Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/B0B06E8ECD5911EC9A1294E8F1222468.roa
File: B0B06E8ECD5911EC9A1294E8F1222468.roa (raw, json)
Hash identifier: G5TjQfB4+b3AnZ3m7+ZVb9V2lgAhVtyqfcb3hgG/+Gs=
Subject key identifier: 3B:69:5E:15:DB:BE:E1:1A:50:72:0C:9F:DC:FC:DC:12:79:C4:51:08
Certificate issuer: /CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Certificate serial: 0198
Authority key identifier: B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/B0B06E8ECD5911EC9A1294E8F1222468.roa
Signing time: Fri 06 May 2022 16:29:24 +0000
ROA not before: Fri 06 May 2022 16:29:21 +0000
ROA not after: Fri 31 Dec 2049 16:29:21 +0000
asID: 328475
IP address blocks: 102.69.224.0/21 maxlen: 24
102.217.128.0/22 maxlen: 24
102.218.232.0/22 maxlen: 24
102.220.36.0/22 maxlen: 24
2c0f:e818::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.mft
rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408 (0x198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Validity
Not Before: May 6 16:29:21 2022 GMT
Not After : Dec 31 16:29:21 2049 GMT
Subject: CN=62754ce4-fc48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:63:67:c3:c3:e7:cf:06:9c:e3:dd:b6:ef:25:
76:e1:d8:c0:14:e6:96:55:cf:69:58:23:a7:1f:f5:
e9:ad:7c:76:23:9c:ea:37:53:d8:82:17:76:25:31:
cb:43:fb:f9:a9:11:71:64:c1:af:37:0d:06:1d:59:
20:92:bd:1e:a4:88:31:3a:2b:99:f8:c3:67:35:6b:
a0:29:0a:df:da:37:b6:d8:01:4b:a8:c1:6a:dd:47:
74:f2:fd:8d:15:ff:52:48:bf:c6:fd:97:e3:c1:2a:
e6:fa:5f:f0:bc:34:97:1c:39:5a:83:8a:03:34:14:
b7:a9:3e:ce:d2:78:37:1e:a1:22:67:4f:87:11:dd:
88:61:6c:5f:de:73:4b:18:f9:af:f1:b3:b8:7c:45:
28:a4:65:2d:e6:26:90:21:7d:bb:7f:18:cd:0c:97:
78:b2:55:6d:85:6a:e4:37:56:eb:2b:a7:e5:e9:8f:
58:a5:d1:c8:de:34:be:59:4e:37:e5:62:22:75:e7:
fc:fd:a7:db:e9:f6:17:13:95:4b:06:7b:3c:23:0f:
5f:04:c9:0f:58:85:33:ec:9c:4e:7b:45:f0:9a:ba:
6a:0f:02:be:5e:c0:db:01:ee:d5:70:62:4a:92:8b:
54:5b:48:7b:70:a5:a8:87:4c:30:fb:29:d5:5c:e3:
ee:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:5E:15:DB:BE:E1:1A:50:72:0C:9F:DC:FC:DC:12:79:C4:51:08
X509v3 Authority Key Identifier:
keyid:B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/B0B06E8ECD5911EC9A1294E8F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.69.224.0/21
102.217.128.0/22
102.218.232.0/22
102.220.36.0/22
IPv6:
2c0f:e818::/32
Signature Algorithm: sha256WithRSAEncryption
a8:b8:2d:69:c0:01:52:1c:9b:18:c8:a8:27:a3:ec:eb:9c:73:
