Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/55887142513411EC89072F3CD8A014CE.roa
File: 55887142513411EC89072F3CD8A014CE.roa (raw, json)
Hash identifier: 91dP+eWBXdfxjb40Gl2fUEl4O+W0qFvbAbBEH4kmyjk=
Subject key identifier: 17:6E:95:5E:39:02:D3:35:A5:B5:A0:82:0F:5D:0F:89:48:87:9C:77
Certificate issuer: /CN=F36FC328AR/serialNumber=056880B8C36044A59126F111AA3545BC20C12862
Certificate serial: 02
Authority key identifier: 05:68:80:B8:C3:60:44:A5:91:26:F1:11:AA:35:45:BC:20:C1:28:62
Authority info access: rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/55887142513411EC89072F3CD8A014CE.roa
Signing time: Mon 29 Nov 2021 16:49:36 +0000
ROA not before: Mon 29 Nov 2021 16:49:30 +0000
ROA not after: Sun 29 Nov 2026 16:49:30 +0000
asID: 327960
IP address blocks: 169.239.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.mft
rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC328AR
Validity
Not Before: Nov 29 16:49:30 2021 GMT
Not After : Nov 29 16:49:30 2026 GMT
Subject: CN=61a504a0-8fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:d6:a9:db:c9:70:26:9a:40:85:86:ca:ad:
63:5f:2d:4f:28:e7:2f:8e:c8:d3:72:e7:1d:73:74:
ec:b1:f4:a0:35:fe:84:a3:94:ea:f4:b3:52:be:f6:
c3:10:0c:71:25:e8:b4:1e:c3:a8:f8:bc:26:9f:51:
09:ff:d1:d9:68:1f:6e:06:d7:91:f9:39:e3:b3:35:
ca:2f:67:26:3d:99:10:44:a7:8b:b1:4d:b3:c8:86:
f4:c4:aa:ad:7c:0d:ab:11:95:c6:ac:9e:b0:86:5a:
bb:bd:1c:83:9c:44:67:13:a4:b9:82:62:5c:cc:a0:
d1:63:04:1a:a0:d3:d5:0f:11:a8:fc:b3:67:fc:d6:
c8:33:90:cc:fe:65:de:79:95:49:9a:29:15:24:74:
53:d9:e1:bb:a6:1a:2c:cc:25:3b:4e:d4:77:57:2e:
09:2d:a4:66:e6:61:5d:b2:a5:52:81:6b:87:08:bc:
a3:65:8d:67:ab:9e:c5:42:d0:3f:82:37:71:1c:59:
7e:1d:23:64:06:f1:ab:9e:48:c4:d7:97:e1:a6:31:
75:83:81:bf:11:bf:8a:b1:1c:31:3e:8f:ad:1c:5d:
ac:5b:a4:81:10:d2:17:ae:a6:63:79:37:b7:42:e7:
59:18:33:a8:ac:52:9f:c8:77:59:ed:b2:a1:ed:52:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6E:95:5E:39:02:D3:35:A5:B5:A0:82:0F:5D:0F:89:48:87:9C:77
X509v3 Authority Key Identifier:
keyid:05:68:80:B8:C3:60:44:A5:91:26:F1:11:AA:35:45:BC:20:C1:28:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/BWiAuMNgRKWRJvERqjVFvCDBKGI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/BWiAuMNgRKWRJvERqjVFvCDBKGI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC328/2976E2BA511F11EC9329157DD8A014CE/55887142513411EC89072F3CD8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.68.0/22
Signature Algorithm: sha256WithRSAEncryption
