Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/20A6A34CFB9111ECB4636694F1222468.roa
File: 20A6A34CFB9111ECB4636694F1222468.roa (raw, json)
Hash identifier: fEGzGBD0T3F0W0X1kqgg2mvvPQfKpajK9d5gjC8kLxs=
Subject key identifier: 99:EE:0F:29:8D:7A:99:92:D9:B7:32:07:02:16:DD:57:46:9C:A5:D8
Certificate issuer: /CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Certificate serial: 07
Authority key identifier: 24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/20A6A34CFB9111ECB4636694F1222468.roa
Signing time: Mon 04 Jul 2022 12:02:08 +0000
ROA not before: Mon 04 Jul 2022 12:02:04 +0000
ROA not after: Wed 31 Jul 2030 12:02:04 +0000
asID: 329084
IP address blocks: 102.215.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.mft
rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361E497AF/serialNumber=24F4E354DDDEC8913823B0F92407A534ABF3F982
Validity
Not Before: Jul 4 12:02:04 2022 GMT
Not After : Jul 31 12:02:04 2030 GMT
Subject: CN=62c2d6c0-dda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:0c:d3:3f:dc:e8:1d:83:aa:e6:bc:6e:52:
fc:62:5e:81:83:4e:cd:63:4e:ba:0d:7e:da:b0:3d:
22:83:69:31:22:57:09:36:36:02:2c:49:2d:58:37:
ca:81:d2:81:59:03:15:5e:01:f2:df:4e:60:16:d3:
e4:da:7e:4e:17:57:e7:eb:36:d9:ea:10:00:90:ff:
22:12:3e:b4:3c:9c:60:75:b1:4b:f9:24:92:40:d9:
3d:6d:be:04:60:9b:bb:a8:70:1e:72:af:f8:14:18:
0c:c1:63:f8:54:d3:ef:c4:14:5b:9a:ee:00:97:53:
e1:53:9f:ad:4f:5f:91:ea:0f:48:70:28:df:49:eb:
f7:1a:74:0f:9c:c2:52:f8:bc:5b:5f:de:c0:57:e5:
e5:03:d8:df:ae:99:75:46:78:3c:28:5f:00:40:78:
ca:93:07:15:46:90:10:42:8c:91:8d:7d:99:0b:a5:
b0:f4:d1:ee:ab:07:6a:ca:57:71:84:ac:fe:e8:2b:
c2:63:55:ec:46:7a:2a:cf:0d:03:6f:5d:42:3b:98:
2c:45:c4:9f:19:a2:ba:c0:02:e1:1e:52:60:91:99:
07:c3:91:d9:c6:bb:03:3c:56:c1:d5:75:1d:89:b6:
d5:a0:ba:b7:1a:e5:bd:08:05:76:e5:1e:52:f8:08:
25:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EE:0F:29:8D:7A:99:92:D9:B7:32:07:02:16:DD:57:46:9C:A5:D8
X509v3 Authority Key Identifier:
keyid:24:F4:E3:54:DD:DE:C8:91:38:23:B0:F9:24:07:A5:34:AB:F3:F9:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/JPTjVN3eyJE4I7D5JAelNKvz-YI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JPTjVN3eyJE4I7D5JAelNKvz-YI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361E497/708176AAF93211EC88DB648CF1222468/20A6A34CFB9111ECB4636694F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.153.0/24
Signature Algorithm: sha256WithRSAEncryption
