Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/BFD83C124A2E11EFB4893BBC762E951A.roa
File: BFD83C124A2E11EFB4893BBC762E951A.roa (raw, json)
Hash identifier: f5W6wC5Z6Pqj371DpiEXu2jOcFA6/nWQTPbxHnSrCKQ=
Subject key identifier: F1:B2:91:02:47:07:C4:AB:75:8F:E7:33:94:26:55:8E:A9:7C:6B:75
Certificate issuer: /CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Certificate serial: 45
Authority key identifier: 48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/BFD83C124A2E11EFB4893BBC762E951A.roa
Signing time: Thu 25 Jul 2024 02:36:52 +0000
ROA not before: Thu 25 Jul 2024 02:36:48 +0000
ROA not after: Mon 14 Dec 2026 02:36:48 +0000
asID: 37140
IP address blocks: 196.175.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.mft
rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69 (0x45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642CB1AF/serialNumber=482DEEC29130ED202D8399D69A13269AA612AFD3
Validity
Not Before: Jul 25 02:36:48 2024 GMT
Not After : Dec 14 02:36:48 2026 GMT
Subject: CN=66a1ba44-ea6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:42:58:c2:96:d6:03:be:c8:7e:97:c2:60:6c:
51:41:83:e4:0e:73:a5:4e:2d:a7:76:3e:46:f2:61:
f7:04:6c:fb:de:03:7a:3b:e6:3f:34:19:9c:07:3a:
1c:8a:62:da:da:45:c7:3b:28:93:f3:1e:ac:39:a7:
65:b2:ab:94:cf:f4:8a:5a:8e:9e:f9:f2:8f:f7:24:
c4:a6:62:be:9d:2e:54:ab:2f:29:38:8b:6b:52:fa:
5d:1c:e0:a0:e2:4a:e3:06:c0:84:b3:56:27:f3:0a:
ad:dc:9c:c9:98:2d:2c:da:ee:d7:5f:66:02:04:70:
9d:d9:a3:8d:f5:7e:88:9c:fa:d7:b2:50:7f:6c:8f:
79:1a:a2:fa:0d:5b:72:0a:3c:b6:0a:6a:20:c8:43:
64:44:41:33:d4:65:6f:26:ae:38:f2:78:90:f6:82:
ae:eb:11:aa:8f:fa:32:07:a2:7c:00:f9:1c:99:a3:
9c:b5:1f:62:67:7e:7d:4d:92:83:ca:d0:bc:76:f4:
11:36:9f:4a:d6:dc:1d:e4:4d:d4:4a:a8:95:46:49:
c0:dd:3d:01:7b:fb:4e:1c:d9:b5:b0:e7:c8:43:5b:
d8:de:24:3d:0e:76:58:36:13:40:66:33:f5:99:2e:
0c:a7:2f:c9:1f:65:47:9a:71:69:8d:c3:1f:9e:6d:
eb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B2:91:02:47:07:C4:AB:75:8F:E7:33:94:26:55:8E:A9:7C:6B:75
X509v3 Authority Key Identifier:
keyid:48:2D:EE:C2:91:30:ED:20:2D:83:99:D6:9A:13:26:9A:A6:12:AF:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/SC3uwpEw7SAtg5nWmhMmmqYSr9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SC3uwpEw7SAtg5nWmhMmmqYSr9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642CB1/2A238452348911EF96C98D9E762E951A/BFD83C124A2E11EFB4893BBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.175.0.0/24
Signature Algorithm: sha256WithRSAEncryption
