Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/916580AACA5A11EEBC5AFA9D775412E6.roa
File: 916580AACA5A11EEBC5AFA9D775412E6.roa (raw, json)
Hash identifier: ztp7/02g9RTHkUR+QiE90a3d75LjUNCsuA1EVWoHlVU=
Subject key identifier: 00:C7:6A:8D:97:85:83:4E:4C:01:F3:E9:D6:FB:B7:5F:4F:93:E7:1B
Certificate issuer: /CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Certificate serial: 014B
Authority key identifier: C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/916580AACA5A11EEBC5AFA9D775412E6.roa
Signing time: Tue 13 Feb 2024 10:28:03 +0000
ROA not before: Tue 13 Feb 2024 10:27:59 +0000
ROA not after: Mon 13 Feb 2034 10:27:59 +0000
asID: 19711
IP address blocks: 154.119.96.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.mft
rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 20 Jun 2024 00:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331 (0x14b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Validity
Not Before: Feb 13 10:27:59 2024 GMT
Not After : Feb 13 10:27:59 2034 GMT
Subject: CN=65cb4433-efd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9c:46:15:0d:0e:80:05:19:78:6a:b5:4c:ee:
1c:6f:04:93:66:d7:cd:e4:d7:83:a5:8e:16:52:1e:
3e:c7:4e:90:ac:b2:ae:2e:e4:e8:84:59:b6:96:5a:
0e:9f:a0:c5:a0:63:62:9e:5a:5e:a4:42:f8:97:45:
e5:33:60:96:cd:67:5f:30:97:c0:e5:66:be:a5:fd:
a4:e3:42:85:c0:17:e5:c3:20:d3:d4:e6:70:69:b3:
38:6a:0c:ea:11:a7:97:2a:bd:ff:a7:c9:a5:ee:45:
e0:dc:22:68:af:18:2b:0a:af:f7:34:19:c8:63:dd:
73:17:eb:a2:86:d9:e2:bb:ee:f6:91:84:96:85:fd:
45:7c:7f:50:b3:37:10:45:f2:d2:39:46:cf:d7:79:
1b:43:00:ac:f8:b5:37:7f:06:98:8d:ed:af:7d:26:
07:21:28:43:d8:b3:8d:ec:4c:7f:b5:2c:1d:5b:7f:
18:56:0c:c0:a6:ae:36:1a:70:7f:96:f8:5b:59:f5:
ab:6d:d6:ee:82:de:6d:72:2e:d5:0a:76:8d:33:64:
d5:0e:0a:08:8d:8b:a8:c4:1e:91:cb:58:b6:2b:cf:
1a:0e:03:fd:02:91:6c:97:c9:8f:9f:b8:fd:cb:5f:
ed:9b:2d:30:08:f3:37:1e:91:d0:78:3b:ce:61:b8:
17:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C7:6A:8D:97:85:83:4E:4C:01:F3:E9:D6:FB:B7:5F:4F:93:E7:1B
X509v3 Authority Key Identifier:
keyid:C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/916580AACA5A11EEBC5AFA9D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.119.96.0/19
Signature Algorithm: sha256WithRSAEncryption
6d:b8:f7:6d:f3:5d:80:9b:a2:ba:d4:ef:b6:ee:61:11:a6:b6:
94:51:9f:98:f6:36:3a:b1:f5:43:4d:0c:eb:e2:d7:2b:86:99:
