Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/28BD62E209BE11ED8FF1449BF1222468.roa
File: 28BD62E209BE11ED8FF1449BF1222468.roa (raw, json)
Hash identifier: R0vOp8G2GZr0EwGcYMxlW/tvbXvAnqxHiXZeR83YBA0=
Subject key identifier: 7F:D7:54:69:A0:7A:17:C4:6B:97:BD:72:A8:1E:68:6F:A5:3E:B6:96
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 08EF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/28BD62E209BE11ED8FF1449BF1222468.roa
Signing time: Fri 22 Jul 2022 12:59:45 +0000
ROA not before: Fri 22 Jul 2022 12:59:41 +0000
ROA not after: Mon 22 Jul 2024 12:59:41 +0000
asID: 212238
IP address blocks: 154.16.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2287 (0x8ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 22 12:59:41 2022 GMT
Not After : Jul 22 12:59:41 2024 GMT
Subject: CN=62da9f41-ce07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:00:b1:61:4b:e2:4d:ed:35:d5:d9:b9:36:
3b:da:ac:f3:b1:07:dd:01:8e:b6:cb:71:f6:42:f3:
1e:6b:c3:12:25:72:1b:5d:24:1b:2a:d1:8d:0e:60:
99:cf:6a:03:19:c9:81:4c:8e:78:04:db:18:64:b4:
d6:70:f7:58:e7:b2:c9:4d:ab:03:0a:ec:3d:cf:52:
e6:a9:b3:bc:e5:71:a1:cf:74:96:f2:a9:c3:1c:29:
cd:af:c2:5f:92:88:c7:f3:53:a8:92:82:7b:c5:5b:
f4:12:0c:b5:be:a1:4a:7f:a3:86:ca:6e:02:db:ca:
19:b5:aa:27:83:12:10:be:34:a2:4c:17:1e:82:5c:
f0:77:4f:ba:4a:6a:df:21:bf:f2:de:4b:50:d9:08:
df:21:90:ac:36:01:4a:02:d6:3f:7a:54:18:a5:4b:
e4:a8:01:32:d1:9a:00:c5:79:5a:2a:8d:46:1a:a7:
9c:28:e2:15:8c:dc:b6:fc:ad:c5:83:df:85:13:b2:
a1:a7:c8:95:82:54:a1:7d:ec:9a:90:c1:cd:a0:9a:
76:3f:c3:5c:2a:56:46:52:18:d4:47:06:89:ad:65:
86:40:1a:cc:d2:63:b1:15:31:10:3e:22:40:01:0b:
c9:07:03:21:3f:75:9d:12:48:9a:59:89:9b:c1:e8:
aa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D7:54:69:A0:7A:17:C4:6B:97:BD:72:A8:1E:68:6F:A5:3E:B6:96
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/28BD62E209BE11ED8FF1449BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.35.0/24
Signature Algorithm: sha256WithRSAEncryption
60:bc:2a:17:30:cf:ae:79:36:5b:eb:52:46:84:02:70:03:0f:
fb:60:e4:b5:51:a2:04:ce:69:cd:33:a0:5c:c1:b1:f9:18:fe:
26:d1:c1:1f:a0:c4:6d:87:a8:28:60:68:fe:fb:72:57:12:cc:
11:d5:6a:a0:be:eb:fd:72:80:cd:b2:a6:78:1b:24:aa:6e:22:
ac:7c:e9:0d:45:81:b8:58:16:58:60:85:11:f0:c7:cd:a9:0c:
9f:80:a0:81:d5:70:8e:32:c5:bc:90:01:2c:d8:55:2b:73:4d:
47:79:ca:32:d7:6d:3b:4a:f7:a4:57:c7:39:95:e4:ac:f2:4f:
41:66:6b:1b:a8:b8:b6:2b:55:df:bf:97:c0:e5:aa:df:25:be:
71:fb:b8:90:63:fb:24:9b:f1:36:90:06:46:b3:c6:b4:a6:70:
72:4f:90:92:1b:1d:3c:e8:8a:62:b4:1e:fe:55:d7:00:a9:d3:
b6:e0:ba:ec:6e:ae:41:69:5d:2c:39:b4:02:83:3d:a0:a0:1d:
89:43:83:58:f4:b6:bc:28:95:9d:f4:fd:29:5d:9c:c7:a3:67:
ff:23:7c:4a:d9:33:8b:10:7b:f4:60:7d:d1:5b:ac:f7:c1:09:
f5:cb:d9:c2:cc:c8:26:da:d6:71:d6:9a:aa:dd:e9:09:e6:4c:
cc:b0:05:d6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjA3MjIxMjU5NDFaFw0yNDA3MjIxMjU5NDFaMBgxFjAU
BgNVBAMMDTYyZGE5ZjQxLWNlMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC7KwCxYUviTe011dm5NjvarPOxB90BjrbLcfZC8x5rwxIlchtdJBsq0Y0O
YJnPagMZyYFMjngE2xhktNZw91jnsslNqwMK7D3PUuaps7zlcaHPdJbyqcMcKc2v
wl+SiMfzU6iSgnvFW/QSDLW+oUp/o4bKbgLbyhm1qieDEhC+NKJMFx6CXPB3T7pK
at8hv/LeS1DZCN8hkKw2AUoC1j96VBilS+SoATLRmgDFeVoqjUYap5wo4hWM3Lb8
rcWD34UTsqGnyJWCVKF97JqQwc2gmnY/w1wqVkZSGNRHBomtZYZAGszSY7EVMRA+
IkABC8kHAyE/dZ0SSJpZiZvB6KoZAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUf9dU
aaB6F8Rrl71yqB5ob6U+tpYwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzI4QkQ2MkUyMDlCRTExRUQ4RkYxNDQ5QkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaECMwDQYJKoZIhvcNAQEL
BQADggEBAGC8Khcwz655NlvrUkaEAnADD/tg5LVRogTOac0zoFzBsfkY/ibRwR+g
xG2HqChgaP77clcSzBHVaqC+6/1ygM2ypngbJKpuIqx86Q1FgbhYFlhghRHwx82p
DJ+AoIHVcI4yxbyQASzYVStzTUd5yjLXbTtK96RXxzmV5KzyT0FmaxuouLYrVd+/
l8Dlqt8lvnH7uJBj+ySb8TaQBkazxrSmcHJPkJIbHTzoimK0Hv5V1wCp07bguuxu
rkFpXSw5tAKDPaCgHYlDg1j0trwolZ30/SldnMejZ/8jfErZM4sQe/RgfdFbrPfB
CfXL2cLMyCba1nHWmqrd6QnmTMywBdY=
-----END CERTIFICATE-----
Generated at Wed May 8 20:35:45 2024 by rpki-client on console-ams.rpki-client.org