Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71756CDACC9611EF8119BF7C762E951A.roa
File: 71756CDACC9611EF8119BF7C762E951A.roa (raw, json)
Hash identifier: aPi+XuFLmH6XrGy2ThhDsg8mKIu8BncPFvLQZnfbR+0=
Subject key identifier: 1B:53:6D:9C:E6:B3:81:24:C5:08:4D:6D:82:96:51:46:2D:D2:15:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F93A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71756CDACC9611EF8119BF7C762E951A.roa
Signing time: Tue 07 Jan 2025 01:26:39 +0000
ROA not before: Tue 07 Jan 2025 01:26:36 +0000
ROA not after: Mon 13 Dec 2027 01:26:36 +0000
asID: 17561
IP address blocks: 156.227.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63802 (0xf93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 01:26:36 2025 GMT
Not After : Dec 13 01:26:36 2027 GMT
Subject: CN=677c82cf-21e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ce:44:ed:6a:7d:dd:60:53:77:e3:21:e3:3f:
1b:3b:a5:82:57:aa:12:b5:55:c1:80:06:80:d4:2c:
0a:37:ea:cc:2a:da:39:87:22:c4:71:b9:32:98:8b:
9f:41:33:c1:03:06:5b:38:d8:17:38:bc:cb:17:1a:
12:07:6c:96:54:d5:73:28:91:09:f3:f0:80:65:34:
1a:8f:88:fb:bc:48:4f:9d:85:8f:6f:88:c3:18:b7:
b7:dc:09:0c:4b:4b:18:fb:ed:c8:b2:7d:ce:51:00:
74:1c:b6:7a:1b:10:42:08:a2:17:fe:55:3f:f5:01:
a2:70:f3:83:a9:5f:42:ed:89:4a:e1:02:e3:ca:65:
7c:dd:df:87:66:84:f6:6b:69:12:42:8e:f0:7b:7c:
dc:0b:c5:d6:fc:cb:61:f5:37:d9:5c:1f:bf:a0:23:
bc:31:dc:dc:de:91:3e:c2:dc:2f:af:65:3b:59:88:
ec:14:db:68:b4:f8:23:cd:33:10:7f:ee:a3:af:3a:
c3:33:6b:c8:1d:5b:25:d7:2a:40:d6:44:57:42:8a:
c6:47:84:07:18:92:13:c3:4d:5b:da:ca:f0:f6:b6:
48:d4:14:e3:ba:7c:52:b6:52:84:bc:67:66:dd:94:
17:7e:2e:e4:f7:ce:5f:79:46:61:01:b6:0a:35:c6:
6a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:53:6D:9C:E6:B3:81:24:C5:08:4D:6D:82:96:51:46:2D:D2:15:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/71756CDACC9611EF8119BF7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.82.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1c:b8:df:51:07:94:29:2c:45:74:e8:69:8b:b4:19:b0:20:
bc:0a:b4:aa:f8:d0:e3:bb:83:cc:c0:89:1f:d1:fe:68:22:e6:
db:a2:59:7d:3b:59:d6:0e:fc:e2:36:37:47:54:41:85:68:42:
48:09:de:f1:57:1d:27:c4:d5:af:c8:28:40:dc:89:27:38:ff:
73:cf:bc:0a:d6:12:db:64:cc:f4:74:4c:ce:c5:ad:79:4e:4c:
83:e6:2f:82:5a:e8:cb:ed:c0:5f:c2:61:63:e5:9a:d2:4f:54:
e4:99:62:91:11:ea:4c:a1:51:54:48:4e:1b:cc:19:6b:e8:dc:
dc:f1:a9:77:0c:65:ba:cb:6c:ed:1f:e4:ec:8b:40:1a:a3:99:
ee:49:71:07:43:9d:d1:34:4d:15:68:03:2e:6b:db:d2:88:65:
f1:1c:ac:31:8b:d6:a1:7e:e7:ec:fb:ac:58:ce:f4:31:e2:0d:
5e:d6:f2:e3:4a:69:1c:e6:3d:11:8b:ed:a5:00:11:a9:be:95:
b0:40:5c:ad:71:68:cd:be:ba:bb:b9:bb:0c:b1:34:aa:31:a8:
16:40:1a:40:ce:40:b5:c1:cc:84:63:d5:29:ea:e2:81:a1:ba:
62:6b:ea:9e:40:7e:5a:03:3b:66:3f:5e:9b:ca:e6:48:5c:1f:
83:cc:0c:8d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPk6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MDEyNjM2WhcNMjcxMjEzMDEyNjM2WjAYMRYw
FAYDVQQDEw02NzdjODJjZi0yMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+s5E7Wp93WBTd+Mh4z8bO6WCV6oStVXBgAaA1CwKN+rMKto5hyLEcbky
mIufQTPBAwZbONgXOLzLFxoSB2yWVNVzKJEJ8/CAZTQaj4j7vEhPnYWPb4jDGLe3
3AkMS0sY++3Isn3OUQB0HLZ6GxBCCKIX/lU/9QGicPODqV9C7YlK4QLjymV83d+H
ZoT2a2kSQo7we3zcC8XW/Mth9TfZXB+/oCO8Mdzc3pE+wtwvr2U7WYjsFNtotPgj
zTMQf+6jrzrDM2vIHVsl1ypA1kRXQorGR4QHGJITw01b2srw9rZI1BTjunxStlKE
vGdm3ZQXfi7k985feUZhAbYKNcZqcQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBtT
bZzms4EkxQhNbYKWUUYt0hUkMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MTc1NkNEQUNDOTYxMUVGODExOUJGN0M3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnONSMA0GCSqGSIb3DQEBCwUA
A4IBAQACHLjfUQeUKSxFdOhpi7QZsCC8CrSq+NDju4PMwIkf0f5oIubboll9O1nW
DvziNjdHVEGFaEJICd7xVx0nxNWvyChA3IknOP9zz7wK1hLbZMz0dEzOxa15TkyD
5i+CWujL7cBfwmFj5ZrST1TkmWKREepMoVFUSE4bzBlr6Nzc8al3DGW6y2ztH+Ts
i0Aao5nuSXEHQ53RNE0VaAMua9vSiGXxHKwxi9ahfufs+6xYzvQx4g1e1vLjSmkc
5j0Ri+2lABGpvpWwQFytcWjNvrq7ubsMsTSqMagWQBpAzkC1wcyEY9Up6uKBobpi
a+qeQH5aAztmP16byuZIXB+DzAyN
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:53:30 2025 by rpki-client