Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDC712B2983811EF80476674762E951A.roa
File: EDC712B2983811EF80476674762E951A.roa (raw, json)
Hash identifier: 5428FtBXHBv+aP0oW4dvzl3kg7OmyvDIFvlJYRLVL5A=
Subject key identifier: 3F:A2:35:28:46:62:93:52:E0:A1:FB:7B:18:A4:6E:82:46:3F:66:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: CBA5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDC712B2983811EF80476674762E951A.roa
Signing time: Fri 01 Nov 2024 10:06:15 +0000
ROA not before: Fri 01 Nov 2024 10:06:11 +0000
ROA not after: Mon 25 Nov 2024 10:06:11 +0000
asID: 62468
IP address blocks: 156.245.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52133 (0xcba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 1 10:06:11 2024 GMT
Not After : Nov 25 10:06:11 2024 GMT
Subject: CN=6724a817-8f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cb:d3:ce:b9:47:0b:ee:ba:d5:22:dd:4f:b2:
7f:0c:74:8f:a3:4c:0d:59:6c:57:e1:a5:e1:ef:20:
6e:ed:f6:2e:4d:6a:d6:45:9e:7a:e7:a3:84:24:45:
f5:64:f0:7f:e4:56:d7:b2:b4:09:27:ad:fd:fd:45:
7b:04:2a:0d:ba:c4:6a:3e:ff:0c:b0:74:4e:bb:6d:
d9:4f:5d:8c:13:4a:44:f2:6f:87:90:d5:cf:9c:91:
9d:a8:0c:c0:09:19:95:3e:db:b5:aa:65:c8:59:76:
5c:22:51:f8:cf:74:c4:2c:c2:d7:46:79:5e:d2:cf:
ad:40:2e:5f:17:90:4e:a3:b7:f2:82:6a:de:86:bd:
1c:b8:9f:d5:33:3a:1a:f8:23:5a:a7:ba:e9:2a:7e:
c2:08:9b:dc:bc:38:b2:23:24:f6:d8:c9:04:9c:b5:
99:f0:60:c8:3e:eb:db:c1:00:37:d4:5b:bf:96:47:
5e:e6:7d:f0:51:34:63:cf:72:e3:a1:04:c9:f2:9c:
0f:f5:68:33:85:6f:69:d2:cb:bd:fa:d9:0b:90:12:
b2:ea:10:cc:f5:d0:c3:bd:68:1e:33:08:87:33:b1:
4a:ff:1b:0f:23:4a:9d:a6:44:5e:91:1d:8b:23:0b:
05:45:70:c2:ad:62:50:c9:ab:77:2a:2b:46:1e:5c:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A2:35:28:46:62:93:52:E0:A1:FB:7B:18:A4:6E:82:46:3F:66:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDC712B2983811EF80476674762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.242.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:22:90:a2:bd:1e:a7:7d:47:03:58:b0:32:f3:13:a9:8d:89:
b0:e3:ae:08:fb:c1:aa:b7:58:45:01:a9:81:fc:6f:74:46:be:
2c:7d:75:11:4d:ac:f5:b1:15:1e:7b:b1:e0:0d:87:2c:43:c1:
bc:ef:a6:cc:a3:33:7b:66:0b:20:f7:f6:01:dd:35:df:08:59:
5b:3c:3e:48:55:45:39:c3:7c:94:68:2b:41:b5:2e:0d:cf:ba:
ba:2a:8f:23:a2:21:8f:57:62:69:d5:cb:81:5b:1a:17:04:3a:
f1:e2:44:f5:a7:55:c3:ff:7b:7d:aa:40:37:d2:28:0c:fa:f9:
ac:ad:0b:29:80:69:58:ad:92:f5:b1:44:36:71:d2:3a:ea:70:
65:75:21:85:3a:c3:e7:e6:12:0d:4b:3f:42:e3:4f:78:80:6d:
cd:5e:1a:d7:33:80:69:82:fb:11:81:5a:19:ac:5e:d2:f2:b0:
23:4a:61:67:46:80:a0:57:7a:4a:7d:81:d6:a5:81:93:93:d1:
9d:b7:b1:9b:ae:ca:59:13:d3:95:21:6f:9a:95:fe:c5:82:2a:
0d:1b:1c:29:f1:0e:1f:51:82:96:6c:b8:6f:8a:95:1f:f9:6c:
c5:10:da:69:1f:63:3d:59:1a:7c:d5:de:ca:81:48:b4:c9:83:
6f:54:5b:d3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAMulMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTAxMTAwNjExWhcNMjQxMTI1MTAwNjExWjAYMRYw
FAYDVQQDEw02NzI0YTgxNy04ZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvcvTzrlHC+661SLdT7J/DHSPo0wNWWxX4aXh7yBu7fYuTWrWRZ5656OE
JEX1ZPB/5FbXsrQJJ639/UV7BCoNusRqPv8MsHROu23ZT12ME0pE8m+HkNXPnJGd
qAzACRmVPtu1qmXIWXZcIlH4z3TELMLXRnle0s+tQC5fF5BOo7fygmrehr0cuJ/V
Mzoa+CNap7rpKn7CCJvcvDiyIyT22MkEnLWZ8GDIPuvbwQA31Fu/lkde5n3wUTRj
z3LjoQTJ8pwP9WgzhW9p0su9+tkLkBKy6hDM9dDDvWgeMwiHM7FK/xsPI0qdpkRe
kR2LIwsFRXDCrWJQyat3KitGHlzt/QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFD+i
NShGYpNS4KH7exikboJGP2Z6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FREM3MTJCMjk4MzgxMUVGODA0NzY2NzQ3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnPXyMA0GCSqGSIb3DQEBCwUA
A4IBAQC6IpCivR6nfUcDWLAy8xOpjYmw464I+8Gqt1hFAamB/G90Rr4sfXURTaz1
sRUee7HgDYcsQ8G876bMozN7Zgsg9/YB3TXfCFlbPD5IVUU5w3yUaCtBtS4Nz7q6
Ko8joiGPV2Jp1cuBWxoXBDrx4kT1p1XD/3t9qkA30igM+vmsrQspgGlYrZL1sUQ2
cdI66nBldSGFOsPn5hINSz9C4094gG3NXhrXM4BpgvsRgVoZrF7S8rAjSmFnRoCg
V3pKfYHWpYGTk9Gdt7GbrspZE9OVIW+alf7FgioNGxwp8Q4fUYKWbLhvipUf+WzF
ENppH2M9WRp81d7KgUi0yYNvVFvT
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:55 2024 by rpki-client on console-ams.rpki-client.org