Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEAE356A32C11EFA35017A7762E951A.roa
File: 7EEAE356A32C11EFA35017A7762E951A.roa (raw, json)
Hash identifier: gxNLOnv7cdxxLMDiCuoMEOSorTO6Cn8aUGvA80KV+iQ=
Subject key identifier: CA:8B:78:79:9D:29:DB:00:3A:99:ED:6F:99:19:76:A4:50:F7:F4:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D2DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEAE356A32C11EFA35017A7762E951A.roa
Signing time: Fri 15 Nov 2024 08:34:57 +0000
ROA not before: Fri 15 Nov 2024 08:34:54 +0000
ROA not after: Tue 17 Dec 2024 08:34:54 +0000
asID: 14315
IP address blocks: 156.224.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53979 (0xd2db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 15 08:34:54 2024 GMT
Not After : Dec 17 08:34:54 2024 GMT
Subject: CN=673707b1-45a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b1:07:24:31:26:a3:f7:c2:fa:94:3c:5b:67:
1d:23:2d:35:25:f7:4e:86:22:3a:fc:ef:ae:d2:55:
0d:a0:b3:07:a9:3f:e5:3b:90:67:23:ac:ef:ff:0a:
7f:3d:f9:d0:3a:0b:75:e6:f7:f4:03:53:44:30:21:
d2:e5:4c:9e:90:dc:9f:24:9b:1f:f5:21:1d:e6:79:
df:ec:70:46:21:1a:7b:5b:28:b7:54:8c:d9:a2:dc:
95:04:2f:4a:2c:81:72:48:c9:1e:7d:d2:e9:b0:4d:
75:f7:dc:a0:b1:2b:ad:ae:e0:18:ad:95:d4:76:c8:
73:5a:a0:dd:9b:d2:79:f9:64:12:8d:b8:f9:78:a8:
bc:36:3c:80:12:d6:a0:0d:0c:ae:38:07:ed:a5:f1:
7c:9b:8c:e7:e4:0d:10:ef:4d:03:e6:82:03:48:95:
05:d1:c9:0d:65:06:99:84:c1:75:73:4d:5e:28:06:
64:fc:d6:21:18:9e:93:c1:94:3f:e5:43:eb:38:a3:
0f:43:eb:91:3d:2b:dd:1c:a0:76:5e:b7:3b:0e:96:
49:e8:5b:32:f0:1e:15:9a:2d:85:77:f1:b0:5c:ed:
66:64:68:5d:db:34:f0:84:8a:5d:1f:f2:7e:53:ba:
e2:ed:32:c2:73:b2:f1:df:de:ef:ad:44:52:28:c0:
16:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8B:78:79:9D:29:DB:00:3A:99:ED:6F:99:19:76:A4:50:F7:F4:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7EEAE356A32C11EFA35017A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.68.0/22
Signature Algorithm: sha256WithRSAEncryption
34:09:3e:71:99:00:9e:e6:4d:4f:b6:db:5b:39:55:4d:64:cd:
a9:3a:29:ae:b4:5c:99:63:3b:a1:f7:1c:80:fe:4c:05:e8:ae:
e9:3c:a4:eb:ed:96:3d:55:e9:95:7e:87:1c:ed:37:40:43:98:
1c:8a:9c:7f:fc:4f:58:e2:ab:5d:06:88:8a:d7:f5:5c:09:1b:
c9:84:2f:4a:9d:d1:a2:d5:34:b8:3d:ef:a5:cd:3f:06:25:61:
59:fe:a3:65:bb:5d:35:3a:ec:43:cd:c0:e5:67:64:4b:03:8c:
65:af:21:28:1c:13:01:49:20:ae:cc:16:8c:10:43:5c:0c:36:
02:86:74:a0:a6:e8:20:46:e1:f8:59:46:40:a3:3a:c0:28:d0:
89:7e:bf:f2:22:a0:f1:33:cc:49:da:be:01:f5:7f:be:d9:b9:
8d:18:47:60:f5:25:ad:5e:1c:2c:d4:8c:38:ea:62:8b:42:bb:
0f:8c:36:c5:8c:ef:d1:c0:3a:72:c4:11:d1:7e:15:2e:f9:d0:
b4:d0:64:35:ab:61:8b:c6:cb:10:cc:bf:9c:81:1a:17:11:14:
3b:b8:0f:59:0a:05:68:c9:0e:19:9a:7e:dd:24:50:c0:62:d4:
3f:7b:be:d1:5a:ff:4e:0c:53:67:ce:4b:e7:0f:58:51:af:1b:
94:a6:9f:44
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANLbMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTE1MDgzNDU0WhcNMjQxMjE3MDgzNDU0WjAYMRYw
FAYDVQQDEw02NzM3MDdiMS00NWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3rEHJDEmo/fC+pQ8W2cdIy01JfdOhiI6/O+u0lUNoLMHqT/lO5BnI6zv
/wp/PfnQOgt15vf0A1NEMCHS5UyekNyfJJsf9SEd5nnf7HBGIRp7Wyi3VIzZotyV
BC9KLIFySMkefdLpsE1199ygsSutruAYrZXUdshzWqDdm9J5+WQSjbj5eKi8NjyA
EtagDQyuOAftpfF8m4zn5A0Q700D5oIDSJUF0ckNZQaZhMF1c01eKAZk/NYhGJ6T
wZQ/5UPrOKMPQ+uRPSvdHKB2Xrc7DpZJ6Fsy8B4Vmi2Fd/GwXO1mZGhd2zTwhIpd
H/J+U7ri7TLCc7Lx397vrURSKMAW7wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMqL
eHmdKdsAOpntb5kZdqRQ9/S4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83RUVBRTM1NkEzMkMxMUVGQTM1MDE3QTc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnOBEMA0GCSqGSIb3DQEBCwUA
A4IBAQA0CT5xmQCe5k1PtttbOVVNZM2pOimutFyZYzuh9xyA/kwF6K7pPKTr7ZY9
VemVfocc7TdAQ5gcipx//E9Y4qtdBoiK1/VcCRvJhC9KndGi1TS4Pe+lzT8GJWFZ
/qNlu101OuxDzcDlZ2RLA4xlryEoHBMBSSCuzBaMEENcDDYChnSgpuggRuH4WUZA
ozrAKNCJfr/yIqDxM8xJ2r4B9X++2bmNGEdg9SWtXhws1Iw46mKLQrsPjDbFjO/R
wDpyxBHRfhUu+dC00GQ1q2GLxssQzL+cgRoXERQ7uA9ZCgVoyQ4Zmn7dJFDAYtQ/
e77RWv9ODFNnzkvnD1hRrxuUpp9E
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:36 2024 by rpki-client on console-fra.rpki-client.org