Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CC5484C97811EF873BC841762E951A.roa
File: B8CC5484C97811EF873BC841762E951A.roa (raw, json)
Hash identifier: Rp9SR011+BE9N8jfU6gG7LS2aPLtYTYD4ikqVutlvDM=
Subject key identifier: A2:9A:33:14:28:3D:CB:24:43:6E:C6:3B:E5:EA:F1:74:C0:0E:93:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F4FF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CC5484C97811EF873BC841762E951A.roa
Signing time: Fri 03 Jan 2025 02:16:21 +0000
ROA not before: Fri 03 Jan 2025 02:16:17 +0000
ROA not after: Mon 13 Dec 2027 02:16:17 +0000
asID: 17561
IP address blocks: 156.227.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62719 (0xf4ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 3 02:16:17 2025 GMT
Not After : Dec 13 02:16:17 2027 GMT
Subject: CN=67774874-2c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ba:64:75:c2:06:02:15:2b:a4:54:fe:55:b3:
83:17:68:ec:0b:ae:6b:2a:4e:c0:7c:22:65:36:bb:
0c:de:86:17:68:f8:ca:9d:99:44:02:84:a0:2a:82:
b8:f5:6e:1b:62:05:ea:c5:84:2f:43:f5:41:3f:54:
63:d6:3a:04:06:0c:d0:4d:72:b9:88:d3:a9:58:85:
a0:4c:31:46:3d:48:01:c5:ec:58:00:f8:6f:16:9c:
e3:26:72:b0:4b:c6:57:5e:3a:ea:27:bc:e4:27:72:
ee:46:32:33:ef:71:d0:b6:37:c3:ff:6d:a7:82:c8:
ac:43:f1:fd:3a:e9:18:19:75:ab:49:f6:dc:a5:06:
d6:a2:5e:f9:7f:4c:26:ab:1c:7e:e7:48:f9:04:b8:
a2:df:cc:13:ee:ae:b2:1f:11:61:fb:5b:05:d1:0e:
e4:8b:26:76:e9:7a:42:88:8f:ab:d0:d6:d7:48:e9:
ba:fb:0a:97:22:63:e8:99:1d:fe:ed:6d:b3:76:ca:
9e:fd:82:4e:27:9a:e5:f9:56:58:8e:40:bf:ce:58:
0d:80:12:36:0f:de:7f:22:e6:16:b9:4f:84:b8:23:
75:0a:1b:1d:1e:76:1c:2f:24:14:e2:07:1e:ce:21:
b2:5d:6b:3b:d4:4f:89:d2:b9:6c:69:ba:3e:9d:79:
36:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9A:33:14:28:3D:CB:24:43:6E:C6:3B:E5:EA:F1:74:C0:0E:93:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B8CC5484C97811EF873BC841762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.113.0/24
Signature Algorithm: sha256WithRSAEncryption
27:56:b2:18:58:d6:fd:75:d0:94:70:54:bd:bd:1d:15:59:2b:
04:d4:81:40:93:1c:53:51:58:02:b6:16:5d:dc:7f:ed:37:3a:
6e:cd:a1:e4:22:38:13:3a:e0:97:64:24:53:fb:c9:7a:d1:96:
9a:66:8a:45:b7:34:d1:c7:a8:9e:34:78:05:95:d6:91:1b:f2:
a5:62:ea:32:d1:22:44:db:2c:76:67:70:b6:02:f2:76:72:68:
b2:4d:0d:c6:96:50:f8:51:90:a0:45:54:82:04:56:5c:42:2d:
60:56:25:f5:3e:c0:86:00:d2:af:e4:6d:61:8f:9e:5b:75:be:
26:fa:d5:ca:b2:d2:29:ab:e0:39:0d:85:54:ca:9d:fc:9b:44:
1b:db:a2:32:25:5d:59:0b:16:f3:b6:c3:ec:02:d3:3a:3f:20:
64:99:48:31:cd:ac:7f:4b:cd:3f:37:32:f5:e2:46:6e:ce:7b:
49:97:8b:ba:a9:3d:d7:0b:5a:15:1f:87:19:4b:5b:87:be:54:
0f:d3:db:cd:92:87:f9:c3:38:ce:b7:83:93:06:12:24:66:8b:
f6:5a:50:22:31:43:22:ff:0e:f6:54:47:46:4d:22:4b:eb:15:
68:ea:89:25:bf:1b:22:07:58:93:63:18:36:fd:d8:1c:9f:39:
5e:97:04:6f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAPT/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTAzMDIxNjE3WhcNMjcxMjEzMDIxNjE3WjAYMRYw
FAYDVQQDEw02Nzc3NDg3NC0yYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0bpkdcIGAhUrpFT+VbODF2jsC65rKk7AfCJlNrsM3oYXaPjKnZlEAoSg
KoK49W4bYgXqxYQvQ/VBP1Rj1joEBgzQTXK5iNOpWIWgTDFGPUgBxexYAPhvFpzj
JnKwS8ZXXjrqJ7zkJ3LuRjIz73HQtjfD/22ngsisQ/H9OukYGXWrSfbcpQbWol75
f0wmqxx+50j5BLii38wT7q6yHxFh+1sF0Q7kiyZ26XpCiI+r0NbXSOm6+wqXImPo
mR3+7W2zdsqe/YJOJ5rl+VZYjkC/zlgNgBI2D95/IuYWuU+EuCN1ChsdHnYcLyQU
4gceziGyXWs71E+J0rlsabo+nXk23QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKKa
MxQoPcskQ27GO+Xq8XTADpOtMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9COENDNTQ4NEM5NzgxMUVGODczQkM4NDE3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnONxMA0GCSqGSIb3DQEBCwUA
A4IBAQAnVrIYWNb9ddCUcFS9vR0VWSsE1IFAkxxTUVgCthZd3H/tNzpuzaHkIjgT
OuCXZCRT+8l60ZaaZopFtzTRx6ieNHgFldaRG/KlYuoy0SJE2yx2Z3C2AvJ2cmiy
TQ3GllD4UZCgRVSCBFZcQi1gViX1PsCGANKv5G1hj55bdb4m+tXKstIpq+A5DYVU
yp38m0Qb26IyJV1ZCxbztsPsAtM6PyBkmUgxzax/S80/NzL14kZuzntJl4u6qT3X
C1oVH4cZS1uHvlQP09vNkof5wzjOt4OTBhIkZov2WlAiMUMi/w72VEdGTSJL6xVo
6oklvxsiB1iTYxg2/dgcnzlelwRv
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:54:38 2025 by rpki-client