Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC47CC28912411EF8A527758762E951A.roa
File: CC47CC28912411EF8A527758762E951A.roa (raw, json)
Hash identifier: sDpOmWv9o89JoSkn8YXzuCHusvLsVXPoNqezMycpw44=
Subject key identifier: 9D:10:BD:A0:F2:22:4B:8F:09:06:9F:B2:64:25:0A:78:15:F0:9C:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: C7DF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC47CC28912411EF8A527758762E951A.roa
Signing time: Wed 23 Oct 2024 09:54:30 +0000
ROA not before: Wed 23 Oct 2024 09:54:27 +0000
ROA not after: Fri 29 Nov 2024 09:54:27 +0000
asID: 203020
IP address blocks: 156.233.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51167 (0xc7df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 09:54:27 2024 GMT
Not After : Nov 29 09:54:27 2024 GMT
Subject: CN=6718c7d6-81d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2b:4e:c3:42:f8:a1:ec:23:1f:18:c9:8f:8f:
a0:eb:dd:be:08:96:a0:25:dd:c1:9f:2f:ab:81:9d:
ce:4c:ff:12:60:71:e2:16:7e:48:a3:72:3d:bd:a5:
4c:7e:fd:8b:a4:92:3d:ac:91:ef:0f:84:69:e4:d7:
0c:7c:17:33:a6:b3:d0:b5:06:4f:d0:c8:6f:25:b3:
d7:84:d2:df:f4:49:08:4f:19:47:03:33:9a:3a:9c:
20:88:84:2d:21:7b:a2:3e:a0:a7:de:ea:f8:1a:fc:
eb:74:8f:5f:82:be:60:e1:b5:37:33:c7:12:5e:d2:
f2:46:e5:59:70:34:2c:b2:00:b7:99:75:f8:c4:85:
13:37:f1:cd:72:a3:9e:76:73:d1:ad:bb:0e:0b:19:
83:dc:11:6f:32:ed:16:16:3a:aa:ba:55:5c:81:43:
77:c1:60:8c:cf:a9:a1:76:68:47:2e:8b:0e:f4:21:
2f:cb:83:cb:44:c6:e1:32:fc:e1:22:ec:07:31:a8:
b5:53:1c:c8:72:c9:4d:31:21:38:fb:c0:51:d5:74:
13:15:e9:fe:b1:05:9f:af:a6:49:c1:ef:b8:25:4f:
7b:52:c7:29:8d:d4:89:0e:7f:2f:4c:4e:80:33:64:
44:38:da:04:87:71:fd:d7:a2:86:a8:58:b3:86:e5:
ae:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:10:BD:A0:F2:22:4B:8F:09:06:9F:B2:64:25:0A:78:15:F0:9C:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC47CC28912411EF8A527758762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.2.0/23
Signature Algorithm: sha256WithRSAEncryption
96:0f:e1:b3:3b:05:f2:08:88:5b:b6:09:18:2b:7d:cc:46:39:
32:86:3c:93:5d:11:2d:db:71:38:dd:10:db:86:73:7e:09:85:
5c:3e:fe:ed:25:ff:a8:49:98:c7:0e:5f:d2:ee:72:3a:ce:3f:
29:10:b4:0d:3c:6b:07:f6:66:c8:1f:12:35:c1:69:22:b8:06:
c8:5b:6e:e4:77:e9:30:ac:88:fc:63:02:15:fa:30:18:99:76:
27:08:7f:79:6e:30:ce:0f:9c:2a:d7:c8:b5:11:35:2d:f1:31:
99:8d:af:cf:e3:08:d7:40:55:ef:48:68:e1:a0:71:2e:a1:c8:
3c:0e:73:fe:2a:d8:32:95:11:8e:0e:12:78:3e:61:e2:96:75:
34:76:c4:f9:4b:31:bb:bd:5a:fc:7d:cc:4d:32:a1:33:78:96:
8c:2c:4d:80:9b:65:e8:ff:e4:c2:26:f0:27:fa:58:aa:84:47:
fa:4f:47:ed:d3:1b:ae:ee:ef:f0:bc:f2:18:4e:04:6d:bb:88:
3b:77:f0:57:64:6c:a9:d0:49:8c:c7:12:15:19:af:9a:44:34:
d5:69:8c:3d:a7:3d:06:51:b6:47:36:ee:5f:8d:97:38:fd:fc:
ce:66:ad:03:78:bd:d2:90:0f:9e:6f:32:97:4b:76:a3:0a:de:
5b:05:53:a6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMffMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMDIzMDk1NDI3WhcNMjQxMTI5MDk1NDI3WjAYMRYw
FAYDVQQDEw02NzE4YzdkNi04MWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwitOw0L4oewjHxjJj4+g692+CJagJd3Bny+rgZ3OTP8SYHHiFn5Io3I9
vaVMfv2LpJI9rJHvD4Rp5NcMfBczprPQtQZP0MhvJbPXhNLf9EkITxlHAzOaOpwg
iIQtIXuiPqCn3ur4GvzrdI9fgr5g4bU3M8cSXtLyRuVZcDQssgC3mXX4xIUTN/HN
cqOednPRrbsOCxmD3BFvMu0WFjqqulVcgUN3wWCMz6mhdmhHLosO9CEvy4PLRMbh
MvzhIuwHMai1UxzIcslNMSE4+8BR1XQTFen+sQWfr6ZJwe+4JU97UscpjdSJDn8v
TE6AM2REONoEh3H916KGqFizhuWuQQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJ0Q
vaDyIkuPCQafsmQlCngV8JwYMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DQzQ3Q0MyODkxMjQxMUVGOEE1Mjc3NTg3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnOkCMA0GCSqGSIb3DQEBCwUA
A4IBAQCWD+GzOwXyCIhbtgkYK33MRjkyhjyTXREt23E43RDbhnN+CYVcPv7tJf+o
SZjHDl/S7nI6zj8pELQNPGsH9mbIHxI1wWkiuAbIW27kd+kwrIj8YwIV+jAYmXYn
CH95bjDOD5wq18i1ETUt8TGZja/P4wjXQFXvSGjhoHEuocg8DnP+KtgylRGODhJ4
PmHilnU0dsT5SzG7vVr8fcxNMqEzeJaMLE2Am2Xo/+TCJvAn+liqhEf6T0ft0xuu
7u/wvPIYTgRtu4g7d/BXZGyp0EmMxxIVGa+aRDTVaYw9pz0GUbZHNu5fjZc4/fzO
Zq0DeL3SkA+ebzKXS3ajCt5bBVOm
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:48 2024 by rpki-client on console-fra.rpki-client.org