Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF7291D2C34111EFBA2814BF762E951A.roa
File: BF7291D2C34111EFBA2814BF762E951A.roa (raw, json)
Hash identifier: eB+YB4bA9umPmjakyJbPuZNg2BoJyCLSV/7E2f/s66I=
Subject key identifier: 61:97:65:2A:43:55:70:24:CB:82:92:56:3E:B4:5A:62:4E:8F:1E:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: EBD3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF7291D2C34111EFBA2814BF762E951A.roa
Signing time: Thu 26 Dec 2024 04:27:42 +0000
ROA not before: Thu 26 Dec 2024 04:27:39 +0000
ROA not after: Fri 10 Dec 2027 04:27:39 +0000
asID: 17561
IP address blocks: 156.244.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60371 (0xebd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Dec 26 04:27:39 2024 GMT
Not After : Dec 10 04:27:39 2027 GMT
Subject: CN=676cdb3e-b332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:c2:a5:6a:78:4e:3f:5d:66:e8:21:21:2c:
c4:5e:85:46:68:5b:6d:ec:30:68:55:07:f2:e5:39:
3c:57:26:36:69:10:9e:f3:82:58:a0:08:f4:eb:47:
67:5e:7f:b5:42:94:42:17:b5:d8:90:e6:b2:16:d2:
1a:43:10:3b:62:e2:5e:e8:c1:ea:8d:e7:20:f3:ae:
d7:75:d0:fd:58:f3:32:25:46:d1:69:46:2f:3c:94:
7b:6e:c3:9b:a8:b0:a9:bc:27:97:eb:22:c6:c1:4f:
9d:73:bc:36:39:a4:c6:f4:df:fd:d4:02:a7:15:e9:
52:29:f5:74:b0:e3:ee:e9:28:6a:a9:aa:02:3d:37:
8b:25:ee:1d:ee:4f:56:1a:9c:01:06:e6:f1:38:79:
83:c3:8c:dc:5c:45:12:56:11:94:b0:d0:8f:aa:e3:
fb:6d:0c:a9:54:e8:a5:6e:be:0b:a0:f4:f7:b8:78:
27:b9:96:22:9b:15:af:51:42:5e:d4:bf:ab:f4:01:
83:5a:6e:0a:b3:19:43:69:b5:cf:60:33:81:62:f3:
23:20:88:7e:2b:cf:2c:0e:66:87:ed:c7:8d:98:2a:
98:c4:4a:d6:3d:17:4a:4d:94:3e:32:94:99:e6:ab:
26:c8:b3:90:5b:ec:01:8d:86:67:ce:60:a2:9b:1b:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:97:65:2A:43:55:70:24:CB:82:92:56:3E:B4:5A:62:4E:8F:1E:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF7291D2C34111EFBA2814BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.229.0/24
Signature Algorithm: sha256WithRSAEncryption
59:f2:cf:fc:68:36:62:5c:1a:7d:26:01:cc:5b:e9:dc:e0:cf:
ad:c0:7f:2e:ec:6f:9f:40:5d:02:6a:b8:cd:f4:1d:26:df:e6:
8c:50:36:8f:2f:6b:9e:9d:69:35:f4:a2:e5:1e:34:d4:66:d6:
6c:08:c2:2a:03:db:e1:74:8d:b9:53:8a:8e:98:76:db:76:d2:
7c:e0:03:1c:80:57:18:8f:66:78:f6:e3:f5:69:cc:fc:54:8a:
86:a4:45:a9:5b:c9:29:af:aa:01:27:89:1b:af:9c:27:3a:d4:
4c:81:3d:46:12:65:34:87:d2:69:0c:c3:05:46:54:c2:44:bd:
55:2f:b9:3b:f6:4f:16:45:d3:17:a3:11:9b:f3:3d:95:b2:3d:
45:a6:14:83:3b:42:9a:7e:94:cf:9b:9e:af:51:a9:8b:2a:bf:
58:52:bb:e5:b5:46:85:5d:21:73:d6:12:ec:d8:88:e0:4f:45:
a0:8e:b7:60:56:1b:44:9d:cf:d0:55:54:a0:37:0f:91:e7:0a:
f1:88:5a:7b:cd:4f:fb:87:48:87:76:ad:46:f8:8b:f5:88:96:
c0:e6:7b:02:85:97:aa:09:01:14:1b:68:0c:8a:6b:3e:dd:22:
d7:f8:be:66:c0:08:4f:c0:0f:ca:c7:c0:90:2d:b6:e3:25:3e:
05:80:4d:bb
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAOvTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMjI2MDQyNzM5WhcNMjcxMjEwMDQyNzM5WjAYMRYw
FAYDVQQDEw02NzZjZGIzZS1iMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqXzCpWp4Tj9dZughISzEXoVGaFtt7DBoVQfy5Tk8VyY2aRCe84JYoAj0
60dnXn+1QpRCF7XYkOayFtIaQxA7YuJe6MHqjecg867XddD9WPMyJUbRaUYvPJR7
bsObqLCpvCeX6yLGwU+dc7w2OaTG9N/91AKnFelSKfV0sOPu6ShqqaoCPTeLJe4d
7k9WGpwBBubxOHmDw4zcXEUSVhGUsNCPquP7bQypVOilbr4LoPT3uHgnuZYimxWv
UUJe1L+r9AGDWm4KsxlDabXPYDOBYvMjIIh+K88sDmaH7ceNmCqYxErWPRdKTZQ+
MpSZ5qsmyLOQW+wBjYZnzmCimxufuQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGGX
ZSpDVXAky4KSVj60WmJOjx7MMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CRjcyOTFEMkMzNDExMUVGQkEyODE0QkY3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPTlMA0GCSqGSIb3DQEBCwUA
A4IBAQBZ8s/8aDZiXBp9JgHMW+nc4M+twH8u7G+fQF0CarjN9B0m3+aMUDaPL2ue
nWk19KLlHjTUZtZsCMIqA9vhdI25U4qOmHbbdtJ84AMcgFcYj2Z49uP1acz8VIqG
pEWpW8kpr6oBJ4kbr5wnOtRMgT1GEmU0h9JpDMMFRlTCRL1VL7k79k8WRdMXoxGb
8z2Vsj1FphSDO0KafpTPm56vUamLKr9YUrvltUaFXSFz1hLs2IjgT0WgjrdgVhtE
nc/QVVSgNw+R5wrxiFp7zU/7h0iHdq1G+Iv1iJbA5nsChZeqCQEUG2gMims+3SLX
+L5mwAhPwA/Kx8CQLbbjJT4FgE27
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:40:49 2025 by rpki-client