Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/5E7ADBA27F0611EF8AB52199762E951A.roa
File: 5E7ADBA27F0611EF8AB52199762E951A.roa (raw, json)
Hash identifier: dAYZmcrceI9rIzI+ESJgarCN4u4uQsZdMnZ5kPEI1u0=
Subject key identifier: D3:8C:4D:2D:EB:A0:D2:26:48:C3:36:12:2F:CE:24:68:0A:D3:73:8E
Certificate issuer: /CN=F3613254AF/serialNumber=1F40FCC57C26A6DDB605F7798A4B53C09D2B6220
Certificate serial: A9
Authority key identifier: 1F:40:FC:C5:7C:26:A6:DD:B6:05:F7:79:8A:4B:53:C0:9D:2B:62:20
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/H0D8xXwmpt22Bfd5iktTwJ0rYiA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/5E7ADBA27F0611EF8AB52199762E951A.roa
Signing time: Mon 30 Sep 2024 08:31:20 +0000
ROA not before: Mon 30 Sep 2024 08:31:17 +0000
ROA not after: Tue 30 Sep 2025 08:31:17 +0000
asID: 37088
IP address blocks: 41.216.160.0/20 maxlen: 21
41.216.160.0/20 maxlen: 22
41.216.160.0/20 maxlen: 24
41.216.160.0/22 maxlen: 24
41.216.164.0/22 maxlen: 24
41.216.168.0/22 maxlen: 24
102.135.192.0/19 maxlen: 21
102.135.192.0/19 maxlen: 22
102.135.192.0/19 maxlen: 24
102.135.192.0/22 maxlen: 24
102.135.196.0/22 maxlen: 24
102.135.198.0/24 maxlen: 24
102.135.208.0/22 maxlen: 24
102.135.222.0/24 maxlen: 24
2c0f:6400::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/H0D8xXwmpt22Bfd5iktTwJ0rYiA.crl
rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/H0D8xXwmpt22Bfd5iktTwJ0rYiA.mft
rsync://rpki.afrinic.net/repository/afrinic/H0D8xXwmpt22Bfd5iktTwJ0rYiA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169 (0xa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3613254AF/serialNumber=1F40FCC57C26A6DDB605F7798A4B53C09D2B6220
Validity
Not Before: Sep 30 08:31:17 2024 GMT
Not After : Sep 30 08:31:17 2025 GMT
Subject: CN=66fa61d8-fe82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ab:34:f0:c7:21:87:bf:50:80:24:55:60:39:
7a:b7:21:b8:4b:8b:06:06:45:35:b8:00:28:f0:11:
13:50:f7:b7:e4:87:a1:c9:4b:0c:34:e6:1f:ca:27:
e6:4c:a5:38:72:e4:35:ba:15:65:e2:34:83:79:9e:
7d:7f:53:66:f9:64:09:86:45:b0:02:8f:c9:f6:4e:
c2:47:38:c4:03:03:34:79:52:d2:b4:c8:0f:01:63:
cd:7b:10:bd:7e:6b:2e:20:a4:78:7f:76:ee:c1:09:
47:6d:75:17:b4:e2:00:8a:4c:57:3b:73:89:c7:58:
f9:20:6d:c3:5e:af:1e:21:a8:2c:43:a6:b1:4c:37:
8e:35:b9:1d:1a:e0:11:47:ed:bd:c1:a3:a0:62:a7:
56:ff:a9:f4:0b:6a:5d:a5:80:e0:bb:99:47:74:14:
e9:5b:30:89:e8:07:9c:95:29:30:d0:8e:01:7b:06:
b6:58:69:3c:55:e5:b4:94:f9:ab:89:cf:63:db:ab:
7e:24:6b:86:96:4b:eb:bc:3c:5f:c6:b9:1c:2e:06:
a7:bf:e6:78:49:6f:18:27:19:a9:11:2a:06:e3:63:
62:0a:08:c9:c9:8b:4d:53:1a:e1:4a:77:96:b2:3a:
f8:60:f6:a2:56:6a:32:8d:08:89:8b:66:de:4e:ee:
c0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8C:4D:2D:EB:A0:D2:26:48:C3:36:12:2F:CE:24:68:0A:D3:73:8E
X509v3 Authority Key Identifier:
