Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F57B7A4E417B11EEB2470F134AD9E6FC.roa
File: F57B7A4E417B11EEB2470F134AD9E6FC.roa (raw, json)
Hash identifier: d+aD75Ehhak1D1tQ6lNsHEtZwUl64ZClv2IvYZCtEeY=
Subject key identifier: 8D:98:D9:D3:27:35:43:83:9C:FC:7F:83:76:36:CD:4C:B7:9F:D8:CA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 36CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F57B7A4E417B11EEB2470F134AD9E6FC.roa
Signing time: Wed 23 Aug 2023 06:11:55 +0000
ROA not before: Wed 23 Aug 2023 06:11:52 +0000
ROA not after: Wed 21 Aug 2024 06:11:52 +0000
asID: 136442
IP address blocks: 156.236.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14029 (0x36cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 06:11:52 2023 GMT
Not After : Aug 21 06:11:52 2024 GMT
Subject: CN=64e5a32b-7efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5a:86:91:48:3c:c5:47:85:98:d0:33:80:cd:
7e:a7:8b:dc:c1:d9:40:63:a8:a8:b0:8b:ef:89:58:
b5:4d:38:b4:a1:f5:02:34:ff:40:e4:23:3c:0f:1d:
94:ec:7b:03:cd:79:75:63:e3:70:bd:58:48:f4:8b:
b3:2b:e9:70:6c:bb:05:14:96:5f:da:b2:96:1a:b5:
72:be:e0:4b:34:cd:cb:5f:7f:15:95:e5:77:c3:63:
01:55:87:f9:01:c4:6c:c4:97:55:d5:a9:ed:b6:17:
70:c7:e4:2b:41:06:d7:79:bf:22:63:6e:07:e7:f2:
c7:a6:f3:76:9f:21:2d:1b:27:e0:ed:69:df:da:9f:
1a:7b:9c:b3:e4:78:93:a0:82:46:19:94:54:fd:2f:
80:6a:8a:f4:25:45:ae:6e:1b:59:d8:d1:d2:0d:b3:
ad:3b:e2:10:ee:f1:e7:c9:38:55:bf:68:90:ce:20:
6d:6f:1b:2f:ae:d9:51:33:dd:d0:08:af:b9:28:9a:
5f:6b:f6:16:2c:86:3c:e0:c7:54:b6:80:94:de:02:
3d:2f:a7:bd:76:85:d1:7c:07:53:f4:81:1b:8d:c6:
71:06:77:c6:5d:02:00:73:a2:a1:a4:d2:e9:51:d0:
61:fa:65:22:b6:13:20:b6:3c:de:2f:41:45:5c:14:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:98:D9:D3:27:35:43:83:9C:FC:7F:83:76:36:CD:4C:B7:9F:D8:CA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F57B7A4E417B11EEB2470F134AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.2.0/24
Signature Algorithm: sha256WithRSAEncryption
97:4f:a6:03:2f:b1:31:87:75:93:e6:6e:e1:45:c6:e8:01:69:
26:34:b2:57:0b:6c:11:f7:a4:1e:cc:96:2b:b7:ff:9c:01:08:
87:1d:3d:0e:2f:2b:be:39:5b:80:2d:b9:30:75:bb:81:f7:29:
8c:cd:b0:bc:51:2b:9e:49:dd:1f:8d:4d:3b:c4:48:02:a9:5a:
dc:92:9c:5b:84:14:6c:8e:55:7e:79:ee:64:7e:48:b7:d3:85:
d9:aa:17:c9:8b:23:33:37:f9:e1:55:09:d5:12:c3:16:52:01:
14:dc:30:a9:ce:be:00:0a:d6:05:4d:c6:65:6d:9e:c4:29:71:
bc:16:fb:c9:2e:cc:71:85:bc:b0:ba:69:60:2a:5d:40:c0:a2:
7f:ca:a6:4f:39:51:d7:5f:6c:72:c2:fa:81:25:c6:80:e7:a4:
e4:15:f6:78:1b:19:60:f4:a1:fb:f3:26:84:fe:77:a9:f5:22:
b7:95:3e:68:6f:91:64:c4:52:7d:e5:8c:b8:da:38:7a:85:4c:
69:80:d6:b4:02:10:3e:44:f6:fd:69:06:94:bd:ba:4a:3c:30:
22:d7:bb:b9:95:73:ce:44:db:a9:0d:c9:f1:c4:07:43:9f:29:
7a:2d:0b:c8:31:b3:9a:04:f8:de:9d:d8:b6:0b:04:5e:a3:a6:
23:20:8b:3f
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICNs0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA4MjMwNjExNTJaFw0yNDA4MjEwNjExNTJaMBgxFjAU
BgNVBAMTDTY0ZTVhMzJiLTdlZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDjWoaRSDzFR4WY0DOAzX6ni9zB2UBjqKiwi++JWLVNOLSh9QI0/0DkIzwP
HZTsewPNeXVj43C9WEj0i7Mr6XBsuwUUll/aspYatXK+4Es0zctffxWV5XfDYwFV
h/kBxGzEl1XVqe22F3DH5CtBBtd5vyJjbgfn8sem83afIS0bJ+Dtad/anxp7nLPk
eJOggkYZlFT9L4BqivQlRa5uG1nY0dINs6074hDu8efJOFW/aJDOIG1vGy+u2VEz
3dAIr7koml9r9hYshjzgx1S2gJTeAj0vp712hdF8B1P0gRuNxnEGd8ZdAgBzoqGk
0ulR0GH6ZSK2EyC2PN4vQUVcFN+BAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUjZjZ
0yc1Q4Oc/H+DdjbNTLef2MowHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0Y1N0I3QTRFNDE3QjExRUVCMjQ3MEYxMzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc7AIwDQYJKoZIhvcNAQELBQAD
ggEBAJdPpgMvsTGHdZPmbuFFxugBaSY0slcLbBH3pB7Mliu3/5wBCIcdPQ4vK745
W4AtuTB1u4H3KYzNsLxRK55J3R+NTTvESAKpWtySnFuEFGyOVX557mR+SLfThdmq
F8mLIzM3+eFVCdUSwxZSARTcMKnOvgAK1gVNxmVtnsQpcbwW+8kuzHGFvLC6aWAq
XUDAon/Kpk85UddfbHLC+oElxoDnpOQV9ngbGWD0ofvzJoT+d6n1IreVPmhvkWTE
Un3ljLjaOHqFTGmA1rQCED5E9v1pBpS9uko8MCLXu7mVc85E26kNyfHEB0OfKXot
C8gxs5oE+N6d2LYLBF6jpiMgiz8=
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:00 2024 by rpki-client on console-ams.rpki-client.org