Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/31A128EABE9D11EEA80005A8775412E6.roa
File: 31A128EABE9D11EEA80005A8775412E6.roa (raw, json)
Hash identifier: 9O72yrx1j232eGHkNnAgxM/xeTRHwNjlaclX0vJiDlI=
Subject key identifier: 67:EE:96:FF:EA:C0:80:97:E3:80:AA:66:11:8B:4D:50:CC:BA:30:9A
Certificate issuer: /CN=F36114AAAF/serialNumber=CD5232B63C6A832990C86707CB739BDC04DB9A59
Certificate serial: 12
Authority key identifier: CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/31A128EABE9D11EEA80005A8775412E6.roa
Signing time: Mon 29 Jan 2024 11:54:45 +0000
ROA not before: Mon 29 Jan 2024 11:54:41 +0000
ROA not after: Thu 29 Jan 2026 11:54:41 +0000
asID: 21003
IP address blocks: 102.214.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.mft
rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36114AAAF/serialNumber=CD5232B63C6A832990C86707CB739BDC04DB9A59
Validity
Not Before: Jan 29 11:54:41 2024 GMT
Not After : Jan 29 11:54:41 2026 GMT
Subject: CN=65b79205-8f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ed:88:03:d1:02:bc:67:72:d6:f9:c9:74:5a:
00:56:ff:4a:1b:b7:79:e7:f5:ca:23:5a:eb:70:1d:
83:e5:e7:0e:80:9a:3a:3d:7d:75:40:8c:41:c6:d7:
bc:91:52:ea:7e:bc:07:a2:c2:4f:15:0d:05:45:6c:
f5:77:39:03:9d:dd:70:6a:9b:b8:a8:be:0e:cd:a5:
12:ce:a5:8c:9d:0c:d2:2b:89:9e:8f:0a:60:51:1f:
c9:b0:7c:f5:be:0e:05:28:88:35:8f:b3:2b:62:57:
f3:96:b0:fe:73:7f:65:dd:77:d2:dd:52:40:b9:c1:
bb:98:7b:fd:04:ac:98:93:be:fa:5d:55:89:47:17:
e5:0f:62:81:fe:06:93:7c:1b:b3:ed:60:ce:41:20:
25:c3:db:e0:0a:40:38:9c:03:78:d8:04:9f:54:be:
a7:70:98:c1:eb:c5:cd:6a:a9:64:ef:54:09:8b:f5:
36:c9:29:26:89:8d:fb:1b:24:65:08:15:84:fa:9c:
d3:2f:c5:59:e0:08:53:e6:5a:a4:d3:4d:fb:db:6b:
e4:cf:91:7b:54:1d:33:7a:54:4b:2a:6d:3e:eb:88:
ea:b4:bd:1d:f7:53:d2:09:ff:54:37:0f:9f:87:d5:
01:eb:e9:39:b3:3d:cd:97:f3:f0:fa:45:7b:6a:4b:
2d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:EE:96:FF:EA:C0:80:97:E3:80:AA:66:11:8B:4D:50:CC:BA:30:9A
X509v3 Authority Key Identifier:
keyid:CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/31A128EABE9D11EEA80005A8775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e6:74:81:79:f2:85:ad:b7:fb:4e:ff:8e:39:07:c7:30:57:
5a:83:a2:a4:c6:17:7b:0c:6d:8b:78:1d:00:35:cc:07:d1:3f:
83:44:48:e8:c1:57:ac:32:49:51:72:f1:cc:50:f0:51:52:d8:
