Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8912D6A3B2111EE8D4F1D254AD9E6FC.roa
File: A8912D6A3B2111EE8D4F1D254AD9E6FC.roa (raw, json)
Hash identifier: s3EBgSeSpzp7D5VSfTv/kQ0QMpXVgetfLXrbYyDAGhk=
Subject key identifier: B2:EC:75:EA:66:85:78:D2:14:07:DF:3C:36:28:20:04:3F:FA:F2:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 354F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8912D6A3B2111EE8D4F1D254AD9E6FC.roa
Signing time: Tue 15 Aug 2023 04:10:24 +0000
ROA not before: Tue 15 Aug 2023 04:10:21 +0000
ROA not after: Mon 27 May 2024 04:10:21 +0000
asID: 140627
IP address blocks: 156.247.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13647 (0x354f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 04:10:21 2023 GMT
Not After : May 27 04:10:21 2024 GMT
Subject: CN=64dafab0-5a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:85:3e:93:5f:91:9f:df:0b:b8:3a:af:a7:
f7:71:25:ba:a9:73:60:aa:49:48:2b:41:14:cf:fe:
7b:e5:cf:1b:97:ac:58:c6:05:94:ad:6d:42:13:88:
40:1e:16:97:28:9b:e5:6e:b4:89:3a:4b:61:d6:35:
05:94:4f:9c:cb:82:8c:b1:fc:c2:da:c5:57:df:1d:
44:84:37:33:93:c2:01:07:80:b4:c0:dd:3e:c8:09:
49:d7:ab:60:7b:f5:73:27:0d:da:4d:eb:a5:5c:41:
bd:b5:51:7a:b2:21:54:db:9e:7d:75:52:72:0c:87:
9e:71:68:6f:83:4f:5b:12:ab:3a:1f:88:60:f9:37:
68:50:9c:44:58:d6:e5:7b:cd:4b:17:54:3c:4f:02:
17:c4:a1:d9:11:cd:63:cf:96:41:48:5a:16:11:74:
3c:87:3b:be:0b:72:8d:43:1d:ff:1f:99:4d:62:bf:
39:a5:71:76:37:2f:b4:1f:1a:e7:7f:ce:b8:1f:13:
c0:6f:38:7d:01:11:c2:c5:ad:9f:a1:b0:d8:03:68:
16:0b:14:e6:b3:37:81:71:8b:ae:a7:cf:7f:bd:23:
c0:f9:71:3a:0c:de:c7:63:03:cb:c7:6c:26:6e:97:
9e:22:8e:a0:46:28:7b:64:26:68:3b:ef:4a:1d:0c:
86:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EC:75:EA:66:85:78:D2:14:07:DF:3C:36:28:20:04:3F:FA:F2:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A8912D6A3B2111EE8D4F1D254AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.196.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a4:66:17:df:08:4c:53:73:26:63:05:43:f4:b6:de:57:81:
3c:95:ed:5b:f4:b8:fa:9d:71:ef:25:2a:f4:96:02:b7:e7:a0:
6a:fb:4e:ad:ae:e6:92:bf:17:e7:9d:60:83:68:02:81:66:46:
21:93:39:53:e3:1d:47:41:35:09:d3:b8:86:b5:5b:54:42:42:
3f:70:9e:5d:61:41:45:3f:ac:fb:29:98:e4:72:d6:2b:df:b9:
9e:aa:10:9e:d2:d2:0f:ac:f0:31:7c:b6:d6:b9:5f:0d:c9:25:
03:2d:3c:66:88:8f:e3:8a:69:c8:5c:da:93:8f:2a:52:04:1f:
13:32:e8:7f:68:3b:94:ab:8a:42:3e:06:71:eb:6f:a5:c0:88:
3f:4e:98:98:1f:52:ed:5d:78:97:07:12:9b:eb:4a:dd:13:97:
81:2d:24:68:19:f8:5f:52:fe:19:23:36:eb:fa:5d:65:e0:2e:
c4:30:54:d0:60:29:86:e8:3a:91:88:8f:8c:72:cd:db:3d:b8:
8f:ad:a8:b0:89:f0:e9:90:f4:34:65:92:f3:32:de:6d:e2:21:
ea:6b:99:65:5c:d4:f2:0e:26:33:f2:1f:d8:6f:d2:43:40:70:
10:90:42:e9:2a:f5:1a:c4:98:9f:88:f3:a7:f9:b6:21:80:f1:
1b:73:3a:75
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNU8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNDEwMjFaFw0yNDA1MjcwNDEwMjFaMBgxFjAU
BgNVBAMTDTY0ZGFmYWIwLTVhMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNhoU+k1+Rn98LuDqvp/dxJbqpc2CqSUgrQRTP/nvlzxuXrFjGBZStbUIT
iEAeFpcom+VutIk6S2HWNQWUT5zLgoyx/MLaxVffHUSENzOTwgEHgLTA3T7ICUnX
q2B79XMnDdpN66VcQb21UXqyIVTbnn11UnIMh55xaG+DT1sSqzofiGD5N2hQnERY
1uV7zUsXVDxPAhfEodkRzWPPlkFIWhYRdDyHO74Lco1DHf8fmU1ivzmlcXY3L7Qf
Gud/zrgfE8BvOH0BEcLFrZ+hsNgDaBYLFOazN4Fxi66nz3+9I8D5cToM3sdjA8vH
bCZul54ijqBGKHtkJmg770odDIYPAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUsux1
6maFeNIUB988NiggBD/68pAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0E4OTEyRDZBM0IyMTExRUU4RDRGMUQyNTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc98QwDQYJKoZIhvcNAQELBQAD
ggEBAAGkZhffCExTcyZjBUP0tt5XgTyV7Vv0uPqdce8lKvSWArfnoGr7Tq2u5pK/
F+edYINoAoFmRiGTOVPjHUdBNQnTuIa1W1RCQj9wnl1hQUU/rPspmORy1ivfuZ6q
EJ7S0g+s8DF8tta5Xw3JJQMtPGaIj+OKachc2pOPKlIEHxMy6H9oO5SrikI+BnHr
b6XAiD9OmJgfUu1deJcHEpvrSt0Tl4EtJGgZ+F9S/hkjNuv6XWXgLsQwVNBgKYbo
OpGIj4xyzds9uI+tqLCJ8OmQ9DRlkvMy3m3iIeprmWVc1PIOJjPyH9hv0kNAcBCQ
Qukq9RrEmJ+I86f5tiGA8RtzOnU=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:56 2024 by rpki-client on console-ams.rpki-client.org