Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/7F943DD40EA911EE943E38764AD9E6FC.roa
File: 7F943DD40EA911EE943E38764AD9E6FC.roa (raw, json)
Hash identifier: gg8WbfJG7g4logIUnRa/wxb93ochaU/ufh2HxdovgjM=
Subject key identifier: 29:A1:63:AE:7C:15:D7:2E:02:42:AD:2D:CB:04:51:FD:A1:F5:05:22
Certificate issuer: /CN=F3614D1DAF/serialNumber=27793D215F08805DB8D0BA892D336F29AB7BB05B
Certificate serial: 0149
Authority key identifier: 27:79:3D:21:5F:08:80:5D:B8:D0:BA:89:2D:33:6F:29:AB:7B:B0:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/7F943DD40EA911EE943E38764AD9E6FC.roa
Signing time: Mon 19 Jun 2023 13:59:25 +0000
ROA not before: Mon 19 Jun 2023 13:59:21 +0000
ROA not after: Sun 19 Jun 2033 13:59:21 +0000
asID: 329063
IP address blocks: 102.215.134.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.mft
rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614D1DAF/serialNumber=27793D215F08805DB8D0BA892D336F29AB7BB05B
Validity
Not Before: Jun 19 13:59:21 2023 GMT
Not After : Jun 19 13:59:21 2033 GMT
Subject: CN=64905f3d-343c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:15:2d:de:31:09:e7:39:2a:49:03:6e:cc:17:
3f:28:bf:ca:49:ac:40:9a:29:b1:83:7f:28:ed:e1:
df:43:d8:e1:6f:99:23:7a:92:0f:e6:3d:d5:e2:5c:
ae:d5:50:e4:4f:be:d0:3a:47:4a:fb:d7:39:d3:49:
76:7f:42:c1:0c:f8:73:76:af:cd:bb:68:d2:b0:52:
ef:90:cb:3f:b5:d6:61:87:67:cb:06:18:24:56:05:
12:c1:a9:00:84:d7:b1:62:1c:64:9c:95:56:1f:5f:
62:28:95:85:ac:f9:15:95:6d:13:6e:c0:f5:d6:7b:
7c:33:8e:58:a5:70:ac:89:72:41:34:a0:e7:25:c8:
1b:d6:f2:ea:14:ed:f0:1e:57:ce:5c:c6:fd:90:bf:
aa:8c:8d:07:06:2c:6c:ea:e3:42:6b:a1:1c:c7:aa:
26:4d:d6:22:13:26:43:6e:3e:55:b3:db:58:8c:95:
c3:d9:cd:a5:7b:c1:1f:ea:ab:9a:6a:ad:93:2a:98:
d0:4b:65:7a:60:a9:ca:96:19:71:8e:36:04:b1:b5:
a2:2c:3c:14:69:c1:d6:8d:08:03:af:60:dd:6e:dd:
94:09:1a:ce:54:10:ff:60:cf:2a:82:07:3a:e7:bc:
29:ec:d6:66:93:f5:95:0a:de:a1:c8:fc:0f:08:08:
f4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A1:63:AE:7C:15:D7:2E:02:42:AD:2D:CB:04:51:FD:A1:F5:05:22
X509v3 Authority Key Identifier:
keyid:27:79:3D:21:5F:08:80:5D:B8:D0:BA:89:2D:33:6F:29:AB:7B:B0:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/J3k9IV8IgF240LqJLTNvKat7sFs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/J3k9IV8IgF240LqJLTNvKat7sFs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614D1D/58CF30E4292811ED8E68E8F8F1222468/7F943DD40EA911EE943E38764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.134.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:82:3e:d2:f7:c0:22:d6:e3:cd:9e:dd:e1:e9:03:46:70:83:
