Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/054D3E6C47A511EC9E4F5452D8A014CE.roa
File: 054D3E6C47A511EC9E4F5452D8A014CE.roa (raw, json)
Hash identifier: V0jAJU4mkJ4wT+l9amx7r69aJYuX+Vg75J6DIl15pPI=
Subject key identifier: 77:D0:2D:11:C7:96:1A:AB:B3:23:79:1D:80:DE:B2:1D:F8:BA:5B:6F
Certificate issuer: /CN=F3621C8AAF/serialNumber=FF8ED292BABB2F8640EE46F1B359164B80538F55
Certificate serial: A0
Authority key identifier: FF:8E:D2:92:BA:BB:2F:86:40:EE:46:F1:B3:59:16:4B:80:53:8F:55
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_47Skrq7L4ZA7kbxs1kWS4BTj1U.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/054D3E6C47A511EC9E4F5452D8A014CE.roa
Signing time: Wed 17 Nov 2021 12:51:03 +0000
ROA not before: Wed 17 Nov 2021 12:50:59 +0000
ROA not after: Tue 17 Nov 2026 12:50:59 +0000
asID: 328808
IP address blocks: 102.217.244.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/_47Skrq7L4ZA7kbxs1kWS4BTj1U.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/_47Skrq7L4ZA7kbxs1kWS4BTj1U.mft
rsync://rpki.afrinic.net/repository/afrinic/_47Skrq7L4ZA7kbxs1kWS4BTj1U.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160 (0xa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C8AAF/serialNumber=FF8ED292BABB2F8640EE46F1B359164B80538F55
Validity
Not Before: Nov 17 12:50:59 2021 GMT
Not After : Nov 17 12:50:59 2026 GMT
Subject: CN=6194fab6-6789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:65:53:38:10:cd:f7:5f:31:90:6e:54:ef:cd:
db:b2:3a:36:4a:03:4d:e4:a7:89:f0:07:4e:c6:ec:
4c:f5:9e:11:86:44:e6:9c:1e:18:ff:e8:ee:8f:ce:
76:ef:68:64:a1:a0:30:e7:03:ed:c7:56:18:da:ac:
10:56:8e:9b:62:b4:33:50:8d:b8:d2:f5:71:f9:2d:
4e:21:d4:2f:d7:76:06:75:d8:36:45:11:7a:27:30:
d4:43:98:cc:ec:b0:ef:19:9c:23:de:0a:52:a4:15:
24:b3:4c:c4:3e:3f:68:2b:d2:e3:46:f4:99:4a:24:
92:d5:a3:8e:54:2b:7b:26:54:83:fd:5b:96:01:26:
00:00:81:05:f5:0b:4a:fe:ef:aa:87:d8:f8:ab:cd:
aa:5e:23:df:6b:a9:7f:d8:22:bc:56:d3:b7:4c:10:
16:48:40:68:5d:4d:65:81:d9:a4:71:18:ca:51:8f:
31:6b:03:cf:29:60:6f:1a:fb:1f:1e:17:43:cb:43:
5b:1d:31:98:60:51:b2:1a:24:78:61:74:8e:c4:a7:
96:39:92:72:af:43:83:32:dd:23:72:50:27:16:a6:
21:50:ff:dc:fc:76:d3:c4:3d:35:40:65:ec:d3:8d:
a1:21:d5:ca:6a:bb:b8:65:b9:70:ba:ab:a6:88:92:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D0:2D:11:C7:96:1A:AB:B3:23:79:1D:80:DE:B2:1D:F8:BA:5B:6F
X509v3 Authority Key Identifier:
keyid:FF:8E:D2:92:BA:BB:2F:86:40:EE:46:F1:B3:59:16:4B:80:53:8F:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/_47Skrq7L4ZA7kbxs1kWS4BTj1U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_47Skrq7L4ZA7kbxs1kWS4BTj1U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C8A/0E4E6838D3F111EBB0F12E18F8AEA228/054D3E6C47A511EC9E4F5452D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.244.0/22
