Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/9A80C77C595611EF8984CD7A762E951A.roa
File: 9A80C77C595611EF8984CD7A762E951A.roa (raw, json)
Hash identifier: ZdMpYI32B75UuK8vGc3RW46+xhLMuTA2Hwcvv0zVVdA=
Subject key identifier: 2A:3F:3E:66:9D:2E:75:67:77:A3:3D:AA:FE:85:CC:3B:A6:A6:F9:89
Certificate issuer: /CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Certificate serial: 0230
Authority key identifier: 3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/9A80C77C595611EF8984CD7A762E951A.roa
Signing time: Tue 13 Aug 2024 09:29:57 +0000
ROA not before: Tue 13 Aug 2024 09:29:53 +0000
ROA not after: Tue 13 Aug 2030 09:29:53 +0000
asID: 202023
IP address blocks: 2c0f:3781:2100::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.mft
rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 560 (0x230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364321AAF/serialNumber=3DA3DDAE4FD574BDFADB2FE7524D5D303741352C
Validity
Not Before: Aug 13 09:29:53 2024 GMT
Not After : Aug 13 09:29:53 2030 GMT
Subject: CN=66bb2795-2565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ac:bd:d1:86:6a:2e:a1:94:c4:9a:0c:50:dd:
f1:9b:f2:12:0f:e6:55:31:2a:05:c9:a8:b9:71:9c:
78:0c:ca:e9:65:fe:3f:97:0d:bc:c8:d5:a3:54:40:
86:d4:d4:e1:58:b2:98:1b:d4:13:82:de:9f:e5:fa:
e5:95:05:19:1c:f7:c7:74:b3:9e:77:20:36:95:e1:
76:48:49:68:73:54:c3:8a:21:bc:bf:33:bb:89:bf:
0a:77:be:28:53:71:50:8f:7a:af:dc:17:fd:b2:0a:
2e:e1:be:8d:5e:b7:a9:30:01:22:e7:2b:ea:66:31:
7a:21:25:0c:f1:58:7e:6c:5d:4f:53:17:32:b6:9e:
3a:ef:7f:9e:74:71:bb:54:05:92:94:07:7c:30:80:
20:a5:2e:3b:02:d5:1c:08:bf:eb:26:63:9c:8c:8b:
8b:62:fc:ef:18:fb:af:9a:44:72:5c:3d:28:0c:29:
67:ee:33:38:38:2b:e5:1d:42:38:e8:1d:24:7b:f3:
8e:97:ff:a2:ba:1f:af:51:cd:1f:eb:42:98:f0:87:
ed:53:df:c8:6f:59:09:eb:e3:bc:18:79:04:be:cc:
cb:80:32:cd:72:4b:13:09:ac:2a:ab:93:a6:5a:7d:
3e:20:4b:73:23:a2:66:1b:89:54:50:64:01:47:9a:
5a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3F:3E:66:9D:2E:75:67:77:A3:3D:AA:FE:85:CC:3B:A6:A6:F9:89
X509v3 Authority Key Identifier:
keyid:3D:A3:DD:AE:4F:D5:74:BD:FA:DB:2F:E7:52:4D:5D:30:37:41:35:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/PaPdrk_VdL362y_nUk1dMDdBNSw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PaPdrk_VdL362y_nUk1dMDdBNSw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364321A/2F1373BEBCDA11EDACA5CAAFF1222468/9A80C77C595611EF8984CD7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:3781:2100::/44
