Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/D9591C72EA1611EBA09F1503D8A014CE.roa
File: D9591C72EA1611EBA09F1503D8A014CE.roa (raw, json)
Hash identifier: ULu6v5Xd4RylQXz/DNaRnBo4gOCnbUZvm9Y1D6Eb7lc=
Subject key identifier: 05:1A:CB:04:D2:B2:66:BB:3C:28:22:03:A5:A7:EC:51:1F:27:AB:5C
Certificate issuer: /CN=F3628C37AF/serialNumber=039AAF7FE9F60BF0977486FA74B5871859AEA13D
Certificate serial: 02
Authority key identifier: 03:9A:AF:7F:E9:F6:0B:F0:97:74:86:FA:74:B5:87:18:59:AE:A1:3D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A5qvf-n2C_CXdIb6dLWHGFmuoT0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/D9591C72EA1611EBA09F1503D8A014CE.roa
Signing time: Wed 21 Jul 2021 11:29:11 +0000
ROA not before: Wed 21 Jul 2021 11:29:03 +0000
ROA not after: Thu 31 Jul 2031 11:29:03 +0000
asID: 37611
IP address blocks: 102.219.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/A5qvf-n2C_CXdIb6dLWHGFmuoT0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/A5qvf-n2C_CXdIb6dLWHGFmuoT0.mft
rsync://rpki.afrinic.net/repository/afrinic/A5qvf-n2C_CXdIb6dLWHGFmuoT0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3628C37AF/serialNumber=039AAF7FE9F60BF0977486FA74B5871859AEA13D
Validity
Not Before: Jul 21 11:29:03 2021 GMT
Not After : Jul 31 11:29:03 2031 GMT
Subject: CN=60f80507-c8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:55:fe:0c:69:71:98:af:e0:88:2c:1b:3c:96:
7c:84:e8:c5:e7:7c:cf:f9:73:99:af:82:c7:2c:23:
c2:90:68:c8:27:f9:ad:63:68:2d:41:c8:2a:1e:b3:
e4:5f:ea:0f:2a:3a:60:cf:38:fa:82:8a:ec:e1:14:
68:66:d8:d3:1d:d4:f6:6c:55:74:3a:69:cd:73:90:
09:67:76:9f:e1:60:8c:79:ed:20:f8:ed:2d:72:83:
2a:ed:26:6c:fe:b7:b8:80:52:b5:95:3d:38:b0:5b:
42:ab:22:21:1b:6c:b9:13:86:92:dc:e1:3e:a5:13:
c3:d6:94:44:10:fd:d4:0b:82:f6:57:9b:2c:b6:ad:
f5:8a:9f:51:8e:ea:96:4e:80:d1:a8:2f:af:fd:b1:
2a:f3:bc:9b:fa:16:42:fc:e7:90:87:55:db:a7:02:
00:cf:49:eb:a2:16:10:81:1f:37:0d:20:43:71:18:
f0:f4:aa:fa:be:ed:39:80:ca:20:88:52:66:64:c2:
c4:9b:73:45:17:d2:62:5b:30:52:0f:34:c7:47:10:
9f:63:cb:fd:ee:f1:00:9b:d2:28:36:13:be:b9:6c:
be:08:8e:76:a2:62:83:f2:02:b9:4b:3d:35:33:bf:
9c:e0:6d:1d:75:98:79:fa:9b:aa:49:6b:fa:2c:f4:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1A:CB:04:D2:B2:66:BB:3C:28:22:03:A5:A7:EC:51:1F:27:AB:5C
X509v3 Authority Key Identifier:
keyid:03:9A:AF:7F:E9:F6:0B:F0:97:74:86:FA:74:B5:87:18:59:AE:A1:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/A5qvf-n2C_CXdIb6dLWHGFmuoT0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A5qvf-n2C_CXdIb6dLWHGFmuoT0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3628C37/B37EA5C2EA1511EBA6126201D8A014CE/D9591C72EA1611EBA09F1503D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.29.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0f:9c:64:fa:4f:bd:70:44:58:bc:2a:44:bd:d9:f8:1a:7f:
