Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/8D638E94EA6911EBA5AD1D78D8A014CE.roa
File: 8D638E94EA6911EBA5AD1D78D8A014CE.roa (raw, json)
Hash identifier: TSjbcBjzqOEDoCJOFKA/gcs+86bsN6ECxtsUBjgtesg=
Subject key identifier: EF:BC:02:19:CB:35:05:DF:24:30:A6:7C:E9:44:72:EE:7E:2B:7E:AD
Certificate issuer: /CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Certificate serial: 0313
Authority key identifier: CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
Authority info access: rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/8D638E94EA6911EBA5AD1D78D8A014CE.roa
Signing time: Wed 21 Jul 2021 21:21:13 +0000
ROA not before: Wed 21 Jul 2021 21:21:07 +0000
ROA not after: Thu 31 Jul 2025 21:21:07 +0000
asID: 37049
IP address blocks: 165.16.184.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.mft
rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Validity
Not Before: Jul 21 21:21:07 2021 GMT
Not After : Jul 31 21:21:07 2025 GMT
Subject: CN=60f88fc9-4f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:ab:5a:1f:5e:4e:43:b1:48:05:dc:55:94:
4b:40:97:cd:fa:97:16:19:a3:ff:09:ad:a1:6c:20:
5f:aa:4b:d5:91:6a:d7:e8:da:0d:55:d3:77:19:39:
4c:f9:a5:cb:20:cf:67:c1:39:ea:c1:a3:fd:db:53:
f5:88:30:79:60:7f:7b:6e:f3:df:6f:d7:8c:71:b7:
86:dc:93:41:3d:6d:1d:e0:34:d3:02:68:21:2a:e4:
36:fa:92:e7:52:44:e4:07:b9:b4:3c:43:f5:14:73:
e9:52:c1:63:4f:c7:2a:93:d9:05:9a:88:60:18:60:
3f:c0:8d:6d:9d:cb:6f:cf:24:d8:20:7e:22:67:e9:
72:6d:1d:33:25:8a:76:ce:a9:db:e8:52:d7:ec:2f:
53:fb:89:2f:0a:56:0a:85:13:ef:c8:d5:7c:5e:a7:
ae:49:54:df:13:60:9c:ec:02:e8:ea:6d:28:e6:97:
55:49:6b:9e:f7:e7:9a:ea:46:fc:34:f4:af:51:f2:
55:b3:3c:5d:1c:ff:1e:92:da:a2:c4:94:ce:5f:9f:
e5:93:e0:37:8c:4c:51:29:ae:ce:10:67:76:7e:54:
8f:ca:04:16:1e:dc:9a:b9:71:cc:bf:cf:0a:81:7c:
54:1b:9f:ff:84:be:49:9f:37:66:f8:6e:81:c7:41:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BC:02:19:CB:35:05:DF:24:30:A6:7C:E9:44:72:EE:7E:2B:7E:AD
X509v3 Authority Key Identifier:
keyid:CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/8D638E94EA6911EBA5AD1D78D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.184.0/23
Signature Algorithm: sha256WithRSAEncryption
af:bd:0c:23:d5:f7:11:7c:ea:ba:90:95:12:51:ae:0d:cd:d7:
9b:aa:95:73:d7:7a:b6:2d:15:49:2e:cd:6e:82:2d:a2:9d:cd:
0e:c9:e7:4e:5b:a1:bb:62:c1:50:10:65:3e:15:a3:8c:97:1f:
