Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA388B048CD911EE93ADDD584AD9E6FC.roa
File: FA388B048CD911EE93ADDD584AD9E6FC.roa (raw, json)
Hash identifier: dNdm2qABuGU06cy9T2/xb1jpZLxF8lxRAWNdTseyA/o=
Subject key identifier: 52:1D:C4:54:E3:B2:53:FB:68:B8:2D:BB:4B:03:E6:C4:59:2E:F6:50
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 4B76
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA388B048CD911EE93ADDD584AD9E6FC.roa
Signing time: Mon 27 Nov 2023 04:03:53 +0000
ROA not before: Mon 27 Nov 2023 04:03:50 +0000
ROA not after: Wed 27 Nov 2024 04:03:50 +0000
asID: 209242
IP address blocks: 156.226.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19318 (0x4b76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 27 04:03:50 2023 GMT
Not After : Nov 27 04:03:50 2024 GMT
Subject: CN=65641529-2968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:55:70:c3:53:78:95:a9:80:29:f1:ba:ec:
44:17:ae:a0:32:88:98:b8:61:cd:15:8d:a2:c6:f2:
9a:9b:92:de:d6:83:08:9f:93:9f:5f:e3:77:5a:c7:
3e:36:80:04:7f:0f:2d:37:46:3e:04:28:63:6f:f0:
a3:74:41:51:89:fb:fe:60:9b:a7:9a:e9:10:56:df:
e4:dd:21:5d:53:36:7a:fc:c0:58:df:8e:6a:d6:5a:
ac:13:bd:54:fe:ee:3c:62:c9:77:ea:70:56:1a:07:
3a:92:25:94:08:6e:d2:44:cb:c4:4a:28:b2:b6:2d:
c8:26:04:ae:16:f2:2e:cf:6a:d2:f1:18:1f:6e:87:
5c:50:f8:9e:39:23:dd:8e:17:4c:42:0f:2d:ab:a6:
19:66:9e:bb:74:ae:62:54:19:14:92:59:d6:50:3f:
a1:79:f9:09:b9:f6:59:73:46:b3:6f:7b:e5:98:b6:
6f:50:36:64:40:6c:62:6d:4b:4f:60:53:50:93:3d:
1d:58:c6:af:48:de:69:9a:86:6a:45:af:12:86:9f:
0d:5d:6f:2e:d4:81:10:2e:02:7c:ea:2c:ba:39:0e:
5d:e0:ad:3e:65:04:f0:af:b4:7d:d0:e5:04:9d:19:
8b:46:64:b3:c2:70:4a:21:da:dc:4b:90:41:4f:18:
89:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1D:C4:54:E3:B2:53:FB:68:B8:2D:BB:4B:03:E6:C4:59:2E:F6:50
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA388B048CD911EE93ADDD584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.2.0/24
Signature Algorithm: sha256WithRSAEncryption
70:c0:88:5d:be:73:9f:fa:ce:e4:5d:75:0e:4e:b7:60:48:0c:
3b:46:4a:5f:c6:c5:7e:66:9c:12:72:15:69:3e:0e:17:39:26:
36:8f:59:7b:d4:60:a2:82:50:cd:8c:97:4d:01:9f:56:39:c2:
75:45:d1:61:34:68:da:bf:3e:0c:21:05:5b:38:2f:c2:9e:58:
33:d3:ca:cb:ad:d7:f2:37:fa:14:d4:ac:75:8c:3c:84:fe:c5:
27:cc:86:a3:78:93:78:6e:e8:70:7c:5b:f7:9c:ea:cf:bd:8f:
e6:59:52:ae:b1:3b:dc:08:75:b1:b6:0a:c4:2a:78:57:f8:42:
f7:2a:6d:fa:c0:49:61:2b:58:5b:ab:97:c3:03:53:a9:fc:57:
ed:f4:dd:4a:52:f3:9d:0b:cd:0e:99:51:04:3e:b1:c5:b9:c4:
ce:04:ad:fc:54:c8:bd:87:c5:ac:61:5a:9b:6f:dc:bd:e1:b9:
91:6d:23:9f:0e:ca:55:93:a5:04:31:02:5e:38:8f:d8:c3:22:
9b:da:a2:ab:89:c9:8f:63:24:0f:b2:81:ff:24:1e:7e:b6:0a:
6b:cc:1b:5a:f3:fc:5c:e7:fc:db:6c:25:f7:41:10:6a:3e:77:
90:8e:73:34:c2:5e:f7:17:1d:f7:f9:29:17:a0:44:a7:6b:35:
33:2e:73:16
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICS3YwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzExMjcwNDAzNTBaFw0yNDExMjcwNDAzNTBaMBgxFjAU
BgNVBAMTDTY1NjQxNTI5LTI5NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCilVVww1N4lamAKfG67EQXrqAyiJi4Yc0VjaLG8pqbkt7Wgwifk59f43da
xz42gAR/Dy03Rj4EKGNv8KN0QVGJ+/5gm6ea6RBW3+TdIV1TNnr8wFjfjmrWWqwT
vVT+7jxiyXfqcFYaBzqSJZQIbtJEy8RKKLK2LcgmBK4W8i7PatLxGB9uh1xQ+J45
I92OF0xCDy2rphlmnrt0rmJUGRSSWdZQP6F5+Qm59llzRrNve+WYtm9QNmRAbGJt
S09gU1CTPR1Yxq9I3mmahmpFrxKGnw1dby7UgRAuAnzqLLo5Dl3grT5lBPCvtH3Q
5QSdGYtGZLPCcEoh2txLkEFPGIk/AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUUh3E
VOOyU/touC27SwPmxFku9lAwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0ZBMzg4QjA0OENEOTExRUU5M0FEREQ1ODRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc4gIwDQYJKoZIhvcNAQELBQAD
ggEBAHDAiF2+c5/6zuRddQ5Ot2BIDDtGSl/GxX5mnBJyFWk+Dhc5JjaPWXvUYKKC
UM2Ml00Bn1Y5wnVF0WE0aNq/PgwhBVs4L8KeWDPTysut1/I3+hTUrHWMPIT+xSfM
hqN4k3hu6HB8W/ec6s+9j+ZZUq6xO9wIdbG2CsQqeFf4QvcqbfrASWErWFurl8MD
U6n8V+303UpS850LzQ6ZUQQ+scW5xM4ErfxUyL2HxaxhWptv3L3huZFtI58OylWT
pQQxAl44j9jDIpvaoquJyY9jJA+ygf8kHn62CmvMG1rz/Fzn/NtsJfdBEGo+d5CO
czTCXvcXHff5KRegRKdrNTMucxY=
-----END CERTIFICATE-----
Generated at Tue May 7 01:58:07 2024 by rpki-client on console-fra.rpki-client.org