16:34:05:b8:5c:56:cc:b7:f4:b2:58:dd:18:2c:5e:b4:30:8d:
06:5e:0c:e8:c4:f2:c4:97:c3:92:2f:6d:03:fe:0c:f4:9d:d6:
37:7c:96:ae:6b:5a:6b:aa:e6:83:0e:21:e0:c3:8e:88:14:0a:
a2:da:d4:2b:ed:8b:cb:13:0d:2b:92:55:d1:e8:27:d6:62:80:
bc:5e:63:d1:ee:1d:16:a4:ae:a5:6f:8d:4c:ce:e3:b0:1a:41:
87:5f:2e:af:8c:99:c8:db:29:41:52:5f:c4:83:ea:67:fc:ce:
b7:a4:ad:bf:a3:ea:0b:46:60:bf:b5:d4:c9:dd:a4:79:18:b0:
39:ec:ae:a6:17:1c:a2:13:a5:7d:a0:af:e7:8c:8a:7d:97:3d:
88:5b:45:21:ee:df:6e:dc:3e:c7:bd:4f:e5:1b:de:c5:69:92:
7a:38:06:5a:88:91:67:5d:2c:a6:6b:0b:60:e9:6b:2d:54:4e:
cf:d9:7d:c1:99:7e:c9:11:77:7e:41:98:44:02:ed:ec:b1:bd:
bb:cb:d9:54:2d:d3:6f:e2:cc:f1:fd:05:b2:b6:2c:ea:07:f4:
a6:a3:c0:0d:e2:20:50:e0:9a:96:28:08:14:c3:b8:e5:24:58:
4a:9f:19:26
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MUY1QzlBRjExMC8GA1UEBRMoQjdERUIwMUJBQ0JCNEI1QTdFOUM3ODJGRkY5OUZE
OEU1REMwNkNCMjAeFw0yMjA1MDYxNjI5MjFaFw00OTEyMzExNjI5MjFaMBgxFjAU
BgNVBAMMDTYyNzU0Y2U0LWZjNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/Y2fDw+fPBpzj3bbvJXbh2MAU5pZVz2lYI6cf9emtfHYjnOo3U9iCF3Yl
MctD+/mpEXFkwa83DQYdWSCSvR6kiDE6K5n4w2c1a6ApCt/aN7bYAUuowWrdR3Ty
/Y0V/1JIv8b9l+PBKub6X/C8NJccOVqDigM0FLepPs7SeDceoSJnT4cR3YhhbF/e
c0sY+a/xs7h8RSikZS3mJpAhfbt/GM0Ml3iyVW2FauQ3Vusrp+Xpj1il0cjeNL5Z
TjflYiJ15/z9p9vp9hcTlUsGezwjD18EyQ9YhTPsnE57RfCaumoPAr5ewNsB7tVw
YkqSi1RbSHtwpaiHTDD7KdVc4+4rAgMBAAGjggLGMIICwjAdBgNVHQ4EFgQUO2le
Fdu+4RpQcgyf3PzcEnnEUQgwHwYDVR0jBBgwFoAUt96wG6y7S1p+nHgv/5n9jl3A
bLIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjFGNUM5L0M2QTNERDUwQTM3NzExRUJCQzA5RDc4MkY4QUVBMjI4L3Q5NndH
Nnk3UzFwLW5IZ3ZfNW45amwzQWJMSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3Q5NndHNnk3UzFwLW5IZ3ZfNW45amwzQWJMSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjFGNUM5L0M2QTNERDUwQTM3NzExRUJCQzA5RDc4MkY4
QUVBMjI4L0IwQjA2RThFQ0Q1OTExRUM5QTEyOTRFOEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwQAYIKwYBBQUHAQcBAf8EMTAvMB4EAgABMBgDBANmReADBAJm2YADBAJm2ugD
BAJm3CQwDQQCAAIwBwMFACwP6BgwDQYJKoZIhvcNAQELBQADggEBAKi4LWnAAVIc
mxjIqCej7OuccxY0BbhcVsy39LJY3RgsXrQwjQZeDOjE8sSXw5IvbQP+DPSd1jd8
lq5rWmuq5oMOIeDDjogUCqLa1Cvti8sTDSuSVdHoJ9ZigLxeY9HuHRakrqVvjUzO
47AaQYdfLq+MmcjbKUFSX8SD6mf8zrekrb+j6gtGYL+11MndpHkYsDnsrqYXHKIT
pX2gr+eMin2XPYhbRSHu327cPse9T+Ub3sVpkno4BlqIkWddLKZrC2Dpay1UTs/Z
fcGZfskRd35BmEQC7eyxvbvL2VQt02/izPH9BbK2LOoH9KajwA3iIFDgmpYoCBTD
uOUkWEqfGSY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org