Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/752855B6EE5A11EDAF10E34B4AD9E6FC.roa
File: 752855B6EE5A11EDAF10E34B4AD9E6FC.roa (raw, json)
Hash identifier: YA1UZi3qDQtYGAWvVO+d8y2cOloqQFNYMuAesEMGRHI=
Subject key identifier: 7E:D1:5C:00:6F:43:D9:70:C9:0B:37:FF:A5:6C:0C:E7:D2:CD:95:C8
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 02CB
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/752855B6EE5A11EDAF10E34B4AD9E6FC.roa
Signing time: Tue 09 May 2023 11:13:00 +0000
ROA not before: Tue 09 May 2023 11:12:56 +0000
ROA not after: Thu 09 May 2030 11:12:56 +0000
asID: 61317
IP address blocks: 102.215.224.0/24 maxlen: 24
102.215.225.0/24 maxlen: 24
102.215.226.0/24 maxlen: 24
102.215.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 715 (0x2cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: May 9 11:12:56 2023 GMT
Not After : May 9 11:12:56 2030 GMT
Subject: CN=645a2abc-40cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:87:8c:ba:d1:53:65:9a:f8:f5:6d:a7:9e:
25:9b:5d:ba:c0:11:16:2c:d6:78:88:41:f3:b2:ed:
32:b1:fb:16:d6:fa:7a:51:72:a5:9d:a1:fc:31:7c:
ed:6c:a8:2a:70:1b:7b:2c:a6:04:79:96:df:f3:47:
b3:b7:70:c9:1a:fa:01:a5:0f:b3:b0:2d:91:99:b4:
58:02:77:25:1c:6b:8e:da:5d:0b:00:ed:fe:be:4c:
8b:54:7c:58:61:a6:0f:7d:57:40:87:fc:c0:8f:3d:
3a:ed:9a:61:d5:e4:ad:fe:da:17:15:d4:1f:4f:7d:
5b:9f:92:d9:8c:54:eb:d5:27:ec:51:66:a5:f3:0f:
a4:69:49:8b:df:55:67:e2:12:4d:52:42:9e:48:fe:
1c:fc:2c:ff:4b:61:a2:ef:19:a3:fa:e1:ae:f6:f4:
6c:d8:0d:5f:7f:8e:8b:be:c0:b8:d8:53:d3:af:5e:
14:51:d7:61:bc:66:83:df:4d:26:f2:bf:ed:01:7f:
06:7e:cf:3f:d0:57:03:f4:1b:0b:95:37:9f:0d:63:
13:20:84:7a:16:e2:c0:8a:3f:4a:79:f7:70:5f:f3:
78:f8:91:24:d3:f8:5a:32:a2:bf:36:fc:17:dd:38:
66:9a:a5:f6:16:29:a6:78:b1:3f:15:3a:86:23:f2:
0a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D1:5C:00:6F:43:D9:70:C9:0B:37:FF:A5:6C:0C:E7:D2:CD:95:C8
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/752855B6EE5A11EDAF10E34B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.224.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:c2:4e:b6:32:9d:71:ca:ee:87:e5:bd:2a:23:19:22:30:07:
82:c4:d5:df:ed:78:a9:71:00:41:59:b8:2a:fe:c4:ac:78:d8:
6e:de:93:16:0a:e8:cf:b0:bc:7d:6f:50:e4:6c:83:50:0b:d4:
98:a5:ef:1e:36:ca:b1:fd:bf:ed:af:1f:fb:81:b7:f2:22:9c:
5d:d4:b5:83:dd:d0:47:fc:30:4e:45:e0:56:4a:01:69:6c:8b:
95:df:da:16:b7:ae:9f:9f:e9:94:24:60:67:d4:b5:3a:c1:3e:
9e:13:2e:9c:9d:18:c1:6e:2d:41:cb:f3:82:94:a8:a8:e3:1b:
a1:c8:8b:80:b9:fd:d7:20:90:a8:ef:19:7c:13:3f:0e:49:7e:
a9:45:74:7b:20:ce:55:d5:cf:aa:c6:f0:bb:c7:00:4d:f6:a4:
05:9a:da:c5:8b:cc:95:af:5b:84:03:0d:26:f3:e4:c0:07:20:
fe:4b:1c:df:f4:97:63:b7:9a:09:e6:61:2a:2b:3f:e1:b4:d9:
18:6b:1f:ac:85:67:ac:c2:bf:b9:36:be:4a:bc:a0:d8:c1:97:
a2:32:e4:19:f0:02:b6:1d:c2:72:aa:9d:a2:9a:db:ee:9a:54:
7d:3b:82:58:39:4f:37:e7:f3:e0:fa:69:b7:36:8d:8e:20:06:
82:94:c3:13
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAsswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MTQ2NTlBRjExMC8GA1UEBRMoNjBBMEU1RDFBQzY2QzhBRTNCN0M5RTZBOEVGNUJD
MDRCOEJCQjg4RTAeFw0yMzA1MDkxMTEyNTZaFw0zMDA1MDkxMTEyNTZaMBgxFjAU
BgNVBAMTDTY0NWEyYWJjLTQwY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC9DYeMutFTZZr49W2nniWbXbrAERYs1niIQfOy7TKx+xbW+npRcqWdofwx
fO1sqCpwG3sspgR5lt/zR7O3cMka+gGlD7OwLZGZtFgCdyUca47aXQsA7f6+TItU
fFhhpg99V0CH/MCPPTrtmmHV5K3+2hcV1B9PfVufktmMVOvVJ+xRZqXzD6RpSYvf
VWfiEk1SQp5I/hz8LP9LYaLvGaP64a729GzYDV9/jou+wLjYU9OvXhRR12G8ZoPf
TSbyv+0BfwZ+zz/QVwP0GwuVN58NYxMghHoW4sCKP0p593Bf83j4kSTT+Foyor82
/BfdOGaapfYWKaZ4sT8VOoYj8go3AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUftFc
AG9D2XDJCzf/pWwM59LNlcgwHwYDVR0jBBgwFoAUYKDl0axmyK47fJ5qjvW8BLi7
uI4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjE0NjU5LzY2NTZERTc0NkRGODExRUNCQ0MyMTA3NjVBNDBENTc3L1lLRGww
YXhteUs0N2ZKNXFqdlc4QkxpN3VJNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1lLRGwwYXhteUs0N2ZKNXFqdlc4QkxpN3VJNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjE0NjU5LzY2NTZERTc0NkRGODExRUNCQ0MyMTA3NjVB
NDBENTc3Lzc1Mjg1NUI2RUU1QTExRURBRjEwRTM0QjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1+AwDQYJKoZIhvcNAQEL
BQADggEBAFvCTrYynXHK7oflvSojGSIwB4LE1d/teKlxAEFZuCr+xKx42G7ekxYK
6M+wvH1vUORsg1AL1Jil7x42yrH9v+2vH/uBt/IinF3UtYPd0Ef8ME5F4FZKAWls
i5Xf2ha3rp+f6ZQkYGfUtTrBPp4TLpydGMFuLUHL84KUqKjjG6HIi4C5/dcgkKjv
GXwTPw5JfqlFdHsgzlXVz6rG8LvHAE32pAWa2sWLzJWvW4QDDSbz5MAHIP5LHN/0
l2O3mgnmYSorP+G02RhrH6yFZ6zCv7k2vkq8oNjBl6Iy5BnwArYdwnKqnaKa2+6a
VH07glg5Tzfn8+D6abc2jY4gBoKUwxM=
-----END CERTIFICATE-----
Generated at Thu Apr 25 02:45:42 2024 by rpki-client on console-fra.rpki-client.org