Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/828A0A6C9A6E11EFBA41BC68762E951A.roa
File: 828A0A6C9A6E11EFBA41BC68762E951A.roa (raw, json)
Hash identifier: gFK0fWW3Sk30lH2kvu51EkRJRO9esMeZYoNw0LAuml0=
Subject key identifier: ED:30:B6:C8:7F:65:A4:67:82:C0:9E:9E:57:99:4E:FB:E6:1A:40:D4
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 4C
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/828A0A6C9A6E11EFBA41BC68762E951A.roa
Signing time: Mon 04 Nov 2024 05:34:50 +0000
ROA not before: Mon 04 Nov 2024 05:34:44 +0000
ROA not after: Sat 04 Nov 2034 05:34:44 +0000
asID: 37680
IP address blocks: 155.93.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76 (0x4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Nov 4 05:34:44 2024 GMT
Not After : Nov 4 05:34:44 2034 GMT
Subject: CN=67285cfa-4ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d7:95:c8:a5:f7:21:9c:9e:e9:97:97:db:03:
0b:94:eb:af:22:d8:5e:e2:c1:b2:1a:49:75:32:93:
f8:20:db:9f:82:95:e0:40:2c:17:11:72:d0:d7:61:
d7:02:63:e0:50:50:f1:4b:2f:af:1e:75:7c:c6:37:
9a:03:07:8a:66:c1:c9:74:48:17:0a:fc:5f:d5:de:
14:02:a2:87:56:23:55:e5:cc:54:08:99:f4:b0:e9:
02:82:50:01:04:11:2d:2d:b5:a8:f3:cc:ee:63:d8:
ab:66:cb:03:00:91:86:0d:c9:ae:44:81:8f:8d:5c:
ad:56:c1:ef:ef:fe:3b:f6:50:e6:6d:e2:16:b1:1c:
c0:68:c0:a5:a5:73:9a:a8:b7:02:e3:24:31:3f:79:
6b:86:be:25:16:28:94:fc:4b:16:d3:53:98:6b:8e:
20:16:71:85:be:66:e7:83:ea:f1:27:13:f6:60:9d:
e2:3b:6e:ab:fc:41:9c:23:bc:3d:80:8f:fc:eb:f7:
0e:35:f0:7a:17:d7:be:3d:61:06:f3:5d:47:c6:b7:
f3:19:d2:b1:62:09:02:3e:4a:35:e4:d7:7c:78:d3:
9e:1f:30:47:78:cf:9c:7c:be:65:b0:f2:cf:92:a3:
14:04:58:32:6e:a3:1f:77:02:00:48:d6:1f:38:0f:
db:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:30:B6:C8:7F:65:A4:67:82:C0:9E:9E:57:99:4E:FB:E6:1A:40:D4
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/828A0A6C9A6E11EFBA41BC68762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3c:09:0f:d1:0c:64:87:21:ac:41:d8:e6:5b:6c:7d:5e:31:28:
d0:f2:d8:e2:50:5f:0a:bf:8a:21:e6:14:56:28:57:51:fd:b7:
22:87:00:23:af:41:52:fd:0c:87:45:d3:ea:12:7c:bd:8d:e1:
dd:2d:a7:36:1c:a3:81:bc:df:31:b2:55:66:8f:ff:47:06:ec:
de:f8:16:61:de:c6:ba:f7:2b:47:36:66:76:17:e3:c5:c9:8f:
1d:b4:f9:c5:70:a4:7f:fb:35:5a:89:82:f0:40:12:c9:0d:73:
a7:5a:6f:28:c0:09:59:40:99:f6:ba:7b:52:b4:6e:f4:fc:40:
1c:70:b4:0b:b8:22:2e:cc:9a:6b:c2:67:14:90:d9:7a:33:2e:
1a:43:7a:bb:4a:51:76:0a:65:29:ca:5f:5a:1c:96:3d:aa:be:
d3:78:9f:a2:34:34:f8:94:f2:64:25:6e:c3:e8:a2:51:3c:a9:
b6:e7:cd:54:91:0e:c7:b8:6d:dc:35:00:b9:6a:aa:b3:d1:6e:
fe:4e:b1:3a:b3:e5:18:63:81:94:3e:6b:c9:a9:4b:86:d3:5d:
90:13:a9:a3:cf:f2:a0:87:c4:b7:31:6c:a1:e3:e4:6b:b3:5a:
4c:35:d7:2d:70:85:37:60:f7:93:14:c6:d1:d1:71:e4:49:71:
88:fe:32:4c
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBTDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
QzZDOEFSMTEwLwYDVQQFEygxQTgxODVGQ0Y2M0QwNzlCMjA2QTM0QThCOTk0ODdB
NTlEODE4RTVEMB4XDTI0MTEwNDA1MzQ0NFoXDTM0MTEwNDA1MzQ0NFowGDEWMBQG
A1UEAxMNNjcyODVjZmEtNGFlMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALzXlcil9yGcnumXl9sDC5TrryLYXuLBshpJdTKT+CDbn4KV4EAsFxFy0Ndh
1wJj4FBQ8Usvrx51fMY3mgMHimbByXRIFwr8X9XeFAKih1YjVeXMVAiZ9LDpAoJQ
AQQRLS21qPPM7mPYq2bLAwCRhg3JrkSBj41crVbB7+/+O/ZQ5m3iFrEcwGjApaVz
mqi3AuMkMT95a4a+JRYolPxLFtNTmGuOIBZxhb5m54Pq8ScT9mCd4jtuq/xBnCO8
PYCP/Ov3DjXwehfXvj1hBvNdR8a38xnSsWIJAj5KNeTXfHjTnh8wR3jPnHy+ZbDy
z5KjFARYMm6jH3cCAEjWHzgP29sCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBTtMLbI
f2WkZ4LAnp5XmU775hpA1DAfBgNVHSMEGDAWgBQagYX89j0HmyBqNKi5lIelnYGO
XTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkM2QzgvQkNBREJFOEM3MEUzMTFFRkI0QUIxNzQ1NzYyRTk1MUEvR29HRl9Q
WTlCNXNnYWpTb3VaU0hwWjJCamwwLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2FyaW4v
R29HRl9QWTlCNXNnYWpTb3VaU0hwWjJCamwwLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2RkM2QzgvQkNBREJFOEM3MEUzMTFFRkI0QUIxNzQ1NzYyRTk1
MUEvODI4QTBBNkM5QTZFMTFFRkJBNDFCQzY4NzYyRTk1MUEucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB5tdgDANBgkqhkiG9w0BAQsFAAOC
AQEAPAkP0QxkhyGsQdjmW2x9XjEo0PLY4lBfCr+KIeYUVihXUf23IocAI69BUv0M
h0XT6hJ8vY3h3S2nNhyjgbzfMbJVZo//Rwbs3vgWYd7GuvcrRzZmdhfjxcmPHbT5
xXCkf/s1WomC8EASyQ1zp1pvKMAJWUCZ9rp7UrRu9PxAHHC0C7giLsyaa8JnFJDZ
ejMuGkN6u0pRdgplKcpfWhyWPaq+03ifojQ0+JTyZCVuw+iiUTyptufNVJEOx7ht
3DUAuWqqs9Fu/k6xOrPlGGOBlD5ryalLhtNdkBOpo8/yoIfEtzFsoePka7NaTDXX
LXCFN2D3kxTG0dFx5ElxiP4yTA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:27 2024 by rpki-client on console-fra.rpki-client.org