Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8ABB8572AE1911EE98795397775412E6.roa
File: 8ABB8572AE1911EE98795397775412E6.roa (raw, json)
Hash identifier: hehhdFDPjYc71m5a9mG9Y6LhbKoNXh1ahs4M5IvHBMk=
Subject key identifier: 59:9C:C3:8E:71:28:E2:59:6C:36:D5:FF:7E:73:37:80:41:48:96:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 5EA8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8ABB8572AE1911EE98795397775412E6.roa
Signing time: Mon 08 Jan 2024 11:32:02 +0000
ROA not before: Mon 08 Jan 2024 11:31:59 +0000
ROA not after: Tue 14 Jan 2025 11:31:59 +0000
asID: 138965
IP address blocks: 156.236.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24232 (0x5ea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 8 11:31:59 2024 GMT
Not After : Jan 14 11:31:59 2025 GMT
Subject: CN=659bdd32-c9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5c:5b:e5:48:57:79:ba:c3:12:bc:40:79:f5:
40:88:0e:ac:fb:f7:55:d7:5c:51:9f:61:00:7e:fd:
65:9e:10:c1:06:cc:7e:5e:f6:cf:15:10:d9:a9:31:
73:0f:6a:ea:d7:4e:36:70:51:71:c0:53:f5:1b:be:
cf:33:0c:9d:44:d2:8c:32:fc:89:b7:d4:4f:e2:e5:
40:3d:10:86:81:ee:3a:de:61:b8:48:43:86:46:3f:
6a:29:b0:1e:ee:59:8b:39:70:9f:69:59:87:c2:f5:
8a:3e:d1:d8:6c:be:fc:4f:59:ee:bb:67:07:f8:43:
b7:c9:20:3e:a9:af:50:89:b0:cb:af:66:f2:36:d0:
30:0a:68:ce:21:d5:1e:c6:db:2b:3e:32:a2:c1:7d:
49:16:9c:55:36:4a:64:30:fb:e1:a8:32:e4:17:79:
ad:e9:92:ba:8e:b7:37:c3:a9:7c:50:0f:95:45:ad:
db:a9:0d:d8:df:90:e7:64:1d:e8:78:20:3e:82:f5:
6e:42:ea:8a:fa:47:3a:92:39:d5:45:e6:e1:e1:8e:
2a:99:33:1d:79:ea:0d:62:93:32:b4:ab:bb:0d:34:
61:a0:4e:2f:92:ac:3e:f1:1d:1b:7f:ff:ee:ab:68:
70:91:b2:08:03:bd:a0:88:7d:23:8e:45:61:d8:66:
10:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9C:C3:8E:71:28:E2:59:6C:36:D5:FF:7E:73:37:80:41:48:96:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8ABB8572AE1911EE98795397775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.95.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:70:59:44:d0:0e:e4:35:9c:9a:32:06:b5:0e:b8:db:a2:ae:
37:c9:27:d2:0a:d3:f2:64:25:2a:ff:94:5a:50:14:40:6c:33:
fd:9b:6f:38:c8:88:7b:cd:50:d1:53:27:a4:66:b9:17:e3:07:
c8:d9:e8:80:b7:d6:3a:d0:37:fa:40:a2:35:3e:94:96:91:25:
69:60:7f:af:65:8e:26:ac:47:fe:b3:9a:b0:27:b8:24:81:0d:
91:6c:cb:0d:51:13:76:2c:e1:e1:5a:a8:dc:3e:0f:c8:e0:fc:
48:29:54:1a:bc:d8:f9:4a:d1:e6:e3:d2:f5:17:7e:85:40:d9:
45:3e:56:c4:a9:f8:e7:d6:c8:a2:a2:97:fc:03:c4:6d:9b:d3:
c5:ab:89:c9:42:9a:a8:e4:93:3a:11:64:16:06:17:0f:67:6c:
41:0f:2a:f2:71:7e:cc:12:71:33:9a:33:55:00:5d:31:74:0b:
d6:24:32:88:78:2f:55:da:e0:b0:89:d4:43:8a:d2:ba:3d:39:
bb:f2:77:5b:c2:08:a0:1f:9e:d0:e2:01:1c:9e:55:e2:95:43:
1a:fe:be:60:bc:41:a5:1e:c3:a6:91:63:ef:96:f1:c9:9d:3b:
d0:d6:80:2e:dd:1c:b8:e5:d5:fc:fd:11:27:1b:2e:2f:e7:8b:
4f:42:df:ec
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICXqgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAxMDgxMTMxNTlaFw0yNTAxMTQxMTMxNTlaMBgxFjAU
BgNVBAMTDTY1OWJkZDMyLWM5ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKXFvlSFd5usMSvEB59UCIDqz791XXXFGfYQB+/WWeEMEGzH5e9s8VENmp
MXMPaurXTjZwUXHAU/Ubvs8zDJ1E0owy/Im31E/i5UA9EIaB7jreYbhIQ4ZGP2op
sB7uWYs5cJ9pWYfC9Yo+0dhsvvxPWe67Zwf4Q7fJID6pr1CJsMuvZvI20DAKaM4h
1R7G2ys+MqLBfUkWnFU2SmQw++GoMuQXea3pkrqOtzfDqXxQD5VFrdupDdjfkOdk
Heh4ID6C9W5C6or6RzqSOdVF5uHhjiqZMx156g1ikzK0q7sNNGGgTi+SrD7xHRt/
/+6raHCRsggDvaCIfSOORWHYZhA3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUWZzD
jnEo4llsNtX/fnM3gEFIltkwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzhBQkI4NTcyQUUxOTExRUU5ODc5NTM5Nzc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc7F8wDQYJKoZIhvcNAQELBQAD
ggEBAItwWUTQDuQ1nJoyBrUOuNuirjfJJ9IK0/JkJSr/lFpQFEBsM/2bbzjIiHvN
UNFTJ6RmuRfjB8jZ6IC31jrQN/pAojU+lJaRJWlgf69ljiasR/6zmrAnuCSBDZFs
yw1RE3Ys4eFaqNw+D8jg/EgpVBq82PlK0ebj0vUXfoVA2UU+VsSp+OfWyKKil/wD
xG2b08WriclCmqjkkzoRZBYGFw9nbEEPKvJxfswScTOaM1UAXTF0C9YkMoh4L1Xa
4LCJ1EOK0ro9Obvyd1vCCKAfntDiARyeVeKVQxr+vmC8QaUew6aRY++W8cmdO9DW
gC7dHLjl1fz9EScbLi/ni09C3+w=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:39 2024 by rpki-client on console-ams.rpki-client.org