Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/36DE8CDCBA9A11EE8EE57253775412E6.roa
File: 36DE8CDCBA9A11EE8EE57253775412E6.roa (raw, json)
Hash identifier: Ofy9Cj7JPi8QcyiEvVuGnm/0E9xZicOnWmScEweKsok=
Subject key identifier: 73:30:0E:6C:F4:D1:E5:B5:3E:9D:28:A2:8A:9C:FC:AD:95:20:81:C1
Certificate issuer: /CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Certificate serial: 0156
Authority key identifier: 3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/36DE8CDCBA9A11EE8EE57253775412E6.roa
Signing time: Wed 24 Jan 2024 09:23:21 +0000
ROA not before: Wed 24 Jan 2024 09:23:17 +0000
ROA not after: Thu 24 Jan 2030 09:23:17 +0000
asID: 202023
IP address blocks: 2c0f:3781::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.mft
rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 25 May 2024 00:04:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342 (0x156)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Validity
Not Before: Jan 24 09:23:17 2024 GMT
Not After : Jan 24 09:23:17 2030 GMT
Subject: CN=65b0d708-0fbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2b:63:30:34:d4:a7:e0:a9:85:d5:dd:c0:06:
ad:e6:a7:f8:ef:3b:0d:e9:45:89:5d:e5:84:68:5b:
01:b2:9e:ea:c1:53:f9:33:82:45:fc:de:ae:a4:7b:
1d:b9:14:96:57:49:eb:f2:8a:da:cd:cb:dc:27:57:
a9:3b:02:57:c8:c2:cc:dd:0f:79:f7:06:27:44:b8:
bd:97:7a:d0:eb:cf:c5:05:3d:d9:59:97:fa:6c:43:
61:e8:af:43:4a:70:ab:4c:d8:bc:21:a7:d0:c9:33:
1e:1f:1e:03:04:2c:26:e1:68:9e:37:58:d2:f7:ca:
40:d6:d7:10:a1:5a:fb:91:c0:08:86:f0:16:3d:c0:
99:cf:f9:5f:29:f0:da:ff:ff:a4:30:8e:b1:71:14:
76:12:f3:f7:2b:7f:8b:fa:65:11:4c:34:75:02:2f:
dc:78:a4:2f:76:8d:1a:ee:48:f0:e4:69:b0:d9:4a:
53:d5:0b:4f:d4:47:c5:d6:95:b9:37:09:d0:5c:2a:
a1:92:da:2e:8c:30:39:1e:1d:8e:e9:d7:d2:7a:24:
64:6a:58:47:b8:50:e2:54:4a:d8:3a:a9:e3:f2:c0:
10:e1:04:b4:fe:dd:b7:e8:8b:73:6d:09:e1:51:26:
14:07:a4:06:0f:3e:21:24:e9:d8:27:20:e5:ce:05:
3f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:30:0E:6C:F4:D1:E5:B5:3E:9D:28:A2:8A:9C:FC:AD:95:20:81:C1
X509v3 Authority Key Identifier:
keyid:3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/36DE8CDCBA9A11EE8EE57253775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:3781::/32
Signature Algorithm: sha256WithRSAEncryption
66:21:8c:0d:e1:f8:36:6e:d9:07:db:68:2a:1c:bf:82:68:f0:
00:a9:ca:20:5b:8f:f8:48:bd:da:31:70:49:07:ee:61:4e:70:
