Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A261DE0E7E4011EFB3988141762E951A.roa
File: A261DE0E7E4011EFB3988141762E951A.roa (raw, json)
Hash identifier: 59dN+gfcMPG8VOmstU9f/tbGrp8GiW0ri5DwBASV2rQ=
Subject key identifier: B9:3F:EA:84:C3:8D:08:AF:1F:05:A8:64:2F:A8:D7:AF:37:16:2B:A5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BCA7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A261DE0E7E4011EFB3988141762E951A.roa
Signing time: Sun 29 Sep 2024 08:55:54 +0000
ROA not before: Sun 29 Sep 2024 08:55:50 +0000
ROA not after: Mon 30 Dec 2024 08:55:50 +0000
asID: 17561
IP address blocks: 156.241.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48295 (0xbca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:55:50 2024 GMT
Not After : Dec 30 08:55:50 2024 GMT
Subject: CN=66f9161a-089a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e1:b3:4b:16:b4:c8:98:7d:e3:b6:d9:7b:60:
94:12:0b:be:e6:ac:d4:fa:79:2d:d0:3b:63:50:18:
ea:08:62:3a:36:19:29:82:e8:c7:90:97:1f:5d:f4:
76:33:f1:a1:e6:c5:c4:5f:85:73:17:b9:e2:2d:af:
44:d9:e4:90:35:7c:e7:2d:d0:6b:80:c2:a2:c5:d2:
57:cc:ff:91:7b:6d:8e:7d:ed:36:1f:2a:0d:5d:35:
6a:8b:ef:1b:bc:25:45:ce:7f:c3:f2:ef:c9:ef:23:
de:40:2e:de:8b:75:3f:04:37:b8:0a:39:33:95:4f:
dd:d6:8e:86:40:00:ae:35:79:52:43:d8:f6:f3:c3:
31:f6:d3:ae:a3:a9:53:59:df:7b:b2:62:6c:0b:d2:
97:99:fc:9d:98:88:fd:37:3d:13:ae:fd:16:06:46:
88:6d:17:8d:72:28:0a:d7:f3:ec:55:cd:d0:08:e0:
6a:3b:71:3f:74:b4:00:9b:40:e0:ae:f0:c9:aa:2c:
c8:dd:cd:42:e6:a0:1c:60:8e:b2:73:92:8a:c7:1f:
6d:43:f3:8f:b6:c5:bc:f9:f0:0c:4c:21:1a:fb:7e:
5b:b7:0b:82:fc:cb:56:98:35:68:a0:37:65:d7:3f:
8e:b9:51:1e:dd:d5:08:f7:b1:7b:4d:d2:31:5c:c2:
98:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3F:EA:84:C3:8D:08:AF:1F:05:A8:64:2F:A8:D7:AF:37:16:2B:A5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A261DE0E7E4011EFB3988141762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.51.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c7:70:2d:c3:90:13:b3:a9:49:3f:dc:86:18:b3:fa:b3:9e:
55:bd:79:46:d3:32:62:92:3d:fa:06:e8:e0:52:8a:ee:32:71:
b0:23:3b:30:ab:95:34:3a:a4:56:f3:e8:b7:c4:9f:c1:2c:a0:
96:cb:03:e2:16:93:c8:22:42:ff:9c:fe:ad:5a:ed:83:27:0e:
c9:b7:5b:30:38:d8:ac:ec:56:b2:69:4c:1f:4c:6b:4d:07:2b:
72:f5:bc:25:7e:71:6f:7d:24:3c:aa:52:f6:be:27:f7:54:4d:
74:b3:52:58:d8:12:21:6e:a9:83:fd:d3:bc:c9:bc:2a:f1:79:
90:48:e4:61:ae:06:42:e9:6e:cb:e9:ac:3a:4b:bd:fa:55:b4:
9f:e4:02:e3:e9:78:e3:bd:36:b8:d6:c0:62:4b:2d:e1:fc:1a:
de:13:fe:44:05:eb:40:65:dd:bd:03:00:e5:a9:ad:84:06:c9:
53:ba:93:14:90:41:65:aa:f6:38:a3:6b:df:87:82:c7:e5:48:
ee:b5:2b:88:99:5a:3d:10:9e:5d:31:45:a8:32:d5:65:21:27:
ae:f7:e1:7a:30:af:ad:af:c1:6f:e3:93:db:ae:18:3b:ec:0e:
8e:a7:b6:43:ca:6b:44:e7:af:eb:06:62:fa:a7:5f:31:31:2e:
1d:3a:a0:c9
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALynMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTI5MDg1NTUwWhcNMjQxMjMwMDg1NTUwWjAYMRYw
FAYDVQQDEw02NmY5MTYxYS0wODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1OGzSxa0yJh947bZe2CUEgu+5qzU+nkt0DtjUBjqCGI6NhkpgujHkJcf
XfR2M/Gh5sXEX4VzF7niLa9E2eSQNXznLdBrgMKixdJXzP+Re22Ofe02HyoNXTVq
i+8bvCVFzn/D8u/J7yPeQC7ei3U/BDe4CjkzlU/d1o6GQACuNXlSQ9j288Mx9tOu
o6lTWd97smJsC9KXmfydmIj9Nz0Trv0WBkaIbReNcigK1/PsVc3QCOBqO3E/dLQA
m0DgrvDJqizI3c1C5qAcYI6yc5KKxx9tQ/OPtsW8+fAMTCEa+35btwuC/MtWmDVo
oDdl1z+OuVEe3dUI97F7TdIxXMKYSwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLk/
6oTDjQivHwWoZC+o1683FiulMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BMjYxREUwRTdFNDAxMUVGQjM5ODgxNDE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPEzMA0GCSqGSIb3DQEBCwUA
A4IBAQCtx3Atw5ATs6lJP9yGGLP6s55VvXlG0zJikj36BujgUoruMnGwIzswq5U0
OqRW8+i3xJ/BLKCWywPiFpPIIkL/nP6tWu2DJw7Jt1swONis7FayaUwfTGtNByty
9bwlfnFvfSQ8qlL2vif3VE10s1JY2BIhbqmD/dO8ybwq8XmQSORhrgZC6W7L6aw6
S736VbSf5ALj6XjjvTa41sBiSy3h/BreE/5EBetAZd29AwDlqa2EBslTupMUkEFl
qvY4o2vfh4LH5UjutSuImVo9EJ5dMUWoMtVlISeu9+F6MK+tr8Fv45Pbrhg77A6O
p7ZDymtE56/rBmL6p18xMS4dOqDJ
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:41 2024 by rpki-client on console-fra.rpki-client.org