Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E929D770A72011EF8F0F0B79762E951A.roa
File: E929D770A72011EF8F0F0B79762E951A.roa (raw, json)
Hash identifier: iZPOio44EL9XbyYfcIUK9tvqsXGJj8TfgCxIMFOAGjc=
Subject key identifier: 9E:02:14:02:DB:B2:78:5B:30:37:A9:07:09:79:81:B1:63:0E:AB:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D5BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E929D770A72011EF8F0F0B79762E951A.roa
Signing time: Wed 20 Nov 2024 09:22:06 +0000
ROA not before: Wed 20 Nov 2024 09:22:03 +0000
ROA not after: Mon 02 Dec 2024 09:22:03 +0000
asID: 39600
IP address blocks: 156.255.80.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54717 (0xd5bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 09:22:03 2024 GMT
Not After : Dec 2 09:22:03 2024 GMT
Subject: CN=673daa3e-e97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:77:5d:7e:f9:48:e9:4e:e2:c9:c7:79:b3:8f:
e2:03:92:7d:97:cc:a2:fb:48:d6:fb:cb:0d:0f:4f:
3e:ff:d1:6f:84:93:2e:91:de:83:7f:4e:41:03:fb:
05:e4:24:b5:89:74:9f:e6:c4:fc:f6:c4:b7:c4:80:
85:78:bc:eb:58:f7:17:eb:4c:fb:c6:81:ba:1a:1b:
b1:7b:44:66:c1:c7:54:45:73:e8:6c:78:b5:b0:2d:
38:af:d2:bc:f8:bf:db:1e:d7:bc:cb:c1:eb:d8:7b:
2c:14:e8:4f:50:1a:39:75:d3:3e:7d:49:8b:41:ff:
38:1d:0f:65:d9:37:ad:99:bc:9b:cc:fd:ca:a3:0b:
c0:27:2c:e2:5d:67:f2:5d:9e:26:4d:8c:12:2d:d2:
14:fb:00:0f:34:bc:76:82:07:f5:2d:34:52:6a:cb:
18:70:4a:13:08:28:d0:2c:c3:ac:a1:97:03:35:bf:
1a:e4:80:0e:8e:7c:34:7f:4b:f9:f3:86:ec:9e:01:
e7:05:97:85:fd:7e:36:e8:5c:f3:ae:06:48:8b:5c:
08:69:4f:ca:11:19:b4:dc:51:48:81:37:05:36:78:
87:3c:e1:83:98:0c:83:24:61:f3:db:03:89:ef:c5:
fb:83:97:61:3e:5b:b4:57:a0:9c:a9:32:48:ab:8a:
e1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:02:14:02:DB:B2:78:5B:30:37:A9:07:09:79:81:B1:63:0E:AB:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E929D770A72011EF8F0F0B79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.80.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:e3:0d:46:44:80:32:6a:0b:8f:25:b4:7d:ee:91:a7:3a:da:
81:87:27:46:37:a6:e5:c6:8f:c1:09:da:73:28:4e:b0:7c:6d:
2b:55:da:b7:99:97:ca:64:4b:25:90:a0:44:00:77:49:0c:d6:
c8:88:1e:3a:62:e5:15:5d:d2:ae:73:0e:bc:a5:6d:0e:52:15:
49:85:ad:62:28:0c:7a:4f:8f:84:3c:f9:87:e2:c2:ca:ff:d1:
d8:1c:44:69:59:ae:aa:b0:2d:8e:b8:f4:d8:cb:00:b8:7d:2b:
e5:43:08:b4:10:7f:b5:64:de:19:bc:fd:d9:4a:b7:7b:64:c0:
d5:55:ad:a7:05:c6:de:3b:7d:0d:55:ca:07:4b:a3:3c:a0:54:
84:0b:c5:43:b1:83:b9:ed:bd:59:d0:c5:1b:e1:ee:1d:3f:69:
b0:1a:a6:f2:71:1e:69:a0:a5:85:64:41:89:2a:3c:60:90:63:
86:09:68:ea:77:c1:a9:b9:63:30:3b:46:b6:de:9e:37:9f:8d:
f6:7b:12:e7:2a:21:49:ef:fb:1a:ca:2e:a6:d1:93:80:89:07:
83:10:70:48:b5:c9:35:4c:bb:d3:89:6f:f8:12:71:08:16:56:
a9:a3:e5:9e:50:de:85:06:e4:2f:e5:6c:7d:09:95:aa:80:40:
ba:fa:af:05
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANW9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMDkyMjAzWhcNMjQxMjAyMDkyMjAzWjAYMRYw
FAYDVQQDEw02NzNkYWEzZS1lOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApXddfvlI6U7iycd5s4/iA5J9l8yi+0jW+8sND08+/9FvhJMukd6Df05B
A/sF5CS1iXSf5sT89sS3xICFeLzrWPcX60z7xoG6Ghuxe0RmwcdURXPobHi1sC04
r9K8+L/bHte8y8Hr2HssFOhPUBo5ddM+fUmLQf84HQ9l2TetmbybzP3KowvAJyzi
XWfyXZ4mTYwSLdIU+wAPNLx2ggf1LTRSassYcEoTCCjQLMOsoZcDNb8a5IAOjnw0
f0v584bsngHnBZeF/X426FzzrgZIi1wIaU/KERm03FFIgTcFNniHPOGDmAyDJGHz
2wOJ78X7g5dhPlu0V6CcqTJIq4rhOwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJ4C
FALbsnhbMDepBwl5gbFjDqsBMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FOTI5RDc3MEE3MjAxMUVGOEYwRjBCNzk3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnP9QMA0GCSqGSIb3DQEBCwUA
A4IBAQBr4w1GRIAyaguPJbR97pGnOtqBhydGN6blxo/BCdpzKE6wfG0rVdq3mZfK
ZEslkKBEAHdJDNbIiB46YuUVXdKucw68pW0OUhVJha1iKAx6T4+EPPmH4sLK/9HY
HERpWa6qsC2OuPTYywC4fSvlQwi0EH+1ZN4ZvP3ZSrd7ZMDVVa2nBcbeO30NVcoH
S6M8oFSEC8VDsYO57b1Z0MUb4e4dP2mwGqbycR5poKWFZEGJKjxgkGOGCWjqd8Gp
uWMwO0a23p43n432exLnKiFJ7/sayi6m0ZOAiQeDEHBItck1TLvTiW/4EnEIFlap
o+WeUN6FBuQv5Wx9CZWqgEC6+q8F
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:54 2024 by rpki-client on console-ams.rpki-client.org