Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8264D5E03B2811EE92AFDB394AD9E6FC.roa
File: 8264D5E03B2811EE92AFDB394AD9E6FC.roa (raw, json)
Hash identifier: ywM5kZS3rTlxkRqH0reoPqjc/nts/Mlcb/6r7fP+cQw=
Subject key identifier: C7:5E:32:B6:7A:4A:09:63:A5:EA:DB:75:7A:06:08:42:C7:AD:16:BA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 35BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8264D5E03B2811EE92AFDB394AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:59:27 +0000
ROA not before: Tue 15 Aug 2023 04:59:24 +0000
ROA not after: Mon 27 May 2024 04:59:24 +0000
asID: 140627
IP address blocks: 156.247.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13755 (0x35bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:59:24 2023 GMT
Not After : May 27 04:59:24 2024 GMT
Subject: CN=64db062f-54e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:08:25:a8:63:4f:21:35:c2:10:21:b9:22:0f:
44:17:0c:7b:4b:fa:b2:9b:a3:73:73:81:19:fe:09:
d7:57:ba:c4:f3:ac:f1:6e:e8:1e:0f:7d:85:20:c9:
03:5a:10:dc:64:d7:80:82:17:00:7b:c8:84:c1:3c:
f5:12:4b:92:87:71:83:cd:71:69:7c:03:10:11:60:
61:9d:5b:b9:f1:d0:81:f3:f3:a8:ec:2c:c4:0c:82:
3b:39:63:d3:d0:11:af:42:dc:0d:76:6c:7f:69:61:
48:65:39:15:cb:45:c6:3d:bd:27:f6:f7:b5:6c:eb:
b5:80:7e:3b:de:83:d1:bd:b0:f8:41:3b:db:e9:e8:
98:d2:77:d7:68:80:03:21:b6:51:53:2d:b6:77:f1:
91:60:61:84:dc:3d:ca:83:24:ba:c5:8f:51:ff:ae:
a7:15:f3:41:29:b0:00:ba:a2:ec:80:79:9f:04:68:
86:93:d6:ae:fc:3c:e9:a8:49:12:25:e4:c7:e5:3c:
e6:3d:cc:df:34:e3:a2:72:a7:2b:9c:e5:e8:10:23:
ef:ec:36:dc:1f:88:46:d2:1e:ad:cd:e7:a2:71:9d:
2d:c4:04:00:4e:90:6a:7a:88:56:8b:27:d0:70:9f:
3b:dd:f4:35:ec:66:3d:0b:1d:b8:7a:2e:7f:43:57:
b3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5E:32:B6:7A:4A:09:63:A5:EA:DB:75:7A:06:08:42:C7:AD:16:BA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8264D5E03B2811EE92AFDB394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:26:19:01:cc:bb:87:7c:7e:17:2e:5f:b5:07:f8:f3:c9:cd:
7d:a5:24:48:3a:45:46:7d:23:d9:4b:76:2e:80:0b:f1:30:5f:
a0:80:47:a1:69:96:03:3c:b6:50:0d:93:61:0a:f4:cf:ab:5c:
7b:68:91:7b:f4:e6:3d:bd:34:61:09:33:3f:05:11:28:80:cb:
12:e0:89:92:66:79:57:6b:f9:57:29:0d:47:8e:5b:07:3a:6e:
63:54:80:ba:33:09:ea:c5:f9:b3:db:0b:de:b8:15:87:73:92:
b6:c2:23:1f:f4:20:ad:1e:0e:0c:c1:d1:4a:ee:ea:38:79:2f:
ea:72:1c:6c:31:ce:0e:0d:0b:e6:b6:e0:d8:09:55:ce:9f:71:
e0:bd:44:bc:cf:3c:f7:9e:9e:64:d0:76:11:ea:d8:75:ee:56:
ce:2b:e5:28:62:b9:99:8b:ce:ae:b8:94:1b:5e:4a:a7:ce:bf:
48:93:71:41:af:5a:c9:96:cb:cd:69:12:68:ae:fd:96:20:9f:
7c:54:31:eb:bc:06:36:9c:50:f6:71:c7:d3:de:ad:0b:62:db:
a1:19:b8:79:28:75:68:98:94:a8:99:fe:ea:d4:30:a9:e9:f7:
e2:c7:d9:49:bf:a0:42:1c:a7:30:b7:57:fc:48:8e:99:61:07:
3f:fc:4d:cd
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNbswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNDU5MjRaFw0yNDA1MjcwNDU5MjRaMBgxFjAU
BgNVBAMTDTY0ZGIwNjJmLTU0ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCeCCWoY08hNcIQIbkiD0QXDHtL+rKbo3NzgRn+CddXusTzrPFu6B4PfYUg
yQNaENxk14CCFwB7yITBPPUSS5KHcYPNcWl8AxARYGGdW7nx0IHz86jsLMQMgjs5
Y9PQEa9C3A12bH9pYUhlORXLRcY9vSf297Vs67WAfjveg9G9sPhBO9vp6JjSd9do
gAMhtlFTLbZ38ZFgYYTcPcqDJLrFj1H/rqcV80EpsAC6ouyAeZ8EaIaT1q78POmo
SRIl5MflPOY9zN8046Jypyuc5egQI+/sNtwfiEbSHq3N56JxnS3EBABOkGp6iFaL
J9Bwnzvd9DXsZj0LHbh6Ln9DV7N3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUx14y
tnpKCWOl6tt1egYIQsetFrowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzgyNjRENUUwM0IyODExRUU5MkFGREIzOTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc9/wwDQYJKoZIhvcNAQELBQAD
ggEBACwmGQHMu4d8fhcuX7UH+PPJzX2lJEg6RUZ9I9lLdi6AC/EwX6CAR6FplgM8
tlANk2EK9M+rXHtokXv05j29NGEJMz8FESiAyxLgiZJmeVdr+VcpDUeOWwc6bmNU
gLozCerF+bPbC964FYdzkrbCIx/0IK0eDgzB0Uru6jh5L+pyHGwxzg4NC+a24NgJ
Vc6fceC9RLzPPPeenmTQdhHq2HXuVs4r5ShiuZmLzq64lBteSqfOv0iTcUGvWsmW
y81pEmiu/ZYgn3xUMeu8BjacUPZxx9PerQti26EZuHkodWiYlKiZ/urUMKnp9+LH
2Um/oEIcpzC3V/xIjplhBz/8Tc0=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:55 2024 by rpki-client on console-ams.rpki-client.org