53:60:95:0f:4d:9a:2a:bb:79:d4:44:e6:ce:fc:6d:3a:a2:da:
12:ef:0c:19:32:60:bd:8a:53:20:ea:75:e9:45:a5:91:3f:87:
13:c2:7a:fa:d4:87:d5:43:5d:02:a6:cb:1b:36:0f:3b:c4:5c:
d9:4f:e2:5b:18:7f:15:e0:55:6b:38:55:e4:55:29:66:10:96:
ad:c5:21:74:09:84:cf:9b:1e:cc:70:26:af:1c:ed:21:1b:e5:
3d:35:fa:e6:bd:b3:88:a5:a1:1c:f5:44:23:d1:48:a0:53:05:
99:ff:3a:56:8d:e1:88:4c:e7:a4:43:a4:b1:f0:6a:cb:40:5c:
ed:9f:83:a4:76:ef:06:3d:fb:75:a7:29:92:6f:ee:a7:af:07:
b3:54:33:af:34:20:e2:85:75:f8:13:c9:1e:25:a2:cc:a0:42:
c5:b2:fe:3e:22:7e:3c:ac:2a:7b:1c:ce:91:53:80:d0:ca:63:
54:f6:11:11:7b:a5:70:0d:de:59:c0:ce:35:9f:19:65:c3:bb:
04:99:51:47:95:03:8b:47:94:3a:ea:5a:a5:46:18:12:04:a3:
ea:f8:6f:d8:6c:c4:39:4f:20:6c:a1:19:36:d2:ff:6b:5c:c8:
dc:8d:33:ed:c2:24:d1:13:7a:10:d3:88:42:d8:d9:22:e6:5a:
77:df:ba:91
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzYx
RTQ5N0FGMTEwLwYDVQQFEygyNEY0RTM1NEREREVDODkxMzgyM0IwRjkyNDA3QTUz
NEFCRjNGOTgyMB4XDTIyMDcwNDEyMDIwNFoXDTMwMDczMTEyMDIwNFowGDEWMBQG
A1UEAwwNNjJjMmQ2YzAtZGRhNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANT1DNM/3Ogdg6rmvG5S/GJegYNOzWNOug1+2rA9IoNpMSJXCTY2AixJLVg3
yoHSgVkDFV4B8t9OYBbT5Np+ThdX5+s22eoQAJD/IhI+tDycYHWxS/kkkkDZPW2+
BGCbu6hwHnKv+BQYDMFj+FTT78QUW5ruAJdT4VOfrU9fkeoPSHAo30nr9xp0D5zC
Uvi8W1/ewFfl5QPY366ZdUZ4PChfAEB4ypMHFUaQEEKMkY19mQulsPTR7qsHaspX
cYSs/ugrwmNV7EZ6Ks8NA29dQjuYLEXEnxmiusAC4R5SYJGZB8OR2ca7AzxWwdV1
HYm21aC6txrlvQgFduUeUvgIJWUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBSZ7g8p
jXqZktm3MgcCFt1XRpyl2DAfBgNVHSMEGDAWgBQk9ONU3d7IkTgjsPkkB6U0q/P5
gjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MUU0OTcvNzA4MTc2QUFGOTMyMTFFQzg4REI2NDhDRjEyMjI0NjgvSlBUalZO
M2V5SkU0STdENUpBZWxOS3Z6LVlJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvSlBUalZOM2V5SkU0STdENUpBZWxOS3Z6LVlJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MUU0OTcvNzA4MTc2QUFGOTMyMTFFQzg4REI2NDhDRjEy
MjI0NjgvMjBBNkEzNENGQjkxMTFFQ0I0NjM2Njk0RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbXmTANBgkqhkiG9w0BAQsF
AAOCAQEAU2CVD02aKrt51ETmzvxtOqLaEu8MGTJgvYpTIOp16UWlkT+HE8J6+tSH
1UNdAqbLGzYPO8Rc2U/iWxh/FeBVazhV5FUpZhCWrcUhdAmEz5sezHAmrxztIRvl
PTX65r2ziKWhHPVEI9FIoFMFmf86Vo3hiEznpEOksfBqy0Bc7Z+DpHbvBj37dacp
km/up68Hs1QzrzQg4oV1+BPJHiWizKBCxbL+PiJ+PKwqexzOkVOA0MpjVPYREXul
cA3eWcDONZ8ZZcO7BJlRR5UDi0eUOupapUYYEgSj6vhv2GzEOU8gbKEZNtL/a1zI
3I0z7cIk0RN6ENOIQtjZIuZad9+6kQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org