Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1B36826FE1911EEB623E068017001B1.roa
File: F1B36826FE1911EEB623E068017001B1.roa (raw, json)
Hash identifier: B5H7ulGXUeEt5l4KBOCI/91SP2wSFJp9WztYfizQba8=
Subject key identifier: 88:0C:71:C8:CC:7B:B7:2A:1A:9F:3E:99:59:CA:2C:E3:84:60:F8:B9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 8378
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1B36826FE1911EEB623E068017001B1.roa
Signing time: Fri 19 Apr 2024 06:56:28 +0000
ROA not before: Fri 19 Apr 2024 06:56:24 +0000
ROA not after: Wed 22 May 2024 06:56:24 +0000
asID: 20473
IP address blocks: 156.236.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33656 (0x8378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 06:56:24 2024 GMT
Not After : May 22 06:56:24 2024 GMT
Subject: CN=6622159c-5b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:97:3d:e9:ed:b9:62:dc:7c:77:b4:41:c2:
09:d6:21:96:ef:2a:14:8d:23:2c:a6:9f:14:1c:b0:
e5:44:66:0c:f9:37:9e:34:87:fd:d0:99:71:a7:4e:
ce:79:9b:ad:13:00:d8:be:ab:70:1d:ec:5e:6b:95:
16:0f:30:96:ca:50:ef:89:c9:49:30:d5:1c:90:0b:
be:52:59:86:72:43:2f:6f:8a:36:6f:64:08:e6:ae:
fa:80:9b:0d:1c:6c:b7:ab:18:2e:51:2f:0b:f8:e0:
21:e1:d4:c8:57:bf:97:6a:fd:25:e0:da:54:cf:aa:
9c:57:1e:f6:a2:9f:6c:70:a7:bb:b7:67:d9:94:2f:
0b:79:03:3a:9f:c4:cd:6f:87:49:c1:d2:b6:23:b2:
47:43:89:be:35:31:74:38:da:c4:66:e0:c2:48:86:
18:81:49:f3:7b:77:b1:74:4b:f2:da:76:02:df:ba:
c1:b1:ea:47:82:5a:5e:33:06:2a:95:ed:c4:a1:a4:
c1:c0:7f:85:6d:19:ec:d0:7b:6f:74:54:97:93:28:
97:9c:81:ab:6d:85:b8:f7:30:9f:58:d4:9e:b9:72:
5d:40:63:f0:79:be:7a:8f:8d:71:4f:47:34:a3:81:
ba:55:78:42:a7:e3:7e:b1:f5:a2:03:77:b2:7c:70:
60:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0C:71:C8:CC:7B:B7:2A:1A:9F:3E:99:59:CA:2C:E3:84:60:F8:B9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1B36826FE1911EEB623E068017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.77.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:70:b3:ff:06:b7:66:42:9d:25:a4:c2:ca:74:1f:95:32:06:
fc:c5:9e:17:98:c6:21:23:c6:f8:df:f8:3d:51:83:04:ab:8b:
ee:0a:48:5b:87:a6:07:1e:0d:14:71:6f:d9:49:68:7d:11:25:
96:c4:a6:73:8d:ce:d3:e9:81:19:1f:6e:6d:24:93:8c:e8:6c:
8e:14:dc:b5:f7:aa:d6:91:db:59:bc:4b:df:c4:49:6b:3e:dd:
ff:c7:b1:24:82:ea:15:b9:17:f7:55:2c:ba:8b:cc:e5:ba:39:
16:1d:c2:52:ab:d2:dd:f3:a3:76:f3:43:af:34:3c:c9:b2:46:
32:59:dc:55:31:bc:a7:74:81:57:c9:fe:91:85:f7:65:4e:b6:
9c:4e:ec:83:f8:13:0a:9d:64:fe:9c:fc:1d:f9:b3:f5:ab:52:
f3:d4:c6:55:e6:86:59:51:10:23:b3:b2:f0:87:eb:2a:87:69:
f6:cc:46:77:a2:8a:7a:bf:7b:64:55:12:5a:c1:b5:ec:dd:ec:
4b:49:ed:8f:c1:c2:5a:8f:0a:ff:87:9b:c0:cc:d8:cd:30:28:
c8:93:34:1a:72:f5:79:d1:d1:d9:7d:9e:4b:fd:84:83:4b:73:
a3:4a:40:c9:15:ac:df:30:20:72:ff:19:d7:64:e6:05:50:fe:
cc:bb:08:e3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIN4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDE5MDY1NjI0WhcNMjQwNTIyMDY1NjI0WjAYMRYw
FAYDVQQDEw02NjIyMTU5Yy01YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvB+XPentuWLcfHe0QcIJ1iGW7yoUjSMspp8UHLDlRGYM+TeeNIf90Jlx
p07OeZutEwDYvqtwHexea5UWDzCWylDviclJMNUckAu+UlmGckMvb4o2b2QI5q76
gJsNHGy3qxguUS8L+OAh4dTIV7+Xav0l4NpUz6qcVx72op9scKe7t2fZlC8LeQM6
n8TNb4dJwdK2I7JHQ4m+NTF0ONrEZuDCSIYYgUnze3exdEvy2nYC37rBsepHglpe
MwYqle3EoaTBwH+FbRns0HtvdFSXkyiXnIGrbYW49zCfWNSeuXJdQGPweb56j41x
T0c0o4G6VXhCp+N+sfWiA3eyfHBgcwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIgM
ccjMe7cqGp8+mVnKLOOEYPi5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GMUIzNjgyNkZFMTkxMUVFQjYyM0UwNjgwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOxNMA0GCSqGSIb3DQEBCwUA
A4IBAQA8cLP/BrdmQp0lpMLKdB+VMgb8xZ4XmMYhI8b43/g9UYMEq4vuCkhbh6YH
Hg0UcW/ZSWh9ESWWxKZzjc7T6YEZH25tJJOM6GyOFNy196rWkdtZvEvfxElrPt3/
x7EkguoVuRf3VSy6i8zlujkWHcJSq9Ld86N280OvNDzJskYyWdxVMbyndIFXyf6R
hfdlTracTuyD+BMKnWT+nPwd+bP1q1Lz1MZV5oZZURAjs7Lwh+sqh2n2zEZ3oop6
v3tkVRJawbXs3exLSe2PwcJajwr/h5vAzNjNMCjIkzQacvV50dHZfZ5L/YSDS3Oj
SkDJFazfMCBy/xnXZOYFUP7Muwjj
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org