Signature Algorithm: sha256WithRSAEncryption
12:3e:4b:0f:57:59:bd:5a:56:08:f5:25:59:6d:e4:46:49:1e:
9f:93:3a:01:2a:ef:0e:ff:5e:5d:79:e2:46:75:c5:da:c6:93:
83:ad:f0:e7:26:89:6b:f4:9c:17:55:1c:72:66:23:24:7a:29:
f1:59:1d:b1:47:10:e3:97:df:b7:ac:f1:dd:8e:39:4a:92:90:
1d:1d:a6:1b:9a:2f:25:8a:08:d8:71:3c:03:6b:3b:26:f0:c5:
11:29:ad:d5:08:78:03:b6:7a:57:9b:ea:f6:14:97:ee:5e:91:
77:8e:46:a4:35:77:0e:08:a0:40:99:e0:27:84:f7:39:2a:f9:
66:dd:2e:c2:f4:4d:c0:0d:48:4c:ce:a8:d3:47:4f:d9:31:3d:
83:a2:b4:cb:e8:2e:e9:ec:89:7c:d4:e8:09:63:5f:05:12:e4:
3c:2a:f9:01:ea:c9:53:87:1b:cc:53:b8:1c:97:6d:f4:44:37:
ac:10:a7:65:cd:1b:af:c7:11:4f:11:91:96:52:fb:c3:e3:e6:
54:30:e4:01:5a:7f:44:a8:5a:e9:9e:63:da:bb:c7:67:0d:8e:
4a:15:c5:63:bb:f3:4b:1a:e7:9c:8a:26:2c:be:a6:47:f3:5b:
2d:65:cd:7a:6c:56:16:af:41:18:02:30:71:cd:59:b5:be:7b:
cc:b6:ad:01
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MjFDOEFBRjExMC8GA1UEBRMoRkY4RUQyOTJCQUJCMkY4NjQwRUU0NkYxQjM1OTE2
NEI4MDUzOEY1NTAeFw0yMTExMTcxMjUwNTlaFw0yNjExMTcxMjUwNTlaMBgxFjAU
BgNVBAMMDTYxOTRmYWI2LTY3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDFZVM4EM33XzGQblTvzduyOjZKA03kp4nwB07G7Ez1nhGGROacHhj/6O6P
znbvaGShoDDnA+3HVhjarBBWjptitDNQjbjS9XH5LU4h1C/XdgZ12DZFEXonMNRD
mMzssO8ZnCPeClKkFSSzTMQ+P2gr0uNG9JlKJJLVo45UK3smVIP9W5YBJgAAgQX1
C0r+76qH2PirzapeI99rqX/YIrxW07dMEBZIQGhdTWWB2aRxGMpRjzFrA88pYG8a
+x8eF0PLQ1sdMZhgUbIaJHhhdI7Ep5Y5knKvQ4My3SNyUCcWpiFQ/9z8dtPEPTVA
ZezTjaEh1cpqu7hluXC6q6aIkl4pAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUd9At
EceWGquzI3kdgN6yHfi6W28wHwYDVR0jBBgwFoAU/47Skrq7L4ZA7kbxs1kWS4BT
j1UwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjIxQzhBLzBFNEU2ODM4RDNGMTExRUJCMEYxMkUxOEY4QUVBMjI4L180N1Nr
cnE3TDRaQTdrYnhzMWtXUzRCVGoxVS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL180N1NrcnE3TDRaQTdrYnhzMWtXUzRCVGoxVS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjIxQzhBLzBFNEU2ODM4RDNGMTExRUJCMEYxMkUxOEY4
QUVBMjI4LzA1NEQzRTZDNDdBNTExRUM5RTRGNTQ1MkQ4QTAxNENFLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm2fQwDQYJKoZIhvcNAQEL
BQADggEBABI+Sw9XWb1aVgj1JVlt5EZJHp+TOgEq7w7/Xl154kZ1xdrGk4Ot8Ocm
iWv0nBdVHHJmIyR6KfFZHbFHEOOX37es8d2OOUqSkB0dphuaLyWKCNhxPANrOybw
xREprdUIeAO2eleb6vYUl+5ekXeORqQ1dw4IoECZ4CeE9zkq+WbdLsL0TcANSEzO
qNNHT9kxPYOitMvoLunsiXzU6AljXwUS5Dwq+QHqyVOHG8xTuByXbfREN6wQp2XN
G6/HEU8RkZZS+8Pj5lQw5AFaf0SoWumeY9q7x2cNjkoVxWO780sa55yKJiy+pkfz
Wy1lzXpsVhavQRgCMHHNWbW+e8y2rQE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:52 2024 by rpki-client on console-fra.rpki-client.org