Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B4FDE36976811EFB478C953762E951A.roa
File: 9B4FDE36976811EFB478C953762E951A.roa (raw, json)
Hash identifier: /IbQmmefNMKQIrevhvHzabpylOfMpVSLHHjkDwGoa9Q=
Subject key identifier: FA:76:19:93:D2:77:12:BC:15:35:48:78:B7:E7:ED:5F:13:9F:28:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CB10
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B4FDE36976811EFB478C953762E951A.roa
Signing time: Thu 31 Oct 2024 09:15:01 +0000
ROA not before: Thu 31 Oct 2024 09:14:58 +0000
ROA not after: Fri 13 Dec 2024 09:14:58 +0000
asID: 138915
IP address blocks: 156.244.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51984 (0xcb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 31 09:14:58 2024 GMT
Not After : Dec 13 09:14:58 2024 GMT
Subject: CN=67234a95-2c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:86:76:8e:36:a4:98:92:50:f5:49:cd:50:61:
24:f6:31:11:1c:db:11:9e:29:1e:1d:a0:14:7c:42:
fb:90:55:b5:4b:6d:32:61:b9:32:65:8e:6b:63:11:
ad:31:c8:ab:f8:a2:73:25:2a:26:33:27:77:fc:9e:
99:3a:4e:b8:85:eb:62:ea:7e:5c:e6:de:39:b5:e8:
e9:ba:e2:ba:64:5d:f5:a8:0d:d7:6a:58:6a:7a:be:
c8:44:79:95:d4:3e:4d:71:7e:9d:a3:dc:9f:a9:c4:
2f:e8:96:5e:bf:75:8e:b3:d5:50:e8:1b:e2:41:d1:
34:33:ec:be:4f:5b:3c:64:f5:d0:4f:e1:66:b4:51:
6d:b6:8f:b4:10:25:f2:30:dc:00:1a:c0:2f:9c:18:
80:b5:31:d7:c9:d2:eb:07:0c:8a:dd:70:64:8a:a2:
f0:d0:96:60:f0:a4:83:84:a7:8a:0a:c2:b5:c9:23:
dc:c2:bb:50:9a:e1:fa:7e:6b:f5:70:8c:f5:05:42:
bc:72:2b:a7:a4:03:28:2e:fc:36:6e:9b:0b:8b:e5:
a4:ea:56:e6:0a:1e:ea:ec:1f:60:06:62:e9:dc:a6:
17:31:6e:70:d5:e0:ce:49:11:0e:57:6a:b7:2e:dd:
88:26:7f:7e:7b:4e:25:10:61:6b:a2:ba:d5:66:f6:
92:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:76:19:93:D2:77:12:BC:15:35:48:78:B7:E7:ED:5F:13:9F:28:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B4FDE36976811EFB478C953762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.0.0/19
Signature Algorithm: sha256WithRSAEncryption
bb:45:8c:f8:29:e8:2d:6f:82:cc:b1:2c:8e:39:55:8d:0b:0f:
f3:06:eb:59:91:1e:22:25:de:bd:7e:46:3c:19:e3:89:1d:29:
1b:8a:6d:2c:1a:22:14:ca:2c:1d:40:d2:4b:54:69:2a:5d:c2:
c4:c7:25:4c:3a:f7:bc:85:77:bc:64:1c:ef:81:38:a5:c3:a4:
5c:80:b1:c0:1c:85:45:f4:57:1f:f1:cb:4f:57:68:0c:ca:88:
ab:6e:62:1c:26:33:a2:37:e9:90:1c:c5:46:7b:e9:96:74:37:
61:7b:b9:0b:b4:1f:58:e4:11:82:36:23:53:42:0a:bf:4c:53:
bd:7a:88:cd:eb:6d:92:40:60:dc:db:c0:27:c6:72:8b:69:42:
48:57:a5:e0:57:fb:2a:2c:08:0e:04:70:e8:53:f4:b4:31:74:
21:83:21:0e:2b:54:5e:2f:1d:47:c8:51:ca:55:74:b8:ae:7a:
c1:30:fe:1c:df:8b:22:b5:9a:df:e4:f6:95:06:ae:20:2e:a3:
16:7e:19:6c:8c:3b:4d:44:f6:8c:31:20:12:b0:3b:3b:56:2f:
07:41:b8:2c:a8:cb:35:07:b4:22:6e:4d:c3:36:e0:e6:70:ef:
4f:63:75:83:d8:55:56:32:02:c6:e7:3c:bf:a2:30:84:a0:2d:
e6:df:8b:9a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMsQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDMxMDkxNDU4WhcNMjQxMjEzMDkxNDU4WjAYMRYw
FAYDVQQDEw02NzIzNGE5NS0yYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0YZ2jjakmJJQ9UnNUGEk9jERHNsRnikeHaAUfEL7kFW1S20yYbkyZY5r
YxGtMcir+KJzJSomMyd3/J6ZOk64heti6n5c5t45tejpuuK6ZF31qA3Xalhqer7I
RHmV1D5NcX6do9yfqcQv6JZev3WOs9VQ6BviQdE0M+y+T1s8ZPXQT+FmtFFtto+0
ECXyMNwAGsAvnBiAtTHXydLrBwyK3XBkiqLw0JZg8KSDhKeKCsK1ySPcwrtQmuH6
fmv1cIz1BUK8ciunpAMoLvw2bpsLi+Wk6lbmCh7q7B9gBmLp3KYXMW5w1eDOSREO
V2q3Lt2IJn9+e04lEGFrorrVZvaSrwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPp2
GZPSdxK8FTVIeLfn7V8TnyhmMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QjRGREUzNjk3NjgxMUVGQjQ3OEM5NTM3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnPQAMA0GCSqGSIb3DQEBCwUA
A4IBAQC7RYz4Kegtb4LMsSyOOVWNCw/zButZkR4iJd69fkY8GeOJHSkbim0sGiIU
yiwdQNJLVGkqXcLExyVMOve8hXe8ZBzvgTilw6RcgLHAHIVF9Fcf8ctPV2gMyoir
bmIcJjOiN+mQHMVGe+mWdDdhe7kLtB9Y5BGCNiNTQgq/TFO9eojN622SQGDc28An
xnKLaUJIV6XgV/sqLAgOBHDoU/S0MXQhgyEOK1ReLx1HyFHKVXS4rnrBMP4c34si
tZrf5PaVBq4gLqMWfhlsjDtNRPaMMSASsDs7Vi8HQbgsqMs1B7Qibk3DNuDmcO9P
Y3WD2FVWMgLG5zy/ojCEoC3m34ua
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:42 2024 by rpki-client on console-ams.rpki-client.org