Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/6C39EE98619B11ED8E8FD8D6F1222468.roa
File: 6C39EE98619B11ED8E8FD8D6F1222468.roa (raw, json)
Hash identifier: OETdohCk7q65gcL6uPq06Ta3ioOvQSD9Kn6gLq8PZ80=
Subject key identifier: 49:90:B2:1E:4A:6E:4F:55:82:D8:8C:85:E1:1C:30:B5:11:7D:87:45
Certificate issuer: /CN=F3627BD6AF/serialNumber=A2C6A847B8F3120030834187147DFC65C8EE94C0
Certificate serial: 0976
Authority key identifier: A2:C6:A8:47:B8:F3:12:00:30:83:41:87:14:7D:FC:65:C8:EE:94:C0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/osaoR7jzEgAwg0GHFH38ZcjulMA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/6C39EE98619B11ED8E8FD8D6F1222468.roa
Signing time: Fri 11 Nov 2022 08:32:48 +0000
ROA not before: Fri 11 Nov 2022 08:32:44 +0000
ROA not after: Thu 11 Nov 2027 08:32:44 +0000
asID: 7020
IP address blocks: 196.4.250.0/23 maxlen: 24
196.10.1.0/24 maxlen: 24
196.10.2.0/23 maxlen: 24
196.10.4.0/22 maxlen: 24
196.10.8.0/21 maxlen: 24
196.10.16.0/20 maxlen: 24
196.10.32.0/20 maxlen: 24
196.10.48.0/23 maxlen: 24
196.10.50.0/24 maxlen: 24
196.29.128.0/19 maxlen: 24
196.45.168.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/osaoR7jzEgAwg0GHFH38ZcjulMA.crl
rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/osaoR7jzEgAwg0GHFH38ZcjulMA.mft
rsync://rpki.afrinic.net/repository/afrinic/osaoR7jzEgAwg0GHFH38ZcjulMA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2422 (0x976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3627BD6AF/serialNumber=A2C6A847B8F3120030834187147DFC65C8EE94C0
Validity
Not Before: Nov 11 08:32:44 2022 GMT
Not After : Nov 11 08:32:44 2027 GMT
Subject: CN=636e08b0-f35b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:75:1f:d2:fa:d3:e4:3c:00:cb:9d:5a:f8:d4:
fa:92:60:d3:81:e1:6f:99:ae:23:e5:d2:04:74:d2:
a5:7f:ff:51:e4:37:c2:4e:68:fa:3d:be:90:94:52:
0c:07:28:5e:26:49:af:d9:1e:e6:80:80:65:dd:e3:
dd:b7:c8:fa:38:23:3f:ab:b7:c6:7c:78:83:1a:c5:
78:7b:39:b5:41:55:20:75:84:ba:aa:38:14:47:5d:
eb:17:4c:16:63:f8:1e:53:70:f7:6d:2c:95:b2:66:
38:77:58:f2:90:ff:7d:1a:06:36:8a:27:4f:5b:80:
9e:d3:ed:a6:23:d2:18:4e:fa:96:d5:ed:f0:5b:1f:
90:7f:49:f0:1f:da:7b:c0:4b:85:8f:5f:66:f4:e0:
1f:38:01:aa:f6:df:88:34:15:a3:29:1d:72:93:bd:
fb:62:5a:96:76:f0:ef:d4:48:d0:8c:8f:f0:77:38:
2c:88:29:b8:6e:95:9f:b9:db:cb:51:41:e0:7f:b9:
1c:e3:2f:3f:9d:8e:46:9c:9c:38:16:4d:91:39:9c:
16:b1:7e:b6:b8:1f:51:f0:e0:c9:ef:e0:64:db:bb:
c9:7e:7f:da:8e:46:c2:ec:45:e5:3f:88:30:86:f1:
10:5e:54:98:68:d0:7b:e1:51:4d:69:cb:36:a3:b5:
c5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:90:B2:1E:4A:6E:4F:55:82:D8:8C:85:E1:1C:30:B5:11:7D:87:45
X509v3 Authority Key Identifier:
