Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7015EB785EEE11EF9B70DE7F762E951A.roa
File: 7015EB785EEE11EF9B70DE7F762E951A.roa (raw, json)
Hash identifier: Vah3BrVsBcPXmEPr6DdYQX6KV67dfgP4wK6yVhyMUaw=
Subject key identifier: 2A:04:AC:B5:5B:8E:6D:59:BF:B5:09:38:71:BD:24:0F:BF:3F:CE:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: A9BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7015EB785EEE11EF9B70DE7F762E951A.roa
Signing time: Tue 20 Aug 2024 12:19:25 +0000
ROA not before: Tue 20 Aug 2024 12:19:21 +0000
ROA not after: Tue 27 May 2025 12:19:21 +0000
asID: 399077
IP address blocks: 156.251.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43452 (0xa9bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 20 12:19:21 2024 GMT
Not After : May 27 12:19:21 2025 GMT
Subject: CN=66c489cd-b79c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:73:cc:93:ac:a0:dd:ee:7e:0a:c5:31:56:af:
21:d6:fe:48:fd:ed:fb:34:16:5e:44:bf:f7:17:14:
38:14:cd:79:07:54:84:8b:0e:73:21:a9:56:95:6d:
da:fd:bf:35:ef:8c:d0:3e:b5:b4:8c:0c:de:ec:ab:
1b:bc:7b:1e:9a:55:b7:10:50:72:b2:04:57:12:38:
66:b2:e3:af:91:70:2b:c4:73:82:67:35:1f:14:7c:
fd:c4:23:15:31:c6:67:69:ef:93:2c:ad:9c:7b:a8:
b5:ce:b0:d9:7f:09:c5:87:82:08:14:65:5b:28:1a:
8d:45:b7:a5:31:d6:3d:12:a9:d4:26:bf:ba:39:46:
19:1d:ba:01:12:c1:09:52:a4:63:f4:d9:43:d0:ec:
bd:b4:9e:1b:f3:b3:29:b8:a5:f8:43:2e:02:1b:c7:
fc:7a:e2:d8:4e:48:cb:aa:57:26:df:bd:00:54:21:
41:00:46:11:17:6a:40:70:62:7f:c4:21:09:9c:f8:
da:a8:2c:8c:03:9d:69:ae:36:51:87:b3:6a:d3:e3:
3c:35:44:6d:4a:25:9f:cc:6b:82:65:ba:b2:f4:c5:
4b:a5:0e:96:16:4b:be:a3:b8:d8:b3:9a:30:2a:df:
d7:e8:2f:d1:15:6e:56:d4:ad:fe:e7:a8:bc:2f:19:
ff:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:04:AC:B5:5B:8E:6D:59:BF:B5:09:38:71:BD:24:0F:BF:3F:CE:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7015EB785EEE11EF9B70DE7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.51.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:40:19:fd:cf:48:4a:5a:f4:c8:01:49:9f:9d:bd:ca:37:04:
69:96:e9:cf:21:87:2c:46:03:e0:e6:51:8a:59:95:a3:48:e6:
64:5b:13:85:51:e9:35:3f:bb:b0:8e:79:13:58:34:ae:e5:40:
43:18:f0:75:63:d2:76:29:51:7c:69:d6:5f:35:56:01:4c:30:
b7:71:6a:95:0e:3f:2f:46:80:47:f8:78:a7:70:17:48:03:8e:
5f:fb:0f:94:c2:9d:cc:fb:17:92:63:db:19:30:58:f5:7b:8d:
62:6a:75:d9:1d:3c:e8:5f:67:3f:8f:0b:08:0e:23:de:f7:e7:
58:f8:92:b7:18:32:03:bf:eb:b6:25:3a:87:7c:0c:57:69:37:
3c:c3:7c:97:8c:82:af:fe:3a:20:2b:24:7f:32:25:75:4b:51:
39:81:46:18:6e:a5:1d:3e:ac:d7:c9:57:f2:66:48:67:66:de:
df:39:6e:33:27:27:11:0d:39:bd:ea:82:9d:ed:0e:49:a7:cc:
ca:c2:77:9d:89:e8:f0:c1:d3:e2:b2:4f:20:45:4e:72:92:41:
e0:01:7f:59:53:16:77:67:3c:cf:bc:58:6b:e1:c6:2d:79:77:
38:b9:64:2e:42:98:31:17:7d:34:eb:1a:ba:f5:0a:93:87:65:
b9:30:a8:fa
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAKm8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwODIwMTIxOTIxWhcNMjUwNTI3MTIxOTIxWjAYMRYw
FAYDVQQDEw02NmM0ODljZC1iNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4nPMk6yg3e5+CsUxVq8h1v5I/e37NBZeRL/3FxQ4FM15B1SEiw5zIalW
lW3a/b8174zQPrW0jAze7KsbvHsemlW3EFBysgRXEjhmsuOvkXArxHOCZzUfFHz9
xCMVMcZnae+TLK2ce6i1zrDZfwnFh4IIFGVbKBqNRbelMdY9EqnUJr+6OUYZHboB
EsEJUqRj9NlD0Oy9tJ4b87MpuKX4Qy4CG8f8euLYTkjLqlcm370AVCFBAEYRF2pA
cGJ/xCEJnPjaqCyMA51prjZRh7Nq0+M8NURtSiWfzGuCZbqy9MVLpQ6WFku+o7jY
s5owKt/X6C/RFW5W1K3+56i8Lxn/iwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCoE
rLVbjm1Zv7UJOHG9JA+/P84TMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MDE1RUI3ODVFRUUxMUVGOUI3MERFN0Y3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPszMA0GCSqGSIb3DQEBCwUA
A4IBAQBaQBn9z0hKWvTIAUmfnb3KNwRplunPIYcsRgPg5lGKWZWjSOZkWxOFUek1
P7uwjnkTWDSu5UBDGPB1Y9J2KVF8adZfNVYBTDC3cWqVDj8vRoBH+HincBdIA45f
+w+Uwp3M+xeSY9sZMFj1e41ianXZHTzoX2c/jwsIDiPe9+dY+JK3GDIDv+u2JTqH
fAxXaTc8w3yXjIKv/jogKyR/MiV1S1E5gUYYbqUdPqzXyVfyZkhnZt7fOW4zJycR
DTm96oKd7Q5Jp8zKwnediejwwdPisk8gRU5ykkHgAX9ZUxZ3ZzzPvFhr4cYteXc4
uWQuQpgxF3006xq69QqTh2W5MKj6
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:34 2024 by rpki-client on console-fra.rpki-client.org