Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77D1012D18011EF981C6447762E951A.roa
File: C77D1012D18011EF981C6447762E951A.roa (raw, json)
Hash identifier: 5IOfmmuO0wRPlGZu+Y0mPW5bSGcAiN24DPuv4xppktU=
Subject key identifier: 1E:8C:49:B2:62:5F:0F:89:47:1B:15:B5:5E:86:4E:CA:95:C9:41:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01069E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77D1012D18011EF981C6447762E951A.roa
Signing time: Mon 13 Jan 2025 07:34:10 +0000
ROA not before: Mon 13 Jan 2025 07:34:06 +0000
ROA not after: Mon 17 Feb 2025 07:34:06 +0000
asID: 273478
IP address blocks: 156.232.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67230 (0x1069e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 13 07:34:06 2025 GMT
Not After : Feb 17 07:34:06 2025 GMT
Subject: CN=6784c1f2-d1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ea:a8:da:22:41:fd:84:f8:ac:29:59:d3:85:
7a:f1:56:86:bb:15:52:f5:41:bc:d0:67:63:1d:89:
f1:88:e6:78:82:1e:b1:47:6d:ce:9f:42:d4:4b:c4:
86:b5:6b:20:cb:52:8d:9a:ab:a9:0a:0b:f8:0a:b9:
0d:de:15:b3:81:df:a2:68:11:51:dc:6f:12:51:9f:
5f:e8:f4:cf:59:de:34:d8:8f:ef:b6:20:fe:82:60:
7b:cc:07:c9:9b:bb:b1:04:b3:69:40:7d:5d:51:ee:
88:e4:7f:1f:8d:59:7c:da:ac:33:79:a1:05:e3:ec:
f3:54:48:50:48:6d:1d:34:a9:a8:2a:3c:e4:73:81:
00:25:60:68:53:93:e3:f6:10:33:b9:c4:55:32:c8:
fd:f1:ae:81:c6:06:95:58:a3:74:09:97:c1:78:ba:
db:bf:b5:8a:83:4a:71:fe:e8:20:0a:23:9d:18:65:
87:ad:f0:d7:cc:65:dd:0e:61:c7:55:05:bb:dd:4f:
04:bf:45:5c:58:15:de:7b:92:32:78:d2:bb:d0:4a:
14:36:a7:5a:65:ea:34:1b:ec:14:c9:72:c2:6a:15:
45:da:25:e9:8f:7f:ee:c7:bc:e5:5e:5c:ce:8e:af:
9e:b8:2e:bc:45:bc:30:66:ec:cd:85:9f:ed:37:33:
f1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8C:49:B2:62:5F:0F:89:47:1B:15:B5:5E:86:4E:CA:95:C9:41:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77D1012D18011EF981C6447762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
60:9c:cf:dc:3d:c5:45:c7:7a:70:88:a0:0e:54:d4:a5:45:6e:
9f:63:72:16:84:97:6e:89:f5:76:f5:80:55:8d:c6:3b:5b:a4:
8f:52:01:79:76:07:85:19:25:47:d3:3a:bb:42:24:47:41:cb:
12:4d:8f:75:6d:13:8c:80:cc:d1:d8:10:5b:4c:76:de:96:d7:
c0:6e:ac:f6:08:8b:3e:f8:a7:99:18:09:39:d6:35:e3:7f:ef:
c8:9c:d8:b3:d0:93:01:79:0e:d5:b3:67:1f:4d:a8:e5:1d:6d:
68:02:d0:38:8a:50:3c:f6:83:21:27:54:1a:17:4e:4c:a3:7d:
5d:33:89:b2:fa:f5:a3:3c:4f:dd:2e:3e:f6:1f:f4:15:8e:d4:
21:4e:8c:c3:99:c8:79:97:0c:c4:e5:47:1b:3c:46:07:c5:e6:
78:9f:30:37:dc:d2:13:2d:05:4f:e2:ed:bf:53:78:aa:4a:7f:
d3:4c:55:00:fd:14:43:de:19:d5:a4:8d:bb:8f:e9:f6:58:05:
6e:5e:33:13:45:db:2f:d5:d4:f5:d6:f5:1d:9c:88:34:eb:43:
3e:55:3d:f7:00:7a:1a:c5:31:88:23:75:30:27:4c:f1:b4:cf:
6b:83:f1:38:53:94:73:55:2d:d2:88:2c:4e:03:67:f3:c8:09:
5f:44:6e:54
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAQaeMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMTEzMDczNDA2WhcNMjUwMjE3MDczNDA2WjAYMRYw
FAYDVQQDEw02Nzg0YzFmMi1kMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr+qo2iJB/YT4rClZ04V68VaGuxVS9UG80GdjHYnxiOZ4gh6xR23On0LU
S8SGtWsgy1KNmqupCgv4CrkN3hWzgd+iaBFR3G8SUZ9f6PTPWd402I/vtiD+gmB7
zAfJm7uxBLNpQH1dUe6I5H8fjVl82qwzeaEF4+zzVEhQSG0dNKmoKjzkc4EAJWBo
U5Pj9hAzucRVMsj98a6BxgaVWKN0CZfBeLrbv7WKg0px/uggCiOdGGWHrfDXzGXd
DmHHVQW73U8Ev0VcWBXee5IyeNK70EoUNqdaZeo0G+wUyXLCahVF2iXpj3/ux7zl
XlzOjq+euC68RbwwZuzNhZ/tNzPxhQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFB6M
SbJiXw+JRxsVtV6GTsqVyUH/MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DNzdEMTAxMkQxODAxMUVGOTgxQzY0NDc3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOhnMA0GCSqGSIb3DQEBCwUA
A4IBAQBgnM/cPcVFx3pwiKAOVNSlRW6fY3IWhJduifV29YBVjcY7W6SPUgF5dgeF
GSVH0zq7QiRHQcsSTY91bROMgMzR2BBbTHbeltfAbqz2CIs++KeZGAk51jXjf+/I
nNiz0JMBeQ7Vs2cfTajlHW1oAtA4ilA89oMhJ1QaF05Mo31dM4my+vWjPE/dLj72
H/QVjtQhTozDmch5lwzE5UcbPEYHxeZ4nzA33NITLQVP4u2/U3iqSn/TTFUA/RRD
3hnVpI27j+n2WAVuXjMTRdsv1dT11vUdnIg060M+VT33AHoaxTGII3UwJ0zxtM9r
g/E4U5RzVS3SiCxOA2fzyAlfRG5U
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:50:09 2025 by rpki-client