Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/8FEDACA2DBAD11EEB79EC1A0775412E6.roa
File: 8FEDACA2DBAD11EEB79EC1A0775412E6.roa (raw, json)
Hash identifier: v3lIrrWZHaGAgIYY4ddWroI+DgCBWv6OTEzoRUSn5vA=
Subject key identifier: D3:33:F0:D1:DD:82:3F:7A:01:CF:FD:3E:94:C6:FC:3E:03:3B:8E:9B
Certificate issuer: /CN=F36C01B9RI/serialNumber=39649D638F8C5209384D62B880DF7F8C7E46E1FB
Certificate serial: 06
Authority key identifier: 39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
Authority info access: rsync://rpki.afrinic.net/repository/ripe/OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/8FEDACA2DBAD11EEB79EC1A0775412E6.roa
Signing time: Wed 06 Mar 2024 11:34:59 +0000
ROA not before: Wed 06 Mar 2024 11:34:55 +0000
ROA not after: Fri 06 Mar 2026 11:34:55 +0000
asID: 25543
IP address blocks: 212.52.128.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.mft
rsync://rpki.afrinic.net/repository/ripe/OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 27 Jun 2024 00:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C01B9RI/serialNumber=39649D638F8C5209384D62B880DF7F8C7E46E1FB
Validity
Not Before: Mar 6 11:34:55 2024 GMT
Not After : Mar 6 11:34:55 2026 GMT
Subject: CN=65e854e2-65d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:53:3e:97:98:b4:39:b2:bf:d6:09:dd:c6:f9:
5d:35:1d:87:e5:4f:8f:b3:2f:a1:dc:45:03:20:39:
5e:45:ea:68:4d:b8:42:a2:b7:20:a2:80:74:6e:b8:
9c:cd:d6:aa:35:7c:74:cf:c6:24:56:70:f7:45:3a:
f3:bf:00:54:86:84:3f:d9:6b:0b:3f:af:2f:6a:04:
59:9d:8d:41:2d:26:10:17:bb:42:29:38:73:68:24:
40:fc:7f:d9:64:4b:c3:d5:c5:60:cb:61:94:bd:d3:
70:d7:8b:ca:bc:64:08:ac:c2:e0:2a:b4:2a:87:ba:
6a:81:8c:3c:6f:36:01:cf:bf:28:1a:4d:79:81:53:
50:52:e1:9c:79:97:bb:bc:b6:c8:ee:a6:dc:f1:6f:
9f:3f:f0:06:ee:12:c5:6b:e1:61:28:f3:d0:bf:9e:
b1:6f:8f:23:a5:8d:c4:ec:eb:0d:07:59:28:4d:a6:
69:d0:67:d3:ea:41:56:4c:0e:ac:01:c0:c2:18:8f:
4e:f0:71:4e:e9:e8:55:b8:d3:cb:24:32:a1:49:c5:
43:12:69:da:81:d7:70:3e:1d:ab:6f:d3:b2:f1:83:
b8:3a:00:51:c9:d7:03:65:53:12:83:12:55:f3:ff:
fa:d9:07:10:10:ab:8d:9b:5e:6c:04:e1:7d:74:c5:
35:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:33:F0:D1:DD:82:3F:7A:01:CF:FD:3E:94:C6:FC:3E:03:3B:8E:9B
X509v3 Authority Key Identifier:
keyid:39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/8FEDACA2DBAD11EEB79EC1A0775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
212.52.128.0/19
Signature Algorithm: sha256WithRSAEncryption
6b:3a:32:e5:7c:11:12:ed:df:2a:98:6f:d8:a1:44:6f:e0:35:
ec:f4:11:b0:7f:d7:35:6d:f2:d8:ff:7d:4d:17:ba:88:17:3d:
6f:2b:fe:59:ae:a6:a1:65:de:74:4b:99:50:9c:71:bc:e7:43:
ca:1f:98:e3:bb:44:f0:96:a5:09:1d:19:cd:f0:55:b0:3c:b0:
81:17:53:5e:2c:4a:04:f1:0e:4d:80:dd:37:55:ee:00:6d:af:
05:53:5f:cc:ec:4a:1b:01:06:55:a4:c1:a7:75:04:92:b3:96:
8a:dd:c2:0c:cf:5b:38:37:e0:17:db:05:89:f2:4d:cf:f1:76:
dc:af:76:f4:27:69:4a:49:f1:36:f9:e4:e0:2e:4d:73:95:e6:
71:9c:17:ab:1e:c4:80:64:2e:59:e4:32:08:56:03:8e:71:62:
16:23:f2:b2:f2:d1:a3:04:c6:67:c7:e6:54:90:1e:62:01:8b:
51:9a:8d:2f:b8:cb:79:0c:92:8e:cd:ae:25:8e:f9:52:93:2a:
2c:a3:7a:3b:88:89:a3:71:c5:7b:d5:78:5f:a5:0a:2c:e6:4c:
45:41:65:6c:6a:fc:a5:c8:d3:41:4f:f0:04:b7:4b:5a:40:2c:
2c:d1:c2:41:ec:5e:35:1b:21:34:82:1a:2b:b0:04:a9:67:a6:
d6:68:4c:42
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
MDFCOVJJMTEwLwYDVQQFEygzOTY0OUQ2MzhGOEM1MjA5Mzg0RDYyQjg4MERGN0Y4
QzdFNDZFMUZCMB4XDTI0MDMwNjExMzQ1NVoXDTI2MDMwNjExMzQ1NVowGDEWMBQG
A1UEAxMNNjVlODU0ZTItNjVkMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANNTPpeYtDmyv9YJ3cb5XTUdh+VPj7MvodxFAyA5XkXqaE24QqK3IKKAdG64
nM3WqjV8dM/GJFZw90U6878AVIaEP9lrCz+vL2oEWZ2NQS0mEBe7Qik4c2gkQPx/
2WRLw9XFYMthlL3TcNeLyrxkCKzC4Cq0Koe6aoGMPG82Ac+/KBpNeYFTUFLhnHmX
u7y2yO6m3PFvnz/wBu4SxWvhYSjz0L+esW+PI6WNxOzrDQdZKE2madBn0+pBVkwO
rAHAwhiPTvBxTunoVbjTyyQyoUnFQxJp2oHXcD4dq2/TsvGDuDoAUcnXA2VTEoMS
VfP/+tkHEBCrjZtebAThfXTFNbUCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBTTM/DR
3YI/egHP/T6Uxvw+AzuOmzAfBgNVHSMEGDAWgBQ5ZJ1jj4xSCThNYriA33+Mfkbh
+zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzAxQjkvQUZEQTlGRENEQTJFMTFFRUE2RDEyNUE3Nzc1NDEyRTYvT1dTZFk0
LU1VZ2s0VFdLNGdOOV9qSDVHNGZzLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L3JpcGUv
T1dTZFk0LU1VZ2s0VFdLNGdOOV9qSDVHNGZzLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2QzAxQjkvQUZEQTlGRENEQTJFMTFFRUE2RDEyNUE3Nzc1NDEy
RTYvOEZFREFDQTJEQkFEMTFFRUI3OUVDMUEwNzc1NDEyRTYucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdQ0gDANBgkqhkiG9w0BAQsFAAOC
AQEAazoy5XwREu3fKphv2KFEb+A17PQRsH/XNW3y2P99TRe6iBc9byv+Wa6moWXe
dEuZUJxxvOdDyh+Y47tE8JalCR0ZzfBVsDywgRdTXixKBPEOTYDdN1XuAG2vBVNf
zOxKGwEGVaTBp3UEkrOWit3CDM9bODfgF9sFifJNz/F23K929CdpSknxNvnk4C5N
c5XmcZwXqx7EgGQuWeQyCFYDjnFiFiPysvLRowTGZ8fmVJAeYgGLUZqNL7jLeQyS
js2uJY75UpMqLKN6O4iJo3HFe9V4X6UKLOZMRUFlbGr8pcjTQU/wBLdLWkAsLNHC
QexeNRshNIIaK7AEqWem1mhMQg==
-----END CERTIFICATE-----
Generated at Tue Jun 25 06:04:18 2024 by rpki-client on console-fra.rpki-client.org