmJHTXYfPl+O20gI1IAnsLgTpGI
P/DAHfmKwmsQu9/8AbFKzXyB9plz
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:27 2024 by rpki-client on console-fra.rpki-client.org