Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/5E151552684D11EBB3B0CD73F8AEA228.roa
File: 5E151552684D11EBB3B0CD73F8AEA228.roa (raw, json)
Hash identifier: flUQEXj5snMlxFkZcm/MM/z0tsowYDIY7U3XPo+QYGM=
Subject key identifier: 1C:E8:82:7B:43:33:C5:5B:72:A6:96:3F:27:EF:AA:19:F5:4A:8D:42
Certificate issuer: /CN=F363F4B9AF/serialNumber=03D8E2A74A4D8068BFBDEE007216C1007AC7FDD9
Certificate serial: 02
Authority key identifier: 03:D8:E2:A7:4A:4D:80:68:BF:BD:EE:00:72:16:C1:00:7A:C7:FD:D9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A9jip0pNgGi_ve4AchbBAHrH_dk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/5E151552684D11EBB3B0CD73F8AEA228.roa
Signing time: Sat 06 Feb 2021 07:31:47 +0000
ROA not before: Sat 06 Feb 2021 07:31:41 +0000
ROA not after: Fri 01 Feb 2030 07:31:41 +0000
asID: 328767
IP address blocks: 102.222.12.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/A9jip0pNgGi_ve4AchbBAHrH_dk.crl
rsync://rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/A9jip0pNgGi_ve4AchbBAHrH_dk.mft
rsync://rpki.afrinic.net/repository/afrinic/A9jip0pNgGi_ve4AchbBAHrH_dk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363F4B9AF/serialNumber=03D8E2A74A4D8068BFBDEE007216C1007AC7FDD9
Validity
Not Before: Feb 6 07:31:41 2021 GMT
Not After : Feb 1 07:31:41 2030 GMT
Subject: CN=601e45e2-e647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:df:ce:7c:a3:a5:1b:6d:81:79:42:14:f5:
62:f0:ce:00:f3:1e:db:43:39:0c:d9:9e:4f:ef:83:
9d:b7:4b:46:6a:d0:c4:b4:c8:ce:ae:ea:91:1b:db:
cd:2f:8d:24:28:33:3a:cb:46:90:7c:3b:b8:06:e8:
8c:1e:f2:4d:24:c9:2a:58:70:19:b0:f1:28:88:14:
02:1b:7a:ec:bd:4a:d2:7f:2f:a3:79:99:4e:f2:5a:
2b:6c:f8:e9:28:77:88:ca:94:eb:f5:81:78:70:2f:
11:74:0c:14:c3:78:55:38:c0:31:54:01:d7:e8:d9:
d8:7e:a1:93:88:34:23:46:d7:27:a1:15:55:35:4e:
7f:40:2c:46:8b:a9:74:5a:40:94:6b:bb:d6:2d:a6:
50:66:3d:dc:9b:a7:56:36:2a:8b:c0:ec:0d:8f:12:
73:e4:77:d2:21:ac:23:ef:de:ce:07:b9:cc:5a:9a:
74:81:bf:a4:fe:51:da:51:19:0e:af:73:3b:f0:4b:
60:01:f6:76:4c:88:e7:c8:02:02:c2:1c:73:cb:01:
1a:94:62:33:d6:0c:d5:13:66:5f:64:cb:ee:d8:cf:
87:69:e7:98:21:fc:80:74:3b:5d:7a:1e:85:2a:72:
ee:b7:c0:de:3f:af:1b:11:a6:05:0c:a7:a7:de:c9:
85:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E8:82:7B:43:33:C5:5B:72:A6:96:3F:27:EF:AA:19:F5:4A:8D:42
X509v3 Authority Key Identifier:
keyid:03:D8:E2:A7:4A:4D:80:68:BF:BD:EE:00:72:16:C1:00:7A:C7:FD:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/A9jip0pNgGi_ve4AchbBAHrH_dk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A9jip0pNgGi_ve4AchbBAHrH_dk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363F4B9/2F2F6724684D11EB86329C73F8AEA228/5E151552684D11EBB3B0CD73F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.12.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:fb:36:3b:ed:8a:ca:74:ea:ca:ad:be:da:85:cb:9d:cb:7a:
a1:f0:96:d5:88:2c:c5:29:a3:06:32:eb:9e:04:9e:68:ab:3c:
5c:29:8d:da:84:71:b0:49:c9:cb:50:97:22:d6:e8:65:08:46:
24:20:ad:c4:19:56:7d:6a:3f:9d:4b:7b:3f:4f:b2:83:45:c3:
8f:6e:cf:5d:c2:81:95:0d:e6:77:5c:0e:07:7c:4a:f7:38:04:
c6:09:66:e4:2f:32:81:80:32:61:7a:c3:73:5b:f8:fe:4f:84:
ca:79:7e:3f:2d:6b:90:38:80:6f:c8:05:b1:9e:0f:51:90:1a:
fc:cb:c5:8d:2b:52:a6:6f:22:ad:dd:d5:8d:7f:79:1f:6c:4b:
85:33:77:f1:90:a5:2c:82:2e:93:a1:cc:60:d3:a6:b6:9b:b9:
b2:1d:a9:09:8b:b0:32:bb:ec:b4:ac:36:9f:1a:b0:10:3b:ec:
30:c9:5a:0b:2b:c1:24:99:89:8f:ad:73:cc:90:d4:4d:b6:32:
14:dc:9b:9c:68:29:6c:14:bf:1d:e2:08:e7:c2:e7:8b:e0:fa:
aa:00:b3:b8:f8:d0:c0:3b:ef:fc:82:0f:22:c9:2c:65:95:f6:
1b:7d:58:58:01:4b:dd:1d:38:ac:94:a3:c1:f7:86:3c:4a:61:
c9:d3:7f:92
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYz
RjRCOUFGMTEwLwYDVQQFEygwM0Q4RTJBNzRBNEQ4MDY4QkZCREVFMDA3MjE2QzEw
MDdBQzdGREQ5MB4XDTIxMDIwNjA3MzE0MVoXDTMwMDIwMTA3MzE0MVowGDEWMBQG
A1UEAxMNNjAxZTQ1ZTItZTY0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANQ33858o6UbbYF5QhT1YvDOAPMe20M5DNmeT++DnbdLRmrQxLTIzq7qkRvb
zS+NJCgzOstGkHw7uAbojB7yTSTJKlhwGbDxKIgUAht67L1K0n8vo3mZTvJaK2z4
6Sh3iMqU6/WBeHAvEXQMFMN4VTjAMVQB1+jZ2H6hk4g0I0bXJ6EVVTVOf0AsRoup
dFpAlGu71i2mUGY93JunVjYqi8DsDY8Sc+R30iGsI+/ezge5zFqadIG/pP5R2lEZ
Dq9zO/BLYAH2dkyI58gCAsIcc8sBGpRiM9YM1RNmX2TL7tjPh2nnmCH8gHQ7XXoe
hSpy7rfA3j+vGxGmBQynp97JhX8CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQc6IJ7
QzPFW3Kmlj8n76oZ9UqNQjAfBgNVHSMEGDAWgBQD2OKnSk2AaL+97gByFsEAesf9
2TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2M0Y0QjkvMkYyRjY3MjQ2ODREMTFFQjg2MzI5QzczRjhBRUEyMjgvQTlqaXAw
cE5nR2lfdmU0QWNoYkJBSHJIX2RrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvQTlqaXAwcE5nR2lfdmU0QWNoYkJBSHJIX2RrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2M0Y0QjkvMkYyRjY3MjQ2ODREMTFFQjg2MzI5QzczRjhB
RUEyMjgvNUUxNTE1NTI2ODREMTFFQkIzQjBDRDczRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbeDDANBgkqhkiG9w0BAQsF
AAOCAQEAqfs2O+2KynTqyq2+2oXLnct6ofCW1YgsxSmjBjLrngSeaKs8XCmN2oRx
sEnJy1CXItboZQhGJCCtxBlWfWo/nUt7P0+yg0XDj27PXcKBlQ3md1wOB3xK9zgE
xglm5C8ygYAyYXrDc1v4/k+Eynl+Py1rkDiAb8gFsZ4PUZAa/MvFjStSpm8ird3V
jX95H2xLhTN38ZClLIIuk6HMYNOmtpu5sh2pCYuwMrvstKw2nxqwEDvsMMlaCyvB
JJmJj61zzJDUTbYyFNybnGgpbBS/HeII58Lni+D6qgCzuPjQwDvv/IIPIsksZZX2
G31YWAFL3R04rJSjwfeGPEphydN/kg==
-----END CERTIFICATE-----
Generated at Sat May 4 03:05:59 2024 by rpki-client on console-ams.rpki-client.org