Signature Algorithm: sha256WithRSAEncryption
0e:12:f9:a4:31:ae:64:43:c2:fc:b9:84:2a:3e:32:48:7c:8a:
24:41:ae:01:6f:05:bb:19:40:32:75:7b:92:17:3d:d9:75:70:
11:d0:12:b9:5d:74:5b:4a:9b:42:aa:b4:73:1f:79:d9:4b:37:
18:5b:11:c3:f3:0d:8f:e6:db:06:ae:e7:9b:21:b1:77:1b:7e:
93:3f:02:4f:20:5d:ac:19:bd:db:48:4c:66:1f:7c:66:b3:8f:
e7:fd:b2:b5:33:a9:07:ed:34:36:1b:83:cf:a0:d2:fb:ef:4a:
ee:18:6a:94:5b:1c:55:79:7f:28:1f:80:a2:0e:40:41:6f:47:
8d:f7:7e:19:c0:14:ea:70:06:c6:94:45:16:ee:e5:86:93:6e:
94:ab:f8:f1:14:89:b3:d1:bf:70:fb:81:67:43:24:4a:b5:14:
f5:8b:4a:fd:ba:42:f5:1d:fe:02:57:a8:46:6c:36:2e:21:ee:
42:2b:d6:09:6b:0b:4c:f7:9c:6d:a2:93:63:ee:28:1c:a2:66:
3e:ab:f1:56:04:6e:d1:ac:7e:97:68:42:17:ba:38:45:6a:d6:
f3:5b:6b:11:d3:eb:7f:9f:fc:4d:09:42:ef:95:ba:a8:85:98:
ce:23:d6:d1:4a:c1:db:29:1a:10:99:3d:6b:80:81:a8:af:9d:
5a:1c:10:01
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDMyMUFBRjExMC8GA1UEBRMoM0RBM0REQUU0RkQ1NzRCREZBREIyRkU3NTI0RDVE
MzAzNzQxMzUyQzAeFw0yNDA4MTMwOTI5NTNaFw0zMDA4MTMwOTI5NTNaMBgxFjAU
BgNVBAMTDTY2YmIyNzk1LTI1NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6rL3RhmouoZTEmgxQ3fGb8hIP5lUxKgXJqLlxnHgMyull/j+XDbzI1aNU
QIbU1OFYspgb1BOC3p/l+uWVBRkc98d0s553IDaV4XZISWhzVMOKIby/M7uJvwp3
vihTcVCPeq/cF/2yCi7hvo1et6kwASLnK+pmMXohJQzxWH5sXU9TFzK2njrvf550
cbtUBZKUB3wwgCClLjsC1RwIv+smY5yMi4ti/O8Y+6+aRHJcPSgMKWfuMzg4K+Ud
QjjoHSR7846X/6K6H69RzR/rQpjwh+1T38hvWQnr47wYeQS+zMuAMs1ySxMJrCqr
k6ZafT4gS3MjomYbiVRQZAFHmloPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKj8+
Zp0udWd3oz2q/oXMO6am+YkwHwYDVR0jBBgwFoAUPaPdrk/VdL362y/nUk1dMDdB
NSwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQzMjFBLzJGMTM3M0JFQkNEQTExRURBQ0E1Q0FBRkYxMjIyNDY4L1BhUGRy
a19WZEwzNjJ5X25VazFkTURkQk5Tdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BhUGRya19WZEwzNjJ5X25VazFkTURkQk5Tdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQzMjFBLzJGMTM3M0JFQkNEQTExRURBQ0E1Q0FBRkYx
MjIyNDY4LzlBODBDNzdDNTk1NjExRUY4OTg0Q0Q3QTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQsDzeBIQAwDQYJKoZIhvcN
AQELBQADggEBAA4S+aQxrmRDwvy5hCo+Mkh8iiRBrgFvBbsZQDJ1e5IXPdl1cBHQ
ErlddFtKm0KqtHMfedlLNxhbEcPzDY/m2wau55shsXcbfpM/Ak8gXawZvdtITGYf
fGazj+f9srUzqQftNDYbg8+g0vvvSu4YapRbHFV5fygfgKIOQEFvR433fhnAFOpw
BsaURRbu5YaTbpSr+PEUibPRv3D7gWdDJEq1FPWLSv26QvUd/gJXqEZsNi4h7kIr
1glrC0z3nG2ik2PuKByiZj6r8VYEbtGsfpdoQhe6OEVq1vNbaxHT63+f/E0JQu+V
uqiFmM4j1tFKwdspGhCZPWuAgaivnVocEAE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org