Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD4F27CA226211EEBE2ED2624AD9E6FC.roa
File: BD4F27CA226211EEBE2ED2624AD9E6FC.roa (raw, json)
Hash identifier: ClSBX9ktYEvPTTXyyZE+cjycfLhPa0fHkDpZ9r/5t/A=
Subject key identifier: C7:36:FF:29:37:91:F4:F8:D3:70:75:72:BD:E1:84:B5:BD:74:3C:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 308E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD4F27CA226211EEBE2ED2624AD9E6FC.roa
Signing time: Fri 14 Jul 2023 16:23:17 +0000
ROA not before: Sat 15 Jul 2023 16:23:14 +0000
ROA not after: Fri 10 May 2024 16:23:14 +0000
asID: 138456
IP address blocks: 156.252.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12430 (0x308e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 15 16:23:14 2023 GMT
Not After : May 10 16:23:14 2024 GMT
Subject: CN=64b17675-0d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:69:43:a8:22:d6:2a:d8:9b:c1:d4:26:33:7c:
a9:5d:79:e9:27:9b:17:be:cb:62:fa:47:e8:9c:fe:
37:a4:d5:09:60:14:c0:e7:30:83:03:1a:58:1e:45:
1f:c0:22:7b:87:85:d2:0c:31:c8:34:46:80:dc:65:
89:6e:9d:6d:81:81:c3:63:f4:2f:2e:cb:fa:b6:c0:
9b:fa:88:1b:be:fe:b2:f0:e8:12:9b:33:d0:07:4c:
e1:81:d1:15:07:61:06:7c:16:21:ef:b3:c4:97:d2:
8e:fb:de:65:62:62:3d:68:a9:dc:18:96:ea:56:4c:
e0:86:a6:a2:df:b5:e2:fe:11:ae:d9:13:13:dc:14:
7b:17:af:d5:28:d2:4c:18:9b:e4:01:07:cb:58:5b:
0a:90:0e:f9:ac:54:95:d3:69:2e:9b:eb:5f:0d:6c:
a4:8a:06:b7:11:28:87:81:02:77:6b:a1:95:d9:68:
56:bb:23:3f:f0:0e:91:a0:42:c4:fe:d0:57:b4:56:
36:da:4c:d9:9e:f2:d8:a6:dd:e6:89:57:7e:f9:62:
df:67:bb:08:67:b0:1e:be:66:9f:01:64:6c:38:02:
c9:c0:37:c9:08:5d:2e:f2:d2:a9:e3:e1:04:92:22:
39:9b:2d:ae:6c:39:34:67:1c:5e:a0:28:4d:3c:42:
fe:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:36:FF:29:37:91:F4:F8:D3:70:75:72:BD:E1:84:B5:BD:74:3C:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD4F27CA226211EEBE2ED2624AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.21.0/24
Signature Algorithm: sha256WithRSAEncryption
11:53:da:76:b2:5b:6f:d8:71:66:52:07:e3:40:d5:8f:f7:2f:
4c:b0:8e:f0:93:81:bf:07:69:c9:92:7c:34:e3:54:db:2e:a2:
f8:4a:d2:ae:3e:b8:ac:cb:6b:22:df:af:bc:3f:03:a4:88:62:
36:81:92:8d:5b:e2:5d:7c:c9:f3:65:34:a8:5d:1f:9b:90:40:
cd:68:83:79:2a:2f:3e:f2:57:61:33:22:0d:2c:0e:e3:59:c8:
af:df:5b:6c:3d:44:b5:6d:bf:2a:d1:2d:6b:02:4f:76:06:05:
7f:2d:f2:9a:4f:52:a5:be:67:2b:7b:54:02:10:10:66:c4:45:
91:ec:fa:70:21:cd:e7:5b:df:53:8a:6b:ed:c9:37:25:b7:7f:
18:31:26:9a:7c:e0:da:24:f4:12:63:8d:81:3d:68:98:d7:98:
85:bf:e7:f1:47:be:ae:f3:e9:f9:66:24:c5:46:21:fa:c7:5f:
13:ac:d0:10:e5:02:10:48:c3:be:f1:42:02:d3:fa:ba:89:c2:
0b:e7:e1:44:da:07:41:b1:8e:4d:92:1e:f4:c8:16:04:0a:85:
0a:60:03:a1:48:12:95:b7:e1:fc:e5:f1:72:27:0f:75:82:c3:
41:2d:0f:d6:89:98:1d:ff:6d:a6:80:2d:c8:0e:64:3b:29:47:
99:1d:99:38
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICMI4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MTUxNjIzMTRaFw0yNDA1MTAxNjIzMTRaMBgxFjAU
BgNVBAMTDTY0YjE3Njc1LTBkNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDhaUOoItYq2JvB1CYzfKldeeknmxe+y2L6R+ic/jek1QlgFMDnMIMDGlge
RR/AInuHhdIMMcg0RoDcZYlunW2BgcNj9C8uy/q2wJv6iBu+/rLw6BKbM9AHTOGB
0RUHYQZ8FiHvs8SX0o773mViYj1oqdwYlupWTOCGpqLfteL+Ea7ZExPcFHsXr9Uo
0kwYm+QBB8tYWwqQDvmsVJXTaS6b618NbKSKBrcRKIeBAndroZXZaFa7Iz/wDpGg
QsT+0Fe0VjbaTNme8tim3eaJV375Yt9nuwhnsB6+Zp8BZGw4AsnAN8kIXS7y0qnj
4QSSIjmbLa5sOTRnHF6gKE08Qv6XAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUxzb/
KTeR9PjTcHVyveGEtb10PLcwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0JENEYyN0NBMjI2MjExRUVCRTJFRDI2MjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc/BUwDQYJKoZIhvcNAQELBQAD
ggEBABFT2nayW2/YcWZSB+NA1Y/3L0ywjvCTgb8HacmSfDTjVNsuovhK0q4+uKzL
ayLfr7w/A6SIYjaBko1b4l18yfNlNKhdH5uQQM1og3kqLz7yV2EzIg0sDuNZyK/f
W2w9RLVtvyrRLWsCT3YGBX8t8ppPUqW+Zyt7VAIQEGbERZHs+nAhzedb31OKa+3J
NyW3fxgxJpp84Nok9BJjjYE9aJjXmIW/5/FHvq7z6flmJMVGIfrHXxOs0BDlAhBI
w77xQgLT+rqJwgvn4UTaB0Gxjk2SHvTIFgQKhQpgA6FIEpW34fzl8XInD3WCw0Et
D9aJmB3/baaALcgOZDspR5kdmTg=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org