Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/1F08DD5ED16711EEACC86AA3775412E6.roa
File: 1F08DD5ED16711EEACC86AA3775412E6.roa (raw, json)
Hash identifier: Az9hy8W484eMfFVCabnds9LtEfLT4iJCPtwyoHAX59g=
Subject key identifier: 47:5D:D6:3B:A6:16:10:46:EF:F4:F9:BB:BB:FC:48:07:91:C7:18:96
Certificate issuer: /CN=F36A4459AR/serialNumber=A1E01640636C83C22D07099242CCF4C269102B5E
Certificate serial: 0235
Authority key identifier: A1:E0:16:40:63:6C:83:C2:2D:07:09:92:42:CC:F4:C2:69:10:2B:5E
Authority info access: rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/1F08DD5ED16711EEACC86AA3775412E6.roa
Signing time: Thu 22 Feb 2024 09:45:33 +0000
ROA not before: Thu 22 Feb 2024 09:45:30 +0000
ROA not after: Sun 01 Feb 2026 09:45:30 +0000
asID: 29286
IP address blocks: 169.255.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.mft
rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 565 (0x235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A4459AR/serialNumber=A1E01640636C83C22D07099242CCF4C269102B5E
Validity
Not Before: Feb 22 09:45:30 2024 GMT
Not After : Feb 1 09:45:30 2026 GMT
Subject: CN=65d717bd-b948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:1d:a4:84:f0:86:b1:a6:ce:0e:84:45:fc:
40:f8:8c:97:61:57:e9:87:d9:a0:4b:4d:fb:88:18:
ee:0c:c1:6b:3b:18:10:7e:e7:df:de:46:65:3d:66:
46:aa:c4:ec:bb:5d:e2:fc:22:cd:b6:50:3e:9e:6f:
55:ee:de:d7:b3:85:c3:25:20:3e:a1:bf:5f:42:07:
fe:ba:8c:18:cb:f2:2c:9f:3d:a7:0f:e6:b2:18:4c:
dd:7e:00:59:de:9d:d5:f5:d4:a7:8e:25:5b:78:4e:
ea:b0:e6:90:0b:ca:b0:7c:16:e3:80:86:d8:26:2c:
87:34:48:4e:44:bf:01:0c:33:0d:02:e7:5f:56:ba:
6b:3b:bb:14:1d:3d:9d:19:75:83:b4:0b:74:2c:cb:
af:e6:ed:2a:e3:f0:ad:93:c9:b6:a9:ec:2e:14:55:
d9:0c:cd:9f:01:c4:27:7f:e2:83:da:5c:ad:1e:59:
f2:7f:eb:46:29:da:d4:94:90:24:6b:2c:65:fc:fe:
58:1a:15:ad:42:c7:9a:b5:5a:59:f5:c7:97:16:2c:
9d:40:46:54:fa:7a:e3:8a:fa:fc:37:b7:0b:46:6a:
e2:53:68:17:e0:eb:25:c7:54:99:0f:29:6e:25:9b:
b7:84:c2:16:9b:f4:b1:a9:d6:82:f9:68:6a:48:bb:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5D:D6:3B:A6:16:10:46:EF:F4:F9:BB:BB:FC:48:07:91:C7:18:96
X509v3 Authority Key Identifier:
keyid:A1:E0:16:40:63:6C:83:C2:2D:07:09:92:42:CC:F4:C2:69:10:2B:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/1F08DD5ED16711EEACC86AA3775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.67.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:d7:6b:82:51:28:ec:e1:e2:29:7b:57:12:c9:42:ea:6e:03:
