Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E980848E018611EFB8E97C51017001B1.roa
File: E980848E018611EFB8E97C51017001B1.roa (raw, json)
Hash identifier: KoTOPuouZfsTmCBHctRzCI7Zqjz8TJ6/HTIUCkX6JM4=
Subject key identifier: 6B:B9:A3:C4:F5:4B:5E:45:D4:65:0B:5F:EE:E5:D5:9F:A8:71:CD:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 847D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E980848E018611EFB8E97C51017001B1.roa
Signing time: Tue 23 Apr 2024 15:34:03 +0000
ROA not before: Tue 23 Apr 2024 15:33:59 +0000
ROA not after: Mon 03 Jun 2024 15:33:59 +0000
asID: 135097
IP address blocks: 156.226.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33917 (0x847d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 15:33:59 2024 GMT
Not After : Jun 3 15:33:59 2024 GMT
Subject: CN=6627d4eb-38f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:de:76:80:30:da:21:29:0c:dd:26:15:56:75:
99:f1:a7:16:0c:3b:a0:c2:ea:0a:14:6b:cf:4f:85:
47:bf:20:dd:d8:2d:5b:84:07:0e:1a:2f:11:0f:74:
96:23:55:37:37:36:1a:86:15:d1:a0:aa:74:95:ac:
48:6f:2e:35:d4:04:d1:25:74:cd:26:1e:82:f8:a9:
36:04:72:04:1d:40:8c:3a:3b:a8:e1:a8:8d:4e:d1:
0d:ae:c4:03:d2:6d:08:a5:fe:e4:48:cb:a9:fc:fc:
d2:b9:cd:24:7c:fd:e2:7f:7f:b3:1c:e8:d4:78:ce:
af:5e:99:1b:d0:7c:8b:9c:01:cf:f0:16:e8:55:75:
fe:1e:f2:4d:40:b2:a5:00:3d:04:6c:fa:b4:8d:1e:
a0:b4:24:e1:99:a5:be:e9:50:ca:6d:89:1c:ce:89:
e4:6b:b3:99:86:ec:5e:ca:62:ca:88:61:a4:6e:51:
ca:71:e5:1c:0b:30:11:94:aa:65:eb:67:a5:57:f8:
bc:d4:e6:d6:53:f5:40:4d:5e:46:be:f1:d3:e6:cf:
8a:d9:60:b9:12:d1:78:ed:71:3f:16:bb:20:cb:e9:
a3:c3:e2:aa:4a:bd:ca:cf:d1:b2:1c:64:e5:85:0e:
86:bc:9a:04:14:ae:9b:4e:db:4f:b6:d3:28:d5:4f:
22:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B9:A3:C4:F5:4B:5E:45:D4:65:0B:5F:EE:E5:D5:9F:A8:71:CD:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E980848E018611EFB8E97C51017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.24.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:da:71:f7:b4:07:03:6e:f1:d9:41:4b:ea:67:d4:b6:23:26:
f1:f2:d2:9a:d3:fa:db:d7:02:38:c5:aa:93:a8:1d:7a:9c:f8:
f5:6e:9d:77:59:93:91:7c:7f:a0:f6:53:1d:2c:b8:c1:ec:1a:
66:b4:0b:f9:17:68:92:f9:79:e6:04:d6:b7:ca:ec:c1:38:3f:
98:f1:d1:9d:b9:d3:39:56:06:22:68:8e:e5:98:a9:e0:5b:48:
10:47:1c:02:04:3e:bc:55:d4:97:3e:4a:2b:bc:c7:08:8a:1f:
4b:54:87:8f:5a:4a:86:50:d4:27:af:07:9f:29:72:55:64:2a:
48:b4:8a:63:f7:48:c1:fa:25:9f:a3:41:63:67:1f:fc:a3:58:
20:df:db:a7:79:09:0f:8a:cb:02:93:33:b1:1f:89:44:03:59:
06:5e:7f:5d:8a:f0:f6:dd:c7:15:43:08:81:14:36:37:61:bc:
f2:69:3b:01:15:06:f1:6c:ac:f9:f4:c1:2e:89:38:2c:7d:56:
04:3f:07:72:d5:ec:0b:0f:d6:88:dc:1b:08:5e:d0:11:8e:ef:
7b:63:ec:47:27:c1:09:cf:01:47:94:91:c8:28:06:e9:61:a1:
71:89:31:2f:fe:07:4f:e5:2a:17:9b:1d:57:3e:dd:2b:6f:0b:
95:89:d8:6c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIR9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDIzMTUzMzU5WhcNMjQwNjAzMTUzMzU5WjAYMRYw
FAYDVQQDEw02NjI3ZDRlYi0zOGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtt52gDDaISkM3SYVVnWZ8acWDDugwuoKFGvPT4VHvyDd2C1bhAcOGi8R
D3SWI1U3NzYahhXRoKp0laxIby411ATRJXTNJh6C+Kk2BHIEHUCMOjuo4aiNTtEN
rsQD0m0Ipf7kSMup/PzSuc0kfP3if3+zHOjUeM6vXpkb0HyLnAHP8BboVXX+HvJN
QLKlAD0EbPq0jR6gtCThmaW+6VDKbYkczonka7OZhuxeymLKiGGkblHKceUcCzAR
lKpl62elV/i81ObWU/VATV5GvvHT5s+K2WC5EtF47XE/Frsgy+mjw+KqSr3Kz9Gy
HGTlhQ6GvJoEFK6bTttPttMo1U8iuwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGu5
o8T1S15F1GULX+7l1Z+occ0XMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FOTgwODQ4RTAxODYxMUVGQjhFOTdDNTEwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOIYMA0GCSqGSIb3DQEBCwUA
A4IBAQBP2nH3tAcDbvHZQUvqZ9S2Iybx8tKa0/rb1wI4xaqTqB16nPj1bp13WZOR
fH+g9lMdLLjB7BpmtAv5F2iS+XnmBNa3yuzBOD+Y8dGdudM5VgYiaI7lmKngW0gQ
RxwCBD68VdSXPkorvMcIih9LVIePWkqGUNQnrwefKXJVZCpItIpj90jB+iWfo0Fj
Zx/8o1gg39uneQkPissCkzOxH4lEA1kGXn9divD23ccVQwiBFDY3YbzyaTsBFQbx
bKz59MEuiTgsfVYEPwdy1ewLD9aI3BsIXtARju97Y+xHJ8EJzwFHlJHIKAbpYaFx
iTEv/gdP5SoXmx1XPt0rbwuVidhs
-----END CERTIFICATE-----
Generated at Mon May 6 09:08:19 2024 by rpki-client on console-fra.rpki-client.org