Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90677ED884F511EEB5359E4D4AD9E6FC.roa
File: 90677ED884F511EEB5359E4D4AD9E6FC.roa (raw, json)
Hash identifier: oKnXgaToNyeBTo5D5Rt+o5XrxvdMDiEuAtUq4gkXRhI=
Subject key identifier: 0B:8F:03:57:57:3A:39:19:D9:81:17:83:CF:AE:25:9A:C6:E1:0B:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 496D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90677ED884F511EEB5359E4D4AD9E6FC.roa
Signing time: Fri 17 Nov 2023 03:01:12 +0000
ROA not before: Fri 17 Nov 2023 03:01:09 +0000
ROA not after: Tue 12 Nov 2024 03:01:09 +0000
asID: 397630
IP address blocks: 156.225.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18797 (0x496d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 03:01:09 2023 GMT
Not After : Nov 12 03:01:09 2024 GMT
Subject: CN=6556d778-437c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1b:e9:89:55:4c:32:5f:f7:1d:83:6b:d2:3e:
ba:3c:0f:8b:31:95:9f:c7:53:c2:8e:f7:9f:d5:d2:
a7:da:4a:9a:cd:85:e9:e8:a8:a1:37:c3:96:19:bd:
b7:b3:00:ed:32:35:61:6a:f1:31:bf:c3:c4:06:36:
e0:b4:19:23:df:0d:84:3b:43:5e:a8:fb:a0:2a:97:
fc:4d:b2:ad:ee:c9:e0:b8:56:32:3e:8a:c7:60:92:
5b:b3:b4:c6:63:42:d0:43:57:ec:e2:4f:1b:9e:9c:
d9:66:b2:69:ff:08:4a:3e:b0:a6:d0:d7:b9:82:ec:
8b:2b:af:9a:4c:07:ac:e0:da:b1:da:bd:e5:35:dc:
57:39:8b:1f:59:40:96:6d:cb:20:81:ed:8f:70:00:
1f:a8:07:ea:a6:27:61:3d:32:1f:a7:c5:d0:18:0e:
3e:5d:7f:f8:5f:9b:90:e8:03:02:40:c8:ed:64:4e:
4d:75:8d:b1:fc:9e:3f:24:9a:6d:2e:c5:72:c9:43:
c2:4d:f0:ed:d3:e0:1b:18:52:8f:22:4e:d6:46:4d:
29:8d:39:28:9d:98:12:55:7a:ec:ad:00:58:3b:28:
6a:9a:0b:f8:87:e1:44:ed:8d:9c:12:4d:de:7b:86:
09:3a:7d:02:61:e4:82:86:4f:27:5c:3d:f3:c2:29:
c8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8F:03:57:57:3A:39:19:D9:81:17:83:CF:AE:25:9A:C6:E1:0B:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/90677ED884F511EEB5359E4D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.8.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:78:64:5e:3f:54:41:1d:0a:ea:49:bb:82:3d:47:a3:c1:c7:
2f:9c:34:d0:b7:d1:0f:0b:f4:f7:0e:3b:32:d7:3d:bc:ba:a4:
5f:84:cf:99:ee:c6:1c:20:72:37:88:d7:60:a0:f4:13:34:aa:
51:c8:57:0f:44:73:4d:ef:9e:b9:90:b4:a2:e5:cf:cb:15:5a:
b5:ed:c3:4f:5d:d4:c4:fc:63:02:b6:eb:50:6b:ee:87:46:45:
9e:3d:2f:4c:10:e9:46:ed:28:dd:9f:dc:92:bf:11:78:f6:f6:
34:ea:55:53:61:31:25:e3:0c:ef:8d:89:5e:10:2f:82:0d:f7:
16:df:f4:80:67:90:6e:86:11:ef:f1:ab:a3:ca:e6:78:3d:b1:
54:8a:fe:0a:c4:e2:2b:11:2b:57:ad:5e:b7:17:38:10:c5:aa:
97:69:bd:71:6b:20:52:86:10:60:77:95:04:aa:a9:f5:9e:c9:
ff:b3:b8:e6:fe:65:d5:5e:5d:ed:1d:a7:63:0c:58:aa:b0:e8:
31:d4:52:00:a0:34:0e:b4:3e:05:98:ea:44:bf:87:95:a4:f6:
19:66:a1:25:a4:7b:fe:67:2c:2c:95:4a:34:42:81:53:f1:c7:
80:e2:7e:8b:3c:20:f9:dd:6a:69:b3:73:c2:d5:b6:75:0f:f2:
af:cf:bd:47
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSW0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTcwMzAxMDlaFw0yNDExMTIwMzAxMDlaMBgxFjAU
BgNVBAMTDTY1NTZkNzc4LTQzN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDuG+mJVUwyX/cdg2vSPro8D4sxlZ/HU8KO95/V0qfaSprNhenoqKE3w5YZ
vbezAO0yNWFq8TG/w8QGNuC0GSPfDYQ7Q16o+6Aql/xNsq3uyeC4VjI+isdgkluz
tMZjQtBDV+ziTxuenNlmsmn/CEo+sKbQ17mC7Isrr5pMB6zg2rHaveU13Fc5ix9Z
QJZtyyCB7Y9wAB+oB+qmJ2E9Mh+nxdAYDj5df/hfm5DoAwJAyO1kTk11jbH8nj8k
mm0uxXLJQ8JN8O3T4BsYUo8iTtZGTSmNOSidmBJVeuytAFg7KGqaC/iH4UTtjZwS
Td57hgk6fQJh5IKGTydcPfPCKchlAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUC48D
V1c6ORnZgReDz64lmsbhCwwwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzkwNjc3RUQ4ODRGNTExRUVCNTM1OUU0RDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4QgwDQYJKoZIhvcNAQELBQAD
ggEBAG14ZF4/VEEdCupJu4I9R6PBxy+cNNC30Q8L9PcOOzLXPby6pF+Ez5nuxhwg
cjeI12Cg9BM0qlHIVw9Ec03vnrmQtKLlz8sVWrXtw09d1MT8YwK261Br7odGRZ49
L0wQ6UbtKN2f3JK/EXj29jTqVVNhMSXjDO+NiV4QL4IN9xbf9IBnkG6GEe/xq6PK
5ng9sVSK/grE4isRK1etXrcXOBDFqpdpvXFrIFKGEGB3lQSqqfWeyf+zuOb+ZdVe
Xe0dp2MMWKqw6DHUUgCgNA60PgWY6kS/h5Wk9hlmoSWke/5nLCyVSjRCgVPxx4Di
fos8IPndammzc8LVtnUP8q/PvUc=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org