Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6F4CCACDF7911EE90544C60775412E6.roa
File: B6F4CCACDF7911EE90544C60775412E6.roa (raw, json)
Hash identifier: /J5+vhbYfmsdHGFa6s6HVTVLHCV088MxVH2TuFRxIh0=
Subject key identifier: BF:D3:06:D0:EF:BA:43:F3:71:41:53:A3:C3:9C:0B:F6:50:85:A6:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 7E03
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6F4CCACDF7911EE90544C60775412E6.roa
Signing time: Mon 11 Mar 2024 07:33:55 +0000
ROA not before: Mon 11 Mar 2024 07:33:52 +0000
ROA not after: Fri 14 Mar 2025 07:33:52 +0000
asID: 134687
IP address blocks: 156.230.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32259 (0x7e03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 11 07:33:52 2024 GMT
Not After : Mar 14 07:33:52 2025 GMT
Subject: CN=65eeb3e3-e6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:db:97:61:7a:b4:04:a3:d0:2b:1c:06:6c:f7:
13:f4:63:e6:49:e8:c5:d3:89:ef:14:44:23:0c:40:
76:8a:0a:d5:b1:93:a8:76:77:7c:70:86:74:db:69:
ed:c2:20:7a:7a:28:a6:8d:52:bb:03:86:a4:8f:46:
c7:b2:3c:41:87:e9:c6:c5:f5:91:bc:54:a9:7a:7b:
43:d7:35:b8:54:ee:8c:30:96:b1:07:08:c7:dc:54:
5b:de:61:f0:ea:fd:76:9b:b4:84:be:51:71:13:85:
12:bb:df:f4:a3:51:7f:a7:49:6d:fb:c3:94:11:13:
92:ca:74:f5:f8:f7:5c:47:91:d1:37:5e:c9:2b:6f:
51:67:02:fc:78:3f:c5:81:3f:a3:05:20:e8:4c:42:
95:5b:fd:07:d6:88:1a:66:18:9e:97:b2:ec:98:00:
05:8f:47:5f:e4:dc:8d:fd:93:3c:98:c4:d4:6a:f5:
b3:21:33:39:c0:5a:f4:0e:ac:e8:f3:76:bd:88:4a:
50:83:66:9e:c5:b2:3c:17:ec:e2:f6:7e:79:81:46:
24:e1:3d:bd:af:a5:e3:04:d8:d4:71:8e:86:07:6e:
e9:13:63:5f:b7:c2:a1:86:9d:d9:da:4f:f2:03:6a:
a9:46:53:3f:e7:98:9f:50:e6:48:c6:c4:e1:19:c9:
1a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D3:06:D0:EF:BA:43:F3:71:41:53:A3:C3:9C:0B:F6:50:85:A6:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6F4CCACDF7911EE90544C60775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.9.0/24
Signature Algorithm: sha256WithRSAEncryption
20:69:9f:06:d4:4b:53:d8:75:ad:5c:56:10:1a:61:c4:6a:66:
fa:9c:ab:e1:8b:64:1c:2d:7f:a1:08:9d:b0:90:87:0a:43:0e:
3e:64:94:29:db:84:53:ed:f6:89:b8:fc:08:fb:42:3d:75:77:
19:25:21:bd:1c:2a:df:b2:d5:e0:c9:03:d4:fd:5c:94:22:bc:
72:54:aa:a1:ab:b2:ca:77:ec:1e:41:23:5a:ee:e8:32:f8:63:
d3:aa:a1:92:f3:83:d3:8c:a4:c0:49:86:cb:a2:b4:a4:36:08:
b5:a2:e6:b3:78:3c:4a:0f:de:85:ad:0b:0b:9b:9e:d9:22:83:
f8:20:a6:fa:5b:d5:aa:f0:c1:0f:0a:2a:c6:1a:4c:29:0e:5e:
9d:f2:53:93:c6:b3:ab:e5:3f:af:64:fe:f2:be:28:79:7f:60:
cf:f0:7b:2d:0a:d7:25:ac:aa:52:b2:bc:ea:aa:9a:55:da:87:
dd:d1:25:de:f5:5e:6e:16:0b:5c:11:f7:96:c4:a7:ff:bd:bb:
5d:3d:cc:f7:11:f6:49:23:9a:62:95:27:bd:e2:7b:29:52:72:
fc:0d:e6:19:eb:68:d3:68:04:85:c1:70:c2:5b:50:fa:bf:72:
d7:e2:0e:92:39:ef:03:2a:02:e1:92:d9:a0:26:ea:2b:58:90:
4d:b1:52:55
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICfgMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yNDAzMTEwNzMzNTJaFw0yNTAzMTQwNzMzNTJaMBgxFjAU
BgNVBAMTDTY1ZWViM2UzLWU2YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCy25dherQEo9ArHAZs9xP0Y+ZJ6MXTie8URCMMQHaKCtWxk6h2d3xwhnTb
ae3CIHp6KKaNUrsDhqSPRseyPEGH6cbF9ZG8VKl6e0PXNbhU7owwlrEHCMfcVFve
YfDq/XabtIS+UXEThRK73/SjUX+nSW37w5QRE5LKdPX491xHkdE3Xskrb1FnAvx4
P8WBP6MFIOhMQpVb/QfWiBpmGJ6XsuyYAAWPR1/k3I39kzyYxNRq9bMhMznAWvQO
rOjzdr2ISlCDZp7FsjwX7OL2fnmBRiThPb2vpeME2NRxjoYHbukTY1+3wqGGndna
T/IDaqlGUz/nmJ9Q5kjGxOEZyRpLAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUv9MG
0O+6Q/NxQVOjw5wL9lCFpmYwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0I2RjRDQ0FDREY3OTExRUU5MDU0NEM2MDc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc5gkwDQYJKoZIhvcNAQELBQAD
ggEBACBpnwbUS1PYda1cVhAaYcRqZvqcq+GLZBwtf6EInbCQhwpDDj5klCnbhFPt
9om4/Aj7Qj11dxklIb0cKt+y1eDJA9T9XJQivHJUqqGrssp37B5BI1ru6DL4Y9Oq
oZLzg9OMpMBJhsuitKQ2CLWi5rN4PEoP3oWtCwubntkig/ggpvpb1arwwQ8KKsYa
TCkOXp3yU5PGs6vlP69k/vK+KHl/YM/wey0K1yWsqlKyvOqqmlXah93RJd71Xm4W
C1wR95bEp/+9u109zPcR9kkjmmKVJ73ieylScvwN5hnraNNoBIXBcMJbUPq/ctfi
DpI57wMqAuGS2aAm6itYkE2xUlU=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:45 2024 by rpki-client on console-fra.rpki-client.org