Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDD93A6A007D11EF900FA062017001B1.roa
File: BDD93A6A007D11EF900FA062017001B1.roa (raw, json)
Hash identifier: tA/HBVBecV8IEZ4HzCB6hHYQIyUYVdwSwj+me6RHkME=
Subject key identifier: DF:8F:41:C8:2F:39:80:04:2E:B4:41:C6:B2:4B:05:9E:3D:EE:45:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 83AF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDD93A6A007D11EF900FA062017001B1.roa
Signing time: Mon 22 Apr 2024 07:55:53 +0000
ROA not before: Mon 22 Apr 2024 07:55:49 +0000
ROA not after: Mon 20 May 2024 07:55:49 +0000
asID: 140869
IP address blocks: 156.225.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33711 (0x83af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 07:55:49 2024 GMT
Not After : May 20 07:55:49 2024 GMT
Subject: CN=66261809-481d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:f6:80:4c:f3:0e:2c:6e:6f:f9:90:a1:0e:
a9:ba:01:17:04:45:f3:0b:75:91:3b:65:a5:11:d0:
9a:ff:00:7a:ff:49:0f:7b:02:e6:b6:95:ec:c6:ad:
6e:1f:e0:8b:49:e7:5e:18:4d:37:43:dd:e7:f6:f8:
b7:f9:d8:8b:88:b1:9c:c2:2c:e0:16:96:ab:40:ad:
20:c5:ab:51:2b:c0:12:ac:b1:8f:60:75:a9:ac:17:
18:5d:9d:e0:17:e6:8d:00:af:3c:ac:5c:f8:bb:05:
88:c7:df:ed:79:1d:43:24:33:98:ca:b2:e7:04:cc:
96:8d:49:d9:85:20:02:1e:b6:ef:71:ce:d2:a3:65:
76:d5:e2:b2:bf:af:1c:f4:b4:c7:54:5e:fc:ee:3f:
6f:3a:5c:de:4e:0a:24:65:c5:94:35:0d:c2:7a:15:
e1:87:85:78:98:33:89:8a:f6:b5:4b:e5:f0:01:90:
c8:0b:53:7b:13:1c:52:5d:a1:cd:a2:a7:f3:1f:b1:
e4:83:71:4b:9d:ca:7d:b8:5c:15:77:e9:ae:71:42:
0b:60:28:ed:66:6f:aa:ec:c3:1d:df:8d:2a:e9:65:
64:86:f2:2e:d3:0a:95:71:4a:b3:9f:5e:ac:78:c4:
38:18:bb:f4:58:77:a9:67:77:61:1c:4e:da:b5:b5:
05:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8F:41:C8:2F:39:80:04:2E:B4:41:C6:B2:4B:05:9E:3D:EE:45:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDD93A6A007D11EF900FA062017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.83.0/24
Signature Algorithm: sha256WithRSAEncryption
64:88:cb:d6:e6:e5:dd:76:07:0e:1b:13:6f:84:e8:17:a1:10:
46:12:95:43:70:5f:44:cb:d0:d8:63:0b:27:20:9e:f6:af:5e:
c0:d4:5a:07:a5:cc:a8:b4:2d:de:3d:fc:a0:b3:be:b7:53:6d:
4b:5c:aa:1d:9d:2e:31:97:5b:4c:e9:78:54:e6:13:d7:de:71:
a9:55:21:a5:c5:ee:f7:27:12:33:34:a1:cc:e7:b7:cc:f7:5b:
56:f7:bd:b2:b6:87:a8:d6:e8:65:37:e1:5d:78:17:2a:d6:6b:
68:8e:e7:de:90:6c:fd:93:1f:72:0e:e3:f1:0f:f4:c9:e3:61:
ca:7a:ad:a7:8c:29:a7:1b:6e:50:36:c3:86:4d:43:37:12:3a:
36:c7:0a:2b:b5:47:b3:60:b8:86:78:92:be:86:45:30:36:7f:
e7:24:57:7a:6e:b5:e0:80:51:71:2d:a0:98:de:29:9b:12:2b:
d0:61:87:9d:07:16:6e:53:df:b1:b4:97:8e:69:ad:62:dd:6a:
99:64:28:7a:f4:1f:8e:44:50:96:23:57:5f:89:b2:f1:35:e0:
e9:bf:ff:d9:3a:1f:1c:8e:42:59:d4:22:f4:ef:82:e5:88:67:
4e:da:bd:2e:cd:69:23:ea:d9:a4:a2:78:75:c9:43:34:1f:15:
d8:a6:55:e0
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIOvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDIyMDc1NTQ5WhcNMjQwNTIwMDc1NTQ5WjAYMRYw
FAYDVQQDEw02NjI2MTgwOS00ODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt8X2gEzzDixub/mQoQ6pugEXBEXzC3WRO2WlEdCa/wB6/0kPewLmtpXs
xq1uH+CLSedeGE03Q93n9vi3+diLiLGcwizgFparQK0gxatRK8ASrLGPYHWprBcY
XZ3gF+aNAK88rFz4uwWIx9/teR1DJDOYyrLnBMyWjUnZhSACHrbvcc7So2V21eKy
v68c9LTHVF787j9vOlzeTgokZcWUNQ3CehXhh4V4mDOJiva1S+XwAZDIC1N7ExxS
XaHNoqfzH7Hkg3FLncp9uFwVd+mucUILYCjtZm+q7MMd340q6WVkhvIu0wqVcUqz
n16seMQ4GLv0WHepZ3dhHE7atbUFvwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFN+P
QcgvOYAELrRBxrJLBZ497kWHMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CREQ5M0E2QTAwN0QxMUVGOTAwRkEwNjIwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOFTMA0GCSqGSIb3DQEBCwUA
A4IBAQBkiMvW5uXddgcOGxNvhOgXoRBGEpVDcF9Ey9DYYwsnIJ72r17A1FoHpcyo
tC3ePfygs763U21LXKodnS4xl1tM6XhU5hPX3nGpVSGlxe73JxIzNKHM57fM91tW
972ytoeo1uhlN+FdeBcq1mtojufekGz9kx9yDuPxD/TJ42HKeq2njCmnG25QNsOG
TUM3Ejo2xwortUezYLiGeJK+hkUwNn/nJFd6brXggFFxLaCY3imbEivQYYedBxZu
U9+xtJeOaa1i3WqZZCh69B+ORFCWI1dfibLxNeDpv//ZOh8cjkJZ1CL074LliGdO
2r0uzWkj6tmkonh1yUM0HxXYplXg
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org