Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/2E8C988C5D0011EE94A453524AD9E6FC.roa
File: 2E8C988C5D0011EE94A453524AD9E6FC.roa (raw, json)
Hash identifier: qkEdOg3v1Hi74syjrowa1fyOVmAU+CiB0FWAsNCKqiU=
Subject key identifier: 75:ED:D2:2C:22:45:36:E9:2D:11:C0:BF:82:E0:E5:A7:BC:30:20:7D
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 031C
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/2E8C988C5D0011EE94A453524AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:36:26 +0000
ROA not before: Wed 27 Sep 2023 06:36:22 +0000
ROA not after: Tue 30 Sep 2025 06:36:22 +0000
asID: 328327
IP address blocks: 102.140.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 796 (0x31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:36:22 2023 GMT
Not After : Sep 30 06:36:22 2025 GMT
Subject: CN=6513cd6a-c2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:85:14:60:a8:4b:b7:bf:f8:bc:09:c5:94:89:
e2:07:ce:d7:b9:e4:8d:11:f9:1e:87:f6:27:94:37:
d2:51:07:e3:80:b3:b5:8b:7a:ca:98:0a:41:07:6d:
2a:ca:e8:b6:68:33:41:4f:ea:aa:e0:2a:00:90:c7:
0c:d9:05:f9:f5:03:a1:52:21:1c:77:82:2e:4e:97:
23:75:75:6e:51:fd:f8:fd:67:29:8d:95:7e:c4:ba:
eb:c8:95:97:50:83:16:d9:d2:93:b6:a3:98:6e:35:
17:34:81:25:b9:88:bf:6b:c7:4b:84:00:67:79:98:
6e:fb:f7:55:d6:c5:b6:90:a1:8e:82:d8:9a:0e:1f:
6b:93:22:97:45:98:b8:11:d8:34:9d:af:ae:e6:0d:
4f:d1:af:a1:f8:c5:38:d4:09:c0:92:9a:1a:a3:79:
9f:b4:b3:92:4a:60:02:2a:4c:fc:a1:c4:f1:fc:40:
eb:7b:dd:fe:94:46:d1:72:33:52:e0:7c:3e:ba:aa:
3e:ee:3e:91:9d:35:09:45:1e:ab:9e:c2:cf:83:12:
5d:9e:cf:42:8c:20:3d:98:cc:84:a0:50:52:9b:8c:
0c:04:14:73:44:82:16:ef:fa:6a:96:1b:28:05:b0:
06:d2:e6:b0:6d:2a:13:b1:1a:5d:86:2f:a9:4a:98:
53:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:ED:D2:2C:22:45:36:E9:2D:11:C0:BF:82:E0:E5:A7:BC:30:20:7D
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/2E8C988C5D0011EE94A453524AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:06:ec:e3:6d:a1:f1:f4:ef:ea:2b:4e:b5:ee:98:8a:a3:95:
fb:d8:90:ae:77:e8:ea:e0:3a:4a:7f:b2:76:20:c7:16:2a:13:
3d:af:77:25:fc:c5:cd:f7:f3:81:4f:f7:25:94:48:eb:43:ad:
ee:3f:c0:55:29:bd:54:6b:50:5c:9e:36:46:1d:d3:83:c8:8c:
96:68:7b:96:9e:4d:ac:55:61:3c:e0:5c:eb:75:83:20:4e:8c:
a1:06:4b:93:21:36:e9:1f:44:a7:e9:fa:f1:8d:73:cf:40:b6:
78:1b:83:06:90:d7:24:da:a7:ce:76:c3:45:2b:65:3a:7a:dd:
f7:c5:01:5d:a9:c5:19:13:30:1f:61:b8:60:a0:6f:e5:e6:56:
ab:d1:d2:cb:ce:07:20:fa:84:d1:47:3f:13:57:0f:35:77:08:
b2:4c:9f:1a:41:66:25:01:50:c4:8d:29:4a:8c:45:59:26:91:
3d:6b:5a:06:8b:04:e5:47:65:e5:13:53:9b:44:3c:ea:f3:4a:
64:4b:07:6f:80:c0:05:dd:50:5e:2a:1a:d2:91:33:b0:56:b6:
b1:53:f5:c4:fd:77:38:fa:18:19:15:da:12:42:c7:4e:57:62:
de:99:93:f3:ac:fb:6f:14:0c:14:6a:23:a0:f7:b7:44:e9:01:
c4:1b:a5:ef
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MjFDMDZBRjExMC8GA1UEBRMoMUREMTZGRDY4QkZGN0NBQjFBQjkxQzU1REE2MUZD
MENERkY0MTc0MzAeFw0yMzA5MjcwNjM2MjJaFw0yNTA5MzAwNjM2MjJaMBgxFjAU
BgNVBAMTDTY1MTNjZDZhLWMyZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQhRRgqEu3v/i8CcWUieIHzte55I0R+R6H9ieUN9JRB+OAs7WLesqYCkEH
bSrK6LZoM0FP6qrgKgCQxwzZBfn1A6FSIRx3gi5OlyN1dW5R/fj9ZymNlX7EuuvI
lZdQgxbZ0pO2o5huNRc0gSW5iL9rx0uEAGd5mG7791XWxbaQoY6C2JoOH2uTIpdF
mLgR2DSdr67mDU/Rr6H4xTjUCcCSmhqjeZ+0s5JKYAIqTPyhxPH8QOt73f6URtFy
M1LgfD66qj7uPpGdNQlFHquews+DEl2ez0KMID2YzISgUFKbjAwEFHNEghbv+mqW
GygFsAbS5rBtKhOxGl2GL6lKmFN5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUde3S
LCJFNuktEcC/guDlp7wwIH0wHwYDVR0jBBgwFoAUHdFv1ov/fKsauRxV2mH8DN/0
F0MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4QTAxNENFL0hkRnYx
b3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0hkRnYxb3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4
QTAxNENFLzJFOEM5ODhDNUQwMDExRUU5NEE0NTM1MjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmjEEwDQYJKoZIhvcNAQEL
BQADggEBAB8G7ONtofH07+orTrXumIqjlfvYkK536OrgOkp/snYgxxYqEz2vdyX8
xc3384FP9yWUSOtDre4/wFUpvVRrUFyeNkYd04PIjJZoe5aeTaxVYTzgXOt1gyBO
jKEGS5MhNukfRKfp+vGNc89AtngbgwaQ1yTap852w0UrZTp63ffFAV2pxRkTMB9h
uGCgb+XmVqvR0svOByD6hNFHPxNXDzV3CLJMnxpBZiUBUMSNKUqMRVkmkT1rWgaL
BOVHZeUTU5tEPOrzSmRLB2+AwAXdUF4qGtKRM7BWtrFT9cT9dzj6GBkV2hJCx05X
Yt6Zk/Os+28UDBRqI6D3t0TpAcQbpe8=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:24 2024 by rpki-client on console-fra.rpki-client.org