Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/A6EE34B4BB6C11EEA3749758775412E6.roa
File: A6EE34B4BB6C11EEA3749758775412E6.roa (raw, json)
Hash identifier: FP4NgoM4ThMIgSh1uZNU2HWKydeuDiSmJjwUn9UkLfQ=
Subject key identifier: 2D:7C:DF:86:49:B4:FA:FF:ED:E5:AD:EE:5D:5A:FA:08:97:B8:77:0A
Certificate issuer: /CN=F362B5C8AF/serialNumber=0B9C86EB742B225CFA9DFAEE2787179CE2CBE489
Certificate serial: 05
Authority key identifier: 0B:9C:86:EB:74:2B:22:5C:FA:9D:FA:EE:27:87:17:9C:E2:CB:E4:89
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/C5yG63QrIlz6nfruJ4cXnOLL5Ik.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/A6EE34B4BB6C11EEA3749758775412E6.roa
Signing time: Thu 25 Jan 2024 10:29:43 +0000
ROA not before: Thu 25 Jan 2024 10:29:39 +0000
ROA not after: Tue 25 Jan 2028 10:29:39 +0000
asID: 37284
IP address blocks: 2c0f:6a40::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/C5yG63QrIlz6nfruJ4cXnOLL5Ik.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/C5yG63QrIlz6nfruJ4cXnOLL5Ik.mft
rsync://rpki.afrinic.net/repository/afrinic/C5yG63QrIlz6nfruJ4cXnOLL5Ik.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B5C8AF/serialNumber=0B9C86EB742B225CFA9DFAEE2787179CE2CBE489
Validity
Not Before: Jan 25 10:29:39 2024 GMT
Not After : Jan 25 10:29:39 2028 GMT
Subject: CN=65b23817-865b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:46:f1:d0:5a:ab:57:64:b5:58:b7:22:08:17:
96:23:87:bb:7e:1a:87:65:af:72:a8:e3:fe:e7:c0:
98:cb:cf:33:40:5e:da:24:bb:c7:fe:10:e4:9c:e4:
f1:35:55:86:94:13:0d:38:c4:99:13:3b:f5:a3:94:
37:ea:6d:51:b5:bc:33:48:ae:74:d0:57:82:e9:37:
80:bf:b9:b6:44:c5:91:72:19:ce:1f:d3:13:ac:1e:
43:ab:40:03:34:aa:78:01:ae:93:4e:2e:9f:2b:6e:
2e:0c:9e:e3:16:c4:01:09:81:3a:06:43:14:97:4f:
2d:4d:21:30:8a:b3:da:71:de:a7:3b:69:1c:5d:54:
39:fa:91:5c:88:83:92:7b:f2:82:22:f3:10:5b:df:
01:8d:b1:87:79:be:5a:ce:ec:82:0a:d5:2d:7d:81:
9a:ae:06:3e:27:11:ea:89:62:d1:02:3b:82:07:7b:
65:32:92:81:1e:18:ea:01:bc:6a:b2:3a:66:aa:88:
8d:ce:3a:92:90:72:cf:be:f7:3f:ad:c6:77:52:cc:
6f:04:ee:af:ba:f9:fe:d8:20:a5:7e:46:4f:90:59:
88:74:9d:cf:0e:19:ac:07:00:9a:41:3b:87:4a:93:
b4:14:12:cb:bf:8a:ac:da:d8:41:3c:a6:e3:6c:f1:
f8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7C:DF:86:49:B4:FA:FF:ED:E5:AD:EE:5D:5A:FA:08:97:B8:77:0A
X509v3 Authority Key Identifier:
keyid:0B:9C:86:EB:74:2B:22:5C:FA:9D:FA:EE:27:87:17:9C:E2:CB:E4:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/C5yG63QrIlz6nfruJ4cXnOLL5Ik.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/C5yG63QrIlz6nfruJ4cXnOLL5Ik.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B5C8/922EABF4BB6B11EEA0EDEA56775412E6/A6EE34B4BB6C11EEA3749758775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:6a40::/32
