Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/B0A72E82BFAD11ECBB31F3D65A40D577.roa
File: B0A72E82BFAD11ECBB31F3D65A40D577.roa (raw, json)
Hash identifier: vPmLIix5cxvVmhxpbkYB4/qDa0zKQvjG6CoH3d5Eq74=
Subject key identifier: FA:E9:35:C6:2B:25:4C:C8:6E:E0:3B:0F:50:BE:AF:21:1F:17:53:40
Certificate issuer: /CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Certificate serial: 01A2
Authority key identifier: DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/B0A72E82BFAD11ECBB31F3D65A40D577.roa
Signing time: Tue 19 Apr 2022 06:55:26 +0000
ROA not before: Tue 19 Apr 2022 06:55:21 +0000
ROA not after: Mon 19 Apr 2032 06:55:21 +0000
asID: 37053
IP address blocks: 102.215.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.mft
rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 418 (0x1a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B8A8AF/serialNumber=DF376480DCF07A1B7AD164DE64A3EA215F247541
Validity
Not Before: Apr 19 06:55:21 2022 GMT
Not After : Apr 19 06:55:21 2032 GMT
Subject: CN=625e5cdd-073a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:4e:24:8d:30:f6:84:cb:25:e6:be:a4:2a:
2e:b4:90:f8:f8:7f:a8:9b:7a:fb:94:25:56:00:5e:
fd:64:26:4c:c8:5c:71:41:09:63:8d:7b:6c:4f:67:
92:46:ce:39:55:d8:a7:be:0d:96:b6:8a:c8:87:5f:
4f:50:88:cd:6b:20:db:16:76:bd:e7:7f:52:f1:98:
bc:c8:26:1c:84:40:1a:d1:fe:fd:b5:39:4c:b9:8e:
7b:6e:de:10:5b:98:e9:f1:ef:f0:fa:6d:e0:aa:f0:
74:68:92:e4:2f:5c:8e:5c:45:12:d9:b2:a0:11:8d:
3e:87:60:57:2b:23:92:b5:7c:ad:47:17:76:be:11:
6e:e5:53:75:4f:09:aa:89:7a:8c:c4:e0:3d:28:79:
fb:4c:2f:5e:70:f7:d1:d4:67:27:22:1c:b9:d3:c6:
9c:e3:2f:fa:7e:e6:d2:b3:27:b1:a0:56:72:31:4c:
2c:d8:7b:29:c9:c3:6b:a3:20:ff:1b:3c:89:58:66:
ee:bf:7c:0a:9f:0a:58:a6:66:79:8b:9e:9b:fd:56:
59:ba:d1:ad:ea:63:4e:59:84:e8:3d:16:4c:88:17:
a2:1c:ec:da:60:7d:2a:62:07:5b:63:a4:6a:3d:5c:
3a:e2:de:a0:55:90:bc:1a:90:68:d9:f6:48:49:60:
db:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E9:35:C6:2B:25:4C:C8:6E:E0:3B:0F:50:BE:AF:21:1F:17:53:40
X509v3 Authority Key Identifier:
keyid:DF:37:64:80:DC:F0:7A:1B:7A:D1:64:DE:64:A3:EA:21:5F:24:75:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/3zdkgNzweht60WTeZKPqIV8kdUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/3zdkgNzweht60WTeZKPqIV8kdUE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B8A8/B5C94E4C9C2511EBAD78FF53F8AEA228/B0A72E82BFAD11ECBB31F3D65A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.212.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:bb:dd:ec:50:92:d2:72:f7:70:f9:28:49:77:78:8e:92:23:
b5:53:0b:8e:26:bd:62:17:9d:01:74:37:c6:f2:79:58:bb:f8:
dd:47:85:f2:7a:3f:24:0d:0b:62:5b:08:eb:be:bf:75:df:a2:
1d:7b:06:c0:11:a9:46:99:d0:a9:63:84:60:97:dc:4c:61:63:
75:53:d8:87:69:c4:53:17:21:51:a2:58:85:33:4f:6c:8e:e1:
35:1e:ab:2c:7f:5d:a3:2e:8d:10:7e:16:27:27:f5:0a:d1:0a:
84:e3:04:94:b9:5b:ae:74:10:e0:06:4e:6c:bf:24:36:bc:a8:
18:87:4d:4b:0b:f5:a1:9a:d4:fd:27:7b:76:23:90:7f:39:e4:
45:e4:25:d4:4e:6a:ba:16:98:50:9f:b3:06:c6:ba:ca:28:19:
e6:15:b4:ef:1d:4d:74:31:f8:e5:08:34:9d:5a:ea:94:70:3c:
d0:3a:e1:1b:d8:69:e7:1f:4a:7e:d9:50:6d:25:1a:f4:b5:8c:
09:8f:08:b8:e6:d4:e2:0a:1d:39:73:a7:55:41:a7:a2:6f:69:
03:5d:9b:48:46:13:8d:41:9e:dc:91:e6:2f:b3:f9:99:13:44:
9c:d5:99:ca:b6:0f:10:84:5d:3e:ec:b0:9f:75:82:2e:43:0b:
cc:d3:55:95
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MkI4QThBRjExMC8GA1UEBRMoREYzNzY0ODBEQ0YwN0ExQjdBRDE2NERFNjRBM0VB
MjE1RjI0NzU0MTAeFw0yMjA0MTkwNjU1MjFaFw0zMjA0MTkwNjU1MjFaMBgxFjAU
BgNVBAMMDTYyNWU1Y2RkLTA3M2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/f04kjTD2hMsl5r6kKi60kPj4f6ibevuUJVYAXv1kJkzIXHFBCWONe2xP
Z5JGzjlV2Ke+DZa2isiHX09QiM1rINsWdr3nf1LxmLzIJhyEQBrR/v21OUy5jntu
3hBbmOnx7/D6beCq8HRokuQvXI5cRRLZsqARjT6HYFcrI5K1fK1HF3a+EW7lU3VP
CaqJeozE4D0oeftML15w99HUZyciHLnTxpzjL/p+5tKzJ7GgVnIxTCzYeynJw2uj
IP8bPIlYZu6/fAqfClimZnmLnpv9Vlm60a3qY05ZhOg9FkyIF6Ic7NpgfSpiB1tj
pGo9XDri3qBVkLwakGjZ9khJYNsbAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+uk1
xislTMhu4DsPUL6vIR8XU0AwHwYDVR0jBBgwFoAU3zdkgNzweht60WTeZKPqIV8k
dUEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjJCOEE4L0I1Qzk0RTRDOUMyNTExRUJBRDc4RkY1M0Y4QUVBMjI4LzN6ZGtn
Tnp3ZWh0NjBXVGVaS1BxSVY4a2RVRS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzN6ZGtnTnp3ZWh0NjBXVGVaS1BxSVY4a2RVRS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjJCOEE4L0I1Qzk0RTRDOUMyNTExRUJBRDc4RkY1M0Y4
QUVBMjI4L0IwQTcyRTgyQkZBRDExRUNCQjMxRjNENjVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm19QwDQYJKoZIhvcNAQEL
BQADggEBAFq73exQktJy93D5KEl3eI6SI7VTC44mvWIXnQF0N8byeVi7+N1HhfJ6
PyQNC2JbCOu+v3Xfoh17BsARqUaZ0KljhGCX3ExhY3VT2IdpxFMXIVGiWIUzT2yO
4TUeqyx/XaMujRB+Ficn9QrRCoTjBJS5W650EOAGTmy/JDa8qBiHTUsL9aGa1P0n
e3YjkH855EXkJdROaroWmFCfswbGusooGeYVtO8dTXQx+OUINJ1a6pRwPNA64RvY
aecfSn7ZUG0lGvS1jAmPCLjm1OIKHTlzp1VBp6JvaQNdm0hGE41BntyR5i+z+ZkT
RJzVmcq2DxCEXT7ssJ91gi5DC8zTVZU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org