Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/1F90EA80C23A11EB8001DA1FF8AEA228.roa
File: 1F90EA80C23A11EB8001DA1FF8AEA228.roa (raw, json)
Hash identifier: mcxexODswgAAU9SdPTRFqjA9BdfIB4DaMGkNObAgToU=
Subject key identifier: BD:0A:1F:F0:A6:18:0A:E4:4B:45:8C:2C:28:A8:40:C8:19:85:9E:84
Certificate issuer: /CN=F36BA80DAR/serialNumber=EF7EB7CFCF254C998BD9CE07C0F48E07D61B7C3F
Certificate serial: 01D5
Authority key identifier: EF:7E:B7:CF:CF:25:4C:99:8B:D9:CE:07:C0:F4:8E:07:D6:1B:7C:3F
Authority info access: rsync://rpki.afrinic.net/repository/arin/7363z88lTJmL2c4HwPSOB9YbfD8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/1F90EA80C23A11EB8001DA1FF8AEA228.roa
Signing time: Mon 31 May 2021 18:00:46 +0000
ROA not before: Mon 31 May 2021 18:00:42 +0000
ROA not after: Thu 31 May 2035 18:00:42 +0000
asID: 327926
IP address blocks: 169.255.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/7363z88lTJmL2c4HwPSOB9YbfD8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/7363z88lTJmL2c4HwPSOB9YbfD8.mft
rsync://rpki.afrinic.net/repository/arin/7363z88lTJmL2c4HwPSOB9YbfD8.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 469 (0x1d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BA80DAR/serialNumber=EF7EB7CFCF254C998BD9CE07C0F48E07D61B7C3F
Validity
Not Before: May 31 18:00:42 2021 GMT
Not After : May 31 18:00:42 2035 GMT
Subject: CN=60b5244e-3710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:23:5f:29:f3:3b:68:e9:f7:6c:e4:74:e8:
fd:88:6b:8a:2b:20:d5:f1:d5:8c:d2:06:af:1c:e7:
2f:dc:1c:41:25:f5:34:05:ce:70:2a:53:de:77:f3:
29:51:1c:c4:ea:cf:9f:26:47:d4:4d:3a:f2:95:da:
ec:07:f6:66:c5:59:7b:ec:75:dc:bb:c1:24:87:e4:
88:73:37:54:b6:44:a8:8b:3f:2f:5f:29:a2:d4:7e:
f6:74:12:10:44:53:c4:00:fb:1b:07:12:de:f1:1f:
5c:13:f2:10:cd:f4:5b:64:bb:98:2a:8a:2d:fa:50:
aa:39:62:92:20:9e:46:b0:7c:77:70:12:b3:1e:90:
2c:3d:7a:eb:b0:77:66:23:35:1c:53:da:8b:b4:1e:
74:5b:54:3c:f8:dc:a8:b1:b6:7b:0e:3f:b5:59:94:
65:55:a0:ca:8e:d3:de:08:6f:1a:22:82:ce:d5:73:
e0:2a:60:a6:d1:61:75:37:4a:42:34:e7:53:60:37:
52:b1:9a:6c:fe:10:fe:85:35:10:68:8a:5d:5a:be:
e2:6e:39:02:76:df:79:28:18:34:7c:b8:7d:28:43:
4e:c8:34:89:58:a0:55:ec:42:bb:bb:1c:87:ce:9a:
ac:45:a3:26:6d:39:72:4c:fa:cd:32:8f:4c:9b:46:
31:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0A:1F:F0:A6:18:0A:E4:4B:45:8C:2C:28:A8:40:C8:19:85:9E:84
X509v3 Authority Key Identifier:
keyid:EF:7E:B7:CF:CF:25:4C:99:8B:D9:CE:07:C0:F4:8E:07:D6:1B:7C:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/7363z88lTJmL2c4HwPSOB9YbfD8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/7363z88lTJmL2c4HwPSOB9YbfD8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BA80D/D81C33865A2411EABDAFF409F8AEA228/1F90EA80C23A11EB8001DA1FF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.28.0/22