97:cb:44:37:91:6c:3f:50:21:e2:d4:72:7c:fc:b0:db:49:bf:
f6:f9:5a:dd:08:58:60:f8:a9:1d:7d:e1:0e:47:c6:c8:02:f8:
92:b9:b6:b2:c5:f7:b2:0a:5b:9f:2b:df:f7:0f:ae:9f:fc:b4:
11:e2:28:3d:fa:8d:74:ff:d1:e7:44:e3:ae:12:5f:3e:71:8b:
2d:71:a1:92:62:41:04:8c:98:da:7e:76:67:b8:60:49:18:9c:
ad:5b:7e:cc:6a:2f:15:86:bb:3c:42:72:46:67:d0:c8:d9:13:
d2:8a:6d:15:36:20:71:7c:f3:66:1f:41:30:11:ef:56:ed:4d:
fe:5a:2d:6c:75:89:72:d8:97:4b:3e:98:b5:8d:71:57:50:a6:
75:49:a3:9c:5e:64:95:10:91:9e:b4:7a:a8:71:18:17:da:c8:
ed:5c:9b:ff:ef:39:c9:c5:63:bc:98:f8:7e:6e:cc:bb:11:68:
fc:bd:5d:95:15:e5:1f:8a:e0:48:72:c0:47:73:fb:eb:b0:8c:
0f:52:6c:fd:77:a9:ff:44:10:91:71:22:67:9a:fc:de:69:f7:
92:8d:2a:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDMyMUFBRjExMC8GA1UEBRMoM0RBM0REQUU0RkQ1NzRCREZBREIyRkU3NTI0RDVE
MzAzNzQxMzUyQzAeFw0yNDAxMjQwOTIzMTdaFw0zMDAxMjQwOTIzMTdaMBgxFjAU
BgNVBAMTDTY1YjBkNzA4LTBmYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC9K2MwNNSn4KmF1d3ABq3mp/jvOw3pRYld5YRoWwGynurBU/kzgkX83q6k
ex25FJZXSevyitrNy9wnV6k7AlfIwszdD3n3BidEuL2XetDrz8UFPdlZl/psQ2Ho
r0NKcKtM2Lwhp9DJMx4fHgMELCbhaJ43WNL3ykDW1xChWvuRwAiG8BY9wJnP+V8p
8Nr//6QwjrFxFHYS8/crf4v6ZRFMNHUCL9x4pC92jRruSPDkabDZSlPVC0/UR8XW
lbk3CdBcKqGS2i6MMDkeHY7p19J6JGRqWEe4UOJUStg6qePywBDhBLT+3bfoi3Nt
CeFRJhQHpAYPPiEk6dgnIOXOBT+nAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUczAO
bPTR5bU+nSiiipz8rZUggcEwHwYDVR0jBBgwFoAUPaPdrk/VdL362y/nUk1dMDdB
NSwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQzMjFBLzJGMTM3M0JFQkNEQTExRURBQ0E1Q0FBRkYxMjIyNDY4L1BhUGRy
a19WZEwzNjJ5X25VazFkTURkQk5Tdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BhUGRya19WZEwzNjJ5X25VazFkTURkQk5Tdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQzMjFBLzJGMTM3M0JFQkNEQTExRURBQ0E1Q0FBRkYx
MjIyNDY4LzM2REU4Q0RDQkE5QTExRUU4RUU1NzI1Mzc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsDzeBMA0GCSqGSIb3DQEB
CwUAA4IBAQBmIYwN4fg2btkH22gqHL+CaPAAqcogW4/4SL3aMXBJB+5hTnCXy0Q3
kWw/UCHi1HJ8/LDbSb/2+VrdCFhg+KkdfeEOR8bIAviSubayxfeyClufK9/3D66f
/LQR4ig9+o10/9HnROOuEl8+cYstcaGSYkEEjJjafnZnuGBJGJytW37Mai8Vhrs8
QnJGZ9DI2RPSim0VNiBxfPNmH0EwEe9W7U3+Wi1sdYly2JdLPpi1jXFXUKZ1SaOc
XmSVEJGetHqocRgX2sjtXJv/7znJxWO8mPh+bsy7EWj8vV2VFeUfiuBIcsBHc/vr
sIwPUmz9d6n/RBCRcSJnmvzeafeSjSqn
-----END CERTIFICATE-----
Generated at Thu May 23 03:14:19 2024 by rpki-client on console-fra.rpki-client.org