Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77AFC0E67E3F11EF92083FB9762E951A.roa
File: 77AFC0E67E3F11EF92083FB9762E951A.roa (raw, json)
Hash identifier: II79xUg5zUlND5hbiabzuaC8J8pCTXROUThdteLkdQU=
Subject key identifier: 43:4C:8C:B0:20:F1:3B:B7:D8:CB:89:41:0C:3D:21:2A:99:2F:86:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC97
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77AFC0E67E3F11EF92083FB9762E951A.roa
Signing time: Sun 29 Sep 2024 08:47:33 +0000
ROA not before: Sun 29 Sep 2024 08:47:29 +0000
ROA not after: Mon 30 Dec 2024 08:47:29 +0000
asID: 17561
IP address blocks: 156.225.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48279 (0xbc97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:47:29 2024 GMT
Not After : Dec 30 08:47:29 2024 GMT
Subject: CN=66f91425-fdc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:7e:35:82:0b:bd:d6:7c:97:f6:1a:ba:26:e8:
71:db:a1:74:df:60:91:75:7b:f1:47:17:5b:5a:53:
f2:3c:f8:d8:0b:65:d0:dd:7f:9f:38:c7:dc:42:b4:
01:27:fa:cb:44:0d:7d:8c:08:33:cb:fc:d1:21:f0:
51:2f:99:b1:16:66:cd:cb:eb:cb:f7:0c:0c:05:d8:
d5:b0:4a:ee:1f:14:7a:72:52:c2:fa:87:66:1f:56:
38:54:33:7e:52:8f:3a:0a:e6:f3:ac:fa:e6:02:d2:
ab:f1:8d:38:61:c9:69:af:44:4d:d1:83:6b:fa:8e:
df:75:1d:fe:73:1e:f3:98:da:8c:92:40:63:a7:61:
f7:8d:bc:8c:fe:57:d1:fb:19:a4:4e:38:c1:5c:cd:
b9:38:73:72:fe:03:2e:fa:53:cb:0f:4f:2a:f2:00:
7d:9f:f4:89:10:44:6e:72:d6:a1:c4:1f:09:d3:68:
31:a1:48:3e:13:b4:15:03:df:33:a4:2f:c5:5b:93:
cb:75:6a:65:6b:45:66:e4:a3:2b:fb:6a:f1:16:88:
ff:e6:72:f5:ae:6b:df:f1:9c:52:1a:5c:88:29:73:
b9:3b:65:86:f0:33:78:2f:77:5d:2c:fc:59:36:31:
8d:9d:06:b9:41:5e:c4:e6:14:71:25:fd:2a:cd:96:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4C:8C:B0:20:F1:3B:B7:D8:CB:89:41:0C:3D:21:2A:99:2F:86:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/77AFC0E67E3F11EF92083FB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:33:5d:54:96:8c:d4:d9:d8:18:d9:c8:e7:86:e5:70:66:8a:
b0:f5:03:dd:be:5d:08:8c:c3:96:75:d5:c0:39:bc:84:b2:4f:
97:b0:c1:ca:87:d9:68:2d:cd:2c:b0:60:02:0f:e9:0b:c5:5b:
c3:cf:b4:a4:da:76:e7:f1:95:12:9b:3e:e8:84:65:56:83:6b:
35:ca:99:4d:c2:38:1a:6c:b2:5f:55:5e:3a:3e:1a:57:b2:5f:
8e:19:c1:21:8e:75:c6:39:bf:b3:88:6c:4c:ed:4e:2f:57:28:
67:e7:29:f6:8c:ea:29:fb:95:a7:f2:ea:48:e9:35:9c:ac:55:
20:02:7f:ce:96:72:9a:e9:34:aa:dc:d4:32:eb:8b:ce:47:4e:
1f:96:7b:de:69:61:25:96:0b:13:fb:f2:d8:aa:f3:5b:a6:bf:
33:6b:55:7e:7a:36:ac:6e:0d:b8:13:99:e1:ad:8c:f7:9d:df:
84:f4:72:3d:02:49:be:66:11:9d:7b:0d:1e:fd:73:e8:3e:50:
e5:48:d0:6b:a5:8a:c3:03:24:d1:15:19:81:42:44:8d:19:77:
65:1f:a9:62:42:33:cb:a5:d7:bc:29:27:b8:d4:ec:72:91:a1:
6b:13:4f:a1:af:42:19:3e:b5:60:2d:34:58:83:33:0a:aa:a6:
56:b1:7e:18
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALyXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTI5MDg0NzI5WhcNMjQxMjMwMDg0NzI5WjAYMRYw
FAYDVQQDEw02NmY5MTQyNS1mZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8n41ggu91nyX9hq6Juhx26F032CRdXvxRxdbWlPyPPjYC2XQ3X+fOMfc
QrQBJ/rLRA19jAgzy/zRIfBRL5mxFmbNy+vL9wwMBdjVsEruHxR6clLC+odmH1Y4
VDN+Uo86CubzrPrmAtKr8Y04Yclpr0RN0YNr+o7fdR3+cx7zmNqMkkBjp2H3jbyM
/lfR+xmkTjjBXM25OHNy/gMu+lPLD08q8gB9n/SJEERuctahxB8J02gxoUg+E7QV
A98zpC/FW5PLdWpla0Vm5KMr+2rxFoj/5nL1rmvf8ZxSGlyIKXO5O2WG8DN4L3dd
LPxZNjGNnQa5QV7E5hRxJf0qzZZmMQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFENM
jLAg8Tu32MuJQQw9ISqZL4YMMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83N0FGQzBFNjdFM0YxMUVGOTIwODNGQjk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOE3MA0GCSqGSIb3DQEBCwUA
A4IBAQCKM11UlozU2dgY2cjnhuVwZoqw9QPdvl0IjMOWddXAObyEsk+XsMHKh9lo
Lc0ssGACD+kLxVvDz7Sk2nbn8ZUSmz7ohGVWg2s1yplNwjgabLJfVV46PhpXsl+O
GcEhjnXGOb+ziGxM7U4vVyhn5yn2jOop+5Wn8upI6TWcrFUgAn/OlnKa6TSq3NQy
64vOR04flnveaWEllgsT+/LYqvNbpr8za1V+ejasbg24E5nhrYz3nd+E9HI9Akm+
ZhGdew0e/XPoPlDlSNBrpYrDAyTRFRmBQkSNGXdlH6liQjPLpde8KSe41OxykaFr
E0+hr0IZPrVgLTRYgzMKqqZWsX4Y
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:36 2024 by rpki-client on console-ams.rpki-client.org