Signature Algorithm: sha256WithRSAEncryption
51:37:d2:2d:a0:0c:77:d0:2f:ba:da:e4:e9:31:e1:01:33:e1:
5c:81:25:72:5b:ef:83:06:5e:83:b1:fd:ee:d4:bf:bf:19:3c:
3c:c3:ca:55:5e:f4:12:9e:77:c4:bd:41:9b:dd:6f:13:8f:24:
fb:d7:62:36:ca:ce:0a:9a:56:76:5f:e8:db:10:ad:4b:ae:d1:
5c:07:2f:7b:86:e8:bc:7d:d8:ea:6a:a9:57:36:63:bc:94:2f:
8d:0b:2c:c8:06:06:e0:56:82:c9:c7:ec:0f:2d:36:13:98:df:
11:95:e1:94:60:9c:8d:5a:ec:a2:69:d9:9e:93:db:e3:c0:6e:
62:5c:0c:22:0e:cc:2a:a6:e3:39:7e:e5:9c:5a:1d:cf:64:66:
23:58:dd:87:3c:5e:04:8b:6b:bd:50:51:2d:0d:aa:91:c8:b2:
a9:3d:12:75:7b:31:94:f0:d9:fc:2e:e4:58:f4:11:a8:41:46:
8e:f8:a0:ac:14:2f:df:29:3e:34:36:d2:58:5b:d2:95:e7:48:
a2:da:7a:09:6b:b6:19:55:e9:99:98:bf:ef:8b:14:68:bb:4f:
4c:34:51:9c:05:64:bf:1a:32:7a:a3:c8:7f:88:f4:3b:f8:f7:
8e:86:5a:b2:38:92:18:d8:f4:2d:62:ba:34:52:1b:85:f8:b8:
9a:c3:ce:a8
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYy
QjVDOEFGMTEwLwYDVQQFEygwQjlDODZFQjc0MkIyMjVDRkE5REZBRUUyNzg3MTc5
Q0UyQ0JFNDg5MB4XDTI0MDEyNTEwMjkzOVoXDTI4MDEyNTEwMjkzOVowGDEWMBQG
A1UEAxMNNjViMjM4MTctODY1YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANdG8dBaq1dktVi3IggXliOHu34ah2Wvcqjj/ufAmMvPM0Be2iS7x/4Q5Jzk
8TVVhpQTDTjEmRM79aOUN+ptUbW8M0iudNBXguk3gL+5tkTFkXIZzh/TE6weQ6tA
AzSqeAGuk04unytuLgye4xbEAQmBOgZDFJdPLU0hMIqz2nHepztpHF1UOfqRXIiD
knvygiLzEFvfAY2xh3m+Ws7sggrVLX2Bmq4GPicR6oli0QI7ggd7ZTKSgR4Y6gG8
arI6ZqqIjc46kpByz773P63Gd1LMbwTur7r5/tggpX5GT5BZiHSdzw4ZrAcAmkE7
h0qTtBQSy7+KrNrYQTym42zx+BsCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQtfN+G
SbT6/+3lre5dWvoIl7h3CjAfBgNVHSMEGDAWgBQLnIbrdCsiXPqd+u4nhxec4svk
iTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MkI1QzgvOTIyRUFCRjRCQjZCMTFFRUEwRURFQTU2Nzc1NDEyRTYvQzV5RzYz
UXJJbHo2bmZydUo0Y1huT0xMNUlrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvQzV5RzYzUXJJbHo2bmZydUo0Y1huT0xMNUlrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MkI1QzgvOTIyRUFCRjRCQjZCMTFFRUEwRURFQTU2Nzc1
NDEyRTYvQTZFRTM0QjRCQjZDMTFFRUEzNzQ5NzU4Nzc1NDEyRTYucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACwPakAwDQYJKoZIhvcNAQEL
BQADggEBAFE30i2gDHfQL7ra5Okx4QEz4VyBJXJb74MGXoOx/e7Uv78ZPDzDylVe
9BKed8S9QZvdbxOPJPvXYjbKzgqaVnZf6NsQrUuu0VwHL3uG6Lx92OpqqVc2Y7yU
L40LLMgGBuBWgsnH7A8tNhOY3xGV4ZRgnI1a7KJp2Z6T2+PAbmJcDCIOzCqm4zl+
5ZxaHc9kZiNY3Yc8XgSLa71QUS0NqpHIsqk9EnV7MZTw2fwu5Fj0EahBRo74oKwU
L98pPjQ20lhb0pXnSKLaeglrthlV6ZmYv++LFGi7T0w0UZwFZL8aMnqjyH+I9Dv4
946GWrI4khjY9C1iujRSG4X4uJrDzqg=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org