Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50DB4FF296AF11EF84BD51BE762E951A.roa
File: 50DB4FF296AF11EF84BD51BE762E951A.roa (raw, json)
Hash identifier: GkmFaqEZjeT+rVeOhkABqQ3XuJaiqL2I9TmQYyuPr5Q=
Subject key identifier: 97:CB:6A:15:BB:D1:0B:D9:ED:A4:B2:01:F7:41:A1:BA:0F:41:5C:35
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CA19
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50DB4FF296AF11EF84BD51BE762E951A.roa
Signing time: Wed 30 Oct 2024 11:08:39 +0000
ROA not before: Wed 30 Oct 2024 11:08:35 +0000
ROA not after: Sat 01 Feb 2025 11:08:35 +0000
asID: 213323
IP address blocks: 156.235.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51737 (0xca19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 11:08:35 2024 GMT
Not After : Feb 1 11:08:35 2025 GMT
Subject: CN=672213b7-7b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:52:ca:07:02:bc:12:4f:35:6a:5f:fe:5f:
f7:d7:23:89:09:b4:be:ed:a9:41:4a:e4:c5:c9:9f:
74:4b:98:ec:2c:b4:06:b0:8d:cb:25:81:51:b5:6f:
d4:11:b5:44:2d:05:55:ec:17:e1:75:fa:38:96:4a:
d2:8c:43:25:9e:e3:66:16:37:61:cc:c2:85:c3:61:
fe:0d:78:f3:33:c9:91:68:e2:8f:6d:bc:ea:bd:13:
e3:ce:db:a0:6e:ab:94:30:42:a3:14:30:94:1d:67:
cf:62:03:78:40:75:b2:51:10:7e:93:b3:ac:42:98:
59:ad:c4:5d:69:65:85:30:93:4a:e7:80:2f:af:cc:
64:91:c0:8c:fa:49:ab:56:7a:f0:87:29:ad:13:82:
fb:ec:95:d4:b7:a2:08:b6:55:ab:13:4f:e8:1c:c0:
8a:4d:9d:ad:ce:e1:0f:f9:d7:75:01:42:68:4b:28:
b3:1c:08:06:24:e1:51:51:65:2d:52:70:1a:ac:6c:
65:53:a0:d9:ba:21:e8:16:be:bd:33:5e:0b:1b:b9:
8f:51:c8:ac:0c:3d:71:b5:e6:f7:9a:99:ef:4e:09:
47:c6:f7:79:74:e1:d5:00:98:7a:eb:57:19:5d:01:
c1:16:76:a5:fd:fc:df:bf:87:15:6c:bf:a5:d3:e9:
bc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CB:6A:15:BB:D1:0B:D9:ED:A4:B2:01:F7:41:A1:BA:0F:41:5C:35
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50DB4FF296AF11EF84BD51BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:10:d3:71:84:df:54:0b:4a:b2:7e:bf:14:a7:b8:a8:88:2d:
e1:79:7a:3b:5e:2f:fe:19:ae:9e:83:69:4f:f3:35:75:e9:4c:
49:6d:24:fb:2a:e3:dc:ec:6f:8d:d5:8f:08:3e:8c:a5:9e:c4:
07:1b:32:2c:2f:db:db:59:62:b9:c0:a6:95:6e:4d:d8:1d:51:
f7:a0:8e:de:f6:28:62:d7:94:cd:7c:13:03:4b:31:fa:26:52:
24:7e:0a:6e:b5:0e:79:0f:74:1a:19:85:32:58:5c:b1:5e:78:
2f:c4:9a:91:af:a9:f7:8c:88:bb:b0:55:b0:af:49:b7:17:fa:
57:58:36:6c:02:aa:71:20:dd:b8:01:84:b9:47:32:d7:75:bc:
85:35:fe:7f:a3:bd:6d:ec:69:a9:d1:2e:6e:d5:ab:f7:eb:1a:
34:6e:d8:66:83:7c:c0:bd:bf:75:c9:17:dd:ee:22:95:6c:2c:
2e:d0:3e:ec:07:8a:4a:94:04:a2:26:fb:68:2e:fa:6d:ca:67:
32:7b:76:22:95:78:50:73:0c:b1:85:b9:48:ce:0f:67:a6:54:
ee:40:f2:f7:3a:64:4f:cb:54:5d:f3:53:4a:44:f3:16:c9:01:
ce:50:d5:68:5c:a7:eb:fb:62:72:00:b0:50:cf:ea:9c:96:36:
aa:1f:10:8a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMoZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDMwMTEwODM1WhcNMjUwMjAxMTEwODM1WjAYMRYw
FAYDVQQDEw02NzIyMTNiNy03YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwd1SygcCvBJPNWpf/l/31yOJCbS+7alBSuTFyZ90S5jsLLQGsI3LJYFR
tW/UEbVELQVV7Bfhdfo4lkrSjEMlnuNmFjdhzMKFw2H+DXjzM8mRaOKPbbzqvRPj
ztugbquUMEKjFDCUHWfPYgN4QHWyURB+k7OsQphZrcRdaWWFMJNK54Avr8xkkcCM
+kmrVnrwhymtE4L77JXUt6IItlWrE0/oHMCKTZ2tzuEP+dd1AUJoSyizHAgGJOFR
UWUtUnAarGxlU6DZuiHoFr69M14LG7mPUcisDD1xteb3mpnvTglHxvd5dOHVAJh6
61cZXQHBFnal/fzfv4cVbL+l0+m8hwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJfL
ahW70QvZ7aSyAfdBoboPQVw1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MERCNEZGMjk2QUYxMUVGODRCRDUxQkU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOtGMA0GCSqGSIb3DQEBCwUA
A4IBAQCwENNxhN9UC0qyfr8Up7ioiC3heXo7Xi/+Ga6eg2lP8zV16UxJbST7KuPc
7G+N1Y8IPoylnsQHGzIsL9vbWWK5wKaVbk3YHVH3oI7e9ihi15TNfBMDSzH6JlIk
fgputQ55D3QaGYUyWFyxXngvxJqRr6n3jIi7sFWwr0m3F/pXWDZsAqpxIN24AYS5
RzLXdbyFNf5/o71t7Gmp0S5u1av36xo0bthmg3zAvb91yRfd7iKVbCwu0D7sB4pK
lASiJvtoLvptymcye3YilXhQcwyxhblIzg9nplTuQPL3OmRPy1Rd81NKRPMWyQHO
UNVoXKfr+2JyALBQz+qcljaqHxCK
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:28 2024 by rpki-client on console-fra.rpki-client.org