Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B14078C84F511EEAFA7344D4AD9E6FC.roa
File: 6B14078C84F511EEAFA7344D4AD9E6FC.roa (raw, json)
Hash identifier: /1BPbdRmRIqxCE7LeKKPsQJAKEDDSf7w1z3OiokaYP0=
Subject key identifier: 1E:7B:2E:B2:A0:94:2A:AD:4E:99:EF:E2:D5:4C:25:37:9C:95:F6:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 496B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B14078C84F511EEAFA7344D4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 03:00:09 +0000
ROA not before: Fri 17 Nov 2023 03:00:06 +0000
ROA not after: Tue 12 Nov 2024 03:00:06 +0000
asID: 397630
IP address blocks: 156.225.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18795 (0x496b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 03:00:06 2023 GMT
Not After : Nov 12 03:00:06 2024 GMT
Subject: CN=6556d739-59b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:f7:b9:13:28:78:99:e2:03:98:70:c8:ef:
ee:81:0f:c6:88:5c:59:3d:0c:b5:73:05:aa:7f:e0:
35:da:cd:67:60:cf:76:8a:ef:0d:44:e2:2f:eb:7a:
69:7a:0e:92:fb:e5:42:bf:e1:5e:11:bb:34:ff:b8:
51:d0:e3:61:78:19:7e:20:95:06:3d:44:00:42:f0:
da:72:fd:34:9b:61:36:95:fd:e9:dc:af:bf:2c:a6:
4f:c3:57:21:57:3b:72:74:34:32:b5:17:fe:8f:66:
da:1a:d6:3a:31:55:a1:75:93:6a:88:dd:60:7a:72:
c3:bc:51:75:09:12:8f:08:53:dc:1f:14:ba:46:f8:
14:38:70:a2:b4:4d:33:6b:7b:30:e1:8d:40:1a:23:
cb:55:24:4e:8b:52:26:46:37:31:63:85:a9:f4:7b:
8a:8f:37:cd:13:88:19:58:27:99:84:e2:03:db:9b:
da:54:64:b1:7c:7a:c3:86:4a:e6:e3:25:34:92:02:
60:33:d2:a4:de:9b:09:01:a1:6e:4c:dc:95:9e:39:
ee:60:e1:9a:ff:80:2f:51:b5:a7:df:6a:cd:68:45:
22:d5:79:f6:c0:5d:53:fa:68:df:39:7f:ed:a4:8d:
c0:ba:25:c1:3a:f4:65:b0:3c:4f:c7:25:83:18:97:
c7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:7B:2E:B2:A0:94:2A:AD:4E:99:EF:E2:D5:4C:25:37:9C:95:F6:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B14078C84F511EEAFA7344D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.9.0/24
Signature Algorithm: sha256WithRSAEncryption
43:95:33:d5:9e:b9:40:46:aa:6c:85:dc:e3:c9:b2:dc:44:55:
ce:1c:53:e5:e3:41:6a:00:e8:76:d3:b1:6a:86:0b:eb:81:77:
b9:1c:ef:11:90:9b:fb:4c:a2:bc:c4:74:62:8c:c2:b3:19:6c:
d7:58:25:6f:ed:63:82:ce:71:93:09:d4:49:13:a4:8a:6d:ac:
d3:32:12:fc:e8:23:40:4e:2f:48:43:70:b3:f3:11:75:d4:ed:
2b:e4:ef:a1:94:57:f7:33:44:bf:99:bc:9b:41:57:6f:e7:36:
48:21:85:21:8b:97:82:dc:c3:26:15:45:e9:41:07:11:72:7b:
cb:51:d9:02:e5:91:6a:53:68:57:5c:59:88:a6:29:d2:bf:6a:
9c:fc:8e:a9:d8:24:cb:4c:6d:7c:ae:a2:97:96:cd:17:d9:56:
cb:bb:e2:50:68:32:9e:80:2d:81:16:66:e5:6a:11:c0:83:3c:
41:73:3d:ad:5d:a5:32:b0:cb:f5:5d:9b:f6:d9:7f:e8:fa:3b:
60:5c:e3:77:b8:00:92:0c:94:2d:79:b6:fd:d8:38:4e:f1:1c:
19:4e:52:0a:b3:61:53:c5:6b:61:e9:23:cc:f7:e9:00:26:c9:
72:37:3c:4d:b6:55:72:79:96:d0:c4:70:e1:ce:43:ee:ca:d8:
d6:ee:5f:96
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSWswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTcwMzAwMDZaFw0yNDExMTIwMzAwMDZaMBgxFjAU
BgNVBAMTDTY1NTZkNzM5LTU5YjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDBg/e5Eyh4meIDmHDI7+6BD8aIXFk9DLVzBap/4DXazWdgz3aK7w1E4i/r
eml6DpL75UK/4V4RuzT/uFHQ42F4GX4glQY9RABC8Npy/TSbYTaV/encr78spk/D
VyFXO3J0NDK1F/6PZtoa1joxVaF1k2qI3WB6csO8UXUJEo8IU9wfFLpG+BQ4cKK0
TTNrezDhjUAaI8tVJE6LUiZGNzFjhan0e4qPN80TiBlYJ5mE4gPbm9pUZLF8esOG
SubjJTSSAmAz0qTemwkBoW5M3JWeOe5g4Zr/gC9Rtaffas1oRSLVefbAXVP6aN85
f+2kjcC6JcE69GWwPE/HJYMYl8dfAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUHnsu
sqCUKq1Ome/i1UwlN5yV9iEwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzZCMTQwNzhDODRGNTExRUVBRkE3MzQ0RDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4QkwDQYJKoZIhvcNAQELBQAD
ggEBAEOVM9WeuUBGqmyF3OPJstxEVc4cU+XjQWoA6HbTsWqGC+uBd7kc7xGQm/tM
orzEdGKMwrMZbNdYJW/tY4LOcZMJ1EkTpIptrNMyEvzoI0BOL0hDcLPzEXXU7Svk
76GUV/czRL+ZvJtBV2/nNkghhSGLl4LcwyYVRelBBxFye8tR2QLlkWpTaFdcWYim
KdK/apz8jqnYJMtMbXyuopeWzRfZVsu74lBoMp6ALYEWZuVqEcCDPEFzPa1dpTKw
y/Vdm/bZf+j6O2Bc43e4AJIMlC15tv3YOE7xHBlOUgqzYVPFa2HpI8z36QAmyXI3
PE22VXJ5ltDEcOHOQ+7K2NbuX5Y=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org