06:5c:a5:36:a5:ea:b6:09:9d:80:15:9e:37:b6:68:b8:f9:da:
db:29:cf:36:c4:4f:26:48:10:b9:16:9e:94:9d:42:19:10:f6:
04:ba:24:6a:ee:93:68:fd:a5:7b:d2:15:25:ff:95:29:af:cb:
aa:b0:32:a7:3c:61:ff:2d:63:a7:d4:66:9a:29:03:cb:52:f8:
25:0b:eb:29:50:57:d2:a4:88:c5:a5:50:a2:9d:22:12:ee:71:
83:c3:f1:f1:84:e3:a2:e3:35:b9:45:0f:5b:00:74:de:7b:f9:
84:7b:ad:3b:4a:37:b0:56:ed:c5:fa:57:72:c3:3b:8a:8a:0c:
db:a0:39:a2:1d:02:54:0a:2c:91:94:90:41:7c:43:59:ca:dd:
28:6e:9b:a8:b4:62:99:81:05:2e:cf:af:de:c9:cf:65:aa:47:
1e:7f:ac:4c:f4:3b:0b:c9:b3:b9:92:66:80:39:f4:c7:99:de:
78:27:df:f0:d5:d7:e9:1d:70:34:54:e6:c9:9f:a1:f6:d7:e2:
87:f5:22:c5
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OUJGMjdBUjExMC8GA1UEBRMoQ0QwN0Q3Qzg5RUNFNEMwRjlEMDRBMUIxNTNCQkM3
MTBERjAxNkIyRDAeFw0yMTA3MjEyMTIxMDdaFw0yNTA3MzEyMTIxMDdaMBgxFjAU
BgNVBAMMDTYwZjg4ZmM5LTRmNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/ZKtaH15OQ7FIBdxVlEtAl836lxYZo/8JraFsIF+qS9WRatfo2g1V03cZ
OUz5pcsgz2fBOerBo/3bU/WIMHlgf3tu899v14xxt4bck0E9bR3gNNMCaCEq5Db6
kudSROQHubQ8Q/UUc+lSwWNPxyqT2QWaiGAYYD/AjW2dy2/PJNggfiJn6XJtHTMl
inbOqdvoUtfsL1P7iS8KVgqFE+/I1Xxep65JVN8TYJzsAujqbSjml1VJa57355rq
Rvw09K9R8lWzPF0c/x6S2qLElM5fn+WT4DeMTFEprs4QZ3Z+VI/KBBYe3Jq5ccy/
zwqBfFQbn/+EvkmfN2b4boHHQYAJAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU77wC
Gcs1Bd8kMKZ86URy7n4rfq0wHwYDVR0jBBgwFoAUzQfXyJ7OTA+dBKGxU7vHEN8B
ay0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlCRjI3LzU4MDBEQ0Y0OTFFQTExRTlCQTU2OTI3QUY4QUVBMjI4L3pRZlh5
SjdPVEEtZEJLR3hVN3ZIRU44QmF5MC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L3pRZlh5SjdPVEEtZEJLR3hVN3ZIRU44QmF5MC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjlCRjI3LzU4MDBEQ0Y0OTFFQTExRTlCQTU2OTI3QUY4QUVB
MjI4LzhENjM4RTk0RUE2OTExRUJBNUFEMUQ3OEQ4QTAxNENFLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGlELgwDQYJKoZIhvcNAQELBQAD
ggEBAK+9DCPV9xF86rqQlRJRrg3N15uqlXPXerYtFUkuzW6CLaKdzQ7J505bobti
wVAQZT4Vo4yXHwZcpTal6rYJnYAVnje2aLj52tspzzbETyZIELkWnpSdQhkQ9gS6
JGruk2j9pXvSFSX/lSmvy6qwMqc8Yf8tY6fUZpopA8tS+CUL6ylQV9KkiMWlUKKd
IhLucYPD8fGE46LjNblFD1sAdN57+YR7rTtKN7BW7cX6V3LDO4qKDNugOaIdAlQK
LJGUkEF8Q1nK3Shum6i0YpmBBS7Pr97Jz2WqRx5/rEz0OwvJs7mSZoA59MeZ3ngn
3/DV1+kdcDRU5smfofbX4of1IsU=
-----END CERTIFICATE-----
Generated at Fri May 10 03:24:10 2024 by rpki-client on console-fra.rpki-client.org