Signature Algorithm: sha256WithRSAEncryption
08:86:b7:42:ed:8c:c0:05:a5:77:17:d3:4a:a1:43:d5:57:04:
de:e4:82:e5:4f:53:bc:4f:09:05:86:26:f8:24:15:ca:34:cc:
7c:ce:6d:cc:c6:d4:c5:6f:0d:4c:a1:71:ef:eb:f3:e9:1a:fb:
31:86:d0:03:70:7d:5f:ea:6c:ab:06:90:12:d3:6a:41:24:e1:
ec:84:42:16:96:29:01:7a:ec:de:a1:6b:56:10:1d:2a:87:f7:
6f:b2:e2:07:f4:c4:3c:40:87:73:dd:95:fd:7a:72:48:86:d9:
6c:fd:85:d3:5b:31:78:25:89:76:39:f6:f6:d1:35:66:ee:e1:
15:a7:2f:27:e6:65:01:8c:58:04:53:f5:6b:86:8c:69:51:36:
cb:06:21:e3:41:0e:fa:44:90:98:02:53:3d:be:12:06:8f:fe:
bf:f2:ab:d4:b3:e8:80:e5:fb:d1:e5:0b:ec:06:3d:2e:6d:27:
5f:8f:f0:01:ad:ab:58:bc:98:a6:59:a2:98:a7:fc:68:af:fb:
dc:03:0a:6c:4b:f4:df:56:c3:d0:24:59:1d:3f:63:fd:d0:9a:
64:12:68:fa:f3:23:e6:2b:a4:d0:81:dd:b7:17:84:00:32:7d:
f1:88:b0:b4:69:ed:b6:27:f3:38:c7:fc:58:7e:9b:10:2e:29:
74:9a:15:5b
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkE4MERBUjExMC8GA1UEBRMoRUY3RUI3Q0ZDRjI1NEM5OThCRDlDRTA3QzBGNDhF
MDdENjFCN0MzRjAeFw0yMTA1MzExODAwNDJaFw0zNTA1MzExODAwNDJaMBgxFjAU
BgNVBAMTDTYwYjUyNDRlLTM3MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8qCNfKfM7aOn3bOR06P2Ia4orINXx1YzSBq8c5y/cHEEl9TQFznAqU953
8ylRHMTqz58mR9RNOvKV2uwH9mbFWXvsddy7wSSH5IhzN1S2RKiLPy9fKaLUfvZ0
EhBEU8QA+xsHEt7xH1wT8hDN9Ftku5gqii36UKo5YpIgnkawfHdwErMekCw9euuw
d2YjNRxT2ou0HnRbVDz43KixtnsOP7VZlGVVoMqO094Ibxoigs7Vc+AqYKbRYXU3
SkI051NgN1Kxmmz+EP6FNRBoil1avuJuOQJ233koGDR8uH0oQ07INIlYoFXsQru7
HIfOmqxFoyZtOXJM+s0yj0ybRjHlAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUvQof
8KYYCuRLRYwsKKhAyBmFnoQwHwYDVR0jBBgwFoAU7363z88lTJmL2c4HwPSOB9Yb
fD8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJBODBEL0Q4MUMzMzg2NUEyNDExRUFCREFGRjQwOUY4QUVBMjI4LzczNjN6
ODhsVEptTDJjNEh3UFNPQjlZYmZEOC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
LzczNjN6ODhsVEptTDJjNEh3UFNPQjlZYmZEOC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkJBODBEL0Q4MUMzMzg2NUEyNDExRUFCREFGRjQwOUY4QUVB
MjI4LzFGOTBFQTgwQzIzQTExRUI4MDAxREExRkY4QUVBMjI4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKp/xwwDQYJKoZIhvcNAQELBQAD
ggEBAAiGt0LtjMAFpXcX00qhQ9VXBN7kguVPU7xPCQWGJvgkFco0zHzObczG1MVv
DUyhce/r8+ka+zGG0ANwfV/qbKsGkBLTakEk4eyEQhaWKQF67N6ha1YQHSqH92+y
4gf0xDxAh3Pdlf16ckiG2Wz9hdNbMXgliXY59vbRNWbu4RWnLyfmZQGMWART9WuG
jGlRNssGIeNBDvpEkJgCUz2+EgaP/r/yq9Sz6IDl+9HlC+wGPS5tJ1+P8AGtq1i8
mKZZopin/Giv+9wDCmxL9N9Ww9AkWR0/Y/3QmmQSaPrzI+YrpNCB3bcXhAAyffGI
sLRp7bYn8zjH/Fh+mxAuKXSaFVs=
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:08 2024 by rpki-client on console-ams.rpki-client.org