Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3E81529D1311EF9978E490762E951A.roa
File: 4C3E81529D1311EF9978E490762E951A.roa (raw, json)
Hash identifier: 6J4rdVoFgJliB7cDcq02X8yAK10RWBkoGQESVd/XHwI=
Subject key identifier: 3A:24:85:B7:04:A4:5B:32:91:EA:B1:10:3B:33:01:F0:BD:D4:F8:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CFDC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3E81529D1311EF9978E490762E951A.roa
Signing time: Thu 07 Nov 2024 14:19:28 +0000
ROA not before: Thu 07 Nov 2024 14:19:24 +0000
ROA not after: Sat 30 Nov 2024 14:19:24 +0000
asID: 138152
IP address blocks: 156.232.10.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53212 (0xcfdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 7 14:19:24 2024 GMT
Not After : Nov 30 14:19:24 2024 GMT
Subject: CN=672ccc70-b9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8e:fa:03:ab:ed:c0:65:4e:0e:b8:7a:28:1b:
5a:b6:81:30:a7:5d:22:48:33:af:59:ee:a6:2e:04:
5e:31:48:0b:98:6e:7b:e6:5e:97:c2:41:f9:15:74:
3c:5f:60:5c:b6:ab:48:08:2e:8f:08:42:ea:dd:61:
1e:b6:18:33:ab:e4:62:45:84:58:39:f0:e5:09:29:
ea:a8:cf:e7:80:cd:7f:29:a6:14:c7:20:60:12:91:
92:e1:cc:82:7a:c3:e7:67:17:e6:f0:15:e6:14:e7:
84:74:1e:f9:6f:a0:b4:ac:45:07:f3:d7:e5:5f:a2:
e3:cb:39:cb:11:4c:70:a1:fc:dd:e7:be:91:11:01:
bf:04:6d:83:8b:28:cf:64:93:19:d9:2c:14:b6:c7:
7c:7b:c7:8f:08:03:97:41:a4:5c:7b:e0:b3:7d:db:
3a:4e:fc:7e:75:ee:2a:7e:5b:80:3f:97:0f:c1:0b:
a5:fe:5e:62:79:19:32:94:91:dc:66:77:3b:94:cc:
27:7a:35:2d:55:d3:f0:26:a6:09:69:9c:d8:c1:0b:
22:46:bb:64:ff:af:9d:d3:60:aa:26:02:d9:51:d1:
53:16:1c:8d:24:6b:68:58:7b:ab:70:04:2e:37:2a:
c0:19:32:e4:fa:8d:89:c4:f6:0c:58:49:bb:93:ed:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:24:85:B7:04:A4:5B:32:91:EA:B1:10:3B:33:01:F0:BD:D4:F8:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3E81529D1311EF9978E490762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.10.0/23
Signature Algorithm: sha256WithRSAEncryption
72:4a:2e:1d:71:84:9a:97:b6:1c:f4:92:c6:7a:c5:12:85:34:
74:61:7c:d8:b7:f2:93:ba:cd:bf:78:09:89:e2:cf:e4:e3:4f:
53:13:2a:67:3c:53:e6:12:ab:f8:c1:15:04:83:2f:ea:7c:26:
9d:a0:31:34:28:06:a3:d1:7d:36:82:bc:a5:76:19:98:06:65:
8d:47:b8:ba:6d:06:16:25:97:11:66:72:62:99:c9:ee:e8:34:
7a:72:81:88:42:3a:d3:94:24:62:ab:e3:c8:4e:e6:7e:2c:7e:
1d:1e:de:f5:49:1f:9b:c5:98:c9:e2:6d:ee:a6:fb:66:d1:ef:
b8:75:f2:ed:f7:92:f7:11:99:97:41:3b:51:80:a8:8e:41:07:
ab:17:cf:0c:80:17:d7:b8:93:bb:7e:88:5e:2e:b9:c6:71:75:
85:03:7e:2f:c6:a6:9b:2c:65:81:63:3b:22:1c:0d:36:d3:13:
ef:d5:bd:86:69:88:30:6e:35:b3:82:03:58:3f:ec:d0:89:4c:
80:24:77:36:bc:61:93:32:be:c3:01:81:80:a9:2e:23:18:9e:
41:39:77:65:fb:89:e5:28:6f:3d:e1:06:15:a3:96:9e:38:f3:
cf:19:78:90:0b:dc:4b:99:2f:c5:d1:ca:b9:13:64:dc:f9:1a:
b5:fd:41:56
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAM/cMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTA3MTQxOTI0WhcNMjQxMTMwMTQxOTI0WjAYMRYw
FAYDVQQDEw02NzJjY2M3MC1iOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1o76A6vtwGVODrh6KBtatoEwp10iSDOvWe6mLgReMUgLmG575l6XwkH5
FXQ8X2BctqtICC6PCELq3WEethgzq+RiRYRYOfDlCSnqqM/ngM1/KaYUxyBgEpGS
4cyCesPnZxfm8BXmFOeEdB75b6C0rEUH89flX6LjyznLEUxwofzd576REQG/BG2D
iyjPZJMZ2SwUtsd8e8ePCAOXQaRce+Czfds6Tvx+de4qfluAP5cPwQul/l5ieRky
lJHcZnc7lMwnejUtVdPwJqYJaZzYwQsiRrtk/6+d02CqJgLZUdFTFhyNJGtoWHur
cAQuNyrAGTLk+o2JxPYMWEm7k+1e4wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDok
hbcEpFsykeqxEDszAfC91PitMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80QzNFODE1MjlEMTMxMUVGOTk3OEU0OTA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnOgKMA0GCSqGSIb3DQEBCwUA
A4IBAQBySi4dcYSal7Yc9JLGesUShTR0YXzYt/KTus2/eAmJ4s/k409TEypnPFPm
Eqv4wRUEgy/qfCadoDE0KAaj0X02gryldhmYBmWNR7i6bQYWJZcRZnJimcnu6DR6
coGIQjrTlCRiq+PITuZ+LH4dHt71SR+bxZjJ4m3upvtm0e+4dfLt95L3EZmXQTtR
gKiOQQerF88MgBfXuJO7foheLrnGcXWFA34vxqabLGWBYzsiHA020xPv1b2GaYgw
bjWzggNYP+zQiUyAJHc2vGGTMr7DAYGAqS4jGJ5BOXdl+4nlKG894QYVo5aeOPPP
GXiQC9xLmS/F0cq5E2Tc+Rq1/UFW
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:28 2024 by rpki-client on console-fra.rpki-client.org