Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC57C5FE037811EFB6A3F930017001B1.roa
File: CC57C5FE037811EFB6A3F930017001B1.roa (raw, json)
Hash identifier: w0m676n7ryDTCf8/for/mvWzND1AtKq8SgedIJ/2YhQ=
Subject key identifier: 63:FF:6A:F6:8D:C4:5B:3C:0A:00:89:BF:12:25:A0:90:FD:69:5F:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8564
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC57C5FE037811EFB6A3F930017001B1.roa
Signing time: Fri 26 Apr 2024 02:58:03 +0000
ROA not before: Fri 26 Apr 2024 02:58:00 +0000
ROA not after: Sun 12 May 2024 02:58:00 +0000
asID: 64267
IP address blocks: 156.239.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34148 (0x8564)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 02:58:00 2024 GMT
Not After : May 12 02:58:00 2024 GMT
Subject: CN=662b183b-5602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:1e:21:49:98:3d:8e:48:ce:12:a2:f6:16:
7f:d2:e6:f5:fe:83:f3:6e:1f:3c:e6:c9:e2:ae:5a:
2e:f1:6d:cb:e4:70:e2:a6:53:47:be:97:a9:fa:50:
68:c7:52:98:a7:8b:05:bd:db:8b:88:50:58:b9:8b:
11:f1:68:31:47:d4:62:7f:85:0b:91:a6:e4:9c:5f:
e4:41:e9:38:9f:e4:9e:b9:3d:d0:bc:43:2d:21:41:
a1:0d:1b:69:6a:e1:f0:67:70:b6:df:64:8f:34:f5:
54:fd:9f:b8:52:e8:30:b0:33:42:70:87:4d:87:80:
54:8b:16:c3:04:63:27:09:c3:3a:2a:43:13:e5:16:
03:11:64:c9:aa:05:60:fd:21:df:62:85:18:66:34:
65:7c:6e:4a:ba:dd:51:9a:3c:d6:ea:7b:32:44:0f:
bd:d7:37:c4:65:49:8b:57:88:cb:4e:d8:6c:63:f9:
18:e7:c4:09:48:b0:66:d1:3d:ae:cb:75:7f:e0:ed:
0d:f9:05:b8:6e:24:4b:df:dd:bb:31:fc:b0:fc:fc:
61:60:f6:3d:09:69:3a:97:63:09:4b:0b:b5:6c:19:
91:d9:1a:53:13:41:6b:97:ae:d9:6d:d1:b5:93:88:
a4:3e:09:f3:a4:2f:19:80:c5:1d:86:b6:b0:55:b7:
13:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FF:6A:F6:8D:C4:5B:3C:0A:00:89:BF:12:25:A0:90:FD:69:5F:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC57C5FE037811EFB6A3F930017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.60.0/24
Signature Algorithm: sha256WithRSAEncryption
76:07:1f:e4:97:b7:ed:d5:80:31:9c:c5:6b:72:03:39:08:f7:
a3:8e:5c:9c:48:86:be:0c:c8:04:25:22:01:eb:cb:9e:a9:19:
2c:75:75:ad:b6:92:58:53:d1:64:7a:24:c0:b8:a5:c2:2e:5e:
25:0f:f5:c1:96:dc:a8:28:14:a5:4c:b4:78:05:d2:16:15:33:
f5:ae:eb:e4:1b:8b:54:82:5b:ec:aa:69:d8:f1:12:6c:e6:20:
20:98:80:c8:f9:45:51:9e:9e:e6:c4:48:ea:81:9c:9f:18:73:
83:39:3e:25:9f:15:1c:48:3b:b9:e2:48:46:ab:0d:c1:97:e0:
1b:6e:d0:94:9e:3c:30:7e:54:4a:93:c7:14:d9:7b:7b:bf:d0:
96:51:73:0d:ec:73:8d:fa:46:d7:4b:80:f9:ef:bc:ad:ac:c7:
53:4a:19:f1:0b:0a:f4:3e:e8:a1:e0:2d:d5:dc:bd:eb:75:99:
92:9a:4c:78:a1:cf:56:10:16:46:10:6d:d3:4b:6d:81:5e:4e:
ab:cb:93:0c:a1:d2:5a:4d:ed:95:17:28:f1:84:32:5a:ab:76:
10:d3:04:9c:ba:59:41:1d:42:23:65:2a:65:1e:51:6b:b7:ee:
c4:26:35:ea:ab:14:6a:e0:68:ec:2e:7f:62:98:6f:ed:e9:44:
b3:e7:a1:58
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIVkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDI1ODAwWhcNMjQwNTEyMDI1ODAwWjAYMRYw
FAYDVQQDEw02NjJiMTgzYi01NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsyweIUmYPY5IzhKi9hZ/0ub1/oPzbh885snirlou8W3L5HDiplNHvpep
+lBox1KYp4sFvduLiFBYuYsR8WgxR9Rif4ULkabknF/kQek4n+SeuT3QvEMtIUGh
DRtpauHwZ3C232SPNPVU/Z+4UugwsDNCcIdNh4BUixbDBGMnCcM6KkMT5RYDEWTJ
qgVg/SHfYoUYZjRlfG5Kut1RmjzW6nsyRA+91zfEZUmLV4jLTthsY/kY58QJSLBm
0T2uy3V/4O0N+QW4biRL3927Mfyw/PxhYPY9CWk6l2MJSwu1bBmR2RpTE0Frl67Z
bdG1k4ikPgnzpC8ZgMUdhrawVbcTjQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGP/
avaNxFs8CgCJvxIloJD9aV9DMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DQzU3QzVGRTAzNzgxMUVGQjZBM0Y5MzAwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnO88MA0GCSqGSIb3DQEBCwUA
A4IBAQB2Bx/kl7ft1YAxnMVrcgM5CPejjlycSIa+DMgEJSIB68ueqRksdXWttpJY
U9FkeiTAuKXCLl4lD/XBltyoKBSlTLR4BdIWFTP1ruvkG4tUglvsqmnY8RJs5iAg
mIDI+UVRnp7mxEjqgZyfGHODOT4lnxUcSDu54khGqw3Bl+AbbtCUnjwwflRKk8cU
2Xt7v9CWUXMN7HON+kbXS4D577ytrMdTShnxCwr0Puih4C3V3L3rdZmSmkx4oc9W
EBZGEG3TS22BXk6ry5MModJaTe2VFyjxhDJaq3YQ0wScullBHUIjZSplHlFrt+7E
JjXqqxRq4GjsLn9imG/t6USz56FY
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:17 2024 by rpki-client on console-fra.rpki-client.org