Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC143A1AF4B911EF9150E5A0762E951A.roa
File: FC143A1AF4B911EF9150E5A0762E951A.roa (raw, json)
Hash identifier: t+wsUurthxCqKqCKsdfaxVrE6NvRORHLN+KAY5TnXKA=
Subject key identifier: 15:BA:22:C6:32:0A:CC:F0:5C:42:DC:8B:27:43:BD:85:82:E2:6F:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0138C5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC143A1AF4B911EF9150E5A0762E951A.roa
Signing time: Thu 27 Feb 2025 03:21:51 +0000
ROA not before: Thu 27 Feb 2025 03:21:46 +0000
ROA not after: Sat 19 Feb 2028 03:21:46 +0000
asID: 17561
IP address blocks: 156.229.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80069 (0x138c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 27 03:21:46 2025 GMT
Not After : Feb 19 03:21:46 2028 GMT
Subject: CN=67bfda4f-fa7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6c:18:9f:8b:3f:5a:8a:a2:25:8b:a0:7e:a6:
72:6d:0d:71:2a:2d:28:75:05:66:b5:f8:02:98:ba:
a9:28:30:3d:c2:17:a2:47:6a:d6:6d:e3:f9:d5:a8:
59:92:ff:18:fa:7a:e5:04:a7:57:6d:98:de:38:cf:
e3:09:c5:ad:64:ad:6d:05:75:c6:89:da:ad:9e:18:
e8:f2:47:e1:7a:c3:0c:8e:3a:07:e9:a0:cd:ce:b1:
03:c7:67:5a:a3:20:f4:d8:c2:52:13:66:43:7d:13:
f9:1b:28:36:2b:d7:62:88:dd:67:ff:5e:bc:a8:c9:
9c:93:cd:44:47:75:9e:65:0c:17:d6:1b:13:17:b2:
3b:a6:ac:f2:20:f6:92:ed:d1:a7:7e:c7:0b:6d:5b:
6e:2e:0f:57:d4:f7:c2:2f:51:f2:a7:0e:e6:9f:af:
4c:b4:65:f0:a2:f8:ab:c4:0e:df:06:6f:75:ee:b0:
3a:b0:62:58:a4:a1:00:25:8c:92:d3:03:a7:54:3c:
14:82:2e:81:8d:0f:ed:d6:5f:2e:85:c7:73:6d:89:
92:61:1c:50:20:41:4a:3f:15:32:b4:46:6d:73:3d:
af:b5:7d:86:53:eb:c5:50:01:b9:32:9b:d5:15:78:
54:e9:60:a4:25:26:2a:1f:ac:e4:3b:99:74:1f:86:
a4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BA:22:C6:32:0A:CC:F0:5C:42:DC:8B:27:43:BD:85:82:E2:6F:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FC143A1AF4B911EF9150E5A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.227.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:bf:68:43:ab:29:1e:fa:ff:1e:5b:ef:08:25:6a:d6:75:ef:
05:ea:e6:c1:89:87:3e:76:3a:e2:d2:a5:b4:df:6f:df:4c:37:
88:93:c8:5b:5d:a4:80:f6:c7:a1:6c:8c:94:dd:3f:8c:37:ce:
62:74:b6:1c:d8:46:46:c2:74:fb:d9:a8:7e:64:81:cb:a7:25:
e2:b4:ab:c5:74:92:b8:d4:67:76:e0:69:c9:7a:2e:30:65:a9:
01:12:78:29:99:f8:3a:34:a3:23:45:ee:19:cd:56:00:52:09:
38:31:0d:2a:40:10:be:77:29:30:af:f9:80:1b:3e:70:6a:68:
fa:b4:e1:51:d7:a3:3d:bc:77:8b:4d:27:db:1a:d6:19:bf:1c:
d4:ce:67:0d:09:75:c6:7c:4a:52:93:0d:fc:c0:4a:2d:6e:a0:
fd:62:21:e6:5f:c7:b1:5c:10:87:b0:97:40:d3:92:14:ae:f6:
89:2f:ba:c3:e4:61:df:2c:7f:77:81:ea:db:8a:9e:bc:92:cc:
80:a9:06:74:98:13:ba:5e:7f:76:1f:2b:05:24:4d:58:e9:8f:
5c:14:31:80:85:ee:7e:bb:de:2e:83:c5:9c:99:8c:c4:11:df:
60:e6:3a:a3:e4:d6:65:4f:71:98:e7:e1:cc:f0:f1:de:9e:24:
dd:77:55:14
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDATjFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMjI3MDMyMTQ2WhcNMjgwMjE5MDMyMTQ2WjAYMRYw
FAYDVQQDEw02N2JmZGE0Zi1mYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvWwYn4s/WoqiJYugfqZybQ1xKi0odQVmtfgCmLqpKDA9wheiR2rWbeP5
1ahZkv8Y+nrlBKdXbZjeOM/jCcWtZK1tBXXGidqtnhjo8kfhesMMjjoH6aDNzrED
x2daoyD02MJSE2ZDfRP5Gyg2K9diiN1n/168qMmck81ER3WeZQwX1hsTF7I7pqzy
IPaS7dGnfscLbVtuLg9X1PfCL1Hypw7mn69MtGXwovirxA7fBm917rA6sGJYpKEA
JYyS0wOnVDwUgi6BjQ/t1l8uhcdzbYmSYRxQIEFKPxUytEZtcz2vtX2GU+vFUAG5
MpvVFXhU6WCkJSYqH6zkO5l0H4akZQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBW6
IsYyCszwXELciydDvYWC4m+LMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GQzE0M0ExQUY0QjkxMUVGOTE1MEU1QTA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOXjMA0GCSqGSIb3DQEBCwUA
A4IBAQC6v2hDqyke+v8eW+8IJWrWde8F6ubBiYc+djri0qW032/fTDeIk8hbXaSA
9sehbIyU3T+MN85idLYc2EZGwnT72ah+ZIHLpyXitKvFdJK41Gd24GnJei4wZakB
Engpmfg6NKMjRe4ZzVYAUgk4MQ0qQBC+dykwr/mAGz5wamj6tOFR16M9vHeLTSfb
GtYZvxzUzmcNCXXGfEpSkw38wEotbqD9YiHmX8exXBCHsJdA05IUrvaJL7rD5GHf
LH93gerbip68ksyAqQZ0mBO6Xn92HysFJE1Y6Y9cFDGAhe5+u94ug8WcmYzEEd9g
5jqj5NZlT3GY5+HM8PHeniTdd1UU
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:12:03 2025 by rpki-client