Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73F7B77AFD2911EEBDBCDE39017001B1.roa
File: 73F7B77AFD2911EEBDBCDE39017001B1.roa (raw, json)
Hash identifier: kdF4CLmXmUYcxmJ1LzlBXHlfYoDjIzktV14hlPMdWYU=
Subject key identifier: C3:AB:43:F2:CE:00:72:28:EA:12:7B:E1:FC:EB:61:ED:B4:18:26:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 82FB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73F7B77AFD2911EEBDBCDE39017001B1.roa
Signing time: Thu 18 Apr 2024 02:14:58 +0000
ROA not before: Thu 18 Apr 2024 02:14:54 +0000
ROA not after: Sat 19 Oct 2024 02:14:54 +0000
asID: 33182
IP address blocks: 156.245.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33531 (0x82fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 02:14:54 2024 GMT
Not After : Oct 19 02:14:54 2024 GMT
Subject: CN=66208222-39f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fd:33:51:6c:00:62:4a:c2:53:47:0e:35:a6:
32:fc:9c:6b:19:98:70:23:28:e8:9c:95:9a:fd:0a:
88:21:83:c5:f9:63:42:d5:04:bd:af:11:af:5a:97:
e7:dc:cb:e9:d4:28:27:b8:68:b5:8f:58:3e:a0:21:
01:c7:de:4c:0d:38:b7:59:98:d8:a6:4b:da:4a:66:
62:d9:f3:d6:05:48:18:99:ea:99:e7:df:82:ac:1a:
ef:53:1f:7a:dd:b2:1a:57:64:ac:72:40:9a:8b:87:
69:b3:23:25:47:61:18:f3:92:9d:5c:60:77:1f:90:
31:e3:2e:54:b5:53:91:9f:14:58:62:b6:db:b3:0c:
0e:f2:88:d9:e9:db:7e:57:38:ea:17:92:dd:75:77:
f2:1b:60:4a:8b:07:97:fd:81:4e:4a:bc:eb:f0:53:
5b:21:36:44:c2:45:fe:d4:da:b4:c8:b8:19:f4:99:
64:ba:21:e8:0a:60:d8:61:a6:f9:ab:74:20:07:21:
7d:ad:96:21:99:fa:25:e4:a3:1e:75:2a:3d:ea:9b:
b9:8a:88:0a:36:9a:bf:8e:0d:e1:de:d9:c9:94:c3:
d5:f6:9a:8f:be:16:63:37:c7:b4:96:d8:a9:23:77:
66:1c:5a:b0:7d:f6:49:33:df:c6:64:b9:2c:d7:ab:
dc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AB:43:F2:CE:00:72:28:EA:12:7B:E1:FC:EB:61:ED:B4:18:26:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73F7B77AFD2911EEBDBCDE39017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.5.0/24
Signature Algorithm: sha256WithRSAEncryption
94:2e:ac:02:6e:fd:7e:85:cf:07:ef:61:14:7c:a6:a2:3c:e4:
2e:a3:ce:a9:7e:53:bf:98:5b:24:83:fb:9a:94:22:00:52:8d:
82:52:25:ef:a5:e0:06:c4:1a:e9:f6:8f:ee:88:3f:32:61:21:
90:6f:0f:32:39:89:d0:39:72:b3:ca:63:51:bb:05:a0:7a:e7:
69:4f:7c:70:39:ff:d0:36:46:ad:3b:53:95:0c:9d:5a:84:a3:
24:8f:e4:cf:33:43:17:18:ad:fa:95:46:a5:c3:ad:28:58:22:
dd:35:6d:44:e2:85:c0:b5:c4:5f:0a:68:f5:db:d0:37:01:e9:
7f:d5:99:be:ff:f5:60:75:bb:25:bb:91:37:53:a8:d4:48:a1:
92:78:89:1c:90:c3:0f:93:03:eb:fa:2c:8a:1c:fd:62:2e:0f:
e2:23:ab:8c:07:5b:aa:1f:64:00:a3:3e:9d:3b:19:48:11:ba:
e4:f6:99:f5:be:8c:bb:3c:35:ec:fb:5f:ac:81:67:2f:6e:b4:
74:14:e9:51:4d:38:00:0b:2d:10:67:ae:50:d5:2c:c4:69:a7:
d3:2a:66:01:56:27:ea:d1:1e:bb:a6:10:d7:9c:89:2a:b8:e2:
d5:26:2b:c4:be:c6:cd:3a:2f:05:cf:c6:1e:5d:b9:6d:65:a0:
00:61:6e:2d
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIL7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDE4MDIxNDU0WhcNMjQxMDE5MDIxNDU0WjAYMRYw
FAYDVQQDEw02NjIwODIyMi0zOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAo/0zUWwAYkrCU0cONaYy/JxrGZhwIyjonJWa/QqIIYPF+WNC1QS9rxGv
Wpfn3Mvp1CgnuGi1j1g+oCEBx95MDTi3WZjYpkvaSmZi2fPWBUgYmeqZ59+CrBrv
Ux963bIaV2SsckCai4dpsyMlR2EY85KdXGB3H5Ax4y5UtVORnxRYYrbbswwO8ojZ
6dt+VzjqF5LddXfyG2BKiweX/YFOSrzr8FNbITZEwkX+1Nq0yLgZ9JlkuiHoCmDY
Yab5q3QgByF9rZYhmfol5KMedSo96pu5iogKNpq/jg3h3tnJlMPV9pqPvhZjN8e0
ltipI3dmHFqwffZJM9/GZLks16vcKwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMOr
Q/LOAHIo6hJ74fzrYe20GCayMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83M0Y3Qjc3QUZEMjkxMUVFQkRCQ0RFMzkwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPUFMA0GCSqGSIb3DQEBCwUA
A4IBAQCULqwCbv1+hc8H72EUfKaiPOQuo86pflO/mFskg/ualCIAUo2CUiXvpeAG
xBrp9o/uiD8yYSGQbw8yOYnQOXKzymNRuwWgeudpT3xwOf/QNkatO1OVDJ1ahKMk
j+TPM0MXGK36lUalw60oWCLdNW1E4oXAtcRfCmj129A3Ael/1Zm+//Vgdbslu5E3
U6jUSKGSeIkckMMPkwPr+iyKHP1iLg/iI6uMB1uqH2QAoz6dOxlIEbrk9pn1voy7
PDXs+1+sgWcvbrR0FOlRTTgACy0QZ65Q1SzEaafTKmYBVifq0R67phDXnIkquOLV
JivEvsbNOi8Fz8YeXbltZaAAYW4t
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:54 2024 by rpki-client on console-ams.rpki-client.org