Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF28EF583B3A11EEA56E0D714AD9E6FC.roa
File: CF28EF583B3A11EEA56E0D714AD9E6FC.roa (raw, json)
Hash identifier: bMk9t2FBxz7/BmfqSjAjSfUQKihOu+Rg5K/QbiiLq9s=
Subject key identifier: 3E:FC:BE:72:AA:C5:30:84:33:92:F8:92:B4:F9:8D:A8:A3:A0:E8:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 363D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF28EF583B3A11EEA56E0D714AD9E6FC.roa
Signing time: Tue 15 Aug 2023 07:10:26 +0000
ROA not before: Tue 15 Aug 2023 07:10:23 +0000
ROA not after: Thu 15 Aug 2024 07:10:23 +0000
asID: 24413
IP address blocks: 156.230.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13885 (0x363d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 07:10:23 2023 GMT
Not After : Aug 15 07:10:23 2024 GMT
Subject: CN=64db24e2-3567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5a:df:04:d3:04:6e:e1:68:7d:b6:c2:02:e9:
e0:f0:8c:42:b1:0e:65:4a:cc:58:8e:05:d2:db:ab:
c5:b8:f9:26:94:c6:9f:57:fc:4b:75:76:00:80:67:
73:4f:8a:98:d8:55:ac:72:78:84:75:b3:58:ea:36:
ad:29:5b:0a:3d:c5:be:73:cb:19:c5:75:19:b3:e9:
9a:58:de:db:00:4b:b3:4c:dd:38:f9:b7:b6:b5:1b:
b8:bf:64:ce:31:6b:3b:83:53:73:3e:06:c8:c7:4e:
6a:a7:a9:7d:cc:3d:40:74:57:3b:2a:30:df:c4:e5:
ff:c2:d9:12:40:9e:07:eb:ce:d4:73:c7:f1:19:10:
d2:e6:35:87:14:0b:b4:d9:ce:c3:b2:62:69:17:f7:
cd:a9:ab:49:a8:47:2f:40:74:d7:35:08:03:55:d3:
80:cf:37:e8:f3:5b:27:99:2f:0e:4a:00:9b:16:43:
97:ae:35:a3:b5:7f:71:41:e9:94:cb:f3:39:c5:00:
c3:d3:cb:95:dd:28:3d:ab:98:b1:5c:31:a2:35:96:
6d:e6:8f:73:3a:01:23:75:68:79:b3:17:90:04:77:
3b:e5:62:3d:f6:99:6e:d8:bd:98:ac:35:43:51:1e:
5a:08:83:e3:10:02:42:82:18:20:0b:40:7f:e9:08:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FC:BE:72:AA:C5:30:84:33:92:F8:92:B4:F9:8D:A8:A3:A0:E8:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CF28EF583B3A11EEA56E0D714AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:67:69:74:cd:6a:30:da:9b:72:36:06:72:f7:b2:7c:87:8f:
b2:c7:60:eb:a8:0f:50:22:2f:e6:3d:f6:ab:06:52:33:2a:bd:
50:7c:8d:c6:d5:cd:f8:b5:1b:fb:8c:fd:c9:e5:6c:13:51:92:
33:c8:1e:f7:fd:2d:a0:e0:69:be:22:cc:c9:59:5f:6a:dc:ff:
6a:b5:28:00:27:3d:2d:7f:e7:d1:f7:1e:de:3e:8a:a7:04:1e:
27:e2:7b:69:18:00:d2:99:e0:59:5e:54:bc:5d:05:a6:14:92:
57:77:39:79:cb:80:41:de:3c:29:c2:f6:c9:e2:de:16:90:d0:
a7:49:64:51:57:d8:61:f0:3a:49:61:d3:85:d0:bd:5e:5a:b7:
21:b1:a3:2e:a7:7a:4a:07:6b:6f:7e:5c:b5:2c:74:34:ee:46:
e2:2a:14:7c:72:a5:74:08:36:c3:4b:b4:84:8f:16:ee:76:a1:
f1:81:9a:b9:b3:43:45:31:62:4e:ca:4a:1f:da:d2:b4:3f:4c:
b8:6f:34:65:e3:94:ed:52:b2:ef:ee:91:82:90:fd:c6:07:01:
e6:df:5f:a7:5f:f1:e5:30:17:27:1c:20:8d:03:c5:95:d6:7e:
d0:0b:d6:d7:ee:10:a9:d2:ec:48:cc:4b:86:7b:71:32:80:15:
13:79:8d:d0
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNj0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MTUwNzEwMjNaFw0yNDA4MTUwNzEwMjNaMBgxFjAU
BgNVBAMTDTY0ZGIyNGUyLTM1NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJWt8E0wRu4Wh9tsIC6eDwjEKxDmVKzFiOBdLbq8W4+SaUxp9X/Et1dgCA
Z3NPipjYVaxyeIR1s1jqNq0pWwo9xb5zyxnFdRmz6ZpY3tsAS7NM3Tj5t7a1G7i/
ZM4xazuDU3M+BsjHTmqnqX3MPUB0VzsqMN/E5f/C2RJAngfrztRzx/EZENLmNYcU
C7TZzsOyYmkX982pq0moRy9AdNc1CANV04DPN+jzWyeZLw5KAJsWQ5euNaO1f3FB
6ZTL8znFAMPTy5XdKD2rmLFcMaI1lm3mj3M6ASN1aHmzF5AEdzvlYj32mW7YvZis
NUNRHloIg+MQAkKCGCALQH/pCI77AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUPvy+
cqrFMIQzkviStPmNqKOg6N8wHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0NGMjhFRjU4M0IzQTExRUVBNTZFMEQ3MTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc5g0wDQYJKoZIhvcNAQELBQAD
ggEBAKRnaXTNajDam3I2BnL3snyHj7LHYOuoD1AiL+Y99qsGUjMqvVB8jcbVzfi1
G/uM/cnlbBNRkjPIHvf9LaDgab4izMlZX2rc/2q1KAAnPS1/59H3Ht4+iqcEHifi
e2kYANKZ4FleVLxdBaYUkld3OXnLgEHePCnC9sni3haQ0KdJZFFX2GHwOklh04XQ
vV5atyGxoy6nekoHa29+XLUsdDTuRuIqFHxypXQINsNLtISPFu52ofGBmrmzQ0Ux
Yk7KSh/a0rQ/TLhvNGXjlO1Ssu/ukYKQ/cYHAebfX6df8eUwFyccII0DxZXWftAL
1tfuEKnS7EjMS4Z7cTKAFRN5jdA=
-----END CERTIFICATE-----
Generated at Mon May 6 08:04:59 2024 by rpki-client on console-ams.rpki-client.org