Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/EFDD06EC090111EDBC15A4C3F1222468.roa
File: EFDD06EC090111EDBC15A4C3F1222468.roa (raw, json)
Hash identifier: mzBwRw/NsD0Kw5UC1+dnCe3jWxLCxwOLqnhj2973w4M=
Subject key identifier: BF:2C:20:9A:F3:F7:5B:77:10:4F:83:05:5A:4F:56:E4:A9:D3:3D:33
Certificate issuer: /CN=F361174DAF/serialNumber=5DA6CDE39B144C47B1371A79BF62CF6EDCA4A73B
Certificate serial: 06
Authority key identifier: 5D:A6:CD:E3:9B:14:4C:47:B1:37:1A:79:BF:62:CF:6E:DC:A4:A7:3B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XabN45sUTEexNxp5v2LPbtykpzs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/EFDD06EC090111EDBC15A4C3F1222468.roa
Signing time: Thu 21 Jul 2022 14:32:24 +0000
ROA not before: Thu 21 Jul 2022 14:32:21 +0000
ROA not after: Fri 30 Sep 2033 14:32:21 +0000
asID: 327984
IP address blocks: 102.176.192.0/19 maxlen: 19
196.32.96.0/20 maxlen: 20
2c0f:f5b0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/XabN45sUTEexNxp5v2LPbtykpzs.crl
rsync://rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/XabN45sUTEexNxp5v2LPbtykpzs.mft
rsync://rpki.afrinic.net/repository/afrinic/XabN45sUTEexNxp5v2LPbtykpzs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361174DAF/serialNumber=5DA6CDE39B144C47B1371A79BF62CF6EDCA4A73B
Validity
Not Before: Jul 21 14:32:21 2022 GMT
Not After : Sep 30 14:32:21 2033 GMT
Subject: CN=62d96378-880e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:e1:c7:3d:f0:a7:49:2c:59:35:a2:f3:92:
b9:0c:4a:ba:0c:13:3c:c5:37:2d:0e:47:58:09:d0:
34:3d:50:60:ee:2e:3d:58:f6:21:db:98:d2:49:b0:
c7:c1:b4:f2:2d:84:30:20:10:5c:32:6f:ff:5b:21:
77:78:c3:a5:4c:f7:0c:51:87:22:de:af:9b:ae:35:
2e:30:45:d7:f9:da:5d:5d:30:3b:25:73:81:f4:ad:
83:63:72:2a:1e:47:a3:e3:80:34:55:c4:ab:72:5d:
c1:ce:02:fb:64:a6:c8:3f:19:71:49:45:57:a7:ac:
b4:28:ee:e4:e7:4d:83:05:19:ad:9f:a2:4d:f8:4d:
34:50:24:71:e5:08:a7:33:09:10:25:f1:52:7c:2b:
2c:4b:dd:e3:2e:5d:c3:df:df:4d:80:ae:e0:18:0c:
01:ae:fa:96:fe:99:13:34:dc:56:35:9c:d7:c1:14:
29:79:7b:85:3b:00:e5:16:49:53:5a:5e:ed:26:a3:
0d:1c:56:f5:32:65:94:18:f4:d9:95:33:65:32:ed:
54:c8:80:b0:ed:98:13:ec:1d:d1:c0:b1:7b:13:14:
f5:2c:f5:99:46:e9:a7:b8:0c:a2:17:fe:e6:ed:0b:
50:7e:a8:80:1f:12:be:55:65:02:7b:ac:46:9a:ca:
1b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2C:20:9A:F3:F7:5B:77:10:4F:83:05:5A:4F:56:E4:A9:D3:3D:33
X509v3 Authority Key Identifier:
keyid:5D:A6:CD:E3:9B:14:4C:47:B1:37:1A:79:BF:62:CF:6E:DC:A4:A7:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/XabN45sUTEexNxp5v2LPbtykpzs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XabN45sUTEexNxp5v2LPbtykpzs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361174D/25EC10C008F811ED910AC3A5F1222468/EFDD06EC090111EDBC15A4C3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.176.192.0/19
