Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7FEFF6FB8711ED9B0ECD814AD9E6FC.roa
File: 4A7FEFF6FB8711ED9B0ECD814AD9E6FC.roa (raw, json)
Hash identifier: WesFvjtkQpWjxEP0Gc3zl1g4ySquckHjjxmZm61scYU=
Subject key identifier: 04:CF:E5:E6:02:53:69:8F:2A:ED:3A:A1:84:9F:3E:72:79:12:85:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 27D4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7FEFF6FB8711ED9B0ECD814AD9E6FC.roa
Signing time: Fri 26 May 2023 05:36:41 +0000
ROA not before: Fri 26 May 2023 05:36:37 +0000
ROA not after: Sun 30 Jun 2024 05:36:37 +0000
asID: 984
IP address blocks: 156.245.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10196 (0x27d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 05:36:37 2023 GMT
Not After : Jun 30 05:36:37 2024 GMT
Subject: CN=64704569-250f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:cb:99:0b:f7:92:33:5f:3f:bb:6d:0f:12:
fb:a7:ed:6a:14:4d:d6:f7:af:2a:24:db:cd:51:d1:
d8:ba:20:a5:61:94:7b:ce:d1:2d:12:ec:9b:02:ca:
42:d7:5a:a3:1c:c9:bb:01:66:bd:3d:d0:56:33:49:
77:1b:d0:e3:45:91:78:42:36:1f:3d:85:94:c7:f3:
ed:3d:27:d4:64:49:6b:81:ba:2d:7a:6f:cf:5d:40:
5d:58:06:bc:73:ec:2e:2e:26:ec:a3:29:e0:94:c0:
66:69:ce:8a:f3:a6:23:e2:8b:80:50:a4:c7:c8:f3:
1b:23:89:1e:9c:0f:c2:02:bb:3f:b3:1e:43:d6:13:
17:0a:eb:1f:25:32:85:c7:bb:b6:3a:44:ea:1d:8a:
57:b7:32:36:c8:a1:f5:92:f7:ee:27:39:ec:86:e6:
54:23:08:de:46:ba:a8:7a:d7:f2:23:a6:8a:87:e9:
b4:41:1a:9d:ee:ce:50:02:c1:34:0b:a8:c1:19:2b:
d3:be:2f:2d:14:96:98:3c:15:20:98:75:71:9d:70:
22:2f:c1:d6:41:4d:68:e9:76:82:ca:4b:23:93:40:
d1:72:ea:72:27:7d:69:14:29:3e:e7:b9:e0:a3:73:
d0:65:2a:e8:e5:46:b1:5c:d0:e5:49:f9:f9:a5:88:
37:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CF:E5:E6:02:53:69:8F:2A:ED:3A:A1:84:9F:3E:72:79:12:85:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7FEFF6FB8711ED9B0ECD814AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9a:07:18:2a:d5:c2:f6:ad:18:4e:b9:84:eb:49:59:ce:67:0a:
1b:18:f4:48:0c:b0:93:2d:a2:e6:f7:ad:81:e3:7f:5f:5a:ae:
fa:a9:d4:17:04:8f:4b:32:08:e4:f6:83:1b:80:c6:fe:44:4d:
0a:25:be:df:95:32:f2:b2:04:87:49:20:10:7d:1a:8b:a0:f9:
ad:4a:50:84:8f:c5:3a:08:ac:c8:c1:84:7e:a1:36:d2:8a:67:
f1:44:26:f1:97:c0:60:7a:a7:87:0b:bf:3a:ef:f2:fb:e5:34:
62:30:70:c3:24:23:14:e3:d4:8f:8a:59:78:42:f4:9d:39:08:
ea:aa:dd:f2:5e:8b:b9:83:36:dc:2c:01:0e:10:a5:d4:bf:4b:
12:90:96:68:97:29:9c:cb:24:5c:e3:97:74:d0:59:df:1a:de:
14:3c:3e:3e:ce:55:bd:92:00:e1:54:e0:4f:b2:af:c8:57:79:
3b:b1:c5:78:d7:a9:fe:11:f0:fd:40:f3:d4:9c:6a:41:e6:26:
6d:4f:59:1d:9a:16:b6:35:34:43:36:2f:b8:f9:05:74:85:50:
bf:12:c1:50:ff:c5:a0:e9:af:cf:51:1b:83:2c:97:de:51:51:
8b:7b:e0:d4:9a:27:1f:86:b9:67:fc:64:b9:19:e2:17:5a:50:
8d:db:3b:ad
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJ9QwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjYwNTM2MzdaFw0yNDA2MzAwNTM2MzdaMBgxFjAU
BgNVBAMTDTY0NzA0NTY5LTI1MGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDL6suZC/eSM18/u20PEvun7WoUTdb3ryok281R0di6IKVhlHvO0S0S7JsC
ykLXWqMcybsBZr090FYzSXcb0ONFkXhCNh89hZTH8+09J9RkSWuBui16b89dQF1Y
Brxz7C4uJuyjKeCUwGZpzorzpiPii4BQpMfI8xsjiR6cD8ICuz+zHkPWExcK6x8l
MoXHu7Y6ROodile3MjbIofWS9+4nOeyG5lQjCN5Guqh61/IjpoqH6bRBGp3uzlAC
wTQLqMEZK9O+Ly0Ulpg8FSCYdXGdcCIvwdZBTWjpdoLKSyOTQNFy6nInfWkUKT7n
ueCjc9BlKujlRrFc0OVJ+fmliDfHAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUBM/l
5gJTaY8q7TqhhJ8+cnkShaMwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzRBN0ZFRkY2RkI4NzExRUQ5QjBFQ0Q4MTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAec9YAwDQYJKoZIhvcNAQELBQAD
ggEBAJoHGCrVwvatGE65hOtJWc5nChsY9EgMsJMtoub3rYHjf19arvqp1BcEj0sy
COT2gxuAxv5ETQolvt+VMvKyBIdJIBB9Goug+a1KUISPxToIrMjBhH6hNtKKZ/FE
JvGXwGB6p4cLvzrv8vvlNGIwcMMkIxTj1I+KWXhC9J05COqq3fJei7mDNtwsAQ4Q
pdS/SxKQlmiXKZzLJFzjl3TQWd8a3hQ8Pj7OVb2SAOFU4E+yr8hXeTuxxXjXqf4R
8P1A89ScakHmJm1PWR2aFrY1NEM2L7j5BXSFUL8SwVD/xaDpr89RG4Msl95RUYt7
4NSaJx+GuWf8ZLkZ4hdaUI3bO60=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:08 2024 by rpki-client on console-fra.rpki-client.org