Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/E3258EFA826911EE8B24F4234AD9E6FC.roa
File: E3258EFA826911EE8B24F4234AD9E6FC.roa (raw, json)
Hash identifier: eWu8r9rN4KOzqqY/XWlw6jqNH/cI2P6B/LwtjtABcNs=
Subject key identifier: 50:14:08:31:03:DD:42:1B:6F:F4:51:C2:9F:B6:92:70:C6:8F:1C:4D
Certificate issuer: /CN=F363FEF1AF/serialNumber=5152D4929CA85ED77223A26AF81459A9020F10A5
Certificate serial: 0F
Authority key identifier: 51:52:D4:92:9C:A8:5E:D7:72:23:A2:6A:F8:14:59:A9:02:0F:10:A5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/E3258EFA826911EE8B24F4234AD9E6FC.roa
Signing time: Mon 13 Nov 2023 21:16:19 +0000
ROA not before: Mon 13 Nov 2023 21:16:14 +0000
ROA not after: Sun 13 Nov 2033 21:16:14 +0000
asID: 14593
IP address blocks: 102.215.56.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.crl
rsync://rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.mft
rsync://rpki.afrinic.net/repository/afrinic/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363FEF1AF/serialNumber=5152D4929CA85ED77223A26AF81459A9020F10A5
Validity
Not Before: Nov 13 21:16:14 2023 GMT
Not After : Nov 13 21:16:14 2033 GMT
Subject: CN=65529223-d3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:2d:99:f3:a5:ff:1c:71:32:1c:84:de:76:c1:
ca:63:41:a1:46:13:dd:a9:1a:34:41:ab:60:8c:66:
ae:9b:8d:83:78:97:ae:40:c7:92:6e:ea:b5:02:49:
02:66:27:dd:16:de:13:3c:5a:05:57:f0:03:a1:b3:
6a:05:3f:9b:0a:fc:cf:46:2e:bc:b5:01:38:74:4e:
fa:07:df:cf:60:db:5f:de:62:ba:ee:b2:8d:ff:75:
42:23:ba:de:20:36:c8:96:2d:2e:f9:2b:cc:2e:76:
01:7c:04:a5:44:46:a1:ab:32:85:32:2c:72:a1:4c:
75:4b:ee:57:7a:c9:1d:f3:38:43:79:67:7d:35:27:
bb:9f:24:3f:45:24:ca:91:b0:82:2d:6b:b5:32:f3:
a1:09:2d:2e:b3:d3:58:51:1d:99:90:3a:f0:48:68:
20:f9:ad:ac:5d:b7:00:44:34:af:b4:5f:cd:cf:3a:
68:fc:bc:78:6b:1b:03:a8:96:e5:a4:bb:96:69:c6:
64:73:0c:f1:93:e3:a2:60:16:2b:37:55:2c:46:d0:
83:61:b0:5c:10:6a:84:61:de:ad:42:75:94:a1:4d:
4e:7d:66:7a:58:a4:58:46:f8:cf:8a:17:8b:cf:9f:
b2:c4:72:1c:f0:f9:89:ed:ec:51:bd:31:e3:d2:e1:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:14:08:31:03:DD:42:1B:6F:F4:51:C2:9F:B6:92:70:C6:8F:1C:4D
X509v3 Authority Key Identifier:
keyid:51:52:D4:92:9C:A8:5E:D7:72:23:A2:6A:F8:14:59:A9:02:0F:10:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/UVLUkpyoXtdyI6Jq-BRZqQIPEKU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363FEF1/38E9720A799D11EEA7E476804AD9E6FC/E3258EFA826911EE8B24F4234AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.56.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:eb:b2:b3:cc:77:54:64:66:65:22:0f:2f:5f:6b:4e:22:4e:
