Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88544900038611EFA2208221017001B1.roa
File: 88544900038611EFA2208221017001B1.roa (raw, json)
Hash identifier: Sfp97oVVuUW2ZPJh04u0KD0T72PKjGo3w5vIivMCtf4=
Subject key identifier: 6D:5D:FE:16:22:90:76:80:D0:F2:12:9C:9E:41:36:7D:5C:1F:FF:69
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85AA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88544900038611EFA2208221017001B1.roa
Signing time: Fri 26 Apr 2024 04:36:22 +0000
ROA not before: Fri 26 Apr 2024 04:36:18 +0000
ROA not after: Tue 03 Sep 2024 04:36:18 +0000
asID: 138195
IP address blocks: 156.234.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34218 (0x85aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:36:18 2024 GMT
Not After : Sep 3 04:36:18 2024 GMT
Subject: CN=662b2f46-cb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:c8:a9:27:bd:1a:7a:31:69:ad:dd:b4:c2:
c3:91:92:85:08:42:01:07:4a:11:22:eb:92:d4:83:
e5:f9:7b:79:f1:7a:60:07:11:18:67:25:73:6a:83:
f6:70:6c:12:ee:0d:dd:b1:46:ed:d7:7c:d1:b8:c1:
02:0f:6c:b5:02:d4:b6:85:2b:75:06:51:c5:a9:41:
43:e3:25:09:c4:b0:9b:08:ce:d6:24:b6:9b:22:30:
e1:b7:52:d2:5c:2c:3d:06:6f:e7:37:14:da:44:fe:
56:1f:55:21:db:15:c1:7d:87:1a:8c:3c:e4:35:40:
1c:76:3e:cb:61:1f:84:a9:64:04:a1:85:55:b2:01:
7f:43:5c:41:f9:55:2d:b9:63:28:5a:d0:e2:3f:a4:
ef:d0:34:6e:76:02:fa:a8:92:2b:e4:b4:0d:bc:f9:
a4:25:22:9b:f4:15:98:69:a3:08:a5:a1:32:6e:35:
0b:f8:3b:3a:9a:f7:ff:5f:b8:27:10:87:88:df:55:
b2:eb:d5:4b:c1:02:4b:16:39:a4:1a:cd:c3:09:33:
c7:4f:7f:ac:f2:76:66:9c:23:32:e2:df:24:01:30:
af:c0:ff:bd:25:27:33:07:16:fe:23:7c:63:79:6a:
e2:c5:44:73:13:64:dd:cf:1d:26:b8:20:96:c1:3e:
0c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:5D:FE:16:22:90:76:80:D0:F2:12:9C:9E:41:36:7D:5C:1F:FF:69
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/88544900038611EFA2208221017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.201.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:89:e3:85:78:d3:94:55:1a:70:77:30:47:45:38:c7:76:21:
1e:cb:b6:17:99:be:6b:27:b6:66:46:7b:d7:4a:53:9a:c5:70:
f7:63:86:11:c1:0f:e9:20:33:a5:d3:73:55:ca:e0:0f:4b:c8:
75:57:72:e3:2f:37:7e:0c:86:36:3a:8e:96:43:48:f1:ad:a8:
f8:98:f9:48:51:54:f6:07:71:a9:4b:6c:28:4a:c7:61:4e:bb:
0a:e8:e8:a1:01:6e:e4:f8:a2:18:d4:53:4a:07:b5:69:f7:d6:
b7:8c:80:fc:8d:f5:35:c0:da:5f:b9:2d:d6:1a:3c:07:a3:48:
85:86:9d:fa:c3:cd:68:78:7a:ae:1f:62:8b:1f:28:85:8c:f1:
26:7e:07:4b:5e:a6:5c:ae:e2:96:08:c1:f5:e2:64:8d:04:28:
fe:53:4b:61:1b:43:27:71:d5:32:00:d4:a3:ca:73:6d:9f:d4:
d6:8b:95:33:d6:30:3c:47:90:99:99:e9:63:3c:87:f9:1d:6a:
be:26:9c:f1:a8:db:80:58:6f:1f:38:1a:39:d5:dd:f5:2c:4b:
24:5b:ac:99:e9:06:93:c3:30:2a:2d:25:f5:fa:c4:22:8c:25:
fc:42:68:b4:c8:d0:4f:66:a9:ab:2b:67:69:83:e4:a9:30:59:
3a:35:86:31
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIWqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDQzNjE4WhcNMjQwOTAzMDQzNjE4WjAYMRYw
FAYDVQQDEw02NjJiMmY0Ni1jYjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAunbIqSe9Gnoxaa3dtMLDkZKFCEIBB0oRIuuS1IPl+Xt58XpgBxEYZyVz
aoP2cGwS7g3dsUbt13zRuMECD2y1AtS2hSt1BlHFqUFD4yUJxLCbCM7WJLabIjDh
t1LSXCw9Bm/nNxTaRP5WH1Uh2xXBfYcajDzkNUAcdj7LYR+EqWQEoYVVsgF/Q1xB
+VUtuWMoWtDiP6Tv0DRudgL6qJIr5LQNvPmkJSKb9BWYaaMIpaEybjUL+Ds6mvf/
X7gnEIeI31Wy69VLwQJLFjmkGs3DCTPHT3+s8nZmnCMy4t8kATCvwP+9JSczBxb+
I3xjeWrixURzE2Tdzx0muCCWwT4MFQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFG1d
/hYikHaA0PISnJ5BNn1cH/9pMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84ODU0NDkwMDAzODYxMUVGQTIyMDgyMjEwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOrJMA0GCSqGSIb3DQEBCwUA
A4IBAQCiieOFeNOUVRpwdzBHRTjHdiEey7YXmb5rJ7ZmRnvXSlOaxXD3Y4YRwQ/p
IDOl03NVyuAPS8h1V3LjLzd+DIY2Oo6WQ0jxraj4mPlIUVT2B3GpS2woSsdhTrsK
6OihAW7k+KIY1FNKB7Vp99a3jID8jfU1wNpfuS3WGjwHo0iFhp36w81oeHquH2KL
HyiFjPEmfgdLXqZcruKWCMH14mSNBCj+U0thG0MncdUyANSjynNtn9TWi5Uz1jA8
R5CZmeljPIf5HWq+JpzxqNuAWG8fOBo51d31LEskW6yZ6QaTwzAqLSX1+sQijCX8
Qmi0yNBPZqmrK2dpg+SpMFk6NYYx
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:12 2024 by rpki-client on console-fra.rpki-client.org