Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB93514277B11EEA57AA7884AD9E6FC.roa
File: 7EB93514277B11EEA57AA7884AD9E6FC.roa (raw, json)
Hash identifier: 2ikalIaBws5TWyJVbLX0GGzLrq/Ui1NzQXhWLKqbQHI=
Subject key identifier: 66:2F:75:A3:4A:4B:E8:7F:CA:CF:AB:25:1F:B7:CE:6E:11:D3:92:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 317F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB93514277B11EEA57AA7884AD9E6FC.roa
Signing time: Fri 21 Jul 2023 04:03:06 +0000
ROA not before: Fri 21 Jul 2023 04:03:00 +0000
ROA not after: Thu 13 Jun 2024 04:03:00 +0000
asID: 22773
IP address blocks: 156.249.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12671 (0x317f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 04:03:00 2023 GMT
Not After : Jun 13 04:03:00 2024 GMT
Subject: CN=64ba0379-e857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:73:ba:5f:f9:d8:16:02:ac:cc:bc:b1:e6:
1d:e1:99:ff:be:25:12:0b:5b:de:cc:ec:43:71:98:
77:25:26:5b:4f:40:a7:9b:73:24:f8:8e:b5:80:f5:
c2:ec:dd:0f:e9:25:58:56:2c:29:25:75:9f:45:25:
ad:a3:67:4d:a7:b9:46:26:c9:fe:a6:f3:32:be:ff:
9f:25:3b:3f:6c:49:2b:7c:8e:d3:cf:fa:44:37:2e:
86:71:93:7e:01:15:f7:85:ba:98:ff:bf:df:65:e8:
c0:c7:c2:bb:ed:af:85:0e:1d:d3:60:ed:36:3a:b2:
34:4c:f4:c1:65:3a:b1:32:f3:00:be:da:de:62:6f:
c6:85:86:b9:3b:81:6a:1f:61:c3:89:aa:b3:d0:6c:
79:99:bd:67:41:99:ad:09:16:ab:10:14:a6:28:f8:
c8:0e:4b:dd:d7:33:fb:b9:89:3a:fa:04:4e:3e:74:
8e:82:e2:b2:e1:4b:70:fd:01:63:ea:a6:6b:da:55:
af:0c:68:e2:16:bd:e3:cd:4a:17:c8:fc:b4:4a:8a:
c5:fa:39:cc:dc:0f:b2:ae:24:cd:15:e8:df:fd:e3:
b6:3a:d7:c6:f0:86:ad:b4:45:be:3a:e7:fe:8f:84:
db:b8:3d:93:96:fa:cb:3a:e5:fb:b8:b8:0a:0a:f7:
a7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2F:75:A3:4A:4B:E8:7F:CA:CF:AB:25:1F:B7:CE:6E:11:D3:92:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EB93514277B11EEA57AA7884AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.20.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:d4:ee:df:a3:cc:8d:18:b0:44:34:01:dc:e1:91:11:91:ac:
ca:c8:27:cf:4f:76:8d:f4:b1:5d:2d:cd:10:85:d0:70:37:e1:
ab:13:31:a6:c6:d7:88:a0:6f:b0:25:0d:61:c6:e1:b9:2e:bd:
3e:f6:ec:4f:e1:a5:98:1e:78:94:80:03:dc:02:a7:2b:3b:85:
09:2c:8e:1f:0f:e7:cd:31:c1:a0:11:c5:4c:ae:59:bb:59:14:
c9:da:92:a0:09:2c:1c:94:39:f0:ed:99:0a:1b:cd:de:2f:d6:
b6:8c:a9:72:ab:8b:66:69:49:f1:b0:b6:ea:5b:1d:12:0a:fa:
0b:24:2d:95:34:f7:4f:98:b8:13:37:00:b5:68:f3:d1:32:08:
ae:a3:59:1e:0b:56:b8:87:29:47:a0:c7:99:f1:89:92:06:51:
68:e3:80:6e:bc:2a:7a:51:ec:20:7a:09:fd:31:fb:a4:55:15:
08:e1:f4:5b:f3:e3:05:8c:fe:f1:a8:8f:36:04:4f:1d:6d:af:
60:02:6f:10:75:88:ac:5c:bb:f0:ef:a1:bf:28:bc:ee:e5:76:
5d:55:0c:78:8c:f1:e8:4d:c1:db:26:6f:ba:1d:86:81:7b:a9:
49:68:ae:6d:cd:c0:cb:f3:4b:8a:d3:09:a9:62:b9:90:b4:ee:
22:89:b7:b8
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICMX8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MjEwNDAzMDBaFw0yNDA2MTMwNDAzMDBaMBgxFjAU
BgNVBAMTDTY0YmEwMzc5LWU4NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDUanO6X/nYFgKszLyx5h3hmf++JRILW97M7ENxmHclJltPQKebcyT4jrWA
9cLs3Q/pJVhWLCkldZ9FJa2jZ02nuUYmyf6m8zK+/58lOz9sSSt8jtPP+kQ3LoZx
k34BFfeFupj/v99l6MDHwrvtr4UOHdNg7TY6sjRM9MFlOrEy8wC+2t5ib8aFhrk7
gWofYcOJqrPQbHmZvWdBma0JFqsQFKYo+MgOS93XM/u5iTr6BE4+dI6C4rLhS3D9
AWPqpmvaVa8MaOIWvePNShfI/LRKisX6OczcD7KuJM0V6N/947Y618bwhq20Rb46
5/6PhNu4PZOW+ss65fu4uAoK96cHAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUZi91
o0pL6H/Kz6slH7fObhHTkkAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzdFQjkzNTE0Mjc3QjExRUVBNTdBQTc4ODRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKc+RQwDQYJKoZIhvcNAQELBQAD
ggEBAC/U7t+jzI0YsEQ0AdzhkRGRrMrIJ89Pdo30sV0tzRCF0HA34asTMabG14ig
b7AlDWHG4bkuvT727E/hpZgeeJSAA9wCpys7hQksjh8P580xwaARxUyuWbtZFMna
kqAJLByUOfDtmQobzd4v1raMqXKri2ZpSfGwtupbHRIK+gskLZU090+YuBM3ALVo
89EyCK6jWR4LVriHKUegx5nxiZIGUWjjgG68KnpR7CB6Cf0x+6RVFQjh9Fvz4wWM
/vGojzYETx1tr2ACbxB1iKxcu/Dvob8ovO7ldl1VDHiM8ehNwdsmb7odhoF7qUlo
rm3NwMvzS4rTCaliuZC07iKJt7g=
-----END CERTIFICATE-----
Generated at Sun May 5 02:12:47 2024 by rpki-client on console-ams.rpki-client.org