Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/D3AB273E5D0011EEA6BC70544AD9E6FC.roa
File: D3AB273E5D0011EEA6BC70544AD9E6FC.roa (raw, json)
Hash identifier: vXMhunG/CaNVINNkKavvi+q/C0vdB+tjS5zdK5VFvsU=
Subject key identifier: B1:9B:49:34:EC:36:18:85:7F:8D:3E:E2:99:AA:00:8F:CE:73:85:55
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0324
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/D3AB273E5D0011EEA6BC70544AD9E6FC.roa
Signing time: Wed 27 Sep 2023 06:41:03 +0000
ROA not before: Wed 27 Sep 2023 06:41:00 +0000
ROA not after: Tue 30 Sep 2025 06:41:00 +0000
asID: 328327
IP address blocks: 102.140.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 11:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 804 (0x324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 27 06:41:00 2023 GMT
Not After : Sep 30 06:41:00 2025 GMT
Subject: CN=6513ce7f-4c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:72:ff:52:87:27:44:9d:79:2f:e3:53:94:db:
da:b5:8c:7b:9a:03:17:95:3e:ac:93:87:e1:b2:b5:
f0:8f:aa:cd:a2:7e:b3:92:ff:39:db:db:af:d2:dc:
8c:d5:3e:f1:da:15:55:18:bb:fa:db:0c:69:4d:a2:
74:b2:37:84:35:13:c8:ac:e9:24:3c:3f:93:aa:3b:
0d:57:41:32:7d:23:b2:67:08:6a:d9:59:ec:6a:70:
f0:57:54:cd:8e:e3:dc:d7:03:10:51:9c:20:00:01:
60:58:24:04:ca:1a:7c:b6:25:15:3d:c6:06:51:82:
dd:65:1d:42:d0:ec:0e:8e:67:74:04:d6:4d:0e:fd:
b4:95:03:77:5b:d4:f2:67:13:53:d6:38:15:fc:95:
ca:83:c1:8f:e0:4c:4a:5b:44:ae:c8:9f:d0:b6:5b:
63:a7:43:90:29:e4:d6:1e:e4:43:c4:fb:e6:e8:f9:
b6:8e:58:07:a2:83:78:bc:54:7f:01:20:a5:65:22:
b9:bf:58:c3:99:73:52:f3:cc:02:4d:cf:e9:a8:eb:
d6:64:fe:c6:00:cd:ea:12:ff:44:1f:ff:c3:86:7a:
5d:0d:85:54:f7:7f:1c:9a:75:ba:3b:8b:27:7a:4a:
0c:c4:c8:9f:9a:a2:cc:33:45:89:99:fc:03:9c:55:
77:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9B:49:34:EC:36:18:85:7F:8D:3E:E2:99:AA:00:8F:CE:73:85:55
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/D3AB273E5D0011EEA6BC70544AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.68.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ff:b6:03:55:59:5a:a9:4e:df:fc:4f:2b:8e:25:97:b5:66:
53:6d:e1:a3:94:5a:7e:67:5a:74:5f:ed:0f:3b:d1:6e:df:38:
7d:bc:f6:2c:de:7f:28:0f:21:4e:40:77:2e:ea:ef:56:f3:5d:
4e:9d:1c:af:7b:c4:33:1b:97:b6:f9:11:c7:80:e3:b0:bb:a6:
90:1e:86:79:3a:11:77:71:b0:94:c2:00:3b:c4:ba:5b:63:8d:
ec:c9:85:46:97:e8:00:2b:31:f4:a7:da:70:e1:7e:99:14:b9:
45:87:1c:0d:36:57:11:7a:8a:7f:ec:b0:e1:ef:74:d8:36:82:
19:a1:7b:0c:c8:5a:73:93:4f:f8:9c:28:f3:a3:51:6a:b7:12:
c3:ac:ca:01:fe:df:12:9b:ab:be:eb:58:a0:59:7e:14:a6:b6:
79:eb:ff:23:73:03:a8:de:1c:01:07:0e:7e:6d:bc:da:c4:1b:
4e:6b:8a:42:27:99:ba:15:2c:ea:29:b0:6b:69:e5:b0:1e:be:
a4:a7:e1:0b:1e:ac:04:f7:79:06:b0:46:0a:5d:d2:2c:91:06:
d9:7e:06:6f:88:99:a8:f5:f8:a6:a6:a7:c8:f5:4c:10:76:a6:
ba:6d:ac:92:04:88:48:bb:10:2e:34:62:0a:3f:06:aa:5e:8e:
3e:08:96:3f
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAyQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MjFDMDZBRjExMC8GA1UEBRMoMUREMTZGRDY4QkZGN0NBQjFBQjkxQzU1REE2MUZD
MENERkY0MTc0MzAeFw0yMzA5MjcwNjQxMDBaFw0yNTA5MzAwNjQxMDBaMBgxFjAU
BgNVBAMTDTY1MTNjZTdmLTRjMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDBcv9ShydEnXkv41OU29q1jHuaAxeVPqyTh+GytfCPqs2ifrOS/znb26/S
3IzVPvHaFVUYu/rbDGlNonSyN4Q1E8is6SQ8P5OqOw1XQTJ9I7JnCGrZWexqcPBX
VM2O49zXAxBRnCAAAWBYJATKGny2JRU9xgZRgt1lHULQ7A6OZ3QE1k0O/bSVA3db
1PJnE1PWOBX8lcqDwY/gTEpbRK7In9C2W2OnQ5Ap5NYe5EPE++bo+baOWAeig3i8
VH8BIKVlIrm/WMOZc1LzzAJNz+mo69Zk/sYAzeoS/0Qf/8OGel0NhVT3fxyadbo7
iyd6SgzEyJ+aoswzRYmZ/AOcVXeHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUsZtJ
NOw2GIV/jT7imaoAj85zhVUwHwYDVR0jBBgwFoAUHdFv1ov/fKsauRxV2mH8DN/0
F0MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4QTAxNENFL0hkRnYx
b3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0hkRnYxb3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4
QTAxNENFL0QzQUIyNzNFNUQwMDExRUVBNkJDNzA1NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmjEQwDQYJKoZIhvcNAQEL
BQADggEBAHD/tgNVWVqpTt/8TyuOJZe1ZlNt4aOUWn5nWnRf7Q870W7fOH289ize
fygPIU5Ady7q71bzXU6dHK97xDMbl7b5EceA47C7ppAehnk6EXdxsJTCADvEultj
jezJhUaX6AArMfSn2nDhfpkUuUWHHA02VxF6in/ssOHvdNg2ghmhewzIWnOTT/ic
KPOjUWq3EsOsygH+3xKbq77rWKBZfhSmtnnr/yNzA6jeHAEHDn5tvNrEG05rikIn
mboVLOopsGtp5bAevqSn4QserAT3eQawRgpd0iyRBtl+Bm+Imaj1+Kamp8j1TBB2
prptrJIEiEi7EC40Ygo/Bqpejj4Ilj8=
-----END CERTIFICATE-----
Generated at Sat Apr 27 10:17:30 2024 by rpki-client on console-ams.rpki-client.org