Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0CC3C6E7E3D11EFB7AC7AAE762E951A.roa
File: E0CC3C6E7E3D11EFB7AC7AAE762E951A.roa (raw, json)
Hash identifier: SaOWYgWYlXDhMKapWuApBZOjB7c01BDw6WNpvzsa8lY=
Subject key identifier: 69:74:BC:A0:14:B7:D3:2F:CF:E6:B1:81:AC:DD:27:C3:B4:15:65:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: BC79
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0CC3C6E7E3D11EFB7AC7AAE762E951A.roa
Signing time: Sun 29 Sep 2024 08:36:10 +0000
ROA not before: Sun 29 Sep 2024 08:36:07 +0000
ROA not after: Thu 31 Oct 2024 08:36:07 +0000
asID: 174
IP address blocks: 156.236.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 24 Oct 2024 00:19:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48249 (0xbc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 08:36:07 2024 GMT
Not After : Oct 31 08:36:07 2024 GMT
Subject: CN=66f9117a-0b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:c6:2d:89:09:99:ba:60:b4:7f:c6:7f:c0:
c2:fd:37:92:ec:6a:03:42:7c:97:f4:31:0f:d7:8e:
32:b6:ce:12:40:29:44:07:5c:7d:c2:3a:a4:10:c5:
66:19:48:57:05:a9:89:91:30:4f:db:e1:89:38:2e:
45:10:42:9f:41:b1:97:ac:17:05:2c:66:62:b7:c2:
24:66:ff:9e:d6:f2:28:0d:a9:09:6e:08:4a:c6:79:
e9:01:8f:5f:ea:6b:a9:6d:ed:96:f8:d6:ee:ec:7a:
44:8e:86:34:bf:4f:63:1d:9b:39:e5:39:ee:ae:c1:
2f:c4:60:85:a3:0e:c9:08:32:55:cf:a0:77:3a:ee:
b3:68:e6:0d:b9:77:d5:0b:ef:36:e5:c0:eb:b8:32:
9c:d2:f2:ae:c0:83:34:94:ba:a7:3f:fd:26:dd:53:
73:78:45:aa:a3:1a:22:79:6f:a7:97:32:7e:89:9a:
cd:84:ca:52:85:78:6d:12:32:ca:4b:4a:c5:27:19:
0a:3a:87:42:33:f5:52:4f:ff:3a:63:c1:df:74:99:
4b:ec:18:8e:44:b4:58:17:1c:9d:7a:9e:b9:69:8e:
e1:aa:92:37:b1:02:03:26:aa:22:41:5a:77:c8:f2:
9e:8f:98:d2:77:e1:5e:1d:79:7e:74:22:72:59:e4:
45:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:74:BC:A0:14:B7:D3:2F:CF:E6:B1:81:AC:DD:27:C3:B4:15:65:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E0CC3C6E7E3D11EFB7AC7AAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
11:44:61:56:e3:13:5f:06:37:cc:cc:95:7d:9a:ff:84:07:81:
f6:ed:30:43:36:3c:ab:e4:b0:1d:ef:9b:7c:c5:3e:37:27:7e:
86:bb:42:14:5c:a1:03:03:ad:10:cb:d4:bb:15:f2:ef:ac:b3:
5a:2a:3d:64:85:96:b0:02:ff:0d:5d:63:67:e0:5a:d5:d1:89:
dc:a1:6d:1d:a7:0f:a3:b7:b3:6b:0a:81:84:d6:4e:09:87:2b:
66:70:e0:20:9f:69:ac:b9:65:7d:60:1c:ee:fc:a7:c8:b9:d5:
01:ba:48:1a:34:18:5a:3d:fe:47:91:77:c9:ae:75:0c:69:dd:
13:2d:23:16:62:2e:b4:29:45:e5:06:29:fb:ac:3d:2a:ec:59:
67:d1:55:e5:5f:ad:1f:5c:72:25:a3:d8:75:1f:12:af:b4:1f:
a7:f5:9f:89:3f:bd:f8:3d:2a:7e:4f:2f:78:3f:24:c4:e3:80:
d2:11:f1:df:98:bd:ea:4b:0f:09:88:25:a9:92:7b:85:74:52:
99:db:9e:ee:3e:9f:05:04:fa:02:1c:cc:f4:aa:7a:aa:6b:9f:
c1:21:f0:ce:3b:f4:ab:12:62:31:d6:81:b2:6a:39:c4:d9:81:
62:e9:a7:2d:c0:3d:e0:59:36:7e:f9:f2:e7:99:05:21:29:64:
9d:d3:91:46
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDALx5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwOTI5MDgzNjA3WhcNMjQxMDMxMDgzNjA3WjAYMRYw
FAYDVQQDEw02NmY5MTE3YS0wYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArynGLYkJmbpgtH/Gf8DC/TeS7GoDQnyX9DEP144yts4SQClEB1x9wjqk
EMVmGUhXBamJkTBP2+GJOC5FEEKfQbGXrBcFLGZit8IkZv+e1vIoDakJbghKxnnp
AY9f6mupbe2W+Nbu7HpEjoY0v09jHZs55TnursEvxGCFow7JCDJVz6B3Ou6zaOYN
uXfVC+825cDruDKc0vKuwIM0lLqnP/0m3VNzeEWqoxoieW+nlzJ+iZrNhMpShXht
EjLKS0rFJxkKOodCM/VST/86Y8HfdJlL7BiORLRYFxydep65aY7hqpI3sQIDJqoi
QVp3yPKej5jSd+FeHXl+dCJyWeRFRQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGl0
vKAUt9Mvz+axgazdJ8O0FWXJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FMENDM0M2RTdFM0QxMUVGQjdBQzdBQUU3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGnOzAMA0GCSqGSIb3DQEBCwUA
A4IBAQARRGFW4xNfBjfMzJV9mv+EB4H27TBDNjyr5LAd75t8xT43J36Gu0IUXKED
A60Qy9S7FfLvrLNaKj1khZawAv8NXWNn4FrV0YncoW0dpw+jt7NrCoGE1k4Jhytm
cOAgn2msuWV9YBzu/KfIudUBukgaNBhaPf5HkXfJrnUMad0TLSMWYi60KUXlBin7
rD0q7Fln0VXlX60fXHIlo9h1HxKvtB+n9Z+JP734PSp+Ty94PyTE44DSEfHfmL3q
Sw8JiCWpknuFdFKZ257uPp8FBPoCHMz0qnqqa5/BIfDOO/SrEmIx1oGyajnE2YFi
6actwD3gWTZ++fLnmQUhKWSd05FG
-----END CERTIFICATE-----
Generated at Tue Oct 22 11:12:32 2024 by rpki-client on console-fra.rpki-client.org