Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63403A20F91911ED9F0D1C1F4AD9E6FC.roa
File: 63403A20F91911ED9F0D1C1F4AD9E6FC.roa (raw, json)
Hash identifier: 1oYhKUI0559BNDgNdUbVy/mlKnx8PSGsI0Cj6uCeyvs=
Subject key identifier: 0D:4B:C7:7A:76:CE:96:3E:70:3A:8A:D5:5E:46:98:68:17:94:78:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 26FE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63403A20F91911ED9F0D1C1F4AD9E6FC.roa
Signing time: Tue 23 May 2023 03:24:55 +0000
ROA not before: Tue 23 May 2023 03:24:52 +0000
ROA not after: Fri 20 Sep 2024 03:24:52 +0000
asID: 141167
IP address blocks: 156.238.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9982 (0x26fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 03:24:52 2023 GMT
Not After : Sep 20 03:24:52 2024 GMT
Subject: CN=646c3207-abf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8b:ef:07:45:07:28:68:a8:20:85:d0:54:c2:
d0:5e:b0:ee:78:a2:83:a1:ba:8b:e6:5b:92:98:8a:
35:8b:4d:03:7a:2f:95:d2:55:8d:aa:60:1b:3e:ef:
82:15:62:1f:a7:45:f5:b8:73:0e:98:bc:3a:65:60:
28:77:9a:53:be:54:45:01:4b:c4:70:a5:e8:f5:b7:
31:86:d8:7e:da:75:b7:58:f7:7d:0a:97:e2:e6:98:
be:99:7e:6a:25:e6:38:07:4c:78:62:cd:b9:de:9b:
4a:37:37:d4:bc:bb:db:e0:49:06:f7:6e:d8:92:d3:
fa:1c:7f:25:ab:86:d2:0d:0a:b2:88:53:67:86:e3:
9e:91:d6:44:24:6e:5e:ef:c5:55:e2:10:4e:db:6a:
ec:64:31:16:61:c2:d8:9d:1a:38:3b:d0:e2:ce:f7:
50:6f:84:dc:b2:dd:75:6a:15:de:34:40:f7:3e:c3:
c7:0d:9f:5b:e8:58:2e:28:a8:a1:98:29:b7:34:60:
a8:6e:09:fd:d1:29:dd:3f:99:4b:cc:60:dd:e7:97:
f5:e1:28:39:2c:70:cf:ed:7b:2e:26:b1:75:22:38:
15:d6:da:11:0b:63:02:45:0f:e4:f4:47:95:90:0d:
96:da:26:40:4f:ce:b1:74:70:d9:e1:15:f0:6a:07:
28:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4B:C7:7A:76:CE:96:3E:70:3A:8A:D5:5E:46:98:68:17:94:78:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63403A20F91911ED9F0D1C1F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.3.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:97:e0:6d:4d:a5:f3:7e:89:c6:8c:2c:f9:0f:d5:77:85:53:
af:5f:2a:47:7c:cd:5e:6f:c3:b7:f3:95:45:0c:71:cd:f4:d6:
ce:25:70:45:0c:38:78:42:30:16:10:d5:22:90:4c:ce:00:b2:
85:f8:ac:d3:6d:1f:a1:75:08:8d:7f:cc:0e:4d:a7:59:69:0d:
9c:07:ed:53:f3:8e:79:67:55:d7:de:cc:17:8c:05:ea:18:89:
be:3f:10:46:d6:2f:e3:16:f0:a3:f9:60:40:46:fe:e5:94:3e:
e7:01:e0:9a:11:68:f9:28:7e:b4:2f:f5:07:c5:7f:8d:1b:4e:
78:4b:10:e1:9a:f7:9d:8b:b4:84:48:be:45:4e:dc:d6:17:be:
fb:fa:69:cb:21:9e:1d:cb:09:58:23:c3:3e:be:26:37:ed:fd:
13:ba:3c:a3:d0:c5:d8:66:c6:a2:f3:5e:1c:bb:35:5c:73:1b:
31:cc:40:f4:61:7f:07:30:34:21:f0:69:88:68:7e:c6:75:0a:
45:c2:bf:02:66:0b:2c:32:f4:21:a9:3e:c8:88:f2:05:8f:2b:
95:cd:25:ed:a1:7a:81:a3:c7:14:3c:74:09:38:a2:24:e0:84:
b1:85:bc:d9:42:dc:5c:a8:54:8d:d8:3c:d8:e8:b3:7a:18:b9:
8d:8f:7f:c8
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJv4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjMwMzI0NTJaFw0yNDA5MjAwMzI0NTJaMBgxFjAU
BgNVBAMTDTY0NmMzMjA3LWFiZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDXi+8HRQcoaKgghdBUwtBesO54ooOhuovmW5KYijWLTQN6L5XSVY2qYBs+
74IVYh+nRfW4cw6YvDplYCh3mlO+VEUBS8Rwpej1tzGG2H7adbdY930Kl+LmmL6Z
fmol5jgHTHhizbnem0o3N9S8u9vgSQb3btiS0/ocfyWrhtINCrKIU2eG456R1kQk
bl7vxVXiEE7bauxkMRZhwtidGjg70OLO91BvhNyy3XVqFd40QPc+w8cNn1voWC4o
qKGYKbc0YKhuCf3RKd0/mUvMYN3nl/XhKDkscM/tey4msXUiOBXW2hELYwJFD+T0
R5WQDZbaJkBPzrF0cNnhFfBqByhPAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUDUvH
enbOlj5wOorVXkaYaBeUeDIwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzYzNDAzQTIwRjkxOTExRUQ5RjBEMUMxRjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc7gMwDQYJKoZIhvcNAQELBQAD
ggEBAI6X4G1NpfN+icaMLPkP1XeFU69fKkd8zV5vw7fzlUUMcc301s4lcEUMOHhC
MBYQ1SKQTM4AsoX4rNNtH6F1CI1/zA5Np1lpDZwH7VPzjnlnVdfezBeMBeoYib4/
EEbWL+MW8KP5YEBG/uWUPucB4JoRaPkofrQv9QfFf40bTnhLEOGa952LtIRIvkVO
3NYXvvv6acshnh3LCVgjwz6+Jjft/RO6PKPQxdhmxqLzXhy7NVxzGzHMQPRhfwcw
NCHwaYhofsZ1CkXCvwJmCywy9CGpPsiI8gWPK5XNJe2heoGjxxQ8dAk4oiTghLGF
vNlC3FyoVI3YPNjos3oYuY2Pf8g=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org