Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07FB39684F311EEA3F877474AD9E6FC.roa
File: F07FB39684F311EEA3F877474AD9E6FC.roa (raw, json)
Hash identifier: UKs3Cbz6ToG2eXeFEAc77QvmzP9DXrCclHqN5VhUuAc=
Subject key identifier: F5:F4:A5:89:8E:48:64:B5:23:02:5C:A6:EA:FE:08:8F:03:8C:C7:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4957
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07FB39684F311EEA3F877474AD9E6FC.roa
Signing time: Fri 17 Nov 2023 02:49:34 +0000
ROA not before: Fri 17 Nov 2023 02:49:31 +0000
ROA not after: Tue 12 Nov 2024 02:49:31 +0000
asID: 397630
IP address blocks: 156.227.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18775 (0x4957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 17 02:49:31 2023 GMT
Not After : Nov 12 02:49:31 2024 GMT
Subject: CN=6556d4be-8f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:63:4e:52:d1:35:36:a0:ca:35:57:7b:3a:ea:
d9:0e:09:f7:0d:d9:d4:c2:1e:3c:a8:6b:46:ab:c2:
2e:de:4b:71:5d:6d:f4:f0:68:98:3b:a9:67:a5:c5:
ef:9c:d0:18:57:7a:1b:ff:65:47:0e:b2:5b:a0:f1:
e4:08:56:2f:7a:7b:d6:d7:ca:94:d9:16:a6:f1:22:
e2:ba:9c:0c:ca:44:bf:71:51:c6:72:a9:50:fd:03:
d3:7d:e6:c0:39:2d:ea:b7:0f:49:e3:52:bf:00:bc:
f9:51:74:96:1c:71:de:ea:de:d6:f6:e6:90:5b:69:
95:eb:a1:53:64:0d:4d:90:2b:a3:aa:7d:f3:b4:2e:
f1:ab:8b:fd:c5:24:c5:3c:28:55:dc:ca:32:41:62:
df:55:f4:97:5d:00:90:74:0e:43:85:19:b6:96:8b:
e1:71:bc:a8:de:07:34:fe:19:86:33:c8:78:bd:3b:
45:b0:fe:9f:9a:90:9d:d1:fa:b3:9c:d1:3e:ad:39:
62:07:6a:2e:97:02:01:1e:d6:2a:24:bd:02:30:46:
fa:1e:4d:70:2c:dc:47:fa:1e:6d:f7:7e:a9:cc:60:
13:b2:fb:ba:d0:41:6e:89:c7:a4:3b:bf:eb:70:dd:
6a:a6:98:fe:a8:71:c5:6f:8b:d9:ed:a2:34:4a:91:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F4:A5:89:8E:48:64:B5:23:02:5C:A6:EA:FE:08:8F:03:8C:C7:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F07FB39684F311EEA3F877474AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.13.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:43:97:0a:70:d2:fd:c9:e3:e6:c2:81:95:91:12:ea:bf:b2:
2d:57:77:9c:f2:9c:40:31:de:bf:db:d8:e6:c7:f9:60:f5:73:
ed:99:51:f4:3a:f5:b7:83:24:f5:80:1e:7b:a7:b5:e0:68:78:
ea:c4:bf:39:0f:d4:a4:8a:0c:38:4d:1a:01:62:75:f2:23:19:
b3:fa:18:4c:5e:26:b2:08:8c:f1:8f:c9:39:05:4c:04:7c:f8:
15:e0:91:d4:03:60:d2:38:e0:5a:44:96:0e:1b:1a:72:42:f3:
fc:d2:4a:35:c6:97:a7:11:f3:5b:d7:9a:a6:7e:73:d4:fe:36:
30:88:64:c0:5d:df:53:87:a1:1b:f9:aa:bc:43:8a:25:b4:d1:
5d:25:7e:60:4c:3d:5f:53:aa:b6:5d:88:72:6a:67:3d:7f:b9:
76:3b:df:85:b4:b7:92:74:ae:77:d4:2e:49:95:3c:d1:09:0b:
f1:5e:c8:72:ee:32:b0:a3:8f:a1:33:4c:b5:59:29:a1:1e:fa:
be:78:4f:22:d5:c2:ab:5c:da:24:f7:f5:52:46:7b:55:a7:66:
22:5d:fa:fe:12:53:7b:eb:0e:57:dd:8b:3b:b6:cb:0e:bc:f6:
2d:37:d5:fc:40:fc:48:b5:d2:36:a8:ee:27:a7:df:c6:f4:4a:
de:1c:93:3e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICSVcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMTcwMjQ5MzFaFw0yNDExMTIwMjQ5MzFaMBgxFjAU
BgNVBAMTDTY1NTZkNGJlLThmNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCiY05S0TU2oMo1V3s66tkOCfcN2dTCHjyoa0arwi7eS3FdbfTwaJg7qWel
xe+c0BhXehv/ZUcOslug8eQIVi96e9bXypTZFqbxIuK6nAzKRL9xUcZyqVD9A9N9
5sA5Leq3D0njUr8AvPlRdJYccd7q3tb25pBbaZXroVNkDU2QK6OqffO0LvGri/3F
JMU8KFXcyjJBYt9V9JddAJB0DkOFGbaWi+FxvKjeBzT+GYYzyHi9O0Ww/p+akJ3R
+rOc0T6tOWIHai6XAgEe1iokvQIwRvoeTXAs3Ef6Hm33fqnMYBOy+7rQQW6Jx6Q7
v+tw3WqmmP6occVvi9ntojRKkW8ZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU9fSl
iY5IZLUjAlym6v4IjwOMx7QwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0YwN0ZCMzk2ODRGMzExRUVBM0Y4Nzc0NzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4w0wDQYJKoZIhvcNAQELBQAD
ggEBAJxDlwpw0v3J4+bCgZWREuq/si1Xd5zynEAx3r/b2ObH+WD1c+2ZUfQ69beD
JPWAHnunteBoeOrEvzkP1KSKDDhNGgFidfIjGbP6GExeJrIIjPGPyTkFTAR8+BXg
kdQDYNI44FpElg4bGnJC8/zSSjXGl6cR81vXmqZ+c9T+NjCIZMBd31OHoRv5qrxD
iiW00V0lfmBMPV9TqrZdiHJqZz1/uXY734W0t5J0rnfULkmVPNEJC/FeyHLuMrCj
j6EzTLVZKaEe+r54TyLVwqtc2iT39VJGe1WnZiJd+v4SU3vrDlfdizu2yw689i03
1fxA/Ei10jao7ien38b0St4ckz4=
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org