Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFA074369F7B11EF844CABB5762E951A.roa
File: DFA074369F7B11EF844CABB5762E951A.roa (raw, json)
Hash identifier: 3jkaRnybbqnms8N5rNNVCQk4BNq0/KyWHBzyPa3VsaI=
Subject key identifier: 92:35:48:47:B1:FF:3C:71:DB:F6:2A:41:D4:13:40:7A:4E:BD:0A:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D0EC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFA074369F7B11EF844CABB5762E951A.roa
Signing time: Sun 10 Nov 2024 15:53:05 +0000
ROA not before: Sun 10 Nov 2024 15:53:02 +0000
ROA not after: Thu 12 Dec 2024 15:53:02 +0000
asID: 54600
IP address blocks: 156.236.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53484 (0xd0ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 10 15:53:02 2024 GMT
Not After : Dec 12 15:53:02 2024 GMT
Subject: CN=6730d6e1-372d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6b:84:64:87:b1:29:57:1e:45:1c:48:1a:1f:
11:9d:91:9a:14:a9:8e:38:03:87:b3:49:3e:9a:a2:
07:86:e5:54:90:b3:da:f5:a7:af:5d:b6:a4:39:3e:
80:12:d2:bd:dc:fa:5d:cb:01:95:f8:0b:bc:79:70:
d3:39:fe:93:9f:c9:d2:9e:f6:27:2e:c5:41:e7:e2:
ad:cd:a2:08:be:64:b9:4f:ab:11:f5:25:ec:dd:b7:
e3:ad:c4:77:11:f6:dd:d0:3b:56:33:b2:ca:10:51:
91:ef:89:27:c1:7d:1a:f7:72:4d:bc:0a:53:59:23:
30:28:28:93:fe:62:92:01:bf:0b:48:94:cc:8f:62:
38:e4:65:1d:e6:2c:cd:bd:1a:da:55:99:5f:ed:93:
0d:4d:1b:8b:95:15:41:c1:64:f1:68:e7:0a:20:df:
df:af:d8:75:f5:ab:8e:26:34:2f:f2:e5:1b:ff:d5:
1e:0e:85:29:df:ed:51:01:42:ec:d3:df:68:3c:5e:
24:e9:c5:b7:00:5a:56:8a:ed:ab:17:b2:8a:8a:dd:
8e:fe:4f:ce:79:15:85:0a:f5:91:87:d3:af:7a:9f:
8a:c7:be:5f:75:31:ad:f4:cf:cb:00:5a:b4:23:21:
7e:37:dd:a2:69:dd:68:f6:c6:17:ec:04:a7:d7:09:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:35:48:47:B1:FF:3C:71:DB:F6:2A:41:D4:13:40:7A:4E:BD:0A:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFA074369F7B11EF844CABB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a0:9b:f7:67:87:c4:6d:16:24:e0:6b:4d:d5:0f:74:97:ee:f5:
a4:87:c8:2a:40:5b:c3:e1:f0:4f:b2:34:e9:1b:83:55:f0:a2:
a6:f4:78:4f:b2:a1:46:29:7a:e2:a5:9c:85:ee:e6:dc:92:69:
bb:ae:c5:5a:7e:3a:3e:7e:2e:78:31:9f:08:70:24:38:8a:21:
65:8d:eb:66:c8:a1:5f:f8:f5:5e:fe:8c:06:8b:98:0b:60:05:
ef:9c:83:ec:e0:ac:9f:c0:90:1e:21:77:9c:66:5c:0b:c6:c5:
3f:d6:a1:27:9e:77:b8:9b:46:b0:ce:dd:31:c7:69:84:b5:e1:
d6:cb:e8:09:ca:9b:20:84:68:4c:67:ce:ac:ac:01:d3:5c:ba:
82:f9:c5:16:90:68:9a:95:1e:49:55:30:9a:4a:3e:db:32:b3:
5b:41:17:15:c9:61:17:ff:e3:0e:4f:59:26:8f:45:55:f3:af:
13:2f:22:f4:79:19:a2:ed:ab:7f:82:6d:6e:07:1f:17:a6:8a:
51:d5:85:43:47:9b:df:4f:48:ef:f5:73:e0:05:7d:7b:d3:58:
c2:ab:d6:48:55:de:12:37:d4:1b:ae:ae:61:d6:11:95:80:98:
1c:94:b3:8e:a2:c3:4e:e6:ea:85:30:b5:e8:05:b5:f7:d5:99:
c8:d0:f2:7c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANDsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTEwMTU1MzAyWhcNMjQxMjEyMTU1MzAyWjAYMRYw
FAYDVQQDEw02NzMwZDZlMS0zNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2WuEZIexKVceRRxIGh8RnZGaFKmOOAOHs0k+mqIHhuVUkLPa9aevXbak
OT6AEtK93PpdywGV+Au8eXDTOf6Tn8nSnvYnLsVB5+KtzaIIvmS5T6sR9SXs3bfj
rcR3Efbd0DtWM7LKEFGR74knwX0a93JNvApTWSMwKCiT/mKSAb8LSJTMj2I45GUd
5izNvRraVZlf7ZMNTRuLlRVBwWTxaOcKIN/fr9h19auOJjQv8uUb/9UeDoUp3+1R
AULs099oPF4k6cW3AFpWiu2rF7KKit2O/k/OeRWFCvWRh9Ovep+Kx75fdTGt9M/L
AFq0IyF+N92iad1o9sYX7ASn1wnQJQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJI1
SEex/zxx2/YqQdQTQHpOvQqfMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ERkEwNzQzNjlGN0IxMUVGODQ0Q0FCQjU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGnOyAMA0GCSqGSIb3DQEBCwUA
A4IBAQCgm/dnh8RtFiTga03VD3SX7vWkh8gqQFvD4fBPsjTpG4NV8KKm9HhPsqFG
KXripZyF7ubckmm7rsVafjo+fi54MZ8IcCQ4iiFljetmyKFf+PVe/owGi5gLYAXv
nIPs4KyfwJAeIXecZlwLxsU/1qEnnne4m0awzt0xx2mEteHWy+gJypsghGhMZ86s
rAHTXLqC+cUWkGialR5JVTCaSj7bMrNbQRcVyWEX/+MOT1kmj0VV868TLyL0eRmi
7at/gm1uBx8XpopR1YVDR5vfT0jv9XPgBX1701jCq9ZIVd4SN9Qbrq5h1hGVgJgc
lLOOosNO5uqFMLXoBbX31ZnI0PJ8
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:50 2024 by rpki-client on console-fra.rpki-client.org