87:49:dc:02:0c:fd:2d:2b:e6:8a:cf:0b:dc:5e:3f:89:0a:61:
80:7e:3c:da:bc:38:0e:fa:e9:b7:d8:43:17:db:b3:9a:60:54:
fa:fa:00:d5:0f:59:a4:09:d2:12:8f:28:5f:3a:4c:05:49:a2:
8b:95:9f:5c:30:3c:85:85:d9:50:51:66:bc:15:c8:eb:bc:9a:
af:d3:66:ff:8e:d6:41:fc:0b:cd:73:a7:8c:90:d5:4c:77:f9:
ff:f3:74:55:13:c6:f4:b0:a7:88:12:8f:8b:ca:04:d4:9f:dc:
b9:ec:81:8a:f0:50:a1:a0:e6:40:f9:9d:3d:ad:57:3c:8a:eb:
6a:b6:e7:83:05:42:e3:34:95:0b:b9:0e:7c:1e:0d:b6:0d:d1:
17:6e:b1:1f:68:36:bb:9b:f8:ab:ca:b0:ef:85:bd:ba:e8:fa:
7a:2c:a6:59:1a:e3:71:c6:39:fd:d6:be:19:4c:3e:d5:90:13:
01:3a:f4:e8:25:a8:a9:24:f3:6d:8f:f7:37:36:26:5e:a7:33:
01:83:6f:11:91:67:b7:3d:fd:70:34:a1:dd:1f:bb:52:2d:4f:
5b:09:65:b7:dc:aa:da:30:43:f6:68:5b:1f:a0:32:dc:b7:00:
8e:1a:9c:4a:bb:97:e0:ad:0f:c7:dc:f2:c5:81:75:a7:9d:81:
aa:40:af:06
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBRTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY0
MkNCMUFGMTEwLwYDVQQFEyg0ODJERUVDMjkxMzBFRDIwMkQ4Mzk5RDY5QTEzMjY5
QUE2MTJBRkQzMB4XDTI0MDcyNTAyMzY0OFoXDTI2MTIxNDAyMzY0OFowGDEWMBQG
A1UEAxMNNjZhMWJhNDQtZWE2ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMdCWMKW1gO+yH6XwmBsUUGD5A5zpU4tp3Y+RvJh9wRs+94DejvmPzQZnAc6
HIpi2tpFxzsok/MerDmnZbKrlM/0ilqOnvnyj/ckxKZivp0uVKsvKTiLa1L6XRzg
oOJK4wbAhLNWJ/MKrdycyZgtLNru119mAgRwndmjjfV+iJz617JQf2yPeRqi+g1b
cgo8tgpqIMhDZERBM9RlbyauOPJ4kPaCrusRqo/6MgeifAD5HJmjnLUfYmd+fU2S
g8rQvHb0ETafStbcHeRN1EqolUZJwN09AXv7ThzZtbDnyENb2N4kPQ52WDYTQGYz
9ZkuDKcvyR9lR5pxaY3DH55t6wECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTxspEC
RwfEq3WP5zOUJlWOqXxrdTAfBgNVHSMEGDAWgBRILe7CkTDtIC2DmdaaEyaaphKv
0zAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NDJDQjEvMkEyMzg0NTIzNDg5MTFFRjk2Qzk4RDlFNzYyRTk1MUEvU0MzdXdw
RXc3U0F0ZzVuV21oTW1tcVlTcjlNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvU0MzdXdwRXc3U0F0ZzVuV21oTW1tcVlTcjlNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NDJDQjEvMkEyMzg0NTIzNDg5MTFFRjk2Qzk4RDlFNzYy
RTk1MUEvQkZEODNDMTI0QTJFMTFFRkI0ODkzQkJDNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMSvADANBgkqhkiG9w0BAQsF
AAOCAQEAh0ncAgz9LSvmis8L3F4/iQphgH482rw4Dvrpt9hDF9uzmmBU+voA1Q9Z
pAnSEo8oXzpMBUmii5WfXDA8hYXZUFFmvBXI67yar9Nm/47WQfwLzXOnjJDVTHf5
//N0VRPG9LCniBKPi8oE1J/cueyBivBQoaDmQPmdPa1XPIrrarbngwVC4zSVC7kO
fB4Ntg3RF26xH2g2u5v4q8qw74W9uuj6eiymWRrjccY5/da+GUw+1ZATATr06CWo
qSTzbY/3NzYmXqczAYNvEZFntz39cDSh3R+7Ui1PWwllt9yq2jBD9mhbH6Ay3LcA
jhqcSruX4K0Px9zyxYF1p52BqkCvBg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org