Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/8F7C0326681C11EAA512AD3AF8AEA228.roa
File: 8F7C0326681C11EAA512AD3AF8AEA228.roa (raw, json)
Hash identifier: 5w0zjB9zrr7JPUe6E+UZp70x6v9PtVvXJ2pL8t6LK4I=
Subject key identifier: 38:2E:02:E8:68:F6:39:4A:1E:76:53:09:FA:42:9C:23:80:8E:C9:E8
Certificate issuer: /CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Certificate serial: 0127
Authority key identifier: 82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
Authority info access: rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/8F7C0326681C11EAA512AD3AF8AEA228.roa
Signing time: Tue 17 Mar 2020 06:57:27 +0000
ROA not before: Tue 17 Mar 2020 06:57:21 +0000
ROA not after: Sun 17 Mar 2030 06:57:21 +0000
asID: 327733
IP address blocks: 169.255.232.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.mft
rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295 (0x127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Validity
Not Before: Mar 17 06:57:21 2020 GMT
Not After : Mar 17 06:57:21 2030 GMT
Subject: CN=5e7074d6-7d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:52:23:50:90:97:49:e1:b5:18:51:ad:c4:d1:
e8:6f:8a:12:63:53:d5:58:c5:f0:c7:6c:57:b6:9a:
c6:8f:70:56:e4:bb:59:1b:f7:f8:09:05:a1:d8:3a:
ba:2a:13:3a:63:c4:b1:0b:26:1f:9a:6d:cf:2b:d9:
f2:08:63:ed:1f:66:0e:c3:56:0e:d9:6b:dd:1c:78:
da:bb:64:e9:d3:ee:60:63:d0:17:c6:41:b8:f0:da:
3a:d8:91:9a:0e:e2:90:d3:ba:f1:5b:2c:ad:6e:68:
c8:08:23:6d:15:4e:9b:46:c1:80:b4:3f:ad:63:92:
cf:a4:e8:98:5e:54:3f:f8:3e:27:fa:70:86:55:f3:
82:e1:be:f9:9e:71:c2:3d:f9:59:2d:9e:8e:bb:1e:
22:66:06:ba:8c:f0:e9:a8:ef:f7:3e:67:18:7c:7a:
6d:b9:91:f7:64:ba:71:26:6a:1e:75:e1:7b:ea:dc:
ce:22:31:62:78:15:b4:16:e3:08:99:b3:51:36:74:
dc:d6:be:3b:cc:4b:f9:40:3b:2d:02:7e:0e:f5:07:
bc:55:2c:93:fa:f8:46:cb:3e:64:5c:b3:60:8b:2a:
d2:c1:10:01:48:e9:c6:fc:ec:ca:93:41:14:28:10:
c2:c5:a6:84:9d:e0:15:99:cd:87:e8:bd:e4:ac:55:
fa:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2E:02:E8:68:F6:39:4A:1E:76:53:09:FA:42:9C:23:80:8E:C9:E8
X509v3 Authority Key Identifier:
keyid:82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/8F7C0326681C11EAA512AD3AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
169.255.232.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:e4:57:ec:19:63:68:7c:c8:10:92:62:ee:bb:a5:fc:85:54:
46:2d:aa:dd:07:14:0f:fc:ac:6a:c9:1f:88:76:b3:84:59:b5:
0d:4a:50:50:ea:f3:82:b4:41:81:96:c3:c8:15:95:3f:9b:8d:
5d:97:94:28:d6:38:d5:d8:e3:53:98:dd:c9:c7:0f:15:39:1b:
e7:ab:b2:78:f0:d8:ee:58:99:98:cb:ce:39:a5:09:26:c9:dd:
f9:ea:ba:cf:4b:c8:1a:53:94:26:9e:01:48:77:90:a4:ec:f0:
ad:66:62:f5:65:28:00:0c:d7:1e:e1:ff:e8:7b:17:91:43:00:
3e:8e:6a:22:a1:83:59:a2:87:d6:21:82:72:2d:1d:de:96:5e:
1d:76:27:d2:d1:a8:26:13:08:8e:44:08:c8:a2:e0:21:ac:0c:
80:d1:c6:60:2f:05:c7:12:34:85:f2:32:9d:c1:da:ce:b2:58:
49:0b:1b:01:eb:73:1d:e2:40:87:e2:e9:a9:80:13:e1:fd:d7:
de:71:8d:d5:1d:05:d2:c3:e6:92:9c:eb:c9:70:5c:7b:68:d9:
cc:6d:58:3e:20:82:ea:e7:e9:2b:65:50:c4:fc:32:f1:61:55:
84:64:14:48:5d:1e:ef:80:cd:1e:4c:51:20:1d:b6:d2:44:13:
e8:ea:2c:d0
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RTM3M0RBUjExMC8GA1UEBRMoODIzM0E3RkMyRjE3MDhCQzYwMUZBNkY3QzVGNzgy
Mjc3RUIwNEQzNTAeFw0yMDAzMTcwNjU3MjFaFw0zMDAzMTcwNjU3MjFaMBgxFjAU
BgNVBAMTDTVlNzA3NGQ2LTdkNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCeUiNQkJdJ4bUYUa3E0ehvihJjU9VYxfDHbFe2msaPcFbku1kb9/gJBaHY
OroqEzpjxLELJh+abc8r2fIIY+0fZg7DVg7Za90ceNq7ZOnT7mBj0BfGQbjw2jrY
kZoO4pDTuvFbLK1uaMgII20VTptGwYC0P61jks+k6JheVD/4Pif6cIZV84Lhvvme
ccI9+Vktno67HiJmBrqM8Omo7/c+Zxh8em25kfdkunEmah514Xvq3M4iMWJ4FbQW
4wiZs1E2dNzWvjvMS/lAOy0Cfg71B7xVLJP6+EbLPmRcs2CLKtLBEAFI6cb87MqT
QRQoEMLFpoSd4BWZzYfoveSsVfqLAgMBAAGjggJrMIICZzAdBgNVHQ4EFgQUOC4C
6Gj2OUoedlMJ+kKcI4COyegwHwYDVR0jBBgwFoAUgjOn/C8XCLxgH6b3xfeCJ36w
TTUwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkUzNzNELzYxQTMyOEEyOEI3MzExRTk5QkMxNjY2OEY4QUVBMjI4L2dqT25f
QzhYQ0x4Z0g2YjN4ZmVDSjM2d1RUVS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2dqT25fQzhYQ0x4Z0g2YjN4ZmVDSjM2d1RUVS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkUzNzNELzYxQTMyOEEyOEI3MzExRTk5QkMxNjY2OEY4QUVB
MjI4LzhGN0MwMzI2NjgxQzExRUFBNTEyQUQzQUY4QUVBMjI4LnJvYTAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqn/6DANBgkqhkiG9w0BAQsFAAOCAQEAsORX
7BljaHzIEJJi7rul/IVURi2q3QcUD/ysaskfiHazhFm1DUpQUOrzgrRBgZbDyBWV
P5uNXZeUKNY41djjU5jdyccPFTkb56uyePDY7liZmMvOOaUJJsnd+eq6z0vIGlOU
Jp4BSHeQpOzwrWZi9WUoAAzXHuH/6HsXkUMAPo5qIqGDWaKH1iGCci0d3pZeHXYn
0tGoJhMIjkQIyKLgIawMgNHGYC8FxxI0hfIyncHazrJYSQsbAetzHeJAh+LpqYAT
4f3X3nGN1R0F0sPmkpzryXBce2jZzG1YPiCC6ufpK2VQxPwy8WFVhGQUSF0e74DN
HkxRIB220kQT6Oos0A==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org