a0:50:e4:f8:60:42:e1:48:6e:69:b6:5a:43:04:21:dc:f5:98:
f4:f2:cb:4a:ac:ba:ef:17:3c:32:17:89:3e:f2:53:a7:64:f8:
7c:1f:90:54:de:5c:4d:b9:ba:bf:5e:e8:a7:88:65:7d:54:e5:
02:f2:bb:b6:e8:e5:69:35:de:fc:7e:ca:20:e9:4d:52:df:8f:
69:d7:91:17:58:5a:9d:ac:b0:41:73:da:1f:6f:90:bf:ed:bf:
11:8f:a5:8b:d0:71:65:6e:a2:2e:a8:08:59:21:14:7c:1e:51:
a6:c2:69:89:fb:a4:38:9d:51:72:dc:73:0d:ba:f2:1d:82:b7:
0e:ef:b9:ae:75:1f:8b:1b:9f:7c:ae:30:ce:fb:ec:5b:ee:53:
44:2d:47:5d:3a:0d:62:bf:34:86:0a:5f:cb:f1:89:d0:47:5a:
a7:92:a0:2d:25:4e:2c:5f:e5:34:1c:3b:a7:05:1b:ec:11:1b:
b4:53:37:6f:10:71:75:08:50:1d:69:e0:c0:34:63:eb:ae:46:
82:10:dc:e9:2a:96:1b:5f:a3:3a:2a:b1:9b:f1:d9:94:cf:fe:
4b:1f:27:1c:c5:a9:e1:a3:24:d7:55:6c:4b:69:e8:bc:39:9f:
f8:ff:ae:bc
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzYy
OEMzN0FGMTEwLwYDVQQFEygwMzlBQUY3RkU5RjYwQkYwOTc3NDg2RkE3NEI1ODcx
ODU5QUVBMTNEMB4XDTIxMDcyMTExMjkwM1oXDTMxMDczMTExMjkwM1owGDEWMBQG
A1UEAwwNNjBmODA1MDctYzhlYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKdV/gxpcZiv4IgsGzyWfIToxed8z/lzma+CxywjwpBoyCf5rWNoLUHIKh6z
5F/qDyo6YM84+oKK7OEUaGbY0x3U9mxVdDppzXOQCWd2n+FgjHntIPjtLXKDKu0m
bP63uIBStZU9OLBbQqsiIRtsuROGktzhPqUTw9aURBD91AuC9lebLLat9YqfUY7q
lk6A0agvr/2xKvO8m/oWQvznkIdV26cCAM9J66IWEIEfNw0gQ3EY8PSq+r7tOYDK
IIhSZmTCxJtzRRfSYlswUg80x0cQn2PL/e7xAJvSKDYTvrlsvgiOdqJig/ICuUs9
NTO/nOBtHXWYefqbqklr+iz0wJcCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQFGssE
0rJmuzwoIgOlp+xRHyerXDAfBgNVHSMEGDAWgBQDmq9/6fYL8Jd0hvp0tYcYWa6h
PTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MjhDMzcvQjM3RUE1QzJFQTE1MTFFQkE2MTI2MjAxRDhBMDE0Q0UvQTVxdmYt
bjJDX0NYZEliNmRMV0hHRm11b1QwLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvQTVxdmYtbjJDX0NYZEliNmRMV0hHRm11b1QwLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MjhDMzcvQjM3RUE1QzJFQTE1MTFFQkE2MTI2MjAxRDhB
MDE0Q0UvRDk1OTFDNzJFQTE2MTFFQkEwOUYxNTAzRDhBMDE0Q0Uucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbbHTANBgkqhkiG9w0BAQsF
AAOCAQEACA+cZPpPvXBEWLwqRL3Z+Bp/oFDk+GBC4UhuabZaQwQh3PWY9PLLSqy6
7xc8MheJPvJTp2T4fB+QVN5cTbm6v17op4hlfVTlAvK7tujlaTXe/H7KIOlNUt+P
adeRF1hanaywQXPaH2+Qv+2/EY+li9BxZW6iLqgIWSEUfB5RpsJpifukOJ1Rctxz
DbryHYK3Du+5rnUfixuffK4wzvvsW+5TRC1HXToNYr80hgpfy/GJ0Edap5KgLSVO
LF/lNBw7pwUb7BEbtFM3bxBxdQhQHWngwDRj665GghDc6SqWG1+jOiqxm/HZlM/+
Sx8nHMWp4aMk11VsS2novDmf+P+uvA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:31 2024 by rpki-client on console-ams.rpki-client.org