Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51DEB27A32BB11EF8790A1AD762E951A.roa
File: 51DEB27A32BB11EF8790A1AD762E951A.roa (raw, json)
Hash identifier: 9qJx0t0aj6/G4jKHoMmZNU+c/4TOuWWprTkGQDHZidE=
Subject key identifier: 5B:EC:28:61:89:D6:F5:9C:C2:F2:D6:6F:42:E1:05:50:46:7D:75:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 9480
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51DEB27A32BB11EF8790A1AD762E951A.roa
Signing time: Tue 25 Jun 2024 06:22:39 +0000
ROA not before: Tue 25 Jun 2024 06:22:35 +0000
ROA not after: Fri 03 Jan 2025 06:22:35 +0000
asID: 40065
IP address blocks: 156.229.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38016 (0x9480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 25 06:22:35 2024 GMT
Not After : Jan 3 06:22:35 2025 GMT
Subject: CN=667a622f-c732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:22:d5:65:46:e5:4e:0e:41:d9:29:f5:ab:
5b:96:d5:fc:51:5b:9e:f5:c8:c9:88:65:ff:bf:cf:
9b:64:84:4a:1d:97:d5:0f:4e:03:96:96:af:98:ae:
39:57:6c:9c:38:c5:57:d5:e0:72:bd:73:e2:40:a0:
4b:a4:88:f5:0d:66:63:a5:01:59:01:c5:3c:8b:77:
d8:0b:74:c2:06:87:34:60:96:7a:12:af:bc:b1:1c:
7a:64:a3:5d:24:ce:d0:d7:2e:56:8e:1b:f2:57:d8:
6c:92:74:2f:c5:15:31:44:37:74:5b:5b:7c:2b:b3:
ce:31:59:35:6e:8d:02:c0:17:ff:4a:d9:a1:ac:a9:
5c:8e:fe:9c:95:5e:82:56:47:d7:6e:dd:17:c3:c2:
e7:62:e2:0d:0c:76:d3:6c:40:7a:c8:09:51:e5:6e:
02:26:80:11:2d:72:17:e6:14:6b:6b:5f:df:9e:f6:
eb:5e:de:30:70:29:6d:61:fe:7e:16:a3:79:23:fa:
31:bd:f8:86:01:aa:57:5e:ba:e8:26:0e:c3:0c:68:
04:75:11:fb:91:ab:30:06:5b:e1:82:7d:9b:59:1e:
d1:5b:09:d7:18:af:9d:4a:c2:05:53:6c:da:b2:ca:
ba:56:ad:54:77:cc:18:36:4a:17:5d:f1:93:26:8f:
58:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EC:28:61:89:D6:F5:9C:C2:F2:D6:6F:42:E1:05:50:46:7D:75:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51DEB27A32BB11EF8790A1AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.8.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:d0:26:88:c8:2a:6c:e9:b8:f5:89:75:25:e4:f2:cd:d7:24:
ca:80:b4:50:6c:d5:78:f5:fe:54:56:e1:d4:0c:d8:9d:40:28:
10:36:3c:62:4f:33:80:e6:15:48:b1:9b:f5:59:7f:8b:f9:64:
09:af:e6:e9:a0:71:0b:09:0e:ec:32:a1:3e:f5:67:3e:67:ef:
25:61:07:f1:bd:63:47:40:3f:f6:92:7b:5e:79:40:39:7a:9d:
86:be:66:46:9d:17:56:d1:75:24:56:44:b8:c2:7e:46:45:69:
85:08:2e:0b:65:62:e2:71:e3:ff:b2:ed:e7:aa:b1:cb:54:48:
58:cf:01:70:81:9b:50:d1:7d:a5:a3:18:56:e5:34:83:87:d1:
5b:75:28:a1:ed:96:38:6a:6d:0e:10:18:95:10:91:33:77:09:
67:e2:7e:05:d1:d1:94:d0:db:13:ad:2c:21:d9:5a:25:54:29:
70:8e:72:3f:2b:2a:a4:6e:7e:9d:a9:cc:da:4b:6d:0b:bc:21:
4d:0a:6e:4d:7d:87:10:53:0a:95:ea:db:93:de:ad:f0:46:0f:
6a:f3:cd:cf:13:91:f2:99:87:a1:ea:b3:4b:80:99:db:a6:72:
36:e3:50:2c:40:b3:93:e2:5d:b3:ac:ba:96:11:44:20:4f:4d:
70:6d:89:fd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJSAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNjI1MDYyMjM1WhcNMjUwMTAzMDYyMjM1WjAYMRYw
FAYDVQQDEw02NjdhNjIyZi1jNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArWoi1WVG5U4OQdkp9atbltX8UVue9cjJiGX/v8+bZIRKHZfVD04Dlpav
mK45V2ycOMVX1eByvXPiQKBLpIj1DWZjpQFZAcU8i3fYC3TCBoc0YJZ6Eq+8sRx6
ZKNdJM7Q1y5WjhvyV9hsknQvxRUxRDd0W1t8K7POMVk1bo0CwBf/StmhrKlcjv6c
lV6CVkfXbt0Xw8LnYuINDHbTbEB6yAlR5W4CJoARLXIX5hRra1/fnvbrXt4wcClt
Yf5+FqN5I/oxvfiGAapXXrroJg7DDGgEdRH7kaswBlvhgn2bWR7RWwnXGK+dSsIF
U2zassq6Vq1Ud8wYNkoXXfGTJo9YjQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFvs
KGGJ1vWcwvLWb0LhBVBGfXXlMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MURFQjI3QTMyQkIxMUVGODc5MEExQUQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnOUIMA0GCSqGSIb3DQEBCwUA
A4IBAQB80CaIyCps6bj1iXUl5PLN1yTKgLRQbNV49f5UVuHUDNidQCgQNjxiTzOA
5hVIsZv1WX+L+WQJr+bpoHELCQ7sMqE+9Wc+Z+8lYQfxvWNHQD/2knteeUA5ep2G
vmZGnRdW0XUkVkS4wn5GRWmFCC4LZWLiceP/su3nqrHLVEhYzwFwgZtQ0X2loxhW
5TSDh9FbdSih7ZY4am0OEBiVEJEzdwln4n4F0dGU0NsTrSwh2VolVClwjnI/Kyqk
bn6dqczaS20LvCFNCm5NfYcQUwqV6tuT3q3wRg9q883PE5HymYeh6rNLgJnbpnI2
41AsQLOT4l2zrLqWEUQgT01wbYn9
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:29 2024 by rpki-client on console-fra.rpki-client.org