Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/D228E34E7CD411EEAAD565464AD9E6FC.roa
File: D228E34E7CD411EEAAD565464AD9E6FC.roa (raw, json)
Hash identifier: Ihmp4gKFwvNiPev5/cczey8XSKF1FINKVJpmqKGTCeU=
Subject key identifier: F4:D3:6F:77:51:4E:46:32:00:30:61:D8:99:3B:96:AA:4C:30:4C:30
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0C85
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/D228E34E7CD411EEAAD565464AD9E6FC.roa
Signing time: Mon 06 Nov 2023 18:46:40 +0000
ROA not before: Mon 06 Nov 2023 18:46:36 +0000
ROA not after: Mon 06 Nov 2028 18:46:36 +0000
asID: 207990
IP address blocks: 161.123.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3205 (0xc85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Nov 6 18:46:36 2023 GMT
Not After : Nov 6 18:46:36 2028 GMT
Subject: CN=6549348f-ffaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6d:e6:5b:4f:ad:19:de:bf:03:97:d3:74:d8:
c6:fb:66:dc:b5:57:7f:19:81:8c:96:67:97:fe:1e:
7f:55:3a:58:7c:a0:07:01:d2:4e:1d:66:a5:42:29:
c7:f3:23:7e:ac:ef:a5:20:9a:e1:fc:4d:78:61:2a:
97:c9:6d:fd:49:b7:c3:d2:21:7f:d4:1a:b4:08:cb:
ed:35:42:cb:b9:9e:08:30:47:50:56:0e:bb:57:31:
09:06:37:f7:8e:ac:b5:7d:d2:b8:9b:d4:42:6a:07:
49:f4:b5:3e:ff:1a:cb:83:34:ee:62:89:0e:0e:b3:
e9:ba:3d:86:cd:1c:47:e8:88:e2:be:e6:06:c9:3f:
77:f1:53:9e:16:38:88:d1:6a:d7:24:63:8a:91:67:
d8:01:11:47:aa:de:03:5d:4d:60:b1:2d:85:93:12:
5f:80:6e:a6:57:79:5b:16:e8:b4:bb:6d:9c:2a:6b:
1d:cc:ef:c4:da:94:af:51:c2:93:9f:6f:c9:a8:9e:
b6:e2:ff:7b:1f:5e:84:66:6d:af:12:fe:6a:06:48:
0b:b9:e4:64:69:c1:2d:05:09:a1:70:07:1a:8e:c0:
85:df:63:2d:48:5c:a3:35:c9:80:ee:2a:3c:9d:6b:
98:dc:42:bf:56:54:9a:a1:fc:70:93:de:83:f9:fa:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D3:6F:77:51:4E:46:32:00:30:61:D8:99:3B:96:AA:4C:30:4C:30
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/D228E34E7CD411EEAAD565464AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.18.0/24
Signature Algorithm: sha256WithRSAEncryption
90:4b:52:5c:cf:14:64:3a:8f:26:1c:53:18:37:bb:52:cf:97:
0c:cb:96:44:36:18:a7:40:cc:c0:c7:52:01:d3:63:61:27:5b:
de:b8:fb:df:f9:7a:27:27:6b:ed:03:d2:ee:40:7e:0a:f0:5a:
f4:fe:d4:ff:00:88:45:2c:4c:90:6d:de:cc:0c:65:93:f8:90:
89:2c:71:43:cc:1a:2f:4e:f6:02:4c:d5:71:d1:64:2e:cb:0f:
16:d6:38:ae:ab:68:3c:a4:1e:6e:b8:9b:f9:3f:00:79:da:9d:
77:8c:ff:51:30:fb:1b:e7:c7:bd:ed:49:79:70:01:77:62:95:
20:06:98:6e:94:24:86:89:f1:95:5d:83:91:c5:7e:51:19:15:
45:1a:52:78:d9:fd:b8:82:48:58:39:f9:5e:f0:00:f6:5b:7f:
77:94:99:b9:c3:ed:75:e1:24:74:33:fc:ef:99:a9:8b:e8:38:
27:b8:7b:d6:d5:10:44:c2:0d:e0:ff:5c:fe:73:fa:95:4b:3d:
cc:7c:62:32:eb:4a:af:44:3a:be:16:48:aa:c3:5d:0d:19:61:
4c:fa:ae:dd:a5:bf:ae:d6:ae:59:f1:01:60:0e:e5:d4:ac:62:
6a:ca:3d:7a:f8:9f:19:76:0e:4c:03:ad:09:00:0c:82:07:3b:
0e:ca:00:6e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RkExNURBUjExMC8GA1UEBRMoNDRBOUY2OUY0MTQxREE3NkI3MzUzRUIwRDU4MTUy
M0FGRTJCODFFMTAeFw0yMzExMDYxODQ2MzZaFw0yODExMDYxODQ2MzZaMBgxFjAU
BgNVBAMTDTY1NDkzNDhmLWZmYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDgbeZbT60Z3r8Dl9N02Mb7Zty1V38ZgYyWZ5f+Hn9VOlh8oAcB0k4dZqVC
KcfzI36s76UgmuH8TXhhKpfJbf1Jt8PSIX/UGrQIy+01Qsu5nggwR1BWDrtXMQkG
N/eOrLV90rib1EJqB0n0tT7/GsuDNO5iiQ4Os+m6PYbNHEfoiOK+5gbJP3fxU54W
OIjRatckY4qRZ9gBEUeq3gNdTWCxLYWTEl+AbqZXeVsW6LS7bZwqax3M78TalK9R
wpOfb8monrbi/3sfXoRmba8S/moGSAu55GRpwS0FCaFwBxqOwIXfYy1IXKM1yYDu
Kjyda5jcQr9WVJqh/HCT3oP5+iyZAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU9NNv
d1FORjIAMGHYmTuWqkwwTDAwHwYDVR0jBBgwFoAURKn2n0FB2na3NT6w1YFSOv4r
geEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVBMjI4L1JLbjJu
MEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L1JLbjJuMEZCMm5hM05UNncxWUZTT3Y0cmdlRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkZBMTVELzk4MTY2QzVFNjIzNzExRUI5MzFDQjg1OUY4QUVB
MjI4L0QyMjhFMzRFN0NENDExRUVBQUQ1NjU0NjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAChexIwDQYJKoZIhvcNAQELBQAD
ggEBAJBLUlzPFGQ6jyYcUxg3u1LPlwzLlkQ2GKdAzMDHUgHTY2EnW964+9/5eicn
a+0D0u5AfgrwWvT+1P8AiEUsTJBt3swMZZP4kIkscUPMGi9O9gJM1XHRZC7LDxbW
OK6raDykHm64m/k/AHnanXeM/1Ew+xvnx73tSXlwAXdilSAGmG6UJIaJ8ZVdg5HF
flEZFUUaUnjZ/biCSFg5+V7wAPZbf3eUmbnD7XXhJHQz/O+ZqYvoOCe4e9bVEETC
DeD/XP5z+pVLPcx8YjLrSq9EOr4WSKrDXQ0ZYUz6rt2lv67WrlnxAWAO5dSsYmrK
PXr4nxl2DkwDrQkADIIHOw7KAG4=
-----END CERTIFICATE-----
Generated at Sun Jun 2 02:07:42 2024 by rpki-client on console-fra.rpki-client.org