keyid:A2:C6:A8:47:B8:F3:12:00:30:83:41:87:14:7D:FC:65:C8:EE:94:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/osaoR7jzEgAwg0GHFH38ZcjulMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/osaoR7jzEgAwg0GHFH38ZcjulMA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/6C39EE98619B11ED8E8FD8D6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.4.250.0/23
196.10.1.0-196.10.50.255
196.29.128.0/19
196.45.168.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:79:20:a4:b8:0a:8e:20:73:0b:d9:43:44:c5:6e:37:bc:6d:
bc:d5:06:b5:4d:16:42:fd:09:1c:c3:41:9d:7f:70:52:eb:0b:
27:d8:75:5b:4e:29:67:ec:21:0c:48:e5:e5:17:fb:a9:78:f2:
23:64:96:9d:b2:20:9b:2c:5f:a7:3f:36:ab:ed:33:18:60:a0:
5c:12:f2:a7:2c:d5:86:a2:3a:48:63:82:27:39:85:3d:9b:1b:
18:7b:4d:06:5b:7f:d7:67:d9:75:63:01:61:e1:f4:41:06:2e:
a9:76:26:fc:1c:c4:4c:34:97:df:35:a1:83:58:e1:0c:87:9b:
ea:e5:4e:44:9b:68:37:4a:dc:e2:3d:f8:65:2a:57:93:45:e8:
f1:6f:ec:30:af:0f:ee:fd:e3:3e:35:25:3e:b2:1e:56:6c:5f:
59:41:95:1c:ee:20:5a:5b:49:37:c7:b6:8f:8d:b4:cc:ab:81:
4f:52:b9:42:5e:be:40:e3:11:80:da:d4:a0:19:47:ff:38:0d:
d7:00:d4:a1:d5:c3:fe:b7:f6:e5:6b:ed:fa:d4:76:6c:09:fa:
42:1f:87:29:87:eb:47:6e:fe:5a:90:88:ec:fc:24:12:5a:13:
21:b2:7f:98:3f:61:fc:bb:19:ef:05:0c:57:bc:03:5b:a4:dd:
55:8f:cc:43
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MjdCRDZBRjExMC8GA1UEBRMoQTJDNkE4NDdCOEYzMTIwMDMwODM0MTg3MTQ3REZD
NjVDOEVFOTRDMDAeFw0yMjExMTEwODMyNDRaFw0yNzExMTEwODMyNDRaMBgxFjAU
BgNVBAMMDTYzNmUwOGIwLWYzNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDdR/S+tPkPADLnVr41PqSYNOB4W+ZriPl0gR00qV//1HkN8JOaPo9vpCU
UgwHKF4mSa/ZHuaAgGXd4923yPo4Iz+rt8Z8eIMaxXh7ObVBVSB1hLqqOBRHXesX
TBZj+B5TcPdtLJWyZjh3WPKQ/30aBjaKJ09bgJ7T7aYj0hhO+pbV7fBbH5B/SfAf
2nvAS4WPX2b04B84Aar234g0FaMpHXKTvftiWpZ28O/USNCMj/B3OCyIKbhulZ+5
28tRQeB/uRzjLz+djkacnDgWTZE5nBaxfra4H1Hw4Mnv4GTbu8l+f9qORsLsReU/
iDCG8RBeVJho0HvhUU1pyzajtcXDAgMBAAGjggK/MIICuzAdBgNVHQ4EFgQUSZCy
HkpuT1WC2IyF4RwwtRF9h0UwHwYDVR0jBBgwFoAUosaoR7jzEgAwg0GHFH38Zcju
lMAwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjI3QkQ2LzM2NjAzNUE0MjNGMjExRTZCRDE3RDgyM0Y4QUVBMjI4L29zYW9S
N2p6RWdBd2cwR0hGSDM4WmNqdWxNQS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL29zYW9SN2p6RWdBd2cwR0hGSDM4WmNqdWxNQS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjI3QkQ2LzM2NjAzNUE0MjNGMjExRTZCRDE3RDgyM0Y4
QUVBMjI4LzZDMzlFRTk4NjE5QjExRUQ4RThGRDhENkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwOQYIKwYBBQUHAQcBAf8EKjAoMCYEAgABMCADBAHEBPowDAMEAMQKAQMEAMQK
MgMEBcQdgAMEA8QtqDANBgkqhkiG9w0BAQsFAAOCAQEAX3kgpLgKjiBzC9lDRMVu
N7xtvNUGtU0WQv0JHMNBnX9wUusLJ9h1W04pZ+whDEjl5Rf7qXjyI2SWnbIgmyxf
pz82q+0zGGCgXBLypyzVhqI6SGOCJzmFPZsbGHtNBlt/12fZdWMBYeH0QQYuqXYm
/BzETDSX3zWhg1jhDIeb6uVORJtoN0rc4j34ZSpXk0Xo8W/sMK8P7v3jPjUlPrIe
VmxfWUGVHO4gWltJN8e2j420zKuBT1K5Ql6+QOMRgNrUoBlH/zgN1wDUodXD/rf2
5Wvt+tR2bAn6Qh+HKYfrR27+WpCI7PwkEloTIbJ/mD9h/LsZ7wUMV7wDW6TdVY/M
Qw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org