Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E9B52E4BB7711EFA136E991762E951A.roa
File: 5E9B52E4BB7711EFA136E991762E951A.roa (raw, json)
Hash identifier: hTK37Ct5RNFKuwrinmHn79wvZUWQsheUaFJgfZ9hS0Q=
Subject key identifier: 55:E0:38:EB:83:E6:AD:56:C1:EC:6D:D5:B8:E2:54:6B:BB:6C:7C:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: E40E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E9B52E4BB7711EFA136E991762E951A.roa
Signing time: Mon 16 Dec 2024 06:31:23 +0000
ROA not before: Mon 16 Dec 2024 06:31:20 +0000
ROA not after: Mon 08 Dec 2025 06:31:20 +0000
asID: 151206
IP address blocks: 156.240.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58382 (0xe40e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 16 06:31:20 2024 GMT
Not After : Dec 8 06:31:20 2025 GMT
Subject: CN=675fc93b-a735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:37:5c:8b:6a:e7:45:fc:a2:df:f7:c8:ab:54:
b9:f0:5f:18:89:dd:4b:5a:f0:99:f6:8d:51:6a:20:
43:09:9f:fd:e1:d3:4f:38:16:22:37:96:49:3f:2e:
33:00:2f:16:a5:ec:e8:f6:d9:95:5b:d3:71:22:05:
56:0b:87:e1:7b:4a:e3:3b:20:67:7b:a4:dc:40:f5:
48:08:5f:7d:05:15:ff:3d:40:67:ca:04:a6:b3:b3:
a7:c9:e6:c4:c4:68:b8:f6:41:7e:03:d0:78:a3:b5:
fb:de:25:87:6e:9e:81:69:12:47:8d:aa:14:eb:6e:
b2:7e:9f:c2:f0:ac:70:37:ef:cc:2d:58:d4:8d:41:
99:9d:17:c3:d5:e4:1f:1c:2a:b6:6b:9a:8f:fd:a0:
0c:f9:79:b2:f8:c0:70:0f:bc:ab:d2:00:e6:f8:55:
42:9b:e3:9f:86:aa:f2:9c:1f:60:13:27:ab:00:09:
81:1d:24:45:23:e7:3b:1a:bb:4e:bd:3a:08:19:9a:
d7:8e:26:0e:82:ab:21:2a:73:ea:be:92:fb:3f:3e:
a9:33:67:fb:c1:26:24:1b:91:12:1a:81:42:31:93:
c5:af:af:f7:2a:b1:47:6b:1d:50:ea:fd:8b:fa:05:
a6:b7:cd:3c:4b:fa:e1:54:20:54:07:a5:4a:68:35:
e1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E0:38:EB:83:E6:AD:56:C1:EC:6D:D5:B8:E2:54:6B:BB:6C:7C:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5E9B52E4BB7711EFA136E991762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.63.0/24
Signature Algorithm: sha256WithRSAEncryption
77:26:4f:3c:12:00:39:83:19:e3:49:b9:e1:d4:e2:53:74:0a:
e0:19:ab:07:9b:9f:47:3f:e5:dd:75:5b:46:91:74:1c:8d:09:
31:09:b2:45:34:99:a0:84:91:c9:d0:46:68:b3:e8:d7:8e:85:
6b:46:05:dd:0a:d6:37:1b:78:aa:cf:89:8d:de:fe:86:17:df:
52:f3:52:05:54:78:0d:c7:e1:a1:90:6b:19:b6:5c:68:fa:7b:
50:c3:c5:bf:e1:7c:bb:5a:f2:45:95:10:08:2f:c7:87:35:39:
f2:57:c0:2b:56:c2:bc:ab:58:b7:da:a9:46:52:17:ef:e8:a9:
68:1f:ce:0a:94:36:8f:da:ad:f4:66:62:2d:58:8c:9a:54:d1:
cf:90:b8:1c:d9:c1:b7:88:4a:fd:08:26:21:13:b4:15:12:58:
4b:fa:9f:59:97:10:6f:3f:52:6f:0f:de:42:18:00:47:e9:5a:
ca:21:99:39:11:7e:99:40:c6:8e:a7:31:c6:9c:91:08:f2:06:
49:23:d4:ae:40:2b:b3:c4:c8:35:6b:05:f6:92:4f:92:62:f4:
1a:9a:66:e1:b5:8e:1d:a1:ff:d0:14:b4:52:a4:db:93:52:a1:
ac:ab:7e:6a:64:22:4c:ec:e1:f8:ee:24:94:2a:87:1f:82:49:
e8:b0:f5:7b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOQOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjE2MDYzMTIwWhcNMjUxMjA4MDYzMTIwWjAYMRYw
FAYDVQQDEw02NzVmYzkzYi1hNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsTdci2rnRfyi3/fIq1S58F8Yid1LWvCZ9o1RaiBDCZ/94dNPOBYiN5ZJ
Py4zAC8Wpezo9tmVW9NxIgVWC4fhe0rjOyBne6TcQPVICF99BRX/PUBnygSms7On
yebExGi49kF+A9B4o7X73iWHbp6BaRJHjaoU626yfp/C8KxwN+/MLVjUjUGZnRfD
1eQfHCq2a5qP/aAM+Xmy+MBwD7yr0gDm+FVCm+OfhqrynB9gEyerAAmBHSRFI+c7
GrtOvToIGZrXjiYOgqshKnPqvpL7Pz6pM2f7wSYkG5ESGoFCMZPFr6/3KrFHax1Q
6v2L+gWmt808S/rhVCBUB6VKaDXhywIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFXg
OOuD5q1Wwext1bjiVGu7bHzfMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81RTlCNTJFNEJCNzcxMUVGQTEzNkU5OTE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPA/MA0GCSqGSIb3DQEBCwUA
A4IBAQB3Jk88EgA5gxnjSbnh1OJTdArgGasHm59HP+XddVtGkXQcjQkxCbJFNJmg
hJHJ0EZos+jXjoVrRgXdCtY3G3iqz4mN3v6GF99S81IFVHgNx+GhkGsZtlxo+ntQ
w8W/4Xy7WvJFlRAIL8eHNTnyV8ArVsK8q1i32qlGUhfv6KloH84KlDaP2q30ZmIt
WIyaVNHPkLgc2cG3iEr9CCYhE7QVElhL+p9ZlxBvP1JvD95CGABH6VrKIZk5EX6Z
QMaOpzHGnJEI8gZJI9SuQCuzxMg1awX2kk+SYvQammbhtY4dof/QFLRSpNuTUqGs
q35qZCJM7OH47iSUKocfgknosPV7
-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:08 2025 by rpki-client