Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/E9EB8D9EA32311EF998D4074762E951A.roa
File: E9EB8D9EA32311EF998D4074762E951A.roa (raw, json)
Hash identifier: f7LbuCsz1hH/ZnBV298StqdOFHNpw2u4DY5EmshcxuE=
Subject key identifier: 67:EF:DB:A0:59:86:6E:02:D8:36:68:A3:65:71:F9:17:6F:92:EB:D3
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0EF5
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/E9EB8D9EA32311EF998D4074762E951A.roa
Signing time: Fri 15 Nov 2024 07:33:32 +0000
ROA not before: Fri 15 Nov 2024 07:33:28 +0000
ROA not after: Fri 15 Nov 2030 07:33:28 +0000
asID: 37708
IP address blocks: 196.1.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.mft
rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3829 (0xef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Nov 15 07:33:28 2024 GMT
Not After : Nov 15 07:33:28 2030 GMT
Subject: CN=6736f94b-cbb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:10:47:05:a3:71:fb:3d:0c:2c:2d:25:0f:c8:
3a:20:e7:3e:44:2a:73:53:a9:a5:68:72:07:46:2e:
0e:26:17:20:2b:65:8f:9d:0c:63:bc:08:13:e9:09:
93:4b:4a:e3:a6:0e:62:55:48:a8:a2:70:af:7f:c1:
ea:75:12:27:e3:be:e0:54:e2:72:2a:99:b4:47:dc:
dc:e0:a2:43:2a:4d:16:d7:da:19:46:92:cd:51:17:
75:2e:f7:fb:12:34:eb:12:ef:04:9c:5f:79:f2:f5:
80:4a:e1:25:f2:ad:22:8d:9d:24:72:f8:59:f6:1f:
28:c8:54:24:e9:f9:a1:02:b5:23:d3:5d:5f:88:04:
ec:aa:31:b2:7c:b4:6e:97:df:08:2c:c1:80:1e:7c:
a5:0f:d1:7f:e6:a2:65:41:d3:d0:9f:ba:13:5f:1f:
a2:ea:ee:11:31:8b:76:08:23:c2:9f:cb:9f:5f:a5:
6e:2b:ae:cc:10:6b:4d:4a:09:14:f6:1a:f5:a3:90:
3d:ec:c0:f7:99:66:ee:89:3a:22:85:bc:0a:32:cc:
93:92:f6:6e:8e:c3:77:38:4e:59:8e:7d:f7:51:de:
d2:eb:59:7b:7e:56:a0:69:3f:7f:95:bd:1d:24:87:
9c:de:92:2b:ad:c6:3b:c1:28:99:f3:c7:cd:da:24:
21:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:EF:DB:A0:59:86:6E:02:D8:36:68:A3:65:71:F9:17:6F:92:EB:D3
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/E9EB8D9EA32311EF998D4074762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.0.0/24
Signature Algorithm: sha256WithRSAEncryption
82:72:4b:c4:d6:fb:e0:5f:ce:10:3f:29:81:4a:3d:65:68:be:
63:88:2b:8f:72:c3:30:db:4d:65:1f:43:04:29:df:4d:af:ed:
94:7e:4b:c6:9f:1c:e2:08:aa:65:e8:15:5b:8e:88:1a:9e:39:
5e:03:fe:f0:09:43:7d:36:52:ea:3a:46:aa:4b:86:0c:86:f1:
85:72:b7:b9:d1:09:00:ff:37:cc:2b:bc:ef:94:bd:e4:fc:13:
6b:8d:e5:5c:50:66:75:f5:13:97:39:db:36:e7:ac:4f:ec:aa:
c1:0b:9c:27:c4:bc:d3:35:21:bf:e3:de:79:7b:ea:22:e9:cf:
e6:f1:33:05:ce:5c:71:82:9b:6c:e3:a9:25:c3:66:57:ea:e1:
2c:9a:c0:73:28:87:d2:d1:c4:03:dd:a1:2e:c7:6d:cd:69:93:
dd:74:11:29:e6:01:2c:7b:04:94:4a:b8:da:f0:5a:a1:b0:5a:
94:d1:a2:fe:b6:10:0c:b8:e0:8d:aa:67:10:65:09:d3:42:e7:
48:76:25:7d:09:aa:94:54:fc:33:07:00:79:13:82:e7:d7:d5:
43:b4:36:d8:c1:63:b7:6b:8d:8a:1a:8b:8c:4a:f4:81:8e:8a:
c5:3c:ff:18:6e:b5:06:9c:df:e2:85:c3:fc:a8:6c:0c:92:3a:
4a:fb:86:9d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDvUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MzREMjJBRjExMC8GA1UEBRMoOEQwMUQ4MDhFODk3NzQ1NDNERTIyRDBEQTg0NDM3
OEVDRUE4QkI5QjAeFw0yNDExMTUwNzMzMjhaFw0zMDExMTUwNzMzMjhaMBgxFjAU
BgNVBAMTDTY3MzZmOTRiLWNiYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDSEEcFo3H7PQwsLSUPyDog5z5EKnNTqaVocgdGLg4mFyArZY+dDGO8CBPp
CZNLSuOmDmJVSKiicK9/wep1EifjvuBU4nIqmbRH3NzgokMqTRbX2hlGks1RF3Uu
9/sSNOsS7wScX3ny9YBK4SXyrSKNnSRy+Fn2HyjIVCTp+aECtSPTXV+IBOyqMbJ8
tG6X3wgswYAefKUP0X/momVB09CfuhNfH6Lq7hExi3YII8Kfy59fpW4rrswQa01K
CRT2GvWjkD3swPeZZu6JOiKFvAoyzJOS9m6Ow3c4TlmOffdR3tLrWXt+VqBpP3+V
vR0kh5zekiutxjvBKJnzx83aJCGdAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUZ+/b
oFmGbgLYNmijZXH5F2+S69MwHwYDVR0jBBgwFoAUjQHYCOiXdFQ94i0NqEQ3js6o
u5swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4QUVBMjI4L2pRSFlD
T2lYZEZROTRpME5xRVEzanM2b3U1cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pRSFlDT2lYZEZROTRpME5xRVEzanM2b3U1cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4
QUVBMjI4L0U5RUI4RDlFQTMyMzExRUY5OThENDA3NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEAQAwDQYJKoZIhvcNAQEL
BQADggEBAIJyS8TW++BfzhA/KYFKPWVovmOIK49ywzDbTWUfQwQp302v7ZR+S8af
HOIIqmXoFVuOiBqeOV4D/vAJQ302Uuo6RqpLhgyG8YVyt7nRCQD/N8wrvO+UveT8
E2uN5VxQZnX1E5c52zbnrE/sqsELnCfEvNM1Ib/j3nl76iLpz+bxMwXOXHGCm2zj
qSXDZlfq4SyawHMoh9LRxAPdoS7Hbc1pk910ESnmASx7BJRKuNrwWqGwWpTRov62
EAy44I2qZxBlCdNC50h2JX0JqpRU/DMHAHkTgufX1UO0NtjBY7drjYoai4xK9IGO
isU8/xhutQac3+KFw/yobAySOkr7hp0=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:25 2024 by rpki-client on console-fra.rpki-client.org