Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/BD6C4342A32F11EFAFC746BD762E951A.roa
File: BD6C4342A32F11EFAFC746BD762E951A.roa (raw, json)
Hash identifier: 35thfBdQw104zKjzssgfjCxYAhX2GyaM8nwv/1VU2vI=
Subject key identifier: AE:F5:95:6F:95:96:4C:47:30:D5:64:85:53:A7:59:34:4D:15:23:A8
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0EFF
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/BD6C4342A32F11EFAFC746BD762E951A.roa
Signing time: Fri 15 Nov 2024 08:58:11 +0000
ROA not before: Fri 15 Nov 2024 08:58:07 +0000
ROA not after: Fri 15 Nov 2030 08:58:07 +0000
asID: 37708
IP address blocks: 196.192.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3839 (0xeff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 08:58:07 2024 GMT
Not After : Nov 15 08:58:07 2030 GMT
Subject: CN=67370d23-3c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6b:e7:8d:47:9b:af:24:de:c6:ef:8f:a6:a6:
06:46:88:5f:db:ce:e4:cd:b6:fb:3a:83:cf:85:d1:
99:9f:f0:ec:bd:ef:47:63:69:ad:5c:0f:79:3f:1e:
00:2e:82:f1:28:d1:bd:9b:13:cd:73:22:1c:94:3d:
48:bb:a6:e5:a6:85:5d:11:31:d5:d8:0d:c2:8f:4c:
e3:48:cc:30:c8:fd:1b:bd:80:58:fe:ca:b5:4e:8d:
8a:66:61:3d:ce:42:de:4a:e5:c5:f1:24:6c:8c:ef:
20:66:d0:18:8f:85:be:c2:6c:c3:4b:ca:2c:e9:02:
30:88:9c:6d:3b:74:cc:19:14:4b:a9:72:3e:27:21:
82:27:c9:e2:51:77:56:5b:45:19:de:2f:c1:3e:31:
eb:eb:1d:48:4a:52:ac:32:d8:1b:1b:01:27:c4:ed:
3a:78:8d:b3:7c:b0:90:10:c0:d1:49:56:21:55:ed:
c6:f9:ff:a3:55:e5:35:ee:35:eb:bb:33:c3:e9:f0:
6f:2b:61:5c:2f:4d:9f:ae:d2:fb:e8:14:25:51:0c:
66:9b:eb:ef:f2:9e:77:c1:87:d3:e1:cc:67:1b:be:
eb:ea:07:8a:65:af:74:8d:0f:49:17:ca:72:91:8f:
81:9c:c5:65:fa:05:4f:50:1c:b9:bf:22:e2:e8:08:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F5:95:6F:95:96:4C:47:30:D5:64:85:53:A7:59:34:4D:15:23:A8
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/BD6C4342A32F11EFAFC746BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.192.112.0/23
Signature Algorithm: sha256WithRSAEncryption
25:c7:f9:07:bc:15:b9:15:c0:12:23:ab:72:c5:c8:ef:14:37:
10:a4:b4:ff:f9:1e:59:02:07:84:10:79:bb:22:14:3a:51:db:
06:88:2f:61:75:5e:7a:85:b2:f8:c4:76:64:28:ae:19:81:cb:
78:ab:5e:77:7c:d0:fa:c5:cf:c8:47:c0:bd:63:bb:47:4b:06:
ef:d4:d0:54:f1:f0:db:1e:d2:05:14:28:21:a2:48:a2:9a:61:
7a:0f:05:8d:a1:77:18:a8:7d:b5:5a:3a:0e:37:c6:5f:f9:2a:
68:e2:4a:27:2f:2a:de:7a:e7:30:62:8c:96:f7:25:6a:f4:8f:
9e:cb:3e:87:a7:7b:9f:64:eb:a1:38:a1:dd:57:b2:4c:f4:26:
5e:27:b5:63:ce:19:12:d6:75:14:6b:e3:98:bf:f3:85:f7:7b:
07:9f:44:84:47:fc:e8:b6:0e:48:c9:11:25:d7:35:57:5a:c6:
61:21:f2:3c:6a:76:66:67:d5:af:9f:11:7e:16:46:0c:60:43:
a4:3f:f4:04:82:f2:dc:f6:bc:ad:09:c2:94:87:d2:ba:5b:2e:
19:a7:79:cb:8d:39:56:7b:0a:6c:ef:80:cf:52:52:c4:b0:67:
15:f1:1c:f0:7e:f2:b0:fc:a6:dd:ec:cc:d3:83:8b:4b:7a:58:
d5:74:a0:b6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDv8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MzREMjJBRjExMC8GA1UEBRMoOEQwMUQ4MDhFODk3NzQ1NDNERTIyRDBEQTg0NDM3
OEVDRUE4QkI5QjAeFw0yNDExMTUwODU4MDdaFw0zMDExMTUwODU4MDdaMBgxFjAU
BgNVBAMTDTY3MzcwZDIzLTNjMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDla+eNR5uvJN7G74+mpgZGiF/bzuTNtvs6g8+F0Zmf8Oy970djaa1cD3k/
HgAugvEo0b2bE81zIhyUPUi7puWmhV0RMdXYDcKPTONIzDDI/Ru9gFj+yrVOjYpm
YT3OQt5K5cXxJGyM7yBm0BiPhb7CbMNLyizpAjCInG07dMwZFEupcj4nIYInyeJR
d1ZbRRneL8E+MevrHUhKUqwy2BsbASfE7Tp4jbN8sJAQwNFJViFV7cb5/6NV5TXu
Neu7M8Pp8G8rYVwvTZ+u0vvoFCVRDGab6+/ynnfBh9PhzGcbvuvqB4plr3SND0kX
ynKRj4GcxWX6BU9QHLm/IuLoCCAzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUrvWV
b5WWTEcw1WSFU6dZNE0VI6gwHwYDVR0jBBgwFoAUjQHYCOiXdFQ94i0NqEQ3js6o
u5swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4QUVBMjI4L2pRSFlD
T2lYZEZROTRpME5xRVEzanM2b3U1cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pRSFlDT2lYZEZROTRpME5xRVEzanM2b3U1cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4
QUVBMjI4L0JENkM0MzQyQTMyRjExRUZBRkM3NDZCRDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHEwHAwDQYJKoZIhvcNAQEL
BQADggEBACXH+Qe8FbkVwBIjq3LFyO8UNxCktP/5HlkCB4QQebsiFDpR2waIL2F1
XnqFsvjEdmQorhmBy3irXnd80PrFz8hHwL1ju0dLBu/U0FTx8Nse0gUUKCGiSKKa
YXoPBY2hdxiofbVaOg43xl/5KmjiSicvKt565zBijJb3JWr0j57LPoene59k66E4
od1Xskz0Jl4ntWPOGRLWdRRr45i/84X3ewefRIRH/Oi2DkjJESXXNVdaxmEh8jxq
dmZn1a+fEX4WRgxgQ6Q/9ASC8tz2vK0JwpSH0rpbLhmnecuNOVZ7CmzvgM9SUsSw
ZxXxHPB+8rD8pt3szNODi0t6WNV0oLY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org