Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4DBD3ACA2C911EE87174E32D25BE465.roa
File: C4DBD3ACA2C911EE87174E32D25BE465.roa (raw, json)
Hash identifier: WnagFpLi0ONDpdM9gLAqPutJqM3SE5dbuzSdocTt49I=
Subject key identifier: 06:58:C8:DA:7B:C8:8A:0B:1C:81:C1:DD:00:B1:CE:BA:E9:94:50:2B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 58EA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4DBD3ACA2C911EE87174E32D25BE465.roa
Signing time: Mon 25 Dec 2023 02:03:17 +0000
ROA not before: Mon 25 Dec 2023 02:03:14 +0000
ROA not after: Mon 13 Jan 2025 02:03:14 +0000
asID: 139057
IP address blocks: 156.251.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22762 (0x58ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 25 02:03:14 2023 GMT
Not After : Jan 13 02:03:14 2025 GMT
Subject: CN=6588e2e5-45b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d0:f8:3b:72:1b:b8:16:60:74:ea:39:3a:61:
66:e0:f2:70:90:aa:ef:3b:8d:66:0f:f2:66:ff:1e:
8c:1a:57:8c:5c:f9:0c:cf:37:a2:8e:d7:03:7d:9f:
cf:3b:70:e3:17:8f:f6:46:23:a6:5c:45:2a:c0:6d:
eb:c0:0a:e9:d9:40:73:c1:ec:18:36:c7:4d:19:e5:
3a:62:fa:04:76:8c:21:7c:e8:60:6e:61:87:5f:71:
ab:fa:7c:77:fe:fb:f3:5c:59:c7:3c:ad:78:cc:7c:
6f:e2:1b:b9:11:c3:c0:a4:e3:5c:d6:f8:9d:42:72:
c2:f0:d6:2e:e4:5d:e3:be:5e:14:3e:a1:a1:46:af:
c9:46:05:fa:10:6c:d9:88:3f:f7:f8:9d:1d:c2:cc:
d7:55:83:bd:4c:0b:cc:3b:b4:3b:6c:c6:69:ac:de:
ce:53:8b:c6:dd:fb:db:57:82:ed:c3:60:71:c4:5d:
09:88:11:d3:10:c8:4c:65:55:e7:9d:6e:71:cc:91:
ab:b7:f7:68:a7:29:dc:2b:25:e6:12:a8:f3:c8:e9:
a5:05:8c:48:8d:0c:de:09:69:eb:23:eb:cd:c6:2e:
21:dc:a0:0c:a1:c3:17:e1:d4:79:0a:b3:4b:47:c4:
3b:d7:64:8d:f2:14:d4:e3:8a:98:a3:6b:bf:04:75:
e1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:58:C8:DA:7B:C8:8A:0B:1C:81:C1:DD:00:B1:CE:BA:E9:94:50:2B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C4DBD3ACA2C911EE87174E32D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.73.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b0:5e:b6:10:11:70:2e:bc:9c:37:6a:80:1a:c9:5f:d3:51:
6d:f3:1c:95:6c:f9:2f:df:95:83:da:a1:09:7b:67:6c:7d:07:
10:f0:da:6e:cd:7d:0f:46:c3:29:76:a1:18:78:46:ed:93:6a:
7f:57:82:0a:19:f8:80:b6:59:50:92:ac:b5:42:33:f1:42:ae:
98:1d:18:cb:81:63:24:53:3b:49:da:63:72:d3:6e:c8:7d:55:
6b:c3:44:69:2c:fa:8b:06:12:36:87:f4:81:11:ac:65:6f:ff:
e8:53:02:25:11:a1:9d:2a:af:d1:c0:6b:22:29:8f:f9:14:26:
47:9e:90:40:4a:8c:95:82:03:76:ea:c4:ad:71:68:9e:92:67:
33:c9:03:f2:90:ae:80:f9:31:f1:89:b0:83:f6:de:79:e1:91:
d7:40:12:ad:c4:6f:32:0c:93:4d:87:e0:c5:68:f4:f0:43:ba:
7b:60:36:7f:09:f8:22:64:20:27:d7:90:55:48:2c:51:57:68:
80:7e:49:75:8c:32:7e:01:cd:de:7c:ec:dd:56:43:45:e4:09:
c8:40:ce:3e:4f:86:96:5d:bd:0d:71:c2:d2:f8:0e:c2:e0:0e:
d3:a9:63:65:9b:92:80:3e:f4:cf:5b:dc:37:6f:4c:0a:57:1d:
03:cd:e2:95
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICWOowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEyMjUwMjAzMTRaFw0yNTAxMTMwMjAzMTRaMBgxFjAU
BgNVBAMTDTY1ODhlMmU1LTQ1YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCb0Pg7chu4FmB06jk6YWbg8nCQqu87jWYP8mb/HowaV4xc+QzPN6KO1wN9
n887cOMXj/ZGI6ZcRSrAbevACunZQHPB7Bg2x00Z5Tpi+gR2jCF86GBuYYdfcav6
fHf++/NcWcc8rXjMfG/iG7kRw8Ck41zW+J1CcsLw1i7kXeO+XhQ+oaFGr8lGBfoQ
bNmIP/f4nR3CzNdVg71MC8w7tDtsxmms3s5Ti8bd+9tXgu3DYHHEXQmIEdMQyExl
VeedbnHMkau392inKdwrJeYSqPPI6aUFjEiNDN4Jaesj683GLiHcoAyhwxfh1HkK
s0tHxDvXZI3yFNTjipija78EdeEjAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUBljI
2nvIigscgcHdALHOuumUUCswHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0M0REJEM0FDQTJDOTExRUU4NzE3NEUzMkQyNUJFNDY1LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc+0kwDQYJKoZIhvcNAQELBQAD
ggEBABCwXrYQEXAuvJw3aoAayV/TUW3zHJVs+S/flYPaoQl7Z2x9BxDw2m7NfQ9G
wyl2oRh4Ru2Tan9XggoZ+IC2WVCSrLVCM/FCrpgdGMuBYyRTO0naY3LTbsh9VWvD
RGks+osGEjaH9IERrGVv/+hTAiURoZ0qr9HAayIpj/kUJkeekEBKjJWCA3bqxK1x
aJ6SZzPJA/KQroD5MfGJsIP23nnhkddAEq3EbzIMk02H4MVo9PBDuntgNn8J+CJk
ICfXkFVILFFXaIB+SXWMMn4Bzd587N1WQ0XkCchAzj5PhpZdvQ1xwtL4DsLgDtOp
Y2WbkoA+9M9b3DdvTApXHQPN4pU=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:47 2024 by rpki-client on console-fra.rpki-client.org