Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A9EDAEF9DE11ED9DF666754AD9E6FC.roa
File: D3A9EDAEF9DE11ED9DF666754AD9E6FC.roa (raw, json)
Hash identifier: tEPe8mNQ0etm1rQzyM/RXeBSOR+RdnzFPAHk0MU5gxs=
Subject key identifier: 34:1C:3E:46:A5:02:68:7D:67:B7:59:5C:6E:EB:58:57:55:96:AF:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2716
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A9EDAEF9DE11ED9DF666754AD9E6FC.roa
Signing time: Wed 24 May 2023 02:58:15 +0000
ROA not before: Wed 24 May 2023 02:58:11 +0000
ROA not after: Sat 11 May 2024 02:58:11 +0000
asID: 140403
IP address blocks: 156.250.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10006 (0x2716)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 02:58:11 2023 GMT
Not After : May 11 02:58:11 2024 GMT
Subject: CN=646d7d47-1aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6c:b8:78:4a:da:cf:7f:34:e1:84:4f:06:d2:
ba:58:eb:42:1d:f9:ac:8f:ae:3f:b5:f4:c3:f8:5a:
f3:ca:5b:8c:30:91:d5:64:90:69:54:03:73:a6:66:
88:f9:cf:8a:90:25:cc:a9:70:c7:47:d3:01:13:3f:
ac:ee:12:de:7b:24:49:c5:fb:7c:8c:e8:34:98:79:
41:d5:2a:e1:46:ac:3d:40:0e:f8:f9:f9:d8:13:38:
73:9c:d4:aa:eb:26:e3:12:3f:3e:51:db:cb:f7:09:
fe:41:66:88:b9:97:52:33:3b:e6:50:c3:91:86:52:
45:5e:f9:26:b9:d5:95:de:ad:e2:66:75:c6:d7:4c:
6c:69:ac:4b:a1:ee:26:9c:04:75:b6:9d:b6:5e:d5:
3b:da:ed:70:40:23:c5:94:b8:f0:a7:57:ce:42:71:
a8:39:38:43:4f:8f:9d:8b:ba:c8:56:ef:c5:ba:70:
2f:23:e4:33:50:28:29:82:87:ab:e2:d9:32:87:39:
6b:85:31:c5:45:24:04:84:7e:fc:2e:28:51:b2:43:
42:2a:d3:fa:35:f9:5f:2a:16:ce:ab:4b:73:ba:bc:
fc:bb:ca:5a:df:97:24:1d:ce:ad:05:fc:c1:0e:0e:
c0:fa:64:45:4c:2c:d7:1a:bf:04:55:27:e8:a8:27:
80:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1C:3E:46:A5:02:68:7D:67:B7:59:5C:6E:EB:58:57:55:96:AF:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3A9EDAEF9DE11ED9DF666754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:84:46:11:e9:33:d2:b9:5d:20:86:24:0a:57:42:27:6a:43:
f3:00:a7:69:fc:73:11:bf:62:58:ac:03:d1:24:ec:ac:be:04:
e7:8c:dd:61:0c:cf:06:6b:50:fc:34:74:f3:f1:b1:46:62:98:
80:0a:59:54:06:30:2c:73:48:2f:c6:3f:7f:6b:53:cd:b5:9c:
15:3d:07:7a:27:84:d9:17:6f:8b:da:bb:2a:e9:da:92:bc:49:
07:75:f4:69:d5:21:05:34:6e:c6:3c:1e:56:75:e4:d8:a3:2c:
db:83:36:0c:5a:8e:f5:3d:f5:db:5b:a1:0a:2a:d2:5f:5c:37:
e8:0c:53:a4:b7:16:3d:2b:ad:8a:4c:d3:ff:b1:78:7f:c3:80:
ef:81:54:2b:39:21:7e:2c:c5:f4:88:11:ed:ee:27:66:5e:97:
56:c4:76:7e:b4:7f:8b:3c:ea:86:42:7e:17:0c:3e:5a:e4:89:
c9:bb:e6:8d:8e:53:0b:a5:56:10:38:cb:47:aa:df:33:d1:d8:
bc:91:38:2b:d8:21:15:06:73:c3:15:69:de:62:23:e3:18:97:
3e:83:ca:ba:6c:26:de:ec:e3:17:32:86:cf:05:dc:44:73:86:
2f:24:96:31:91:a1:db:af:ae:88:f7:56:d0:19:67:57:b6:8b:
ac:e9:c0:86
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICJxYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA1MjQwMjU4MTFaFw0yNDA1MTEwMjU4MTFaMBgxFjAU
BgNVBAMTDTY0NmQ3ZDQ3LTFhY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDYbLh4StrPfzThhE8G0rpY60Id+ayPrj+19MP4WvPKW4wwkdVkkGlUA3Om
Zoj5z4qQJcypcMdH0wETP6zuEt57JEnF+3yM6DSYeUHVKuFGrD1ADvj5+dgTOHOc
1KrrJuMSPz5R28v3Cf5BZoi5l1IzO+ZQw5GGUkVe+Sa51ZXereJmdcbXTGxprEuh
7iacBHW2nbZe1Tva7XBAI8WUuPCnV85Ccag5OENPj52LushW78W6cC8j5DNQKCmC
h6vi2TKHOWuFMcVFJASEfvwuKFGyQ0Iq0/o1+V8qFs6rS3O6vPy7ylrflyQdzq0F
/MEODsD6ZEVMLNcavwRVJ+ioJ4BHAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUNBw+
RqUCaH1nt1lcbutYV1WWr/kwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0QzQTlFREFFRjlERTExRUQ5REY2NjY3NTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc+gMwDQYJKoZIhvcNAQELBQAD
ggEBAH+ERhHpM9K5XSCGJApXQidqQ/MAp2n8cxG/YlisA9Ek7Ky+BOeM3WEMzwZr
UPw0dPPxsUZimIAKWVQGMCxzSC/GP39rU821nBU9B3onhNkXb4vauyrp2pK8SQd1
9GnVIQU0bsY8HlZ15NijLNuDNgxajvU99dtboQoq0l9cN+gMU6S3Fj0rrYpM0/+x
eH/DgO+BVCs5IX4sxfSIEe3uJ2Zel1bEdn60f4s86oZCfhcMPlrkicm75o2OUwul
VhA4y0eq3zPR2LyROCvYIRUGc8MVad5iI+MYlz6DyrpsJt7s4xcyhs8F3ERzhi8k
ljGRoduvroj3VtAZZ1e2i6zpwIY=
-----END CERTIFICATE-----
Generated at Mon May 6 01:48:30 2024 by rpki-client on console-fra.rpki-client.org