keyid:1F:40:FC:C5:7C:26:A6:DD:B6:05:F7:79:8A:4B:53:C0:9D:2B:62:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/H0D8xXwmpt22Bfd5iktTwJ0rYiA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/H0D8xXwmpt22Bfd5iktTwJ0rYiA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/5E7ADBA27F0611EF8AB52199762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.160.0/20
102.135.192.0/19
IPv6:
2c0f:6400::/32
Signature Algorithm: sha256WithRSAEncryption
05:ec:c5:cb:43:13:55:22:f4:df:7a:27:51:99:04:d9:65:51:
2d:9d:d0:38:ca:6f:8f:76:fd:c2:ab:84:a0:44:f4:64:7d:ed:
39:a0:c4:ba:12:ee:80:6d:51:d9:b3:2e:0c:d9:31:81:79:1d:
1f:92:c3:3b:1c:2d:cc:6c:63:13:91:b5:3d:70:ff:8e:59:58:
df:04:30:6f:d0:07:e7:2e:b9:d9:3b:c7:6c:36:fa:8a:ff:94:
19:be:54:f1:ad:7e:f7:51:4c:8f:72:6c:97:65:07:93:c6:16:
6a:f7:da:f6:92:01:20:a7:bc:32:cc:c5:43:8a:6c:d0:37:75:
8f:fd:ca:aa:57:e0:b0:60:b8:6a:33:14:87:f1:d7:dc:65:1b:
33:00:93:f1:cb:a7:c5:85:48:0b:b0:ff:d3:0e:9f:f1:42:55:
c3:68:bb:a2:45:ff:dd:38:7a:1d:0c:b4:88:41:8d:0d:14:62:
57:ce:54:77:11:84:20:5c:40:fa:a1:7d:02:52:44:50:2a:ed:
b8:23:ec:05:84:04:2f:12:ce:c9:1d:a9:e1:c8:e1:43:07:3d:
4c:42:9a:4a:55:7d:f8:17:43:de:49:9b:21:72:c7:c4:7c:05:
7c:c2:06:0c:cd:20:85:3b:3d:c8:b9:6a:7f:63:eb:5e:d4:d6:
7d:86:9d:49
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MTMyNTRBRjExMC8GA1UEBRMoMUY0MEZDQzU3QzI2QTZEREI2MDVGNzc5OEE0QjUz
QzA5RDJCNjIyMDAeFw0yNDA5MzAwODMxMTdaFw0yNTA5MzAwODMxMTdaMBgxFjAU
BgNVBAMTDTY2ZmE2MWQ4LWZlODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDAqzTwxyGHv1CAJFVgOXq3IbhLiwYGRTW4ACjwERNQ97fkh6HJSww05h/K
J+ZMpThy5DW6FWXiNIN5nn1/U2b5ZAmGRbACj8n2TsJHOMQDAzR5UtK0yA8BY817
EL1+ay4gpHh/du7BCUdtdRe04gCKTFc7c4nHWPkgbcNerx4hqCxDprFMN441uR0a
4BFH7b3Bo6Bip1b/qfQLal2lgOC7mUd0FOlbMInoB5yVKTDQjgF7BrZYaTxV5bSU
+auJz2Pbq34ka4aWS+u8PF/GuRwuBqe/5nhJbxgnGakRKgbjY2IKCMnJi01TGuFK
d5ayOvhg9qJWajKNCImLZt5O7sBlAgMBAAGjggK6MIICtjAdBgNVHQ4EFgQU04xN
Leug0iZIwzYSL84kaArTc44wHwYDVR0jBBgwFoAUH0D8xXwmpt22Bfd5iktTwJ0r
YiAwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjEzMjU0L0M5MDEyQURFMDIzNDExRUZBMDk2NTA1RjAxNzAwMUIxL0gwRDh4
WHdtcHQyMkJmZDVpa3RUd0owcllpQS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0gwRDh4WHdtcHQyMkJmZDVpa3RUd0owcllpQS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjEzMjU0L0M5MDEyQURFMDIzNDExRUZBMDk2NTA1RjAx
NzAwMUIxLzVFN0FEQkEyN0YwNjExRUY4QUI1MjE5OTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAQp2KADBAVmh8AwDQQCAAIw
BwMFACwPZAAwDQYJKoZIhvcNAQELBQADggEBAAXsxctDE1Ui9N96J1GZBNllUS2d
0DjKb492/cKrhKBE9GR97TmgxLoS7oBtUdmzLgzZMYF5HR+SwzscLcxsYxORtT1w
/45ZWN8EMG/QB+cuudk7x2w2+or/lBm+VPGtfvdRTI9ybJdlB5PGFmr32vaSASCn
vDLMxUOKbNA3dY/9yqpX4LBguGozFIfx19xlGzMAk/HLp8WFSAuw/9MOn/FCVcNo
u6JF/904eh0MtIhBjQ0UYlfOVHcRhCBcQPqhfQJSRFAq7bgj7AWEBC8SzskdqeHI
4UMHPUxCmkpVffgXQ95JmyFyx8R8BXzCBgzNIIU7Pci5an9j617U1n2GnUk=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org