Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FCDAE09C689D11EEB20A9B3C4AD9E6FC.roa
File: FCDAE09C689D11EEB20A9B3C4AD9E6FC.roa (raw, json)
Hash identifier: T88th93wgdVAlA5w19z7I6PUimYnMgR8YUc1Ece2254=
Subject key identifier: 45:56:2C:2D:2D:F1:A4:AA:9F:CF:80:B4:A7:41:50:ED:09:30:AA:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3E4B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FCDAE09C689D11EEB20A9B3C4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 01:23:46 +0000
ROA not before: Thu 12 Oct 2023 01:23:42 +0000
ROA not after: Sat 05 Oct 2024 01:23:42 +0000
asID: 132839
IP address blocks: 156.250.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15947 (0x3e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 01:23:42 2023 GMT
Not After : Oct 5 01:23:42 2024 GMT
Subject: CN=65274aa2-fbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:79:4c:80:5e:55:c4:af:88:f7:3f:c3:4b:99:
a1:0a:f1:3b:97:e9:26:9c:83:e7:dd:36:ac:65:cd:
58:d3:73:7e:a4:53:7d:df:93:9a:6a:15:b1:80:17:
7a:ce:5a:60:f3:8f:64:15:14:f5:33:d1:b4:59:1e:
59:fc:dc:b6:ef:c0:a1:fc:8b:a2:9b:5d:b0:56:c5:
44:e1:42:7d:08:49:f2:65:bb:6e:92:b9:13:22:77:
78:a6:29:d5:17:4f:21:24:35:11:38:3e:f0:9c:48:
08:24:33:e2:5f:bf:47:34:4c:05:11:6e:fe:3c:b6:
84:78:4c:74:76:d2:1a:6e:eb:1a:cf:fa:34:00:5a:
af:2d:4e:60:c2:4c:5f:cf:09:a0:23:8b:3a:2e:21:
ba:73:6c:9c:50:64:04:4c:83:ad:4a:66:f1:70:87:
8c:5b:f7:6a:3f:38:a5:10:3c:b1:b9:34:c6:37:c6:
68:9f:c8:b5:dc:e4:62:29:cc:cd:79:0a:e3:9f:21:
5a:7b:fa:23:5e:1a:e6:55:38:51:5a:a1:bd:54:e0:
39:a7:77:9a:74:ba:b6:14:c8:cb:5a:41:f8:1d:01:
9f:ef:2e:39:01:6f:ed:40:fd:e7:02:fb:b9:c2:b9:
dd:58:df:9a:ce:9f:c4:93:8a:2f:1e:06:e6:4a:ad:
83:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:56:2C:2D:2D:F1:A4:AA:9F:CF:80:B4:A7:41:50:ED:09:30:AA:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FCDAE09C689D11EEB20A9B3C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.130.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:bd:9b:99:82:a0:7e:18:47:f2:54:0a:ef:4a:46:5e:9f:6e:
90:ed:51:2e:81:cd:a3:2b:5f:14:97:22:53:e6:97:fd:d1:3e:
76:fc:4b:d2:14:e2:bd:30:65:a9:51:89:b3:e8:f9:a2:0d:a2:
ae:ca:e4:4b:f5:99:2a:18:e6:d1:d5:59:3b:12:cf:40:a7:94:
db:6f:62:9b:91:67:47:ad:08:d7:54:3d:dd:70:34:22:95:23:
0f:82:02:7e:20:e6:1f:3a:35:84:dc:c7:80:4b:b4:46:00:3e:
cd:2a:10:42:6e:67:5b:28:aa:47:a9:f0:e0:50:36:f5:13:c2:
1d:8b:51:f1:a4:a9:e8:ff:b3:89:19:9f:18:8d:99:03:64:61:
5a:5c:5f:24:0a:ef:94:46:1c:98:46:e6:0f:81:08:b1:d1:a4:
9b:c6:23:58:24:b8:41:59:ed:4b:4c:87:46:85:01:91:5b:5c:
a0:81:e4:50:43:bd:15:86:e6:57:74:96:98:ef:00:81:3c:e2:
9f:5a:0c:e0:fb:3f:d9:f8:8d:0f:35:eb:21:07:da:73:50:fe:
08:b0:2a:df:38:4c:b9:d2:e9:2f:1e:e4:89:da:3e:8e:38:ff:
10:54:e9:cc:81:80:6c:16:79:f3:17:e0:cf:4f:bc:f5:07:89:
b8:e1:b4:25
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICPkswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzEwMTIwMTIzNDJaFw0yNDEwMDUwMTIzNDJaMBgxFjAU
BgNVBAMTDTY1Mjc0YWEyLWZiZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCteUyAXlXEr4j3P8NLmaEK8TuX6Sacg+fdNqxlzVjTc36kU33fk5pqFbGA
F3rOWmDzj2QVFPUz0bRZHln83LbvwKH8i6KbXbBWxUThQn0ISfJlu26SuRMid3im
KdUXTyEkNRE4PvCcSAgkM+Jfv0c0TAURbv48toR4THR20hpu6xrP+jQAWq8tTmDC
TF/PCaAjizouIbpzbJxQZARMg61KZvFwh4xb92o/OKUQPLG5NMY3xmifyLXc5GIp
zM15CuOfIVp7+iNeGuZVOFFaob1U4Dmnd5p0urYUyMtaQfgdAZ/vLjkBb+1A/ecC
+7nCud1Y35rOn8STii8eBuZKrYPVAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQURVYs
LS3xpKqfz4C0p0FQ7QkwqlgwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0ZDREFFMDlDNjg5RDExRUVCMjBBOUIzQzRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc+oIwDQYJKoZIhvcNAQELBQAD
ggEBABu9m5mCoH4YR/JUCu9KRl6fbpDtUS6BzaMrXxSXIlPml/3RPnb8S9IU4r0w
ZalRibPo+aINoq7K5Ev1mSoY5tHVWTsSz0CnlNtvYpuRZ0etCNdUPd1wNCKVIw+C
An4g5h86NYTcx4BLtEYAPs0qEEJuZ1soqkep8OBQNvUTwh2LUfGkqej/s4kZnxiN
mQNkYVpcXyQK75RGHJhG5g+BCLHRpJvGI1gkuEFZ7UtMh0aFAZFbXKCB5FBDvRWG
5ld0lpjvAIE84p9aDOD7P9n4jQ816yEH2nNQ/giwKt84TLnS6S8e5InaPo44/xBU
6cyBgGwWefMX4M9PvPUHibjhtCU=
-----END CERTIFICATE-----
Generated at Wed May 1 13:30:12 2024 by rpki-client on console-fra.rpki-client.org