Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3DF8FD0F65211EE8A070E90775412E6.roa
File: B3DF8FD0F65211EE8A070E90775412E6.roa (raw, json)
Hash identifier: W3RWahZSRVnBWapqN0RykNIWKRE+e74ub1olwK3wDgs=
Subject key identifier: CE:4B:A9:AC:1D:48:EA:2A:3B:AC:13:15:5B:97:AD:25:0E:48:16:99
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 81C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3DF8FD0F65211EE8A070E90775412E6.roa
Signing time: Tue 09 Apr 2024 09:22:36 +0000
ROA not before: Tue 09 Apr 2024 09:22:33 +0000
ROA not after: Fri 10 May 2024 09:22:33 +0000
asID: 64267
IP address blocks: 156.248.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33216 (0x81c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 09:22:33 2024 GMT
Not After : May 10 09:22:33 2024 GMT
Subject: CN=661508dc-af85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5c:21:ad:0a:9f:fc:ce:e3:65:76:d6:c0:01:
b8:42:7c:1c:cc:57:4f:cf:76:e8:ff:0c:1d:2a:0f:
8b:11:6e:b2:fd:7b:de:1d:61:d0:8a:53:a5:1e:d3:
8d:65:ad:96:e3:98:ee:62:ad:5b:e3:9c:79:1e:af:
90:72:89:ff:2f:80:d1:17:5f:44:27:d3:92:b2:db:
3b:46:ed:68:35:47:a6:a1:5f:5d:e2:69:2e:a1:86:
6c:1f:e0:3c:26:f2:ee:92:87:6f:7f:0b:d1:bd:cb:
af:c5:9a:b5:6f:33:cc:20:99:ec:4f:da:45:df:61:
d1:b7:e7:17:b6:dc:1c:5e:86:a7:a9:d4:f3:02:9b:
09:de:d7:73:d4:3a:3b:09:5c:37:3f:b2:98:df:2c:
d9:bd:cb:c8:b2:59:3b:8a:39:62:a8:e6:1d:48:87:
10:c0:8c:23:9c:96:7f:d5:0a:f9:82:d7:2d:85:52:
8d:56:bb:2a:94:be:33:a7:6e:cf:da:34:53:a6:24:
fb:d8:37:c0:08:5f:84:3a:85:83:4d:a6:4b:1b:12:
a8:db:fa:10:12:0c:10:b6:54:a8:f3:63:d9:ab:0d:
c1:57:35:ff:ba:91:e4:6e:ff:af:43:c6:97:0e:48:
e2:98:50:64:06:9b:0b:8a:49:0e:ad:a3:21:3c:06:
05:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4B:A9:AC:1D:48:EA:2A:3B:AC:13:15:5B:97:AD:25:0E:48:16:99
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B3DF8FD0F65211EE8A070E90775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.68.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:07:9c:3d:e2:c1:33:00:03:b3:a6:67:ea:b8:1d:84:db:6d:
0f:e6:b0:d6:ae:c7:03:b6:69:99:e5:21:91:bf:13:d7:4c:33:
cb:68:f4:32:bd:9a:0d:e2:26:28:94:6e:25:69:a6:98:82:b6:
3c:b7:f6:07:a8:97:94:d7:59:6a:39:84:fb:90:7e:08:80:b2:
e8:75:9c:75:7e:ce:d3:bb:d7:51:c6:24:a5:8a:ab:0a:1e:a6:
01:e3:59:ee:c6:94:1c:05:7e:50:d6:3e:ea:2f:b9:a0:a7:2f:
69:40:e9:f0:1c:a1:7a:8b:01:a1:3a:c3:aa:da:68:55:cc:3e:
84:86:89:07:ae:a6:bb:d8:68:00:f0:03:88:48:02:e9:1b:98:
9c:a1:c3:f9:49:6a:64:f5:9c:fb:02:55:08:81:53:18:cd:1a:
06:07:5d:a6:e4:7f:dd:85:ba:94:94:38:28:f3:69:36:4d:ad:
f3:bb:cc:59:50:5b:a2:e1:92:c5:56:d1:43:54:de:51:0d:01:
1f:85:14:6b:1c:8f:44:36:60:a5:b9:64:5e:90:f7:21:3b:9e:
73:40:6c:fe:e6:33:15:86:54:6d:1e:7d:84:f6:90:51:20:7d:
57:ec:f2:2f:5e:9b:8e:fa:99:93:00:33:09:ff:1a:66:5f:fe:
39:70:57:ab
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIHAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDA5MDkyMjMzWhcNMjQwNTEwMDkyMjMzWjAYMRYw
FAYDVQQDEw02NjE1MDhkYy1hZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4FwhrQqf/M7jZXbWwAG4QnwczFdPz3bo/wwdKg+LEW6y/XveHWHQilOl
HtONZa2W45juYq1b45x5Hq+Qcon/L4DRF19EJ9OSsts7Ru1oNUemoV9d4mkuoYZs
H+A8JvLukodvfwvRvcuvxZq1bzPMIJnsT9pF32HRt+cXttwcXoanqdTzApsJ3tdz
1Do7CVw3P7KY3yzZvcvIslk7ijliqOYdSIcQwIwjnJZ/1Qr5gtcthVKNVrsqlL4z
p27P2jRTpiT72DfACF+EOoWDTaZLGxKo2/oQEgwQtlSo82PZqw3BVzX/upHkbv+v
Q8aXDkjimFBkBpsLikkOraMhPAYFGQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFM5L
qawdSOoqO6wTFVuXrSUOSBaZMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CM0RGOEZEMEY2NTIxMUVFOEEwNzBFOTA3NzU0MTJFNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPhEMA0GCSqGSIb3DQEBCwUA
A4IBAQAaB5w94sEzAAOzpmfquB2E220P5rDWrscDtmmZ5SGRvxPXTDPLaPQyvZoN
4iYolG4laaaYgrY8t/YHqJeU11lqOYT7kH4IgLLodZx1fs7Tu9dRxiSliqsKHqYB
41nuxpQcBX5Q1j7qL7mgpy9pQOnwHKF6iwGhOsOq2mhVzD6EhokHrqa72GgA8AOI
SALpG5icocP5SWpk9Zz7AlUIgVMYzRoGB12m5H/dhbqUlDgo82k2Ta3zu8xZUFui
4ZLFVtFDVN5RDQEfhRRrHI9ENmCluWRekPchO55zQGz+5jMVhlRtHn2E9pBRIH1X
7PIvXpuO+pmTADMJ/xpmX/45cFer
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:15 2024 by rpki-client on console-fra.rpki-client.org