Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/812A486A3B3011EE9E39DA514AD9E6FC.roa
File: 812A486A3B3011EE9E39DA514AD9E6FC.roa (raw, json)
Hash identifier: IuTT7ceZSx9mFmpmmcOOlJSCHiR4YmVUMT9TGS6mUmg=
Subject key identifier: 03:5B:95:71:F1:70:4E:AA:29:F4:4F:C5:59:8F:0D:62:E5:71:D3:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3635
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/812A486A3B3011EE9E39DA514AD9E6FC.roa
Signing time: Tue 15 Aug 2023 05:56:41 +0000
ROA not before: Tue 15 Aug 2023 05:56:37 +0000
ROA not after: Mon 27 May 2024 05:56:37 +0000
asID: 140627
IP address blocks: 156.247.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13877 (0x3635)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 05:56:37 2023 GMT
Not After : May 27 05:56:37 2024 GMT
Subject: CN=64db1399-79fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1f:8c:39:0b:11:81:0c:ee:09:44:a2:60:fb:
2b:de:79:29:88:b6:60:db:15:89:50:dd:01:14:b3:
b1:a2:87:00:e3:92:0c:33:49:6f:ba:21:ae:99:22:
aa:9b:95:62:2d:48:f4:42:60:e2:77:95:6d:83:fd:
87:30:d8:bd:fa:ec:3a:f4:5a:bb:06:55:76:94:31:
81:0e:79:57:0f:7a:fb:a2:73:52:a4:bb:5e:bd:22:
29:86:e6:0c:05:c7:42:07:bd:40:b7:62:c9:da:5a:
82:47:b2:b9:4d:d6:aa:8d:5a:08:ee:27:5d:6f:30:
6e:95:62:dc:ae:4d:ea:05:be:ce:69:c1:3c:b8:cd:
6b:99:91:d6:f9:80:3b:26:84:db:d0:22:e2:f3:36:
62:63:74:bf:e9:d3:50:e3:49:7e:e3:20:72:c1:a6:
82:8c:74:d8:04:8f:b1:cf:d2:cb:9e:5b:da:68:2d:
a8:40:74:f3:f0:82:0a:1e:79:29:15:d5:0a:14:67:
2e:0c:a4:f3:e8:b7:9c:55:2d:0b:01:f3:6c:d5:b8:
9e:b6:ec:ff:61:1e:36:7f:9e:89:07:a9:fd:76:6f:
99:23:a4:3c:95:ac:fb:a1:d7:54:1b:f8:4e:91:40:
e2:f3:13:ff:28:04:46:08:2b:9f:ab:e0:0d:80:94:
aa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5B:95:71:F1:70:4E:AA:29:F4:4F:C5:59:8F:0D:62:E5:71:D3:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/812A486A3B3011EE9E39DA514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.186.0/24
Signature Algorithm: sha256WithRSAEncryption
64:60:35:4a:69:b2:0b:ee:81:0d:47:2d:49:d1:a4:3c:73:38:
76:35:1b:a3:0c:00:81:de:d6:84:59:6a:6e:78:e1:9d:2b:e2:
79:04:a0:47:29:99:79:43:53:77:59:f1:eb:4b:44:f8:73:8a:
d0:87:18:93:f3:af:03:72:18:21:86:9d:7c:60:3a:12:b8:74:
66:8e:b2:8c:d0:fd:95:4b:19:dd:da:b7:dc:3a:9f:54:61:56:
97:a5:fa:4b:b9:ce:35:2f:44:c7:b6:61:0b:a1:1d:6e:83:5d:
b2:5f:4c:e2:11:76:d9:f8:8d:69:5d:2e:50:27:75:78:33:61:
9f:c6:8b:9f:b4:45:09:01:aa:92:0e:db:8f:7f:d3:4d:61:a7:
79:89:22:1a:e5:47:3e:b6:38:d3:d3:b6:1f:33:85:ff:44:7b:
be:4b:64:2d:19:ae:aa:d6:4f:9d:5e:b7:ff:36:5c:e8:b3:e0:
81:bd:de:65:16:22:3a:35:3c:23:87:14:1e:21:f6:a6:06:42:
17:a0:3b:46:76:75:66:d8:c3:c6:3d:aa:01:56:f5:a4:d3:b0:
38:36:86:cb:b7:84:fc:24:6a:48:45:fc:09:aa:44:cd:30:04:
12:ac:44:9a:a4:17:31:3f:29:d8:d6:c4:9c:d9:0d:29:d7:81:
c9:c5:8a:cf
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNjUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNTU2MzdaFw0yNDA1MjcwNTU2MzdaMBgxFjAU
BgNVBAMTDTY0ZGIxMzk5LTc5ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDdH4w5CxGBDO4JRKJg+yveeSmItmDbFYlQ3QEUs7GihwDjkgwzSW+6Ia6Z
IqqblWItSPRCYOJ3lW2D/Ycw2L367Dr0WrsGVXaUMYEOeVcPevuic1Kku169IimG
5gwFx0IHvUC3YsnaWoJHsrlN1qqNWgjuJ11vMG6VYtyuTeoFvs5pwTy4zWuZkdb5
gDsmhNvQIuLzNmJjdL/p01DjSX7jIHLBpoKMdNgEj7HP0sueW9poLahAdPPwggoe
eSkV1QoUZy4MpPPot5xVLQsB82zVuJ627P9hHjZ/nokHqf12b5kjpDyVrPuh11Qb
+E6RQOLzE/8oBEYIK5+r4A2AlKpVAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUA1uV
cfFwTqop9E/FWY8NYuVx07gwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzgxMkE0ODZBM0IzMDExRUU5RTM5REE1MTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc97owDQYJKoZIhvcNAQELBQAD
ggEBAGRgNUppsgvugQ1HLUnRpDxzOHY1G6MMAIHe1oRZam544Z0r4nkEoEcpmXlD
U3dZ8etLRPhzitCHGJPzrwNyGCGGnXxgOhK4dGaOsozQ/ZVLGd3at9w6n1RhVpel
+ku5zjUvRMe2YQuhHW6DXbJfTOIRdtn4jWldLlAndXgzYZ/Gi5+0RQkBqpIO249/
001hp3mJIhrlRz62ONPTth8zhf9Ee75LZC0ZrqrWT51et/82XOiz4IG93mUWIjo1
PCOHFB4h9qYGQhegO0Z2dWbYw8Y9qgFW9aTTsDg2hsu3hPwkakhF/AmqRM0wBBKs
RJqkFzE/KdjWxJzZDSnXgcnFis8=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org