Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/3E5CAEF89CCB11EF96936E54762E951A.roa
File: 3E5CAEF89CCB11EF96936E54762E951A.roa (raw, json)
Hash identifier: NaL+5IqvHfzKEob4MeRapqEPczk8TUD17OZ5TfT8Nj0=
Subject key identifier: D4:47:AA:FB:7A:6A:8E:F7:5A:D6:27:28:0F:EF:27:D9:21:A3:F8:58
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 0545
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/3E5CAEF89CCB11EF96936E54762E951A.roa
Signing time: Thu 07 Nov 2024 05:43:41 +0000
ROA not before: Thu 07 Nov 2024 05:43:37 +0000
ROA not after: Sun 31 Dec 2034 05:43:37 +0000
asID: 328528
IP address blocks: 102.36.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.mft
rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1349 (0x545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Validity
Not Before: Nov 7 05:43:37 2024 GMT
Not After : Dec 31 05:43:37 2034 GMT
Subject: CN=672c538d-d679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:54:2d:d7:5d:44:9d:65:3b:99:9a:d9:5b:
9d:f4:3d:ec:f2:06:3e:fe:e7:95:de:f8:b5:ab:ea:
f1:8d:20:3e:ed:85:d9:09:a5:f6:cc:94:dc:b8:d5:
28:46:bb:90:6d:39:0e:1a:fe:63:6e:18:fe:18:86:
10:c6:55:b6:73:f3:f8:ee:25:be:9d:df:00:71:88:
7d:b9:57:f2:82:2b:bc:65:f9:f3:10:ab:b5:94:fa:
15:67:12:a9:12:97:e4:69:fb:c3:d5:8f:ec:17:3a:
99:c7:4c:37:1d:9d:60:db:88:b3:26:d8:7d:48:89:
7e:f3:c8:f3:d3:fd:6f:e6:5b:6a:fb:12:06:79:84:
41:97:c1:67:f9:b2:d7:36:a7:ca:e1:a5:f0:88:a5:
f1:d3:f0:b3:e2:f8:96:bf:1c:69:51:60:a8:8f:ed:
5e:e6:ee:73:ee:3d:e1:7f:a4:66:95:64:dd:05:54:
ce:f3:76:b3:80:78:83:d8:8b:47:e2:36:bb:be:2c:
c7:c7:10:95:e7:c7:d2:48:96:b4:f4:8f:37:54:8f:
3d:fd:f5:41:8c:cc:84:73:c3:86:b2:1b:26:04:5e:
b7:31:f7:7f:50:3e:da:94:fc:a0:b6:32:78:8a:df:
18:8f:5c:ac:26:52:8e:28:88:41:74:c7:e2:d0:b9:
aa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:47:AA:FB:7A:6A:8E:F7:5A:D6:27:28:0F:EF:27:D9:21:A3:F8:58
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/3E5CAEF89CCB11EF96936E54762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.163.0/24
Signature Algorithm: sha256WithRSAEncryption
87:69:b1:e3:29:78:53:51:a9:46:43:04:2a:93:29:c4:71:4e:
21:66:13:c2:e5:b2:88:16:28:eb:0a:43:24:6f:54:a2:9b:ee:
1b:12:da:af:07:d4:9f:8a:56:b8:42:76:73:28:0b:ab:a1:4a:
7b:07:7b:a1:69:10:93:b1:4e:e7:57:1a:f7:da:3a:07:c8:9c:
57:c4:c6:53:c7:4d:c7:10:06:d0:7b:ca:95:bb:95:50:90:2b:
71:65:14:aa:7a:c7:61:d5:62:f6:d4:6a:18:24:15:c8:a2:39:
3b:d1:b3:c5:07:2f:96:fb:cc:1d:f4:e6:94:36:69:bf:6a:4c:
ce:ea:bc:c6:c4:36:bf:fa:48:d6:2a:5a:f0:f3:40:a8:1b:9e:
31:85:03:17:ee:86:5f:cc:bf:c6:46:68:8b:9e:33:0c:34:66:
08:b2:12:1b:42:63:5b:5f:85:c6:47:d7:3f:db:57:99:3f:26:
97:88:4f:f1:c7:d9:23:e6:05:fc:04:13:58:cd:94:3b:a4:02:
b6:85:2f:ec:dc:db:41:9b:70:75:f3:4a:35:a5:ed:98:fc:5e:
2b:db:2d:1c:b1:ac:88:ee:2f:93:a1:9f:77:e6:0d:0a:b9:92:
50:98:a3:6d:2f:b7:2d:a4:d5:04:7a:91:ca:ee:90:cb:ca:e4:
d7:d7:77:b8
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBUUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MkMxOENBRjExMC8GA1UEBRMoNjNFMEJCNkIzNDMzQ0Q1RDcxQTQyQjAxNjlCREIw
MUUyMEU0NTU3RjAeFw0yNDExMDcwNTQzMzdaFw0zNDEyMzEwNTQzMzdaMBgxFjAU
BgNVBAMTDTY3MmM1MzhkLWQ2NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+C1Qt111EnWU7mZrZW530PezyBj7+55Xe+LWr6vGNID7thdkJpfbMlNy4
1ShGu5BtOQ4a/mNuGP4YhhDGVbZz8/juJb6d3wBxiH25V/KCK7xl+fMQq7WU+hVn
EqkSl+Rp+8PVj+wXOpnHTDcdnWDbiLMm2H1IiX7zyPPT/W/mW2r7EgZ5hEGXwWf5
stc2p8rhpfCIpfHT8LPi+Ja/HGlRYKiP7V7m7nPuPeF/pGaVZN0FVM7zdrOAeIPY
i0fiNru+LMfHEJXnx9JIlrT0jzdUjz399UGMzIRzw4ayGyYEXrcx939QPtqU/KC2
MniK3xiPXKwmUo4oiEF0x+LQuaoJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU1Eeq
+3pqjvda1icoD+8n2SGj+FgwHwYDVR0jBBgwFoAUY+C7azQzzV1xpCsBab2wHiDk
VX8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjJDMThDLzQ1ODgzMjkwQUJEMTExRUJCMUE2NzE1RUY4QUVBMjI4L1ktQzdh
elF6elYxeHBDc0JhYjJ3SGlEa1ZYOC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1ktQzdhelF6elYxeHBDc0JhYjJ3SGlEa1ZYOC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjJDMThDLzQ1ODgzMjkwQUJEMTExRUJCMUE2NzE1RUY4
QUVBMjI4LzNFNUNBRUY4OUNDQjExRUY5NjkzNkU1NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmJKMwDQYJKoZIhvcNAQEL
BQADggEBAIdpseMpeFNRqUZDBCqTKcRxTiFmE8LlsogWKOsKQyRvVKKb7hsS2q8H
1J+KVrhCdnMoC6uhSnsHe6FpEJOxTudXGvfaOgfInFfExlPHTccQBtB7ypW7lVCQ
K3FlFKp6x2HVYvbUahgkFciiOTvRs8UHL5b7zB305pQ2ab9qTM7qvMbENr/6SNYq
WvDzQKgbnjGFAxfuhl/Mv8ZGaIueMww0ZgiyEhtCY1tfhcZH1z/bV5k/JpeIT/HH
2SPmBfwEE1jNlDukAraFL+zc20GbcHXzSjWl7Zj8XivbLRyxrIjuL5Ohn3fmDQq5
klCYo20vty2k1QR6kcrukMvK5NfXd7g=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:18 2024 by rpki-client on console-ams.rpki-client.org