Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CAF3006C247511EE8BF432354AD9E6FC.roa
File: CAF3006C247511EE8BF432354AD9E6FC.roa (raw, json)
Hash identifier: Bi7jp+0095hhcTCkENNR8jSHwHMPbOI5vue1XGxf83s=
Subject key identifier: 67:66:8C:C1:01:2C:95:EF:9E:A9:D9:84:7C:D9:83:39:72:B8:AE:0C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 30CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CAF3006C247511EE8BF432354AD9E6FC.roa
Signing time: Mon 17 Jul 2023 07:44:43 +0000
ROA not before: Mon 17 Jul 2023 07:44:39 +0000
ROA not after: Wed 24 Jul 2024 07:44:39 +0000
asID: 135293
IP address blocks: 156.227.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12491 (0x30cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 07:44:39 2023 GMT
Not After : Jul 24 07:44:39 2024 GMT
Subject: CN=64b4f16b-96d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8f:be:c1:f9:b4:99:b9:89:0e:a2:c7:9d:29:
6e:b2:28:d0:8c:2a:01:1e:d5:cd:19:04:19:90:5a:
43:fc:08:ab:05:70:4a:fb:8c:d1:fa:57:36:97:a7:
73:5c:90:84:e9:7c:be:83:62:16:e6:5f:08:47:94:
64:d9:a8:54:25:00:d6:bf:1e:b1:b5:a8:16:3e:c6:
d2:c2:16:f0:cc:d8:e8:5a:24:fd:f6:7d:c2:51:98:
9c:da:d7:2d:6c:c5:c1:ec:c2:40:75:23:63:e3:8a:
29:13:31:5d:e2:22:45:04:ff:e6:29:0a:09:7e:79:
9d:14:75:dc:64:33:95:10:a3:25:8c:f6:21:64:ec:
5a:9a:d7:1b:59:49:a1:b4:47:97:34:81:6a:38:1d:
0b:ee:64:2f:c7:60:75:7b:8e:c3:70:4a:5b:c0:6e:
cd:3b:c8:dd:3c:90:72:3c:80:2c:21:6d:00:89:85:
34:9e:04:4a:12:3b:33:f1:57:14:e3:cd:dc:46:22:
9b:7b:1b:2d:6b:da:86:44:f6:20:f1:11:39:eb:c1:
b2:00:32:bd:3c:ad:0f:2a:bf:5e:be:bf:2e:41:35:
fe:33:89:28:b3:07:fe:7d:9e:09:ff:34:85:99:d6:
f5:32:2a:29:0c:9d:25:cd:0e:9e:ff:68:5a:a3:c4:
c2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:66:8C:C1:01:2C:95:EF:9E:A9:D9:84:7C:D9:83:39:72:B8:AE:0C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CAF3006C247511EE8BF432354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.3.0/24
Signature Algorithm: sha256WithRSAEncryption
23:67:b1:58:bb:c6:5e:20:c0:88:10:78:9a:e5:d4:4e:6a:60:
7c:e2:ca:50:77:e3:2c:7f:72:30:ca:b2:59:c8:e1:40:87:fc:
76:eb:7c:88:2d:a0:3a:40:fb:51:f3:3b:5d:de:fb:76:ac:46:
ed:01:7a:64:f3:1b:c3:05:76:dc:08:90:ef:51:31:13:71:de:
ca:b8:87:fd:a9:11:e6:c6:45:25:91:14:45:1b:1a:21:89:9e:
57:89:38:66:0a:c7:f5:f6:cc:bc:9e:b9:bb:09:71:b5:0f:29:
df:b4:b5:f0:ed:d9:79:0d:c3:49:aa:82:fd:93:7a:c3:82:79:
54:f7:9b:a2:1c:2d:73:6a:8b:e5:40:fa:24:ba:cd:d8:73:0f:
52:26:6e:17:4c:aa:d5:bc:e7:4f:29:c8:76:dc:10:cc:41:f2:
3a:e7:1a:c9:3c:59:68:fb:3b:9c:67:3c:02:69:dd:0d:32:d0:
f9:5a:07:cf:4c:1e:e0:8f:e1:a4:32:7b:17:eb:c8:42:92:94:
47:08:df:79:fc:1a:ad:9b:f7:67:e5:8c:85:7e:d1:94:b0:7d:
9c:fe:15:c4:10:b2:07:7b:7c:11:f4:a9:04:6e:b7:f0:64:50:
ba:57:32:64:84:c8:1d:92:d5:0f:8c:37:ac:0d:58:21:a8:37:
63:9d:f9:e6
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICMMswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA3MTcwNzQ0MzlaFw0yNDA3MjQwNzQ0MzlaMBgxFjAU
BgNVBAMTDTY0YjRmMTZiLTk2ZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJj77B+bSZuYkOosedKW6yKNCMKgEe1c0ZBBmQWkP8CKsFcEr7jNH6VzaX
p3NckITpfL6DYhbmXwhHlGTZqFQlANa/HrG1qBY+xtLCFvDM2OhaJP32fcJRmJza
1y1sxcHswkB1I2PjiikTMV3iIkUE/+YpCgl+eZ0UddxkM5UQoyWM9iFk7Fqa1xtZ
SaG0R5c0gWo4HQvuZC/HYHV7jsNwSlvAbs07yN08kHI8gCwhbQCJhTSeBEoSOzPx
VxTjzdxGIpt7Gy1r2oZE9iDxETnrwbIAMr08rQ8qv16+vy5BNf4ziSizB/59ngn/
NIWZ1vUyKikMnSXNDp7/aFqjxMIbAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUZ2aM
wQEsle+eqdmEfNmDOXK4rgwwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0NBRjMwMDZDMjQ3NTExRUU4QkY0MzIzNTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4wMwDQYJKoZIhvcNAQELBQAD
ggEBACNnsVi7xl4gwIgQeJrl1E5qYHziylB34yx/cjDKslnI4UCH/HbrfIgtoDpA
+1HzO13e+3asRu0BemTzG8MFdtwIkO9RMRNx3sq4h/2pEebGRSWRFEUbGiGJnleJ
OGYKx/X2zLyeubsJcbUPKd+0tfDt2XkNw0mqgv2TesOCeVT3m6IcLXNqi+VA+iS6
zdhzD1ImbhdMqtW8508pyHbcEMxB8jrnGsk8WWj7O5xnPAJp3Q0y0PlaB89MHuCP
4aQyexfryEKSlEcI33n8Gq2b92fljIV+0ZSwfZz+FcQQsgd7fBH0qQRut/BkULpX
MmSEyB2S1Q+MN6wNWCGoN2Od+eY=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:58 2024 by rpki-client on console-ams.rpki-client.org