196.32.96.0/20
IPv6:
2c0f:f5b0::/32
Signature Algorithm: sha256WithRSAEncryption
87:dd:fd:a9:67:66:d8:52:93:2a:b2:eb:5c:d2:e4:28:ea:ae:
d2:f4:0b:db:df:48:00:53:fe:1b:31:7c:1d:8d:c3:bd:05:e5:
c1:3c:cc:bc:35:3e:26:d1:64:47:3a:f0:89:0c:2c:27:e9:0a:
15:13:d0:e0:f0:b9:0a:38:6b:ae:34:6c:98:4f:23:05:26:23:
95:5f:93:68:b0:21:b4:92:da:3a:bb:78:39:3e:07:90:fe:9c:
ab:ad:17:c6:f9:b1:dc:88:69:7d:5c:b0:2c:f5:8d:11:36:81:
ce:9d:66:83:ca:41:57:6e:e1:45:6f:a0:69:c0:cb:44:b0:ab:
91:4f:62:69:3f:86:31:f2:e4:60:a2:18:3c:57:31:af:c1:70:
29:1c:88:14:be:cd:9c:39:04:5d:2c:ad:42:7c:f0:f3:09:15:
de:6f:ca:f3:bd:38:55:f8:89:a8:19:fd:0c:9a:6f:d7:7a:8e:
be:4e:38:eb:e7:ea:da:de:b2:71:bd:52:8a:a4:28:bf:bf:06:
65:23:4a:d7:14:ee:74:0c:e5:ce:bf:14:32:f2:b0:0d:ce:78:
18:9f:c9:6a:7d:36:dc:77:43:93:f5:9e:5a:32:96:e0:dc:43:
9c:95:34:5f:72:f9:ba:a7:a3:39:6c:77:6e:df:e0:f3:15:0a:
a9:23:60:12
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzYx
MTc0REFGMTEwLwYDVQQFEyg1REE2Q0RFMzlCMTQ0QzQ3QjEzNzFBNzlCRjYyQ0Y2
RURDQTRBNzNCMB4XDTIyMDcyMTE0MzIyMVoXDTMzMDkzMDE0MzIyMVowGDEWMBQG
A1UEAwwNNjJkOTYzNzgtODgwZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKoL4cc98KdJLFk1ovOSuQxKugwTPMU3LQ5HWAnQND1QYO4uPVj2IduY0kmw
x8G08i2EMCAQXDJv/1shd3jDpUz3DFGHIt6vm641LjBF1/naXV0wOyVzgfStg2Ny
Kh5Ho+OANFXEq3Jdwc4C+2SmyD8ZcUlFV6estCju5OdNgwUZrZ+iTfhNNFAkceUI
pzMJECXxUnwrLEvd4y5dw9/fTYCu4BgMAa76lv6ZEzTcVjWc18EUKXl7hTsA5RZJ
U1pe7SajDRxW9TJllBj02ZUzZTLtVMiAsO2YE+wd0cCxexMU9Sz1mUbpp7gMohf+
5u0LUH6ogB8SvlVlAnusRprKGyECAwEAAaOCArowggK2MB0GA1UdDgQWBBS/LCCa
8/dbdxBPgwVaT1bkqdM9MzAfBgNVHSMEGDAWgBRdps3jmxRMR7E3Gnm/Ys9u3KSn
OzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MTE3NEQvMjVFQzEwQzAwOEY4MTFFRDkxMEFDM0E1RjEyMjI0NjgvWGFiTjQ1
c1VURWV4TnhwNXYyTFBidHlrcHpzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvWGFiTjQ1c1VURWV4TnhwNXYyTFBidHlrcHpzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MTE3NEQvMjVFQzEwQzAwOEY4MTFFRDkxMEFDM0E1RjEy
MjI0NjgvRUZERDA2RUMwOTAxMTFFREJDMTVBNEMzRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBWawwAMEBMQgYDANBAIAAjAH
AwUALA/1sDANBgkqhkiG9w0BAQsFAAOCAQEAh939qWdm2FKTKrLrXNLkKOqu0vQL
299IAFP+GzF8HY3DvQXlwTzMvDU+JtFkRzrwiQwsJ+kKFRPQ4PC5CjhrrjRsmE8j
BSYjlV+TaLAhtJLaOrt4OT4HkP6cq60Xxvmx3IhpfVywLPWNETaBzp1mg8pBV27h
RW+gacDLRLCrkU9iaT+GMfLkYKIYPFcxr8FwKRyIFL7NnDkEXSytQnzw8wkV3m/K
8704VfiJqBn9DJpv13qOvk446+fq2t6ycb1SiqQov78GZSNK1xTudAzlzr8UMvKw
Dc54GJ/Jan023HdDk/WeWjKW4NxDnJU0X3L5uqejOWx3bt/g8xUKqSNgEg==
-----END CERTIFICATE-----
Generated at Sat May 18 04:03:35 2024 by rpki-client on console-ams.rpki-client.org