2c:30:d1:1d:8e:58:23:51:b8:ca:ef:cc:4b:eb:65:6e:2a:23:
12:f9:79:c5:ec:65:42:14:01:cd:d8:ae:bc:bf:88:5a:15:0e:
37:25:67:49:c3:d1:75:2d:e8:af:8d:44:71:fc:db:1d:d0:b4:
6e:12:92:dd:37:80:b3:cb:06:bc:15:43:0f:6f:da:8d:7b:43:
80:ab:c2:14:71:ed:ff:b3:3a:44:95:b1:df:05:e3:2e:5d:44:
c4:fe:ea:b4:d6:85:41:ff:ae:f3:7a:c5:86:ee:c7:31:c2:05:
60:19:3c:8a:8f:1d:27:16:21:02:e7:57:08:60:6e:0b:95:66:
cc:bf:1f:06:ed:7c:ee:45:5d:43:6e:2d:73:82:79:a0:7b:56:
07:c1:20:1b:d9:f3:d1:74:7f:a8:9c:d9:76:15:60:46:92:ff:
d4:ee:b4:b8:e4:02:13:2b:2b:2d:3f:47:59:fc:30:d9:19:ad:
52:87:18:3b:78:53:6d:fe:bb:44:16:2e:49:a3:35:ce:85:86:
61:f7:34:e8:b6:f7:80:6c:db:26:03:5a:ee:30:a4:df:a1:82:
d2:20:10:ac
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAUswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0VBODBBRjExMC8GA1UEBRMoQzY3QzYyMzExMjA5NDEyMzU1ODFENTk0MjU2NUFC
Rjc0MTlEQ0VDQzAeFw0yNDAyMTMxMDI3NTlaFw0zNDAyMTMxMDI3NTlaMBgxFjAU
BgNVBAMTDTY1Y2I0NDMzLWVmZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCYnEYVDQ6ABRl4arVM7hxvBJNm183k14OljhZSHj7HTpCssq4u5OiEWbaW
Wg6foMWgY2KeWl6kQviXReUzYJbNZ18wl8DlZr6l/aTjQoXAF+XDINPU5nBpszhq
DOoRp5cqvf+nyaXuReDcImivGCsKr/c0Gchj3XMX66KG2eK77vaRhJaF/UV8f1Cz
NxBF8tI5Rs/XeRtDAKz4tTd/BpiN7a99JgchKEPYs43sTH+1LB1bfxhWDMCmrjYa
cH+W+FtZ9att1u6C3m1yLtUKdo0zZNUOCgiNi6jEHpHLWLYrzxoOA/0CkWyXyY+f
uP3LX+2bLTAI8zcekdB4O85huBdRAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUAMdq
jZeFg05MAfPp1vu3X0+T5xswHwYDVR0jBBgwFoAUxnxiMRIJQSNVgdWUJWWr90Gd
zswwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNFQTgwLzIzRDU0QjI4REREQTExRUQ4NjUzMkUwRDMwNkQ4QzFEL3hueGlN
UklKUVNOVmdkV1VKV1dyOTBHZHpzdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3hueGlNUklKUVNOVmdkV1VKV1dyOTBHZHpzdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNFQTgwLzIzRDU0QjI4REREQTExRUQ4NjUzMkUwRDMw
NkQ4QzFELzkxNjU4MEFBQ0E1QTExRUVCQzVBRkE5RDc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWad2AwDQYJKoZIhvcNAQEL
BQADggEBAG24923zXYCborrU77buYRGmtpRRn5j2Njqx9UNNDOvi1yuGmSww0R2O
WCNRuMrvzEvrZW4qIxL5ecXsZUIUAc3Yrry/iFoVDjclZ0nD0XUt6K+NRHH82x3Q
tG4Skt03gLPLBrwVQw9v2o17Q4CrwhRx7f+zOkSVsd8F4y5dRMT+6rTWhUH/rvN6
xYbuxzHCBWAZPIqPHScWIQLnVwhgbguVZsy/HwbtfO5FXUNuLXOCeaB7VgfBIBvZ
89F0f6ic2XYVYEaS/9TutLjkAhMrKy0/R1n8MNkZrVKHGDt4U23+u0QWLkmjNc6F
hmH3NOi294Bs2yYDWu4wpN+hgtIgEKw=
-----END CERTIFICATE-----
Generated at Tue Jun 18 02:56:14 2024 by rpki-client on console-fra.rpki-client.org