Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65435FEA038711EF918C7327017001B1.roa
File: 65435FEA038711EF918C7327017001B1.roa (raw, json)
Hash identifier: wDtkgxN9hFg08/QMhBMEBBCQKMf09alOb4B4Ui6rwXQ=
Subject key identifier: 48:73:94:2A:DF:FE:16:04:85:06:A0:0D:A7:BC:CC:47:47:E0:6D:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65435FEA038711EF918C7327017001B1.roa
Signing time: Fri 26 Apr 2024 04:42:33 +0000
ROA not before: Fri 26 Apr 2024 04:42:29 +0000
ROA not after: Tue 03 Sep 2024 04:42:29 +0000
asID: 138195
IP address blocks: 156.234.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34226 (0x85b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:42:29 2024 GMT
Not After : Sep 3 04:42:29 2024 GMT
Subject: CN=662b30b9-91a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:33:23:90:18:fa:a2:6b:95:73:95:5b:f8:
d2:4e:50:80:d1:1f:1f:98:bf:ff:ac:1c:56:23:08:
6d:6e:b2:e5:62:3c:6a:28:6a:e3:fa:1f:82:44:7d:
23:e1:b5:1b:1a:89:0e:5e:d4:29:55:d3:a2:c2:93:
25:bd:20:34:06:97:40:25:71:12:8e:aa:5a:40:fe:
b8:c7:d1:b1:0b:b1:e3:a3:64:a5:9a:e7:76:e8:ad:
b9:0b:0e:68:9d:b2:46:6d:f4:42:90:c3:20:e5:d7:
bf:b0:6e:bb:22:61:5a:e4:58:30:cb:ef:50:13:32:
07:bb:69:43:01:d2:72:df:f1:4d:6d:17:c5:50:2f:
3f:55:ae:02:b9:0b:3e:54:79:9c:22:c8:26:5d:c2:
8a:51:04:ea:6a:90:cf:81:c4:ed:6b:ff:23:41:04:
21:2b:31:2c:d3:10:9f:a2:67:32:e5:9c:e1:f6:7c:
8e:8d:48:5c:7f:d8:dc:f7:50:c3:49:e4:47:55:38:
96:45:54:9e:e9:56:b4:d8:65:f0:5b:9c:14:b0:64:
3e:f0:9e:4f:f4:c2:44:d4:6f:ae:d0:ca:3a:bf:a0:
39:1e:8f:94:87:aa:f0:da:d1:1c:a4:da:db:b0:69:
ca:07:bf:e4:2b:b5:4c:6a:18:71:c1:9f:93:02:6a:
8a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:73:94:2A:DF:FE:16:04:85:06:A0:0D:A7:BC:CC:47:47:E0:6D:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/65435FEA038711EF918C7327017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7e:23:37:7e:b1:f1:b1:8d:64:2f:86:62:a3:af:1e:4e:84:
03:c2:c7:d6:55:cb:fd:e1:05:93:7a:69:33:51:73:e2:ea:26:
94:ce:1a:23:47:dc:9c:cb:a7:ca:2b:82:14:0a:09:d0:82:95:
db:ce:1b:fb:2c:b5:47:b7:fc:10:44:51:df:b7:02:9a:2c:96:
12:0e:92:e3:de:c7:3a:fd:65:f7:31:25:cf:84:14:d4:8d:18:
4a:8b:04:a9:4f:9b:9b:a8:71:ec:18:33:56:cc:fa:0a:db:86:
2b:a9:95:a1:7d:c7:5a:9f:c7:52:0a:ff:22:8c:bc:98:bc:fc:
44:df:a4:c1:5e:cf:0d:21:b3:3c:aa:1f:9c:c2:e5:ab:da:61:
c8:ca:b5:e0:5a:b3:3a:81:9c:7b:d8:74:04:6f:61:53:7d:28:
71:4b:ba:3b:d6:3a:d7:21:90:9a:24:77:c4:79:c2:37:b4:ca:
33:d8:e5:14:2e:40:bb:c5:22:3a:18:00:31:cf:44:17:ef:1d:
70:cf:60:78:53:e5:f5:b5:36:c2:bb:68:0a:a7:eb:41:5b:b6:
73:37:53:c9:cf:23:bf:c6:77:65:e2:62:19:1f:35:b9:29:f9:
e0:05:58:29:7b:3f:72:bf:7f:75:c4:a4:6a:79:ae:f6:d5:c9:
e6:64:ff:3d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIWyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDQ0MjI5WhcNMjQwOTAzMDQ0MjI5WjAYMRYw
FAYDVQQDEw02NjJiMzBiOS05MWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArtMzI5AY+qJrlXOVW/jSTlCA0R8fmL//rBxWIwhtbrLlYjxqKGrj+h+C
RH0j4bUbGokOXtQpVdOiwpMlvSA0BpdAJXESjqpaQP64x9GxC7Hjo2Slmud26K25
Cw5onbJGbfRCkMMg5de/sG67ImFa5Fgwy+9QEzIHu2lDAdJy3/FNbRfFUC8/Va4C
uQs+VHmcIsgmXcKKUQTqapDPgcTta/8jQQQhKzEs0xCfomcy5Zzh9nyOjUhcf9jc
91DDSeRHVTiWRVSe6Va02GXwW5wUsGQ+8J5P9MJE1G+u0Mo6v6A5Ho+Uh6rw2tEc
pNrbsGnKB7/kK7VMahhxwZ+TAmqKrQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEhz
lCrf/hYEhQagDae8zEdH4G1pMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82NTQzNUZFQTAzODcxMUVGOTE4QzczMjcwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOpNMA0GCSqGSIb3DQEBCwUA
A4IBAQB7fiM3frHxsY1kL4Zio68eToQDwsfWVcv94QWTemkzUXPi6iaUzhojR9yc
y6fKK4IUCgnQgpXbzhv7LLVHt/wQRFHftwKaLJYSDpLj3sc6/WX3MSXPhBTUjRhK
iwSpT5ubqHHsGDNWzPoK24YrqZWhfcdan8dSCv8ijLyYvPxE36TBXs8NIbM8qh+c
wuWr2mHIyrXgWrM6gZx72HQEb2FTfShxS7o71jrXIZCaJHfEecI3tMoz2OUULkC7
xSI6GAAxz0QX7x1wz2B4U+X1tTbCu2gKp+tBW7ZzN1PJzyO/xndl4mIZHzW5Kfng
BVgpez9yv391xKRqea721cnmZP89
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:10 2024 by rpki-client on console-fra.rpki-client.org