ed:77:00:6e:c3:cd:a2:03:33:11:86:7f:db:c9:ed:5a:cb:37:
70:fc:6e:cf:cd:37:e4:6e:be:63:00:5c:87:f9:e8:31:d4:41:
9d:57:d7:e5:12:c1:9c:7a:76:03:7f:ce:7a:47:c1:b2:54:50:
5f:d2:c4:32:f1:ae:ee:03:de:b2:79:e2:ae:81:26:44:c4:9d:
65:f9:2c:ff:5a:23:84:e6:b0:e2:ef:8d:10:38:9e:96:5c:4b:
14:02:e6:75:98:ce:b0:68:04:3f:f6:f1:33:b4:96:6b:db:14:
b8:97:01:63:7e:c9:1b:4a:c4:80:59:ab:6c:cd:4f:b4:c3:8a:
0b:7e:06:17:a5:80:14:51:7f:6c:ea:e4:44:d6:12:e4:15:c1:
54:46:7b:38:8a:0d:4b:43:ef:b6:05:54:c0:fe:25:1c:80:f9:
e4:49:11:48:81:99:8b:91:49:35:b5:a9:6f:a0:19:07:d3:34:
98:46:76:53:26:59:14:5c:57:c1:79:ec:ab:26:45:a5:6f:ab:
df:f5:c2:7a:54:38:15:b7:cb:e0:11:66:65:f0:5b:67:58:77:
85:b3:49:f6:a8:05:8b:c8:e1:fe:25:70:b0:92:cc:8d:b4:00:
70:b6:39:ef
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQ0NTlBUjExMC8GA1UEBRMoQTFFMDE2NDA2MzZDODNDMjJEMDcwOTkyNDJDQ0Y0
QzI2OTEwMkI1RTAeFw0yNDAyMjIwOTQ1MzBaFw0yNjAyMDEwOTQ1MzBaMBgxFjAU
BgNVBAMTDTY1ZDcxN2JkLWI5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8hB2khPCGsabODoRF/ED4jJdhV+mH2aBLTfuIGO4MwWs7GBB+59/eRmU9
ZkaqxOy7XeL8Is22UD6eb1Xu3tezhcMlID6hv19CB/66jBjL8iyfPacP5rIYTN1+
AFnendX11KeOJVt4Tuqw5pALyrB8FuOAhtgmLIc0SE5EvwEMMw0C519Wums7uxQd
PZ0ZdYO0C3Qsy6/m7Srj8K2Tybap7C4UVdkMzZ8BxCd/4oPaXK0eWfJ/60Yp2tSU
kCRrLGX8/lgaFa1Cx5q1Wln1x5cWLJ1ARlT6euOK+vw3twtGauJTaBfg6yXHVJkP
KW4lm7eEwhab9LGp1oL5aGpIuy3VAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUR13W
O6YWEEbv9Pm7u/xIB5HHGJYwHwYDVR0jBBgwFoAUoeAWQGNsg8ItBwmSQsz0wmkQ
K14wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0NDU5L0U5OUJDQkVBMkQxQjExRURBNTRGQzc4QkYxMjIyNDY4L29lQVdR
R05zZzhJdEJ3bVNRc3owd21rUUsxNC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L29lQVdRR05zZzhJdEJ3bVNRc3owd21rUUsxNC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkE0NDU5L0U5OUJDQkVBMkQxQjExRURBNTRGQzc4QkYxMjIy
NDY4LzFGMDhERDVFRDE2NzExRUVBQ0M4NkFBMzc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACp/0MwDQYJKoZIhvcNAQELBQAD
ggEBAF7Xa4JRKOzh4il7VxLJQupuA+13AG7DzaIDMxGGf9vJ7VrLN3D8bs/NN+Ru
vmMAXIf56DHUQZ1X1+USwZx6dgN/znpHwbJUUF/SxDLxru4D3rJ54q6BJkTEnWX5
LP9aI4TmsOLvjRA4npZcSxQC5nWYzrBoBD/28TO0lmvbFLiXAWN+yRtKxIBZq2zN
T7TDigt+BhelgBRRf2zq5ETWEuQVwVRGeziKDUtD77YFVMD+JRyA+eRJEUiBmYuR
STW1qW+gGQfTNJhGdlMmWRRcV8F57KsmRaVvq9/1wnpUOBW3y+ARZmXwW2dYd4Wz
SfaoBYvI4f4lcLCSzI20AHC2Oe8=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org