Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5662F78C33311EF93F9E662762E951A.roa
File: A5662F78C33311EF93F9E662762E951A.roa (raw, json)
Hash identifier: SFfaxOAq082vizt6DEzon7hig8nbW6J8A2w3BNu7ct8=
Subject key identifier: 06:F5:BF:60:5B:A3:39:08:3A:04:4B:28:09:87:77:D7:5A:21:0D:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EB2D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5662F78C33311EF93F9E662762E951A.roa
Signing time: Thu 26 Dec 2024 02:46:46 +0000
ROA not before: Thu 26 Dec 2024 02:46:42 +0000
ROA not after: Fri 10 Dec 2027 02:46:42 +0000
asID: 17561
IP address blocks: 156.244.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60205 (0xeb2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 02:46:42 2024 GMT
Not After : Dec 10 02:46:42 2027 GMT
Subject: CN=676cc396-5e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:61:0c:9b:54:bf:88:5f:da:96:4c:ef:d2:1e:
09:e9:37:dc:ed:50:ca:5b:db:19:b3:f5:fd:00:3d:
4d:d1:b1:e0:04:a4:6e:9e:4d:dc:e1:9c:a1:8c:75:
36:06:0a:b7:60:ce:fe:81:cd:a0:60:9f:ec:de:e0:
62:18:28:6b:ed:2d:3b:e0:7e:8e:a7:6a:8a:07:0e:
ee:2a:2f:69:8d:c1:d8:ce:b4:ee:48:20:fb:5d:11:
5f:cf:00:76:f8:97:3c:ba:5d:70:8a:19:3c:cd:be:
23:6a:e5:48:0c:0b:08:f9:1e:59:c4:db:ff:54:05:
05:e5:d8:ca:d7:b9:66:15:70:28:6a:8e:cf:01:47:
d3:93:ad:67:00:0e:51:a3:8b:d7:d7:44:38:fe:46:
67:86:d0:08:bd:fd:26:97:65:cf:c6:b3:42:27:39:
a9:89:94:e1:72:a1:5a:45:f2:25:0f:a6:56:48:b3:
56:4d:49:29:5d:1a:54:a5:37:f7:b4:8c:e0:34:cf:
ae:63:81:94:f5:f8:f2:93:32:a5:9e:21:54:41:6b:
80:9b:c0:f6:8a:54:ea:90:1f:e9:db:0d:28:e2:73:
e9:61:02:c2:7c:61:3a:54:95:6e:1f:4a:e7:92:97:
57:b6:d3:2c:56:75:b3:0a:79:52:db:f3:e3:db:ef:
f3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F5:BF:60:5B:A3:39:08:3A:04:4B:28:09:87:77:D7:5A:21:0D:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5662F78C33311EF93F9E662762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.146.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ca:59:21:58:b2:b5:82:52:3e:70:17:67:6a:56:d8:ae:07:
74:27:e1:82:b6:a4:bd:fa:a2:ea:99:6a:3e:73:43:6e:fd:dc:
fd:8c:45:84:6a:84:a9:16:1f:03:b1:db:72:83:91:fe:0a:23:
20:16:6b:d3:66:98:f1:48:a5:da:35:46:6b:3b:c4:24:19:87:
d4:56:96:0b:9f:44:a6:4e:7d:a4:e0:6a:9d:75:e9:31:33:be:
4e:33:9d:1e:7f:98:be:72:c6:34:fd:b7:12:30:b0:83:f4:b2:
70:0b:36:8a:07:92:05:5b:90:e7:c5:a3:48:16:4c:d0:1f:7a:
ca:ae:32:6b:83:a7:72:bc:56:e7:04:f4:4d:c2:60:0f:d9:63:
7a:8c:67:3b:19:98:2b:11:ee:4e:f2:36:98:d2:50:fb:6e:72:
98:d9:f6:d7:34:cb:d1:00:c9:20:a1:d0:d6:0b:e8:6f:36:0e:
e6:07:02:a1:06:2f:bc:27:98:d5:f2:78:09:d7:79:32:68:6f:
56:43:7b:61:8d:38:12:4a:30:c2:d9:0f:de:d2:fd:98:14:f6:
8a:64:4f:32:a6:04:7f:14:be:f3:d1:36:12:c0:58:d4:2b:c5:
28:95:35:36:21:9b:3f:29:ab:f5:83:ff:7d:c3:95:1a:0e:4e:
f7:c3:30:f3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOstMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI2MDI0NjQyWhcNMjcxMjEwMDI0NjQyWjAYMRYw
FAYDVQQDEw02NzZjYzM5Ni01ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAymEMm1S/iF/alkzv0h4J6Tfc7VDKW9sZs/X9AD1N0bHgBKRunk3c4Zyh
jHU2Bgq3YM7+gc2gYJ/s3uBiGChr7S074H6Op2qKBw7uKi9pjcHYzrTuSCD7XRFf
zwB2+Jc8ul1wihk8zb4jauVIDAsI+R5ZxNv/VAUF5djK17lmFXAoao7PAUfTk61n
AA5Ro4vX10Q4/kZnhtAIvf0ml2XPxrNCJzmpiZThcqFaRfIlD6ZWSLNWTUkpXRpU
pTf3tIzgNM+uY4GU9fjykzKlniFUQWuAm8D2ilTqkB/p2w0o4nPpYQLCfGE6VJVu
H0rnkpdXttMsVnWzCnlS2/Pj2+/zJQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAb1
v2BbozkIOgRLKAmHd9daIQ1nMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNTY2MkY3OEMzMzMxMUVGOTNGOUU2NjI3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPSSMA0GCSqGSIb3DQEBCwUA
A4IBAQBQylkhWLK1glI+cBdnalbYrgd0J+GCtqS9+qLqmWo+c0Nu/dz9jEWEaoSp
Fh8Dsdtyg5H+CiMgFmvTZpjxSKXaNUZrO8QkGYfUVpYLn0SmTn2k4GqddekxM75O
M50ef5i+csY0/bcSMLCD9LJwCzaKB5IFW5DnxaNIFkzQH3rKrjJrg6dyvFbnBPRN
wmAP2WN6jGc7GZgrEe5O8jaY0lD7bnKY2fbXNMvRAMkgodDWC+hvNg7mBwKhBi+8
J5jV8ngJ13kyaG9WQ3thjTgSSjDC2Q/e0v2YFPaKZE8ypgR/FL7z0TYSwFjUK8Uo
lTU2IZs/Kav1g/99w5UaDk73wzDz
-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:30 2025 by rpki-client