44:72:95:13:ad:a7:c6:85:8d:88:09:bd:52:35:76:9e:1f:be:
c1:0c:a3:2a:ee:93:ae:ee:a8:ad:12:d0:74:7b:17:89:07:3d:
e0:57:e5:9d:5f:c3:17:df:c0:e7:a2:8a:22:99:27:1f:1b:81:
b7:c8:fa:23:ec:e3:c2:fc:be:84:38:4c:61:cb:b5:43:a8:74:
f2:c5:0f:07:36:c3:7d:79:9b:84:87:42:21:a6:b5:dd:f8:07:
08:5b:76:66:46:47:55:28:6b:dc:6d:1f:76:07:44:ee:73:39:
0b:87:07:07:e7:3a:46:56:d2:50:fa:60:df:43:fb:19:0a:03:
d1:46:e0:88:33:08:7f:65:a1:b7:c5:d1:b4:1b:2a:27:b1:c4:
ed:4c:5b:f9:74:9c:d5:f7:8d:51:84:17:0b:f8:ce:ac:b1:4b:
5f:d1:f0:dd:67:ba:18:0b:1c:22:d9:f4:43:6b:2d:4f:3c:fe:
e8:4d:45:13:54:75:52:88:aa:94:09:97:7a:2f:b7:f9:21:b4:
c6:1e:d5:79:6c:22:e0:56:fe:16:18:b8:59:de:fd:72:3d:e0:
92:2a:a3:e6:e3:7c:b6:9b:88:fb:b6:0d:ae:1a:0f:52:c0:76:
1d:2a:5b:12
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MTREMURBRjExMC8GA1UEBRMoMjc3OTNEMjE1RjA4ODA1REI4RDBCQTg5MkQzMzZG
MjlBQjdCQjA1QjAeFw0yMzA2MTkxMzU5MjFaFw0zMzA2MTkxMzU5MjFaMBgxFjAU
BgNVBAMTDTY0OTA1ZjNkLTM0M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWFS3eMQnnOSpJA27MFz8ov8pJrECaKbGDfyjt4d9D2OFvmSN6kg/mPdXi
XK7VUORPvtA6R0r71znTSXZ/QsEM+HN2r827aNKwUu+Qyz+11mGHZ8sGGCRWBRLB
qQCE17FiHGSclVYfX2IolYWs+RWVbRNuwPXWe3wzjlilcKyJckE0oOclyBvW8uoU
7fAeV85cxv2Qv6qMjQcGLGzq40JroRzHqiZN1iITJkNuPlWz21iMlcPZzaV7wR/q
q5pqrZMqmNBLZXpgqcqWGXGONgSxtaIsPBRpwdaNCAOvYN1u3ZQJGs5UEP9gzyqC
BzrnvCns1maT9ZUK3qHI/A8ICPTzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUKaFj
rnwV1y4CQq0tywRR/aH1BSIwHwYDVR0jBBgwFoAUJ3k9IV8IgF240LqJLTNvKat7
sFswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjE0RDFELzU4Q0YzMEU0MjkyODExRUQ4RTY4RThGOEYxMjIyNDY4L0ozazlJ
VjhJZ0YyNDBMcUpMVE52S2F0N3NGcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0ozazlJVjhJZ0YyNDBMcUpMVE52S2F0N3NGcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjE0RDFELzU4Q0YzMEU0MjkyODExRUQ4RTY4RThGOEYx
MjIyNDY4LzdGOTQzREQ0MEVBOTExRUU5NDNFMzg3NjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFm14YwDQYJKoZIhvcNAQEL
BQADggEBAKWCPtL3wCLW482e3eHpA0Zwg0RylROtp8aFjYgJvVI1dp4fvsEMoyru
k67uqK0S0HR7F4kHPeBX5Z1fwxffwOeiiiKZJx8bgbfI+iPs48L8voQ4TGHLtUOo
dPLFDwc2w315m4SHQiGmtd34BwhbdmZGR1Uoa9xtH3YHRO5zOQuHBwfnOkZW0lD6
YN9D+xkKA9FG4IgzCH9lobfF0bQbKiexxO1MW/l0nNX3jVGEFwv4zqyxS1/R8N1n
uhgLHCLZ9ENrLU88/uhNRRNUdVKIqpQJl3ovt/khtMYe1XlsIuBW/hYYuFne/XI9
4JIqo+bjfLabiPu2Da4aD1LAdh0qWxI=
-----END CERTIFICATE-----
Generated at Sun May 19 02:39:29 2024 by rpki-client on console-fra.rpki-client.org