Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49C2E3501A2E11EE847A856A4AD9E6FC.roa
File: 49C2E3501A2E11EE847A856A4AD9E6FC.roa (raw, json)
Hash identifier: p2LRsL3A6RzlxXE8cmo0ygPDsRmYE+OumCaKg3KZuhw=
Subject key identifier: 95:F2:9F:EB:03:6E:5C:92:97:B0:18:F3:CB:91:7D:36:88:94:5D:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2E87
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49C2E3501A2E11EE847A856A4AD9E6FC.roa
Signing time: Tue 04 Jul 2023 05:47:40 +0000
ROA not before: Mon 28 Aug 2023 05:47:37 +0000
ROA not after: Sat 15 Jun 2024 05:47:37 +0000
asID: 134687
IP address blocks: 156.230.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11911 (0x2e87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 05:47:37 2023 GMT
Not After : Jun 15 05:47:37 2024 GMT
Subject: CN=64a3b27c-7dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:c9:83:28:7c:86:c8:3b:99:96:de:53:66:
1c:23:31:45:09:50:bc:2c:3b:97:39:1c:23:db:ed:
99:12:1f:94:8f:b5:a8:ba:62:16:93:60:48:19:a4:
fc:cd:33:88:7e:aa:07:4a:27:d2:f1:20:b1:8d:73:
2d:db:d6:c9:8c:fb:1b:69:81:fa:b8:4c:89:9a:f4:
fb:05:8b:a7:45:00:87:f5:c5:2a:7d:84:a4:56:12:
91:ee:c0:f9:ab:7a:2b:2e:28:91:cf:33:d0:92:ef:
74:ba:f9:de:35:15:7e:81:6a:9a:f0:d3:11:88:1c:
39:48:2d:0a:62:4c:88:6b:53:aa:61:4f:35:82:8b:
87:65:35:f5:62:c9:c6:0f:d8:0e:41:51:ff:e5:47:
84:75:60:99:cd:c8:99:c6:1a:17:9d:91:9d:77:e2:
1b:ce:32:81:4e:fb:d7:0a:99:4d:71:c1:6b:e8:07:
ac:06:66:a2:db:0b:79:88:89:de:2e:09:8f:f5:22:
97:7e:fd:aa:d2:a9:6a:5e:54:88:10:80:21:72:5d:
12:da:2d:d1:78:36:16:98:23:35:c4:78:2c:7b:1a:
b1:08:58:d7:d0:4f:b8:44:02:fb:9b:61:a5:b9:69:
3b:f7:53:35:99:7d:3f:59:b1:4f:71:1d:4c:ed:41:
87:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F2:9F:EB:03:6E:5C:92:97:B0:18:F3:CB:91:7D:36:88:94:5D:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49C2E3501A2E11EE847A856A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.10.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c7:bc:6b:9f:18:2c:35:5a:70:4d:6c:db:2d:6a:c8:3c:e2:
ef:aa:21:c8:01:b4:f0:ed:7a:c8:9d:0c:38:1f:bb:d1:cd:5e:
41:81:ba:21:f3:59:8b:c1:4f:f6:f9:73:e8:ce:92:82:bf:a9:
7f:33:89:55:67:36:52:2b:a5:d2:2c:4d:68:bd:bf:d3:cd:fb:
17:c2:c8:f7:21:63:a5:2e:25:97:07:1e:69:cb:78:c0:2a:77:
43:88:1e:f0:ce:1e:14:0a:a8:23:f8:89:87:a5:b1:37:3f:a4:
20:cc:91:2e:48:81:6e:c3:a7:fd:be:75:92:46:fc:7c:b9:5c:
0e:93:c4:4e:93:a7:8c:16:3d:45:94:2f:e7:64:3f:10:5a:27:
83:fc:30:2f:99:f7:29:58:f4:bc:a8:c7:dc:12:8b:2a:32:29:
bf:cc:3d:a8:65:47:66:d9:89:cf:39:85:20:bc:15:34:5a:8b:
c1:3a:b9:1f:b6:4c:87:54:02:29:5a:7b:8e:7a:a7:f1:e6:96:
c2:da:e1:21:8a:8d:a0:23:d4:6b:60:0a:af:c6:54:83:c2:0a:
43:98:18:60:6e:da:05:70:31:bb:6b:11:12:cd:5b:9a:c7:f7:
ae:11:ef:7a:11:ac:02:d0:2a:e2:9d:81:5e:5d:14:a1:c0:b2:
e0:66:85:a4
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICLocwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MjgwNTQ3MzdaFw0yNDA2MTUwNTQ3MzdaMBgxFjAU
BgNVBAMTDTY0YTNiMjdjLTdkZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDYBcmDKHyGyDuZlt5TZhwjMUUJULwsO5c5HCPb7ZkSH5SPtai6YhaTYEgZ
pPzNM4h+qgdKJ9LxILGNcy3b1smM+xtpgfq4TIma9PsFi6dFAIf1xSp9hKRWEpHu
wPmreisuKJHPM9CS73S6+d41FX6Baprw0xGIHDlILQpiTIhrU6phTzWCi4dlNfVi
ycYP2A5BUf/lR4R1YJnNyJnGGhedkZ134hvOMoFO+9cKmU1xwWvoB6wGZqLbC3mI
id4uCY/1Ipd+/arSqWpeVIgQgCFyXRLaLdF4NhaYIzXEeCx7GrEIWNfQT7hEAvub
YaW5aTv3UzWZfT9ZsU9xHUztQYeFAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUlfKf
6wNuXJKXsBjzy5F9NoiUXXQwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzQ5QzJFMzUwMUEyRTExRUU4NDdBODU2QTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc5gowDQYJKoZIhvcNAQELBQAD
ggEBAJrHvGufGCw1WnBNbNstasg84u+qIcgBtPDtesidDDgfu9HNXkGBuiHzWYvB
T/b5c+jOkoK/qX8ziVVnNlIrpdIsTWi9v9PN+xfCyPchY6UuJZcHHmnLeMAqd0OI
HvDOHhQKqCP4iYelsTc/pCDMkS5IgW7Dp/2+dZJG/Hy5XA6TxE6Tp4wWPUWUL+dk
PxBaJ4P8MC+Z9ylY9Lyox9wSiyoyKb/MPahlR2bZic85hSC8FTRai8E6uR+2TIdU
Ailae456p/HmlsLa4SGKjaAj1GtgCq/GVIPCCkOYGGBu2gVwMbtrERLNW5rH964R
73oRrALQKuKdgV5dFKHAsuBmhaQ=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org