38:da:e1:2d:72:84:70:c6:f4:39:5f:0a:30:26:0b:38:21:9b:
07:46:56:4f:de:d9:14:36:61:73:ab:33:3e:e9:ce:c1:69:b3:
ab:2b:bf:e2:68:e1:8c:95:95:ee:a3:d3:77:e2:99:1e:ef:8e:
62:58:0f:66:83:95:35:1c:9c:be:bc:2b:bf:fe:2d:6a:a5:26:
2a:4a:f9:18:8e:61:72:0a:22:f5:cd:7b:a9:d6:55:44:7d:15:
83:65:8a:6c:71:06:a1:d2:6f:5f:64:36:80:e9:e7:dc:19:46:
c7:de:b7:12:0e:68:86:21:1c:74:f2:aa:3a:50:78:b5:f1:c2:
e7:7f:62:aa:9d:a3:06:a7:a7:97:9e:c2:e1:83:57:89:07:12:
7e:99:83:8a:81:d8:4d:2c:99:ff:99:1b:e1:0c:53:a9:68:c4:
87:9d:54:42:91:5a:dd:a1:04:00:04:52:da:78:3b:0f:e1:78:
70:42:1b:3f:64:90:fb:9e:3e:66:37:d1:c1:93:aa:b1:7e:ac:
29:c3:20:5d
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYx
MTRBQUFGMTEwLwYDVQQFEyhDRDUyMzJCNjNDNkE4MzI5OTBDODY3MDdDQjczOUJE
QzA0REI5QTU5MB4XDTI0MDEyOTExNTQ0MVoXDTI2MDEyOTExNTQ0MVowGDEWMBQG
A1UEAxMNNjViNzkyMDUtOGY3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKrtiAPRArxnctb5yXRaAFb/Shu3eef1yiNa63Adg+XnDoCaOj19dUCMQcbX
vJFS6n68B6LCTxUNBUVs9Xc5A53dcGqbuKi+Ds2lEs6ljJ0M0iuJno8KYFEfybB8
9b4OBSiINY+zK2JX85aw/nN/Zd130t1SQLnBu5h7/QSsmJO++l1ViUcX5Q9igf4G
k3wbs+1gzkEgJcPb4ApAOJwDeNgEn1S+p3CYwevFzWqpZO9UCYv1NskpJomN+xsk
ZQgVhPqc0y/FWeAIU+ZapNNN+9tr5M+Re1QdM3pUSyptPuuI6rS9HfdT0gn/VDcP
n4fVAevpObM9zZfz8PpFe2pLLXcCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRn7pb/
6sCAl+OAqmYRi01QzLowmjAfBgNVHSMEGDAWgBTNUjK2PGqDKZDIZwfLc5vcBNua
WTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MTE0QUEvODZENkU1N0VCRThGMTFFRTgzMkY0NDkxNzc1NDEyRTYvelZJeXRq
eHFneW1ReUdjSHkzT2IzQVRibWxrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvelZJeXRqeHFneW1ReUdjSHkzT2IzQVRibWxrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MTE0QUEvODZENkU1N0VCRThGMTFFRTgzMkY0NDkxNzc1
NDEyRTYvMzFBMTI4RUFCRTlEMTFFRUE4MDAwNUE4Nzc1NDEyRTYucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbWaDANBgkqhkiG9w0BAQsF
AAOCAQEAiuZ0gXnyha23+07/jjkHxzBXWoOipMYXewxti3gdADXMB9E/g0RI6MFX
rDJJUXLxzFDwUVLYONrhLXKEcMb0OV8KMCYLOCGbB0ZWT97ZFDZhc6szPunOwWmz
qyu/4mjhjJWV7qPTd+KZHu+OYlgPZoOVNRycvrwrv/4taqUmKkr5GI5hcgoi9c17
qdZVRH0Vg2WKbHEGodJvX2Q2gOnn3BlGx963Eg5ohiEcdPKqOlB4tfHC539iqp2j
Bqenl57C4YNXiQcSfpmDioHYTSyZ/5kb4QxTqWjEh51UQpFa3aEEAARS2ng7D+F4
cEIbP2SQ+54+ZjfRwZOqsX6sKcMgXQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:30 2024 by rpki-client on console-ams.rpki-client.org