6c:e9:68:3c:52:96:d6:b4:cb:90:a6:01:23:22:6a:c6:08:83:
07:f1:1f:91:31:d3:77:60:91:01:f3:3f:08:94:84:b8:44:78:
27:6c:bc:8b:0b:47:2b:bb:a0:e0:3b:89:9c:9f:78:94:45:17:
a1:ee:0e:9c:87:09:54:f2:1d:be:6b:cb:19:2c:af:1e:d8:2d:
0a:97:05:a9:0e:ec:51:72:56:64:ed:56:ec:67:1f:71:31:88:
48:bf:a4:cd:07:09:31:29:74:38:0b:e8:73:5a:2f:2d:94:c5:
cf:e5:08:3d:0b:bd:b1:55:51:f6:e2:4d:d7:8a:6f:9e:51:4a:
14:15:77:6e:45:3e:38:f4:39:3b:32:de:73:58:44:e3:25:80:
b4:4e:40:f9:8a:d8:5b:a3:48:17:b2:30:36:a7:9f:67:0a:64:
15:86:80:38:7e:35:11:43:11:97:fe:7e:7b:ab:98:ed:32:ac:
f9:53:c0:32:a1:83:6e:62:c6:ee:f1:92:26:39:fb:97:6f:b0:
6e:9b:fa:a7:bc:d3:ca:b7:95:31:d1:d3:8f:3a:24:55:4c:fe:
7a:77:02:46:df:2f:8b:74:92:99:d7:e7:0f:10:83:f3:ac:a6:
ce:8e:5a:d3
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBDzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYz
RkVGMUFGMTEwLwYDVQQFEyg1MTUyRDQ5MjlDQTg1RUQ3NzIyM0EyNkFGODE0NTlB
OTAyMEYxMEE1MB4XDTIzMTExMzIxMTYxNFoXDTMzMTExMzIxMTYxNFowGDEWMBQG
A1UEAxMNNjU1MjkyMjMtZDNhNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPstmfOl/xxxMhyE3nbBymNBoUYT3akaNEGrYIxmrpuNg3iXrkDHkm7qtQJJ
AmYn3RbeEzxaBVfwA6GzagU/mwr8z0YuvLUBOHRO+gffz2DbX95iuu6yjf91QiO6
3iA2yJYtLvkrzC52AXwEpURGoasyhTIscqFMdUvuV3rJHfM4Q3lnfTUnu58kP0Uk
ypGwgi1rtTLzoQktLrPTWFEdmZA68EhoIPmtrF23AEQ0r7Rfzc86aPy8eGsbA6iW
5aS7lmnGZHMM8ZPjomAWKzdVLEbQg2GwXBBqhGHerUJ1lKFNTn1melikWEb4z4oX
i8+fssRyHPD5ie3sUb0x49Lh4q8CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRQFAgx
A91CG2/0UcKftpJwxo8cTTAfBgNVHSMEGDAWgBRRUtSSnKhe13Ijomr4FFmpAg8Q
pTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2M0ZFRjEvMzhFOTcyMEE3OTlEMTFFRUE3RTQ3NjgwNEFEOUU2RkMvVVZMVWtw
eW9YdGR5STZKcS1CUlpxUUlQRUtVLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVVZMVWtweW9YdGR5STZKcS1CUlpxUUlQRUtVLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2M0ZFRjEvMzhFOTcyMEE3OTlEMTFFRUE3RTQ3NjgwNEFE
OUU2RkMvRTMyNThFRkE4MjY5MTFFRThCMjRGNDIzNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbXODANBgkqhkiG9w0BAQsF
AAOCAQEAf+uys8x3VGRmZSIPL19rTiJObOloPFKW1rTLkKYBIyJqxgiDB/EfkTHT
d2CRAfM/CJSEuER4J2y8iwtHK7ug4DuJnJ94lEUXoe4OnIcJVPIdvmvLGSyvHtgt
CpcFqQ7sUXJWZO1W7GcfcTGISL+kzQcJMSl0OAvoc1ovLZTFz+UIPQu9sVVR9uJN
14pvnlFKFBV3bkU+OPQ5OzLec1hE4yWAtE5A+YrYW6NIF7IwNqefZwpkFYaAOH41
EUMRl/5+e6uY7TKs+VPAMqGDbmLG7vGSJjn7l2+wbpv6p7zTyreVMdHTjzokVUz+
encCRt8vi3SSmdfnDxCD86ymzo5a0w==
-----END CERTIFICATE-----
Generated at Thu Nov 21 03:10:16 2024 by rpki-client on console-fra.rpki-client.org