Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A58E13DC21F711EEA7AD98274AD9E6FC.roa
File: A58E13DC21F711EEA7AD98274AD9E6FC.roa (raw, json)
Hash identifier: jVmuuAEuY0gwzTXA18xfHG+Btx8Djekoxvqq6en3/Pg=
Subject key identifier: 62:A9:1F:7B:CA:8B:7C:E9:22:1D:F0:06:BB:12:36:04:16:8E:A6:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 303D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A58E13DC21F711EEA7AD98274AD9E6FC.roa
Signing time: Fri 14 Jul 2023 03:36:41 +0000
ROA not before: Fri 14 Jul 2023 03:36:38 +0000
ROA not after: Mon 13 May 2024 03:36:38 +0000
asID: 138456
IP address blocks: 156.240.92.0/24 maxlen: 26
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12349 (0x303d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 14 03:36:38 2023 GMT
Not After : May 13 03:36:38 2024 GMT
Subject: CN=64b0c2c9-2ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:8b:ca:59:83:2d:87:f7:d5:15:ea:ae:99:
a5:2c:10:6d:85:71:f4:fa:2f:57:11:69:08:4d:c8:
6f:19:25:c1:c6:dc:77:5a:b4:34:56:9a:86:09:7e:
67:05:04:04:39:b6:cc:02:81:90:c4:0b:1f:12:00:
7f:43:6f:bc:50:c8:f8:94:ec:9c:f3:b5:d0:2a:ff:
cc:80:e6:86:c1:54:4b:96:f5:a5:33:f7:e6:79:87:
2d:58:0f:4c:13:ac:f6:79:76:a8:85:14:40:63:74:
51:75:16:22:41:3c:ad:f4:22:24:ee:e4:a0:fd:ce:
1a:16:bd:ad:73:2a:03:e0:18:4d:54:2c:ac:c7:47:
5c:22:32:ce:42:ad:fc:21:ae:c4:c5:ed:5b:0e:95:
75:19:20:4b:77:36:e4:a1:e2:b4:67:d5:be:be:f3:
0e:b5:45:e2:cd:1e:ab:25:77:5e:1d:33:1b:f8:2a:
7a:c4:0a:c8:fa:c3:70:7b:c4:e3:ad:81:c6:6a:15:
2f:84:3c:e9:70:90:46:df:e6:4f:eb:d0:5f:eb:74:
ea:f6:77:83:2c:fa:9d:af:48:53:77:30:17:f9:f3:
3f:be:6c:0b:5e:47:d8:b8:84:4d:e6:49:fb:53:dd:
a5:0b:97:f2:29:48:9b:76:89:48:c1:9a:26:cb:0d:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A9:1F:7B:CA:8B:7C:E9:22:1D:F0:06:BB:12:36:04:16:8E:A6:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A58E13DC21F711EEA7AD98274AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.92.0/24
Signature Algorithm: sha256WithRSAEncryption
88:cc:ab:d2:91:5c:72:65:af:14:84:d0:64:cb:6f:08:89:a0:
6d:3e:ff:da:de:40:f0:a1:0b:92:24:38:27:2d:d7:d7:9b:73:
09:48:68:6e:f1:0e:d6:94:da:94:08:bf:e9:fd:01:2b:04:2a:
ab:76:b0:81:f8:21:7a:79:25:97:9c:9d:46:2a:1c:a0:c8:03:
e7:72:89:c6:f5:f2:cd:58:b0:24:4e:be:f0:e9:8c:b3:f3:e0:
0e:78:62:e2:bb:e8:b3:df:ee:e2:ee:7f:9e:2f:14:16:5d:88:
3f:6d:94:1d:9e:36:eb:e0:ce:dc:f6:a7:76:ac:79:30:62:ca:
9f:6a:0c:c1:51:6e:81:40:2c:05:bf:25:f4:43:b6:58:f5:df:
d5:8f:4b:a9:39:35:6b:38:07:9f:40:d1:a2:75:e1:dd:fb:7d:
4c:db:b9:42:cc:16:46:96:93:be:41:4c:a1:fb:9d:58:07:96:
98:d4:3d:fe:d6:53:38:69:72:a4:78:bc:5e:e7:e2:05:1c:e8:
87:70:cb:5a:fd:93:49:af:47:12:17:88:04:aa:ba:d2:78:29:
60:44:8a:5c:ea:a9:9e:08:23:4a:4a:6c:a0:a0:a8:98:65:1c:
dc:61:a7:41:3b:f1:51:88:d6:03:5e:03:83:61:04:3a:d0:97:
ad:73:8c:ba
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICMD0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MTQwMzM2MzhaFw0yNDA1MTMwMzM2MzhaMBgxFjAU
BgNVBAMTDTY0YjBjMmM5LTJjZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDI9YvKWYMth/fVFequmaUsEG2FcfT6L1cRaQhNyG8ZJcHG3HdatDRWmoYJ
fmcFBAQ5tswCgZDECx8SAH9Db7xQyPiU7JzztdAq/8yA5obBVEuW9aUz9+Z5hy1Y
D0wTrPZ5dqiFFEBjdFF1FiJBPK30IiTu5KD9zhoWva1zKgPgGE1ULKzHR1wiMs5C
rfwhrsTF7VsOlXUZIEt3NuSh4rRn1b6+8w61ReLNHqsld14dMxv4KnrECsj6w3B7
xOOtgcZqFS+EPOlwkEbf5k/r0F/rdOr2d4Ms+p2vSFN3MBf58z++bAteR9i4hE3m
SftT3aULl/IpSJt2iUjBmibLDUUvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUYqkf
e8qLfOkiHfAGuxI2BBaOpqcwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0E1OEUxM0RDMjFGNzExRUVBN0FEOTgyNzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc8FwwDQYJKoZIhvcNAQELBQAD
ggEBAIjMq9KRXHJlrxSE0GTLbwiJoG0+/9reQPChC5IkOCct19ebcwlIaG7xDtaU
2pQIv+n9ASsEKqt2sIH4IXp5JZecnUYqHKDIA+dyicb18s1YsCROvvDpjLPz4A54
YuK76LPf7uLuf54vFBZdiD9tlB2eNuvgztz2p3aseTBiyp9qDMFRboFALAW/JfRD
tlj139WPS6k5NWs4B59A0aJ14d37fUzbuULMFkaWk75BTKH7nVgHlpjUPf7WUzhp
cqR4vF7n4gUc6Idwy1r9k0mvRxIXiASqutJ4KWBEilzqqZ4II0pKbKCgqJhlHNxh
p0E78VGI1gNeA4NhBDrQl61zjLo=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org