Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C112D3B484F211EE9A82BF434AD9E6FC.roa
File: C112D3B484F211EE9A82BF434AD9E6FC.roa (raw, json)
Hash identifier: rHmwWZOSJQ1HBZngid1KCt0T0kWhxAeV2DyB6zDJx5k=
Subject key identifier: 1D:04:27:77:DB:BA:00:F0:0F:E4:7D:AA:AD:6E:16:F8:C8:19:85:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4947
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C112D3B484F211EE9A82BF434AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:41:05 +0000
ROA not before: Fri 17 Nov 2023 02:41:02 +0000
ROA not after: Tue 12 Nov 2024 02:41:02 +0000
asID: 397630
IP address blocks: 156.239.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18759 (0x4947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:41:02 2023 GMT
Not After : Nov 12 02:41:02 2024 GMT
Subject: CN=6556d2c1-a850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a4:a5:a8:37:2b:31:79:b4:ed:63:74:c3:70:
d1:23:76:e4:c8:42:14:2d:72:70:21:37:a2:78:6e:
1d:c1:ba:7a:4e:9f:43:78:54:32:e5:af:08:4c:03:
67:a9:4c:43:5b:26:d5:d5:a0:14:70:e5:e6:43:6f:
22:39:3a:29:17:70:ed:9f:94:38:03:19:67:9b:5d:
83:ba:74:c0:02:e1:bb:35:58:c1:3f:a1:19:c9:c1:
92:36:27:04:3b:dd:df:a4:37:a8:06:dd:0b:b3:79:
61:9b:cf:14:1b:cb:cc:49:f8:d9:65:b2:a5:63:9d:
6a:25:a3:51:28:5e:c4:55:ba:53:47:29:e9:95:8a:
b3:49:0f:ce:64:ae:0b:bb:c6:ef:42:b2:b4:d8:b0:
4f:d5:d7:60:24:f5:c8:ff:57:33:13:cb:bd:c1:9d:
ae:64:fc:3e:93:89:7c:01:6f:f6:e4:6b:1e:44:c9:
c3:bd:36:3a:c6:95:e8:ce:02:7a:43:a2:a6:da:03:
04:27:1a:77:f9:e3:92:e7:6f:ef:34:b0:4d:af:c0:
38:50:56:82:59:83:ae:3e:76:28:b3:e6:7b:71:f7:
b3:cc:6e:ba:03:e9:ec:d6:30:bb:c9:d0:ad:2d:f8:
f6:f7:1a:44:2c:72:1f:92:98:4f:8b:4b:a3:eb:3f:
ff:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:04:27:77:DB:BA:00:F0:0F:E4:7D:AA:AD:6E:16:F8:C8:19:85:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C112D3B484F211EE9A82BF434AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.63.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8b:70:4d:78:cf:73:14:22:e5:2e:fd:91:1e:b0:99:8d:fd:
fc:c1:62:2d:8c:2a:55:b1:16:be:62:43:9e:cc:ea:1d:69:39:
2c:9f:e6:0f:04:20:cd:06:fc:fb:b5:42:e5:9b:43:20:ab:bb:
84:73:ac:76:ff:23:3a:33:92:86:a7:dc:ef:7b:38:7e:2e:54:
85:26:71:13:ed:ca:01:f3:12:36:bc:20:27:f2:b6:cd:cf:b7:
ce:a3:e8:19:3b:13:95:fd:df:e5:83:c7:e5:48:ed:e5:06:b0:
36:22:23:0d:cf:4b:08:8b:f2:49:00:70:d5:47:3c:a5:59:18:
0e:93:51:92:2f:53:cf:b3:2a:92:ca:ed:a1:0c:77:ea:a4:a6:
7a:5d:dc:01:2c:5f:26:f4:b1:fb:a0:1a:74:76:c3:79:4f:69:
64:11:7b:cd:aa:80:73:fe:83:5f:1d:7a:8d:77:24:a5:cc:44:
45:ca:d3:15:9d:32:0b:ff:5a:83:68:f0:e1:b9:f3:fb:e2:85:
76:b1:ec:60:d8:36:e1:63:e7:27:97:74:48:42:2c:24:64:bf:
38:6a:9d:6a:e8:ae:65:4c:ef:c9:1d:c2:82:d5:c1:17:38:15:
2a:9a:35:5e:e7:a6:62:0d:3b:d8:7b:b7:35:8d:21:05:6b:a9:
53:92:1c:0a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSUcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTcwMjQxMDJaFw0yNDExMTIwMjQxMDJaMBgxFjAU
BgNVBAMTDTY1NTZkMmMxLWE4NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDVpKWoNysxebTtY3TDcNEjduTIQhQtcnAhN6J4bh3BunpOn0N4VDLlrwhM
A2epTENbJtXVoBRw5eZDbyI5OikXcO2flDgDGWebXYO6dMAC4bs1WME/oRnJwZI2
JwQ73d+kN6gG3QuzeWGbzxQby8xJ+NllsqVjnWolo1EoXsRVulNHKemVirNJD85k
rgu7xu9CsrTYsE/V12Ak9cj/VzMTy73Bna5k/D6TiXwBb/bkax5EycO9NjrGlejO
AnpDoqbaAwQnGnf545Lnb+80sE2vwDhQVoJZg64+diiz5ntx97PMbroD6ezWMLvJ
0K0t+Pb3GkQsch+SmE+LS6PrP/8/AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUHQQn
d9u6APAP5H2qrW4W+MgZhaAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0MxMTJEM0I0ODRGMjExRUU5QTgyQkY0MzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc7z8wDQYJKoZIhvcNAQELBQAD
ggEBAHKLcE14z3MUIuUu/ZEesJmN/fzBYi2MKlWxFr5iQ57M6h1pOSyf5g8EIM0G
/Pu1QuWbQyCru4RzrHb/Izozkoan3O97OH4uVIUmcRPtygHzEja8ICfyts3Pt86j
6Bk7E5X93+WDx+VI7eUGsDYiIw3PSwiL8kkAcNVHPKVZGA6TUZIvU8+zKpLK7aEM
d+qkpnpd3AEsXyb0sfugGnR2w3lPaWQRe82qgHP+g18deo13JKXMREXK0xWdMgv/
WoNo8OG58/vihXax7GDYNuFj5yeXdEhCLCRkvzhqnWrormVM78kdwoLVwRc4FSqa
NV7npmINO9h7tzWNIQVrqVOSHAo=
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:16 2024 by rpki-client on console-fra.rpki-client.org