Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8F081609B911EEB0E68F7F4AD9E6FC.roa
File: FE8F081609B911EEB0E68F7F4AD9E6FC.roa (raw, json)
Hash identifier: 0OMocfx8zxhFRYl8AAE0OpeSsZw5iCUuqeLvYfLB2ZQ=
Subject key identifier: E2:05:55:27:6E:62:E0:54:B6:BD:95:83:BD:8F:F2:78:D4:1A:12:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2C0E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8F081609B911EEB0E68F7F4AD9E6FC.roa
Signing time: Tue 13 Jun 2023 07:14:54 +0000
ROA not before: Tue 13 Jun 2023 07:14:50 +0000
ROA not after: Sat 15 Jun 2024 07:14:50 +0000
asID: 134687
IP address blocks: 156.230.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11278 (0x2c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 13 07:14:50 2023 GMT
Not After : Jun 15 07:14:50 2024 GMT
Subject: CN=6488176e-1a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:56:8c:40:a5:a9:20:c2:17:ec:51:7e:05:
5f:b9:bf:32:00:1f:fa:0a:43:b7:fa:38:8e:66:e4:
7d:e4:0c:09:2b:c0:78:b8:2c:25:58:af:3f:44:51:
0b:cc:70:69:96:64:4d:c5:23:bb:47:b7:4b:69:61:
18:0e:8e:73:29:b6:9e:7f:33:53:96:84:45:d0:da:
1e:e5:ab:c7:36:6f:d2:ad:b3:b3:44:33:ac:0e:96:
93:ff:4f:22:82:9f:7e:55:1d:35:19:1d:1f:87:97:
ce:e4:96:63:52:b2:97:60:16:9f:5c:ec:ac:d1:07:
72:65:ef:f6:66:7b:13:db:b5:fa:c6:90:69:2c:e0:
8f:7b:9f:6b:a4:b8:c3:4d:f6:e2:09:4c:2e:3e:4c:
1b:f5:54:a0:c0:b7:8e:c6:d0:3d:56:b0:7f:32:d8:
4a:6a:73:c2:d8:ce:b5:3b:a4:84:a1:29:b7:55:21:
8e:c3:81:50:89:c8:16:29:f0:21:c0:4d:4a:37:d9:
44:3a:7d:5d:c6:b7:e6:46:32:37:4f:29:93:0e:2b:
ac:ab:35:a0:e0:a9:b5:6b:11:37:42:92:5a:a9:ee:
3d:4e:ab:0a:66:82:da:d1:73:e7:62:71:82:a8:54:
16:bc:84:63:57:9c:ed:dc:eb:74:ea:96:e1:79:d2:
7b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:05:55:27:6E:62:E0:54:B6:BD:95:83:BD:8F:F2:78:D4:1A:12:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8F081609B911EEB0E68F7F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.2.0/24
Signature Algorithm: sha256WithRSAEncryption
28:87:1d:e9:68:95:1f:ac:c5:8e:66:0c:23:86:57:41:a5:77:
86:ce:0b:2a:e5:31:41:10:c8:f2:20:81:9f:19:63:c5:5e:1b:
49:2f:33:86:6a:b6:57:4a:d3:9f:e9:0d:75:e9:80:6d:8e:c9:
dd:80:47:76:ae:1a:bf:2b:cd:3d:09:ac:93:fe:64:89:1f:9d:
f3:8a:c2:d6:ce:84:13:21:30:63:d9:c1:e8:b7:a9:bf:1c:fd:
2e:a3:5a:d4:da:36:0d:9e:8b:94:03:91:f9:a9:c0:c7:17:fc:
39:12:25:b8:f9:ca:b1:11:a7:54:83:61:ea:e5:38:08:74:a7:
4e:80:d2:ad:b8:61:88:5b:89:6f:a0:07:55:5c:b3:b3:74:93:
bf:11:9c:3c:29:7d:89:f8:b3:64:8e:1a:ed:7e:85:6e:3c:f8:
ef:ac:ca:28:ad:9c:96:d2:2f:ff:7e:ce:2d:18:9e:69:6b:32:
f5:15:59:1f:fa:0c:15:3f:61:7e:f5:7d:d6:86:18:50:27:fe:
5f:5d:d8:71:95:5a:78:32:ae:16:1a:cf:24:3c:7d:05:88:52:
a1:1e:61:27:54:c8:4f:a1:78:9a:90:29:cf:cf:e7:2d:59:56:
d2:8f:1a:fa:e2:47:a0:23:f1:6f:75:c6:05:20:ad:d4:2f:1b:
39:e7:fb:53
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICLA4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBUjExMC8GA1UEBRMoNzk3RDg4RDgxM0UyMEZGRjk4MkNDNzQxOUU5NjlC
QUVBNkJGRDY5QjAeFw0yMzA2MTMwNzE0NTBaFw0yNDA2MTUwNzE0NTBaMBgxFjAU
BgNVBAMTDTY0ODgxNzZlLTFhNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDBXFaMQKWpIMIX7FF+BV+5vzIAH/oKQ7f6OI5m5H3kDAkrwHi4LCVYrz9E
UQvMcGmWZE3FI7tHt0tpYRgOjnMptp5/M1OWhEXQ2h7lq8c2b9Kts7NEM6wOlpP/
TyKCn35VHTUZHR+Hl87klmNSspdgFp9c7KzRB3Jl7/ZmexPbtfrGkGks4I97n2uk
uMNN9uIJTC4+TBv1VKDAt47G0D1WsH8y2Epqc8LYzrU7pIShKbdVIY7DgVCJyBYp
8CHATUo32UQ6fV3Gt+ZGMjdPKZMOK6yrNaDgqbVrETdCklqp7j1OqwpmgtrRc+di
cYKoVBa8hGNXnO3c63TqluF50nuTAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU4gVV
J25i4FS2vZWDvY/yeNQaEiEwHwYDVR0jBBgwFoAUeX2I2BPiD/+YLMdBnpabrqa/
1pswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVBMjI4L2VYMkky
QlBpRF8tWUxNZEJucGFicnFhXzFwcy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2VYMkkyQlBpRF8tWUxNZEJucGFicnFhXzFwcy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjhGMkQwLzkyRjg2RTFDNkUwNTExRThBMUI1ODU0QkY4QUVB
MjI4L0ZFOEYwODE2MDlCOTExRUVCMEU2OEY3RjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACc5gIwDQYJKoZIhvcNAQELBQAD
ggEBACiHHelolR+sxY5mDCOGV0Gld4bOCyrlMUEQyPIggZ8ZY8VeG0kvM4ZqtldK
05/pDXXpgG2Oyd2AR3auGr8rzT0JrJP+ZIkfnfOKwtbOhBMhMGPZwei3qb8c/S6j
WtTaNg2ei5QDkfmpwMcX/DkSJbj5yrERp1SDYerlOAh0p06A0q24YYhbiW+gB1Vc
s7N0k78RnDwpfYn4s2SOGu1+hW48+O+syiitnJbSL/9+zi0YnmlrMvUVWR/6DBU/
YX71fdaGGFAn/l9d2HGVWngyrhYazyQ8fQWIUqEeYSdUyE+heJqQKc/P5y1ZVtKP
GvriR6Aj8W91xgUgrdQvGznn+1M=
-----END CERTIFICATE-----
Generated at Mon May 6 08:05:01 2024 by rpki-client on console-ams.rpki-client.org