35:43:71:74:1e:0b:fa:a6:13:c0:1c:86:31:80:7e:f8:27:3b:
0b:0c:ea:fb:e5:71:29:ac:15:bc:d3:7b:ce:b6:14:35:a5:7a:
29:03:3f:e9:ea:ed:01:30:0a:31:51:7b:38:72:d0:d6:32:b1:
ca:21:a5:ac:19:77:17:f5:9d:5f:88:5f:a2:68:0d:68:00:1e:
c1:c3:cc:fb:9d:9c:f4:ee:ef:5f:d1:40:79:5d:c4:5d:c3:61:
cd:08:b3:76:76:db:42:f6:1c:d2:95:36:49:7a:40:e5:2d:92:
81:57:1b:64:b2:eb:dc:b4:73:50:9a:59:57:df:32:96:be:86:
11:53:c1:b5:46:f5:a1:a6:8e:a8:92:25:47:99:35:55:46:d7:
95:31:43:2d:21:45:22:4d:6b:f2:94:5b:f2:8d:9a:bb:75:8e:
c5:8e:9d:5b:04:b8:93:d5:f6:74:7d:a0:e7:c2:66:86:37:96:
b8:bc:9c:66:e2:4c:24:3a:cd:28:23:80:fa:b8:4a:11:bc:98:
41:49:a7:92:a8:08:4f:41:42:52:2e:23:ad:aa:72:91:ea:34:
dc:0a:1c:f7:f6:fe:53:e9:9b:16:11:be:06:cf:fe:b5:9a:9a:
c1:ba:54:e8:d1:86:84:d3:e5:59:a1:c7:25:c3:25:25:30:0a:
32:8f:64:53
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzZG
QzMyOEFSMTEwLwYDVQQFEygwNTY4ODBCOEMzNjA0NEE1OTEyNkYxMTFBQTM1NDVC
QzIwQzEyODYyMB4XDTIxMTEyOTE2NDkzMFoXDTI2MTEyOTE2NDkzMFowGDEWMBQG
A1UEAwwNNjFhNTA0YTAtOGZjZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKmi1qnbyXAmmkCFhsqtY18tTyjnL47I03LnHXN07LH0oDX+hKOU6vSzUr72
wxAMcSXotB7DqPi8Jp9RCf/R2WgfbgbXkfk547M1yi9nJj2ZEESni7FNs8iG9MSq
rXwNqxGVxqyesIZau70cg5xEZxOkuYJiXMyg0WMEGqDT1Q8RqPyzZ/zWyDOQzP5l
3nmVSZopFSR0U9nhu6YaLMwlO07Ud1cuCS2kZuZhXbKlUoFrhwi8o2WNZ6uexULQ
P4I3cRxZfh0jZAbxq55IxNeX4aYxdYOBvxG/irEcMT6PrRxdrFukgRDSF66mY3k3
t0LnWRgzqKxSn8h3We2yoe1SBJUCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBQXbpVe
OQLTNaW1oIIPXQ+JSIecdzAfBgNVHSMEGDAWgBQFaIC4w2BEpZEm8RGqNUW8IMEo
YjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkMzMjgvMjk3NkUyQkE1MTFGMTFFQzkzMjkxNTdERDhBMDE0Q0UvQldpQXVN
TmdSS1dSSnZFUnFqVkZ2Q0RCS0dJLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
QldpQXVNTmdSS1dSSnZFUnFqVkZ2Q0RCS0dJLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2RkMzMjgvMjk3NkUyQkE1MTFGMTFFQzkzMjkxNTdERDhBMDE0
Q0UvNTU4ODcxNDI1MTM0MTFFQzg5MDcyRjNDRDhBMDE0Q0Uucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqnvRDANBgkqhkiG9w0BAQsFAAOC
AQEANUNxdB4L+qYTwByGMYB++Cc7Cwzq++VxKawVvNN7zrYUNaV6KQM/6ertATAK
MVF7OHLQ1jKxyiGlrBl3F/WdX4hfomgNaAAewcPM+52c9O7vX9FAeV3EXcNhzQiz
dnbbQvYc0pU2SXpA5S2SgVcbZLLr3LRzUJpZV98ylr6GEVPBtUb1oaaOqJIlR5k1
VUbXlTFDLSFFIk1r8pRb8o2au3WOxY6dWwS4k9X2dH2g58JmhjeWuLycZuJMJDrN
KCOA+rhKEbyYQUmnkqgIT0FCUi4jrapykeo03Aoc9/b+U+mbFhG+Bs/+tZqawbpU
6NGGhNPlWaHHJcMlJTAKMo9kUw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:19 2025 by rpki-client