Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FAF5ADA82B311EEAD2C7A1B4AD9E6FC.roa
File: 9FAF5ADA82B311EEAD2C7A1B4AD9E6FC.roa (raw, json)
Hash identifier: LToOiPbzfQLTK5LuZC5KUyhvAziNiNcH3tuMhoGbc2g=
Subject key identifier: 3D:6E:F8:74:00:CA:B5:CC:9A:71:40:4F:1B:34:61:15:04:BA:9B:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 490C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FAF5ADA82B311EEAD2C7A1B4AD9E6FC.roa
Signing time: Tue 14 Nov 2023 06:04:09 +0000
ROA not before: Tue 14 Nov 2023 06:04:05 +0000
ROA not after: Tue 12 Nov 2024 06:04:05 +0000
asID: 397630
IP address blocks: 156.239.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18700 (0x490c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 14 06:04:05 2023 GMT
Not After : Nov 12 06:04:05 2024 GMT
Subject: CN=65530dd8-1e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:73:28:42:00:78:de:92:2b:be:37:98:48:
cd:78:fa:48:4b:6f:4f:66:76:49:66:09:fa:92:c2:
71:0a:93:59:71:8f:a9:40:9d:f3:89:3f:02:de:71:
09:9b:6e:87:93:a2:92:e4:f3:c4:cc:58:a1:4a:c8:
f8:c8:7a:c2:b4:21:c0:37:83:0d:a9:b2:18:72:13:
cf:64:c5:61:f4:4e:aa:16:32:27:14:10:ec:b7:52:
59:5f:ff:39:3d:8d:19:a5:cd:c7:14:66:ca:10:ef:
cd:1a:dc:f1:6b:b1:d3:09:73:8d:76:70:ba:44:af:
8d:85:1a:9d:c2:bd:b0:cf:1f:db:01:ec:ed:02:37:
f9:28:b0:a2:4a:21:31:2a:56:5a:1e:a9:3e:c0:24:
41:c3:23:26:ee:48:64:c8:6a:0d:0b:62:68:78:c7:
c0:45:05:55:45:09:6c:60:31:a1:ff:17:5c:df:78:
68:ad:a3:a9:81:c8:3a:f1:80:e3:c1:d2:f6:a3:ad:
57:bb:61:ea:b9:d6:a1:1a:a4:b7:9d:99:e2:85:d8:
40:e4:e7:96:9e:e2:cf:b3:9a:65:d0:10:d2:80:84:
2c:71:60:8e:e2:c4:36:37:53:7a:4b:4c:97:e4:55:
59:c4:83:f1:60:f4:15:09:f1:2e:02:b1:1c:73:5f:
1a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6E:F8:74:00:CA:B5:CC:9A:71:40:4F:1B:34:61:15:04:BA:9B:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FAF5ADA82B311EEAD2C7A1B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.51.0/24
Signature Algorithm: sha256WithRSAEncryption
29:8b:93:58:73:dd:a5:28:c4:f8:84:8c:f3:28:57:7a:40:cf:
5b:26:14:46:74:89:4d:39:e1:ff:13:40:c8:dd:9f:3b:44:9d:
be:1b:0d:59:9d:1d:6b:4e:fb:d1:cc:2e:19:f4:fc:d8:e1:be:
7f:a8:72:08:16:6b:57:eb:c2:ab:fc:91:d9:b9:54:37:e9:7c:
28:e0:5a:ee:8b:c4:72:0b:0b:e7:c3:69:bc:fd:ec:6e:08:77:
1d:9c:98:98:8b:65:cb:f1:ce:e3:e5:0b:81:19:ce:c9:5b:c1:
c5:74:97:87:f2:4f:33:11:76:6e:49:83:a9:30:3e:66:81:8c:
56:b4:c5:1b:44:b7:52:2d:9d:be:18:51:11:0e:7c:d0:28:76:
ad:d1:f5:3c:d4:59:8a:1c:3d:13:04:73:a1:f4:cd:cc:37:e6:
70:e2:47:ed:8e:05:88:36:29:75:ea:48:85:e8:35:6a:f4:f9:
49:7d:2b:5c:b7:b6:19:49:ca:07:60:22:b9:1a:eb:27:bf:c7:
8f:3f:e8:fb:e3:04:61:24:7d:40:77:7e:c0:b6:1a:81:57:f6:
33:23:85:e8:a3:6f:a9:d7:ff:51:35:09:ff:0c:a0:ee:61:88:
ca:40:b1:44:2a:82:3f:46:06:ab:70:d0:de:2a:91:02:75:f8:
b5:1d:47:7c
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSQwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTQwNjA0MDVaFw0yNDExMTIwNjA0MDVaMBgxFjAU
BgNVBAMTDTY1NTMwZGQ4LTFlMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDRm3MoQgB43pIrvjeYSM14+khLb09mdklmCfqSwnEKk1lxj6lAnfOJPwLe
cQmbboeTopLk88TMWKFKyPjIesK0IcA3gw2pshhyE89kxWH0TqoWMicUEOy3Ullf
/zk9jRmlzccUZsoQ780a3PFrsdMJc412cLpEr42FGp3CvbDPH9sB7O0CN/kosKJK
ITEqVloeqT7AJEHDIybuSGTIag0LYmh4x8BFBVVFCWxgMaH/F1zfeGito6mByDrx
gOPB0vajrVe7Yeq51qEapLedmeKF2EDk55ae4s+zmmXQENKAhCxxYI7ixDY3U3pL
TJfkVVnEg/Fg9BUJ8S4CsRxzXxpvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUPW74
dADKtcyacUBPGzRhFQS6m0YwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4LzlGQUY1QURBODJCMzExRUVBRDJDN0ExQjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc7zMwDQYJKoZIhvcNAQELBQAD
ggEBACmLk1hz3aUoxPiEjPMoV3pAz1smFEZ0iU054f8TQMjdnztEnb4bDVmdHWtO
+9HMLhn0/Njhvn+ocggWa1frwqv8kdm5VDfpfCjgWu6LxHILC+fDabz97G4Idx2c
mJiLZcvxzuPlC4EZzslbwcV0l4fyTzMRdm5Jg6kwPmaBjFa0xRtEt1Itnb4YUREO
fNAodq3R9TzUWYocPRMEc6H0zcw35nDiR+2OBYg2KXXqSIXoNWr0+Ul9K1y3thlJ
ygdgIrka6ye/x48/6PvjBGEkfUB3fsC2GoFX9jMjheijb6nX/1E1Cf8MoO5hiMpA
sUQqgj9GBqtw0N4qkQJ1+LUdR3w=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org