Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/6B858C2C7CD511EEB4295B484AD9E6FC.roa
File: 6B858C2C7CD511EEB4295B484AD9E6FC.roa (raw, json)
Hash identifier: dihkPMXGEHJ3r+fE+4w3EqRdS1u2pb2lejypJBGBexQ=
Subject key identifier: 18:BE:D5:86:7D:0F:E8:18:91:69:F0:25:94:B4:89:E5:B4:EA:8B:5E
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C95
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/6B858C2C7CD511EEB4295B484AD9E6FC.roa
Signing time: Mon 06 Nov 2023 18:50:57 +0000
ROA not before: Mon 06 Nov 2023 18:50:54 +0000
ROA not after: Mon 06 Nov 2028 18:50:54 +0000
asID: 207990
IP address blocks: 161.123.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3221 (0xc95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 6 18:50:54 2023 GMT
Not After : Nov 6 18:50:54 2028 GMT
Subject: CN=65493591-75e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:a7:64:1d:0b:66:5b:7b:2e:00:9e:db:0a:
d6:86:d9:aa:33:34:be:6b:55:fa:fc:a1:1f:85:b0:
26:b2:d9:23:c7:c3:de:a8:99:a1:7c:b6:e4:a5:df:
cd:c2:b1:c8:b7:e0:0c:6f:91:5f:63:42:46:69:7a:
49:9e:ef:15:05:26:b7:15:cd:39:7b:a3:3f:b5:a5:
ca:45:b5:6e:1f:b4:7c:ec:07:17:a5:62:26:a2:5a:
55:c3:56:64:75:52:c2:9f:a4:68:3a:09:ce:c2:3a:
a7:25:ef:f7:7a:38:2e:bc:91:3d:2e:da:8a:39:63:
aa:8e:98:94:e6:7f:57:1e:74:e1:da:83:c5:27:22:
33:9d:7f:ed:72:db:1f:9f:58:d5:fc:a6:04:7c:19:
17:df:75:e5:45:dd:5e:78:2f:45:59:90:dd:55:1a:
91:89:0f:f6:ee:a6:50:9c:a9:23:3a:e1:f9:ee:b9:
06:a1:07:4c:1a:de:59:a5:43:71:4b:ee:cd:67:9c:
4f:6c:d7:59:4c:a9:ca:59:f3:69:da:d0:3c:2f:1a:
1d:9c:10:bd:45:99:25:8d:f2:c7:69:65:d5:84:25:
b0:bd:f8:32:7f:1c:b7:d4:2c:d9:e2:8d:2f:95:fb:
81:eb:7a:e5:c1:c8:9d:85:58:5d:38:02:3a:1a:ae:
3a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BE:D5:86:7D:0F:E8:18:91:69:F0:25:94:B4:89:E5:B4:EA:8B:5E
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/6B858C2C7CD511EEB4295B484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.44.0/24
Signature Algorithm: sha256WithRSAEncryption
77:9e:01:c4:f8:ef:53:ef:74:2a:5a:61:86:50:a2:8a:48:68:
13:35:e3:a4:e9:0d:1a:a4:26:67:97:2c:eb:41:95:9f:75:0f:
f3:b4:ac:4b:04:6d:b9:88:f9:ea:81:93:5a:bb:d2:0c:c6:7b:
c9:cd:b6:83:62:a9:1a:b4:65:0b:d7:ca:e0:36:cf:f4:05:fd:
c8:3c:b3:63:81:5b:ee:80:93:bd:93:c2:af:59:e2:3a:7b:d9:
cf:53:87:ac:60:8f:3f:16:03:46:0a:a3:ec:9c:35:a3:7b:46:
7a:b9:d8:c5:e5:40:f1:32:3f:8c:7a:2f:2d:55:1f:7f:e0:63:
7b:75:27:98:3c:28:71:d7:91:65:94:e8:29:56:d3:9c:8d:e5:
4d:17:b2:bc:92:fd:23:f9:a8:b9:b5:da:96:9c:af:96:6b:c0:
81:d8:aa:52:83:73:a7:41:5d:e5:e4:d9:d3:1f:7c:bc:2d:50:
36:9d:23:ce:f2:c6:32:08:07:9b:03:2b:8e:0e:32:ce:7f:e3:
60:b0:24:ab:ce:78:7d:d8:7a:95:8e:0b:ed:1b:3e:b3:99:1f:
46:a0:8f:98:9b:83:00:46:7b:3a:c9:11:2a:96:48:b3:56:5c:
61:a1:2c:dd:b9:eb:1d:a7:17:92:27:65:bd:5d:d5:62:41:01:
61:d1:90:3a
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzExMDYxODUwNTRaFw0yODExMDYxODUwNTRaMBgxFjAU
BgNVBAMTDTY1NDkzNTkxLTc1ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6xadkHQtmW3suAJ7bCtaG2aozNL5rVfr8oR+FsCay2SPHw96omaF8tuSl
383Csci34AxvkV9jQkZpekme7xUFJrcVzTl7oz+1pcpFtW4ftHzsBxelYiaiWlXD
VmR1UsKfpGg6Cc7COqcl7/d6OC68kT0u2oo5Y6qOmJTmf1cedOHag8UnIjOdf+1y
2x+fWNX8pgR8GRffdeVF3V54L0VZkN1VGpGJD/buplCcqSM64fnuuQahB0wa3lml
Q3FL7s1nnE9s11lMqcpZ82na0DwvGh2cEL1FmSWN8sdpZdWEJbC9+DJ/HLfULNni
jS+V+4HreuXByJ2FWF04Ajoarjr3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUGL7V
hn0P6BiRafAllLSJ5bTqi14wHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4LzZCODU4QzJDN0NENTExRUVCNDI5NUI0ODRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACheywwDQYJKoZIhvcNAQELBQAD
ggEBAHeeAcT471PvdCpaYYZQoopIaBM146TpDRqkJmeXLOtBlZ91D/O0rEsEbbmI
+eqBk1q70gzGe8nNtoNiqRq0ZQvXyuA2z/QF/cg8s2OBW+6Ak72Twq9Z4jp72c9T
h6xgjz8WA0YKo+ycNaN7Rnq52MXlQPEyP4x6Ly1VH3/gY3t1J5g8KHHXkWWU6ClW
05yN5U0XsryS/SP5qLm12pacr5ZrwIHYqlKDc6dBXeXk2dMffLwtUDadI87yxjII
B5sDK44OMs5/42CwJKvOeH3YepWOC+0bPrOZH0agj5ibgwBGezrJESqWSLNWXGGh
LN256x2nF5InZb1d1WJBAWHRkDo=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:19 2024 by rpki-client on console-fra.rpki-client.org