Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B3DB334CCC811EF9981424C762E951A.roa
File: 8B3DB334CCC811EF9981424C762E951A.roa (raw, json)
Hash identifier: scqC1YYjcxM/EoJuoGn9SnoYvM7P21AHZec5ZacDOqo=
Subject key identifier: BB:91:ED:B1:89:90:D3:DD:51:4B:4A:F6:D6:53:21:F9:FA:16:7D:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: FA64
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B3DB334CCC811EF9981424C762E951A.roa
Signing time: Tue 07 Jan 2025 07:25:17 +0000
ROA not before: Tue 07 Jan 2025 07:25:14 +0000
ROA not after: Sat 13 Dec 2025 07:25:14 +0000
asID: 984
IP address blocks: 156.233.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64100 (0xfa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 7 07:25:14 2025 GMT
Not After : Dec 13 07:25:14 2025 GMT
Subject: CN=677cd6dd-a457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:01:ef:07:c3:0b:81:97:2b:b9:d3:83:ba:13:
cd:be:4e:92:2e:eb:01:63:31:d4:12:21:dd:4c:e8:
d7:86:0f:70:6c:4c:17:d6:3c:fa:39:c6:12:55:4f:
40:6d:49:f2:d4:f3:59:95:46:79:94:47:b1:4e:67:
7a:87:10:81:04:b0:47:4e:e7:50:32:67:c7:81:ba:
06:e0:a6:b9:f6:d5:ee:1a:ac:12:7d:7f:40:be:95:
08:db:a5:1c:9f:5e:a7:91:5a:be:88:f4:db:b9:9c:
13:ad:81:c5:29:c2:d8:11:56:5b:15:b3:f5:00:ce:
93:93:b6:ce:07:6b:e3:a5:78:c3:5c:50:f3:0e:bc:
77:e9:45:80:8b:83:d5:64:6f:28:71:eb:9e:a4:af:
c4:17:64:0d:5e:f7:84:91:b8:fc:a2:8c:22:92:42:
c5:d6:72:3e:3b:bd:4e:97:7e:6a:60:cb:20:ad:9f:
9a:86:4e:9c:54:57:0b:12:39:a4:7d:ce:d5:94:7c:
ad:fa:f8:77:e8:f7:63:da:fe:cc:ce:61:cd:9d:c2:
74:04:ec:fc:63:c1:1a:95:d5:32:a9:80:2d:37:e9:
c6:5e:d3:46:8e:4b:3e:e5:d8:d7:9c:fe:59:bf:b8:
6e:01:8a:2a:d1:26:55:9e:a0:38:4f:fb:3a:06:5a:
e2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:91:ED:B1:89:90:D3:DD:51:4B:4A:F6:D6:53:21:F9:FA:16:7D:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B3DB334CCC811EF9981424C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.76.0/24
Signature Algorithm: sha256WithRSAEncryption
70:11:1f:69:29:9f:63:b8:a7:3b:68:24:33:ff:6c:f3:56:3a:
10:34:3e:7a:fa:65:99:84:3c:67:65:8d:ba:f1:51:d1:94:b0:
cf:9e:ac:23:7a:55:96:30:dd:ab:d2:f8:b2:70:2e:fe:05:f6:
d8:48:b8:89:3f:87:c4:4b:7a:d1:19:d8:43:fd:c5:eb:12:02:
6a:54:c3:13:02:59:f1:a1:58:37:20:75:94:66:82:4e:09:ee:
bf:ac:ae:77:5c:0a:43:d6:7a:3c:6a:fb:4c:6d:fe:8f:af:44:
dd:7c:b7:14:31:1f:78:d4:42:8e:43:7a:37:03:0e:d9:51:cc:
bb:7d:d9:6a:d9:00:25:5e:4c:3c:18:5e:32:c5:2f:b1:72:0f:
99:8b:d1:25:a3:4e:c8:bd:f0:7c:b8:b7:c3:2e:1b:d9:e9:22:
e6:46:a4:69:b5:0b:e7:66:50:29:98:5b:15:72:28:60:97:13:
6d:c5:b8:b9:fe:ce:6f:17:48:f5:fe:07:d4:47:ee:74:34:c1:
7a:ac:21:16:4b:3f:40:1d:7e:8f:42:f7:3e:69:26:0b:3d:83:
a5:f2:f2:79:82:ae:7b:34:31:2b:0c:1b:3f:e9:a0:8f:f8:ac:
ab:5e:c0:62:ec:d6:5a:cd:81:f2:f9:0a:f2:8c:6f:7e:64:53:
bb:ae:ad:2a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPpkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTA3MDcyNTE0WhcNMjUxMjEzMDcyNTE0WjAYMRYw
FAYDVQQDEw02NzdjZDZkZC1hNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsgHvB8MLgZcrudODuhPNvk6SLusBYzHUEiHdTOjXhg9wbEwX1jz6OcYS
VU9AbUny1PNZlUZ5lEexTmd6hxCBBLBHTudQMmfHgboG4Ka59tXuGqwSfX9AvpUI
26Ucn16nkVq+iPTbuZwTrYHFKcLYEVZbFbP1AM6Tk7bOB2vjpXjDXFDzDrx36UWA
i4PVZG8oceuepK/EF2QNXveEkbj8oowikkLF1nI+O71Ol35qYMsgrZ+ahk6cVFcL
Ejmkfc7VlHyt+vh36Pdj2v7MzmHNncJ0BOz8Y8EaldUyqYAtN+nGXtNGjks+5djX
nP5Zv7huAYoq0SZVnqA4T/s6BlrilwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLuR
7bGJkNPdUUtK9tZTIfn6Fn31MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84QjNEQjMzNENDQzgxMUVGOTk4MTQyNEM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOlMMA0GCSqGSIb3DQEBCwUA
A4IBAQBwER9pKZ9juKc7aCQz/2zzVjoQND56+mWZhDxnZY268VHRlLDPnqwjelWW
MN2r0viycC7+BfbYSLiJP4fES3rRGdhD/cXrEgJqVMMTAlnxoVg3IHWUZoJOCe6/
rK53XApD1no8avtMbf6Pr0TdfLcUMR941EKOQ3o3Aw7ZUcy7fdlq2QAlXkw8GF4y
xS+xcg+Zi9Elo07IvfB8uLfDLhvZ6SLmRqRptQvnZlApmFsVcihglxNtxbi5/s5v
F0j1/gfUR+50NMF6rCEWSz9AHX6PQvc+aSYLPYOl8vJ5gq57NDErDBs/6aCP+Kyr
XsBi7NZazYHy+QryjG9+ZFO7rq0q
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:58:27 2025 by rpki-client