Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EE595CC007D11EFB1F80B62017001B1.roa
File: 9EE595CC007D11EFB1F80B62017001B1.roa (raw, json)
Hash identifier: CR49UTfE4/ymqcPPSzZiI2P9zeMb0NE8EM5b94iSAeo=
Subject key identifier: 30:E3:91:9F:5B:8A:C0:9A:BB:1B:D4:9C:EB:86:6A:E5:7F:86:9D:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EE595CC007D11EFB1F80B62017001B1.roa
Signing time: Mon 22 Apr 2024 07:55:01 +0000
ROA not before: Mon 22 Apr 2024 07:54:58 +0000
ROA not after: Mon 20 May 2024 07:54:58 +0000
asID: 140869
IP address blocks: 156.225.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33709 (0x83ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 07:54:58 2024 GMT
Not After : May 20 07:54:58 2024 GMT
Subject: CN=662617d5-c7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:0e:88:ac:0b:ac:6a:2c:69:24:b4:86:e1:
86:c5:e5:7e:c5:c4:fb:87:34:4d:bc:bd:9d:89:16:
02:2b:e3:a4:4f:e0:c5:9a:a5:d8:a3:c5:18:87:d4:
71:8c:c2:aa:30:30:41:53:a2:76:66:d5:92:bc:5b:
3f:3e:09:8f:2f:6f:7d:de:27:5b:5d:72:54:0e:0e:
fd:3f:81:5d:d7:9a:b9:3b:7b:3e:91:e3:80:55:90:
f0:72:46:82:c9:f8:68:2a:ae:34:42:92:80:21:1a:
da:37:f0:da:28:5b:92:26:81:ce:71:e4:2d:2d:ba:
10:ca:d6:8a:43:45:d1:53:e1:94:da:7e:b9:52:82:
48:f5:e2:9d:5c:cc:a0:fa:d1:8e:bb:ed:77:aa:23:
b1:85:ce:ef:04:e6:d1:09:85:cb:fb:04:cb:88:82:
05:9c:19:00:70:a6:79:78:8e:ca:0e:b5:05:76:0e:
95:98:33:05:60:ae:ff:f9:a6:5b:ec:fe:1d:24:73:
8f:93:02:64:5e:87:d5:14:60:5d:47:17:3b:64:30:
fa:16:db:11:3d:b1:e7:5f:f5:bf:14:9c:ef:7d:c0:
05:05:c9:79:54:b8:90:66:06:52:3e:79:8c:3f:9d:
ad:8c:06:4c:bc:cf:9c:16:ea:f2:87:89:e0:22:4f:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E3:91:9F:5B:8A:C0:9A:BB:1B:D4:9C:EB:86:6A:E5:7F:86:9D:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9EE595CC007D11EFB1F80B62017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.82.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e0:8d:e5:ee:28:0c:7e:3c:52:1a:ff:dc:8c:a3:91:7b:04:
a6:2d:09:38:40:e2:bc:12:68:bd:d6:da:f2:66:c1:12:56:af:
4c:95:44:3e:31:8c:5a:41:70:be:f6:76:81:9b:a3:39:e8:52:
8a:e5:71:cf:e3:2a:10:0b:d0:d3:2e:33:6b:cd:27:74:83:a3:
a9:07:c2:92:2a:2b:89:38:72:83:20:8d:c1:56:55:a6:b2:53:
c7:10:66:8b:ba:c3:c3:3b:04:78:d8:c3:74:d2:f5:26:9d:48:
b6:09:ff:71:5e:ae:1b:2b:8b:1e:87:0b:07:80:ac:0b:bd:a1:
5a:4c:11:67:28:b6:5a:3e:c4:20:fd:5d:45:f6:78:a8:d3:e4:
70:b5:13:3b:c3:b5:39:51:72:1c:08:56:e5:67:e1:6d:c4:86:
52:f7:4c:40:a7:62:45:20:b3:d9:c7:2c:4d:83:7f:3c:f1:2d:
8c:99:ef:5c:58:1b:22:89:65:b2:a2:14:a4:d4:ba:9c:67:d4:
90:f7:f0:0e:85:fb:d0:8f:5c:80:cf:0d:a6:02:17:f1:62:01:
3a:18:5f:e1:c5:c3:ad:ac:25:87:b2:5b:d3:29:28:ed:9b:5c:
f1:1e:b5:d4:e5:73:94:10:26:46:ce:b3:c5:55:45:6c:a6:8f:
7d:23:b6:5f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIOtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDIyMDc1NDU4WhcNMjQwNTIwMDc1NDU4WjAYMRYw
FAYDVQQDEw02NjI2MTdkNS1jN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApp4OiKwLrGosaSS0huGGxeV+xcT7hzRNvL2diRYCK+OkT+DFmqXYo8UY
h9RxjMKqMDBBU6J2ZtWSvFs/PgmPL2993idbXXJUDg79P4Fd15q5O3s+keOAVZDw
ckaCyfhoKq40QpKAIRraN/DaKFuSJoHOceQtLboQytaKQ0XRU+GU2n65UoJI9eKd
XMyg+tGOu+13qiOxhc7vBObRCYXL+wTLiIIFnBkAcKZ5eI7KDrUFdg6VmDMFYK7/
+aZb7P4dJHOPkwJkXofVFGBdRxc7ZDD6FtsRPbHnX/W/FJzvfcAFBcl5VLiQZgZS
PnmMP52tjAZMvM+cFuryh4ngIk9aTQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDDj
kZ9bisCauxvUnOuGauV/hp3pMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85RUU1OTVDQzAwN0QxMUVGQjFGODBCNjIwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOFSMA0GCSqGSIb3DQEBCwUA
A4IBAQAG4I3l7igMfjxSGv/cjKORewSmLQk4QOK8Emi91tryZsESVq9MlUQ+MYxa
QXC+9naBm6M56FKK5XHP4yoQC9DTLjNrzSd0g6OpB8KSKiuJOHKDII3BVlWmslPH
EGaLusPDOwR42MN00vUmnUi2Cf9xXq4bK4sehwsHgKwLvaFaTBFnKLZaPsQg/V1F
9nio0+RwtRM7w7U5UXIcCFblZ+FtxIZS90xAp2JFILPZxyxNg3888S2Mme9cWBsi
iWWyohSk1LqcZ9SQ9/AOhfvQj1yAzw2mAhfxYgE6GF/hxcOtrCWHslvTKSjtm1zx
HrXU5XOUECZGzrPFVUVspo99I7Zf
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org