Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EC0E5903B2611EEB05569334AD9E6FC.roa
File: 5EC0E5903B2611EEB05569334AD9E6FC.roa (raw, json)
Hash identifier: MJG4bzJS0GuzgD3v3VsY3EU2QpUDn393z6Iv954Bspo=
Subject key identifier: 27:1F:E6:46:36:AC:D1:56:50:BE:21:37:BF:65:EF:B3:66:45:06:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3599
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EC0E5903B2611EEB05569334AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:44:08 +0000
ROA not before: Tue 15 Aug 2023 04:44:05 +0000
ROA not after: Mon 27 May 2024 04:44:05 +0000
asID: 140627
IP address blocks: 156.247.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13721 (0x3599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:44:05 2023 GMT
Not After : May 27 04:44:05 2024 GMT
Subject: CN=64db0298-a38f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cf:a0:36:a9:f5:83:71:ff:fd:52:3f:6e:c1:
4f:34:e8:f5:43:a0:1a:e2:17:b5:2d:8c:01:3b:c8:
25:25:cb:53:d1:e8:1f:44:17:d2:61:c1:8a:53:a8:
13:e5:00:fd:a5:e1:bb:0d:66:82:2c:85:98:d8:63:
e5:cd:3b:96:65:e4:61:3d:16:db:9b:3d:76:33:2d:
74:f1:c2:07:3a:14:9b:ce:a9:68:bd:b7:47:af:56:
56:b4:af:93:41:f6:d3:50:3a:3f:47:8e:8c:19:8a:
82:e0:b3:aa:aa:f2:c4:47:6d:64:e9:97:d9:c4:3a:
9a:e9:a4:19:d0:f6:ca:f3:2b:68:82:4c:23:e1:e0:
87:f8:df:f5:21:a5:24:0b:c4:99:65:e5:bc:b1:67:
e5:a9:0f:44:bb:74:9f:d5:99:3a:35:43:96:b2:94:
a7:03:6e:94:3d:d9:58:dc:58:d6:81:ff:04:ef:a1:
0f:f5:fa:e6:81:13:2e:32:ec:34:49:6f:ce:39:49:
3e:28:60:e6:3a:45:a1:30:be:3a:70:8a:86:41:50:
02:3e:b8:00:32:41:71:90:7b:d3:54:bb:5f:e8:0b:
a6:33:02:b8:be:53:ac:0e:e0:ad:74:50:c8:c7:54:
14:68:92:83:1b:5f:8a:89:76:36:59:08:59:c9:a5:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1F:E6:46:36:AC:D1:56:50:BE:21:37:BF:65:EF:B3:66:45:06:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EC0E5903B2611EEB05569334AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.235.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:76:38:9a:d0:d2:35:3b:65:5f:2c:9d:bd:5d:c5:e7:91:1b:
2f:0d:01:29:df:29:f2:68:7b:1d:73:2d:59:2b:86:7a:69:2b:
d8:62:3d:08:37:63:86:9d:67:bc:9b:20:09:f6:c8:b5:4d:16:
d3:e6:6d:6a:ec:8c:6e:1b:30:64:4f:fa:f0:ce:ab:96:3c:4a:
67:9d:c6:5b:c0:03:33:bf:3c:14:ea:3e:fa:8c:e7:e9:4d:fe:
cf:c8:6b:c5:75:13:05:fc:33:07:e1:fc:d9:b5:c4:38:8e:89:
01:a6:2c:18:f7:88:17:ce:95:88:d3:54:c5:eb:9d:49:06:d9:
9a:b0:39:a7:77:d9:d9:6e:0d:46:c0:1e:f5:f5:28:6b:3c:84:
bb:bc:eb:92:f4:5a:27:5f:82:13:fc:7a:13:8a:ba:87:ca:5c:
0e:9a:ca:a9:f6:15:14:cb:71:13:cd:bb:91:12:6d:1b:55:20:
95:7a:8b:ec:d2:65:e9:c3:84:21:68:2d:e0:e9:e8:f5:46:71:
23:d3:6a:5f:9c:58:e5:f7:a9:71:ab:2e:da:4a:ac:de:2c:9f:
43:c5:6f:00:38:fe:68:83:54:9a:f8:35:f3:dd:c6:46:18:72:
2a:0a:2a:91:eb:c2:f1:65:00:7b:d0:ca:1b:6d:8e:e2:2a:81:
14:6e:be:90
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNZkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNDQ0MDVaFw0yNDA1MjcwNDQ0MDVaMBgxFjAU
BgNVBAMTDTY0ZGIwMjk4LWEzOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCqz6A2qfWDcf/9Uj9uwU806PVDoBriF7UtjAE7yCUly1PR6B9EF9JhwYpT
qBPlAP2l4bsNZoIshZjYY+XNO5Zl5GE9FtubPXYzLXTxwgc6FJvOqWi9t0evVla0
r5NB9tNQOj9HjowZioLgs6qq8sRHbWTpl9nEOprppBnQ9srzK2iCTCPh4If43/Uh
pSQLxJll5byxZ+WpD0S7dJ/VmTo1Q5aylKcDbpQ92VjcWNaB/wTvoQ/1+uaBEy4y
7DRJb845ST4oYOY6RaEwvjpwioZBUAI+uAAyQXGQe9NUu1/oC6YzAri+U6wO4K10
UMjHVBRokoMbX4qJdjZZCFnJpRulAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUJx/m
Rjas0VZQviE3v2Xvs2ZFBjkwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzVFQzBFNTkwM0IyNjExRUVCMDU1NjkzMzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc9+swDQYJKoZIhvcNAQELBQAD
ggEBAC12OJrQ0jU7ZV8snb1dxeeRGy8NASnfKfJoex1zLVkrhnppK9hiPQg3Y4ad
Z7ybIAn2yLVNFtPmbWrsjG4bMGRP+vDOq5Y8SmedxlvAAzO/PBTqPvqM5+lN/s/I
a8V1EwX8Mwfh/Nm1xDiOiQGmLBj3iBfOlYjTVMXrnUkG2ZqwOad32dluDUbAHvX1
KGs8hLu865L0WidfghP8ehOKuofKXA6ayqn2FRTLcRPNu5ESbRtVIJV6i+zSZenD
hCFoLeDp6PVGcSPTal+cWOX3qXGrLtpKrN4sn0PFbwA4/miDVJr4NfPdxkYYcioK
KpHrwvFlAHvQyhttjuIqgRRuvpA=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:53 2024 by rpki-client on console-ams.rpki-client.org