Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/644448A6390C11EF88A3315F762E951A.roa
File: 644448A6390C11EF88A3315F762E951A.roa (raw, json)
Hash identifier: sOfcNClaAZOTT/hkyJZ6w+DrWDoct+frMVeI/quc414=
Subject key identifier: 87:73:0C:6F:74:99:EF:09:F4:4F:CB:48:AC:E2:FE:E8:49:93:78:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 97C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/644448A6390C11EF88A3315F762E951A.roa
Signing time: Wed 03 Jul 2024 07:18:06 +0000
ROA not before: Wed 03 Jul 2024 07:18:02 +0000
ROA not after: Mon 07 Oct 2024 07:18:02 +0000
asID: 272018
IP address blocks: 156.235.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Sep 2024 00:16:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38848 (0x97c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 3 07:18:02 2024 GMT
Not After : Oct 7 07:18:02 2024 GMT
Subject: CN=6684fb2e-4447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:a8:21:cc:0a:24:bc:8d:44:e2:4e:f4:1e:
f7:4f:d4:31:39:f0:37:2f:1b:49:4d:d7:72:e4:36:
df:52:17:8b:ae:f4:e6:d5:50:2e:c8:e1:15:b1:db:
70:ea:96:97:88:89:8c:b6:a3:2c:58:e9:45:78:f8:
c1:3c:f2:e6:ba:82:6e:63:5e:be:7a:ad:4d:0b:4e:
b6:66:b5:df:ec:8e:a5:4f:58:ed:b5:a0:e3:1c:04:
b5:0a:ed:68:38:22:a3:c5:2d:8a:f9:08:c1:98:12:
c4:1a:f6:8d:cf:99:67:0c:ae:12:5c:9d:fe:f1:08:
c1:20:96:e8:64:da:a1:6e:e5:c3:87:c4:e2:1e:ac:
29:56:8d:4b:bf:23:6c:8b:74:67:08:76:e0:3b:3b:
77:ea:3b:3e:46:0d:7b:88:48:ca:63:5b:0e:14:5e:
d3:5d:14:03:ab:58:0c:42:be:95:76:56:fd:59:9f:
69:0e:eb:27:01:42:d6:c3:fd:35:b9:34:fc:f7:1b:
e5:c8:67:e1:5d:ab:8a:8f:03:22:10:28:28:38:f5:
ef:57:62:61:1e:31:b0:61:9f:a0:d7:04:86:e9:5d:
5a:f3:bd:58:de:8a:fb:63:a9:8e:fd:a2:5f:4f:6c:
cd:0f:03:53:bb:b5:b5:3a:df:51:d3:88:54:a4:e3:
21:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:73:0C:6F:74:99:EF:09:F4:4F:CB:48:AC:E2:FE:E8:49:93:78:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/644448A6390C11EF88A3315F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.90.0/24
Signature Algorithm: sha256WithRSAEncryption
56:eb:b3:0f:2c:91:9d:f0:64:47:cf:ef:f5:ea:f4:b7:b8:44:
a4:8e:14:05:7b:6b:25:4f:36:b9:b1:1c:d9:8b:60:b9:f1:03:
67:f0:e6:d6:04:de:eb:11:a9:69:c6:d2:ff:a9:24:83:60:31:
8a:4a:08:95:ca:94:08:f9:e8:ba:31:ca:73:25:0e:62:72:48:
17:57:ac:d9:1a:ef:5d:44:8e:00:b5:02:9c:fd:d6:ee:89:2a:
27:12:6b:9e:48:7e:83:cc:a0:0a:90:d0:16:7d:87:20:cc:9d:
23:be:5f:a9:6a:ac:56:fb:3d:0f:72:b6:fd:f5:10:01:88:cb:
45:27:7f:de:77:7d:5a:67:4a:92:83:96:1f:a7:eb:00:14:56:
a9:eb:e0:71:93:78:f7:e8:09:80:0d:d5:15:10:30:7b:7d:b4:
a0:88:9a:49:ef:c4:58:3f:b6:a4:92:d7:7e:bd:1a:9f:19:21:
f8:e1:a6:25:06:ee:f9:48:b2:f9:cc:ee:82:75:9a:2c:ed:26:
8b:de:3e:36:83:b8:a8:c6:99:a9:fa:c9:88:8e:c2:cc:a2:54:
3f:2d:2d:d7:07:db:83:13:77:15:b4:df:97:30:99:6e:eb:87:
e2:38:f0:a3:e3:6e:fd:7a:96:ad:c3:41:8a:be:21:c6:2b:04:
73:c4:62:a9
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAJfAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNzAzMDcxODAyWhcNMjQxMDA3MDcxODAyWjAYMRYw
FAYDVQQDEw02Njg0ZmIyZS00NDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArCaoIcwKJLyNROJO9B73T9QxOfA3LxtJTddy5DbfUheLrvTm1VAuyOEV
sdtw6paXiImMtqMsWOlFePjBPPLmuoJuY16+eq1NC062ZrXf7I6lT1jttaDjHAS1
Cu1oOCKjxS2K+QjBmBLEGvaNz5lnDK4SXJ3+8QjBIJboZNqhbuXDh8TiHqwpVo1L
vyNsi3RnCHbgOzt36js+Rg17iEjKY1sOFF7TXRQDq1gMQr6Vdlb9WZ9pDusnAULW
w/01uTT89xvlyGfhXauKjwMiECgoOPXvV2JhHjGwYZ+g1wSG6V1a871Y3or7Y6mO
/aJfT2zNDwNTu7W1Ot9R04hUpOMhRQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIdz
DG90me8J9E/LSKzi/uhJk3i6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82NDQ0NDhBNjM5MEMxMUVGODhBMzMxNUY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOtaMA0GCSqGSIb3DQEBCwUA
A4IBAQBW67MPLJGd8GRHz+/16vS3uESkjhQFe2slTza5sRzZi2C58QNn8ObWBN7r
EalpxtL/qSSDYDGKSgiVypQI+ei6McpzJQ5ickgXV6zZGu9dRI4AtQKc/dbuiSon
EmueSH6DzKAKkNAWfYcgzJ0jvl+paqxW+z0Pcrb99RABiMtFJ3/ed31aZ0qSg5Yf
p+sAFFap6+Bxk3j36AmADdUVEDB7fbSgiJpJ78RYP7akktd+vRqfGSH44aYlBu75
SLL5zO6CdZos7SaL3j42g7ioxpmp+smIjsLMolQ/LS3XB9uDE3cVtN+XMJlu64fi
OPCj4279epatw0GKviHGKwRzxGKp
-----END CERTIFICATE-----
Generated at Sat Sep 7 10:38:34 2024 by rpki-client on console-fra.rpki-client.org