Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/509CAD6CCC9511EFBB38D674762E951A.roa
File: 509CAD6CCC9511EFBB38D674762E951A.roa (raw, json)
Hash identifier: JxGjsn8EDycQUJM7A7SN3jD3Lj4BG37i++far/7iTHo=
Subject key identifier: B8:1E:C5:C4:B0:9A:3C:53:81:38:6B:E8:AB:DE:E3:B8:15:EA:56:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F930
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/509CAD6CCC9511EFBB38D674762E951A.roa
Signing time: Tue 07 Jan 2025 01:18:35 +0000
ROA not before: Tue 07 Jan 2025 01:18:31 +0000
ROA not after: Mon 13 Dec 2027 01:18:31 +0000
asID: 17561
IP address blocks: 156.227.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63792 (0xf930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 01:18:31 2025 GMT
Not After : Dec 13 01:18:31 2027 GMT
Subject: CN=677c80eb-8b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:b3:ae:9a:84:b6:47:d8:c5:ef:f8:11:0c:
c0:97:07:1d:2e:1e:91:61:93:06:87:47:10:c8:37:
bd:d8:19:df:cf:55:b2:b4:fb:fd:1e:18:99:f7:10:
8b:15:b5:ab:44:ca:3b:56:df:c5:28:ed:8e:70:7c:
3f:00:05:1f:d8:cf:16:34:d0:cd:0d:cd:43:85:ce:
7c:38:00:00:5f:ea:89:62:48:1f:69:03:d6:cf:3a:
64:c6:b7:1a:29:38:58:a9:8c:ee:cd:32:96:28:25:
fb:8f:90:74:a5:f3:b0:20:a2:bb:05:d8:a9:b6:3b:
e7:6d:84:1c:9f:8c:cc:34:95:dc:15:9a:59:90:22:
8a:8c:ee:77:a2:a2:3a:98:3a:b1:42:a4:ef:4b:b8:
7c:4c:bd:4b:98:5c:23:92:02:fa:2f:8c:7e:81:86:
f1:4e:7e:f8:46:b0:55:7f:ea:f1:fc:db:61:74:95:
1b:37:a0:ec:be:7f:f7:35:3a:6c:46:34:63:6d:1c:
e0:ae:28:7a:23:c5:b0:91:96:61:e7:89:09:d8:a0:
c7:69:3c:cd:62:6a:78:d2:6d:e5:48:60:cc:2f:ba:
ae:55:39:ca:67:e1:d9:2e:28:65:14:df:ff:ca:3d:
5f:0b:50:9b:3e:6d:83:e0:94:77:0d:1e:c6:ba:48:
1d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:1E:C5:C4:B0:9A:3C:53:81:38:6B:E8:AB:DE:E3:B8:15:EA:56:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/509CAD6CCC9511EFBB38D674762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:15:eb:99:e2:6b:f3:69:4a:f5:a9:72:30:01:fd:fc:13:5c:
42:84:50:4e:87:40:0d:30:0d:11:56:ee:40:b9:96:83:b8:88:
07:d0:95:68:1a:8b:4a:a8:48:08:b6:33:b7:dd:da:94:5f:30:
28:c2:17:7e:07:2a:54:b7:3d:77:1c:c6:cf:e0:8c:c5:f9:9d:
b7:46:df:b8:d5:8a:6a:75:90:9a:a4:e9:52:e8:68:db:65:f6:
0a:c8:f4:7d:37:c9:8c:16:83:1e:51:a6:d1:3c:f5:7c:86:97:
6e:52:65:29:56:4e:78:3b:8f:c5:af:20:40:fb:51:b4:44:35:
7a:0e:c1:c3:8f:ce:bf:67:40:d3:5d:7b:af:14:fc:07:00:85:
b1:34:fb:61:07:fa:79:df:77:e3:9a:8a:15:3c:a9:4d:60:97:
28:90:57:f9:f1:c8:3d:4c:8f:eb:a2:8e:4b:0c:30:c7:f9:ac:
20:92:58:07:9a:54:e8:c1:b6:93:5f:08:e2:8a:6a:f3:e6:57:
7a:68:0e:2e:6d:e0:b6:e2:2f:53:81:b7:1b:a2:6d:f4:11:28:
f7:6b:30:d5:2f:28:c6:a7:77:df:f2:45:98:d2:4d:33:68:d9:
f6:fa:c4:81:13:87:97:40:d4:ac:ca:7e:40:d1:39:8b:fb:8d:
7f:d8:89:fc
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPkwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MDExODMxWhcNMjcxMjEzMDExODMxWjAYMRYw
FAYDVQQDEw02NzdjODBlYi04YjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr6WzrpqEtkfYxe/4EQzAlwcdLh6RYZMGh0cQyDe92Bnfz1WytPv9HhiZ
9xCLFbWrRMo7Vt/FKO2OcHw/AAUf2M8WNNDNDc1Dhc58OAAAX+qJYkgfaQPWzzpk
xrcaKThYqYzuzTKWKCX7j5B0pfOwIKK7BdiptjvnbYQcn4zMNJXcFZpZkCKKjO53
oqI6mDqxQqTvS7h8TL1LmFwjkgL6L4x+gYbxTn74RrBVf+rx/NthdJUbN6Dsvn/3
NTpsRjRjbRzgrih6I8WwkZZh54kJ2KDHaTzNYmp40m3lSGDML7quVTnKZ+HZLihl
FN//yj1fC1CbPm2D4JR3DR7GukgdEwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLge
xcSwmjxTgThr6Kve47gV6layMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MDlDQUQ2Q0NDOTUxMUVGQkIzOEQ2NzQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnONNMA0GCSqGSIb3DQEBCwUA
A4IBAQBOFeuZ4mvzaUr1qXIwAf38E1xChFBOh0ANMA0RVu5AuZaDuIgH0JVoGotK
qEgItjO33dqUXzAowhd+BypUtz13HMbP4IzF+Z23Rt+41YpqdZCapOlS6GjbZfYK
yPR9N8mMFoMeUabRPPV8hpduUmUpVk54O4/FryBA+1G0RDV6DsHDj86/Z0DTXXuv
FPwHAIWxNPthB/p533fjmooVPKlNYJcokFf58cg9TI/roo5LDDDH+awgklgHmlTo
wbaTXwjiimrz5ld6aA4ubeC24i9Tgbcbom30ESj3azDVLyjGp3ff8kWY0k0zaNn2
+sSBE4eXQNSsyn5A0TmL+41/2In8
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:41:07 2025 by rpki-client