Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACB01F1CCF2411EFA0866C60762E951A.roa
File: ACB01F1CCF2411EFA0866C60762E951A.roa (raw, json)
Hash identifier: URwRjpbNVxfmxrwVuwpLSLH19AQXPWlqfhdqedas4gg=
Subject key identifier: EB:E5:3A:DB:41:B2:24:BC:73:D0:DF:65:98:79:12:51:38:4C:D2:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0104F3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACB01F1CCF2411EFA0866C60762E951A.roa
Signing time: Fri 10 Jan 2025 07:29:50 +0000
ROA not before: Fri 10 Jan 2025 07:29:46 +0000
ROA not after: Fri 14 Feb 2025 07:29:46 +0000
asID: 54600
IP address blocks: 156.236.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66803 (0x104f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 10 07:29:46 2025 GMT
Not After : Feb 14 07:29:46 2025 GMT
Subject: CN=6780cc6d-cc6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:04:6e:e3:5a:00:eb:4e:1a:c1:c2:54:31:1e:
f7:db:63:a0:e7:6a:a4:4a:54:29:b6:33:a7:5e:c5:
85:d6:0a:4e:bc:8c:87:3b:bc:ff:80:f4:dd:69:31:
9c:8d:ec:91:2b:0f:27:5e:6e:f1:21:19:34:3d:bf:
eb:50:d4:fa:01:c3:bb:7b:48:e5:13:f4:b7:c7:1c:
69:0b:a6:90:0f:a7:a8:d2:92:48:13:3d:10:f1:8f:
15:6d:50:3a:1c:c5:3d:5b:9e:59:e9:c5:39:9a:77:
81:ad:a3:a5:0f:c1:e1:25:5a:e6:69:15:a4:0b:42:
f2:97:0e:4b:df:a2:4b:ca:83:b4:7b:93:da:b5:40:
aa:bb:2b:23:4f:22:af:2f:bc:13:98:d9:30:90:46:
96:58:13:67:cc:1d:47:bd:c9:96:63:fb:e7:56:ea:
67:98:2c:eb:b7:2a:1c:86:ff:82:2b:97:f1:be:a5:
09:8c:9b:9b:06:f8:a9:43:2e:b7:bd:4b:57:90:ce:
05:29:94:14:03:fc:03:3f:82:9e:09:3d:bb:68:87:
9f:9f:20:11:41:15:0c:63:6b:01:b8:9f:62:19:47:
a5:de:b9:da:9b:e4:e7:51:fd:e0:fa:e0:18:a9:5f:
02:f3:7a:95:6b:60:f7:ab:a8:3f:bd:58:9d:05:c4:
4b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E5:3A:DB:41:B2:24:BC:73:D0:DF:65:98:79:12:51:38:4C:D2:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ACB01F1CCF2411EFA0866C60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b0:73:84:27:07:a5:32:a2:2a:6d:ee:fb:06:af:71:8d:3a:82:
1a:61:e8:c4:d6:2c:86:a2:a1:f2:3a:49:4f:14:1b:76:34:1d:
ac:3f:a8:82:46:2b:ef:85:e1:7a:5f:b2:28:e0:82:7b:8f:aa:
58:e3:9f:fc:5d:85:e5:da:bf:16:2e:76:be:39:fb:7b:97:a5:
cd:b6:0e:dc:61:d9:9c:cf:18:c3:5e:32:6d:92:bd:b5:02:4e:
7e:e6:46:d6:b7:d9:2d:90:e4:f9:ea:17:d2:1b:9e:bb:14:27:
25:b8:86:8f:a9:2b:a7:02:c8:22:3c:34:f8:ef:ae:a1:f2:f2:
b9:cd:cd:44:2f:f2:b5:16:94:6b:bc:0e:fa:76:d3:4c:3d:63:
c4:db:37:22:92:c8:65:8e:70:79:6f:c7:e0:54:82:ce:c1:a4:
16:ff:c6:b3:c3:74:7b:b5:08:f7:9b:af:6a:9c:0a:b0:b9:cf:
e1:48:2f:f4:47:06:6c:4d:86:fa:04:a1:6d:b1:7b:5e:eb:47:
4e:81:13:a4:76:39:cb:b1:6a:62:77:e1:2a:8d:44:df:ac:30:
7a:58:48:1e:b8:f0:ab:b9:fb:1e:d7:fe:82:50:a0:62:78:04:
26:5b:ae:f4:21:d0:a5:9a:6a:ab:3c:81:1b:1c:3b:b2:91:47:
2a:dc:9f:f6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQTzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTEwMDcyOTQ2WhcNMjUwMjE0MDcyOTQ2WjAYMRYw
FAYDVQQDEw02NzgwY2M2ZC1jYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqwRu41oA604awcJUMR7322Og52qkSlQptjOnXsWF1gpOvIyHO7z/gPTd
aTGcjeyRKw8nXm7xIRk0Pb/rUNT6AcO7e0jlE/S3xxxpC6aQD6eo0pJIEz0Q8Y8V
bVA6HMU9W55Z6cU5mneBraOlD8HhJVrmaRWkC0Lylw5L36JLyoO0e5PatUCquysj
TyKvL7wTmNkwkEaWWBNnzB1HvcmWY/vnVupnmCzrtyochv+CK5fxvqUJjJubBvip
Qy63vUtXkM4FKZQUA/wDP4KeCT27aIefnyARQRUMY2sBuJ9iGUel3rnam+TnUf3g
+uAYqV8C83qVa2D3q6g/vVidBcRLoQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOvl
OttBsiS8c9DfZZh5ElE4TNIKMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BQ0IwMUYxQ0NGMjQxMUVGQTA4NjZDNjA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGnOyAMA0GCSqGSIb3DQEBCwUA
A4IBAQCwc4QnB6Uyoipt7vsGr3GNOoIaYejE1iyGoqHyOklPFBt2NB2sP6iCRivv
heF6X7Io4IJ7j6pY45/8XYXl2r8WLna+Oft7l6XNtg7cYdmczxjDXjJtkr21Ak5+
5kbWt9ktkOT56hfSG567FCcluIaPqSunAsgiPDT4766h8vK5zc1EL/K1FpRrvA76
dtNMPWPE2zcikshljnB5b8fgVILOwaQW/8azw3R7tQj3m69qnAqwuc/hSC/0RwZs
TYb6BKFtsXte60dOgROkdjnLsWpid+EqjUTfrDB6WEgeuPCrufse1/6CUKBieAQm
W670IdClmmqrPIEbHDuykUcq3J/2
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:51:04 2025 by rpki-client