Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/3A9A5B44C23911ED87BAE3F5F1222468.roa
File: 3A9A5B44C23911ED87BAE3F5F1222468.roa (raw, json)
Hash identifier: WArr15xGoIYx31DZ0ud7bX5PgsvR3dhjK4kVd0dhw/g=
Subject key identifier: 00:97:13:2C:77:72:AE:1F:B3:C3:61:27:DA:AA:68:98:07:8B:A8:00
Certificate issuer: /CN=F364379DAF/serialNumber=100CBD464A905A5B568F7ADCEF1F9D20BC752331
Certificate serial: 06
Authority key identifier: 10:0C:BD:46:4A:90:5A:5B:56:8F:7A:DC:EF:1F:9D:20:BC:75:23:31
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EAy9RkqQWltWj3rc7x-dILx1IzE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/3A9A5B44C23911ED87BAE3F5F1222468.roa
Signing time: Tue 14 Mar 2023 07:24:17 +0000
ROA not before: Tue 14 Mar 2023 07:24:12 +0000
ROA not after: Fri 14 Mar 2025 07:24:12 +0000
asID: 37014
IP address blocks: 41.223.72.0/22 maxlen: 22
41.223.72.0/24 maxlen: 24
41.223.73.0/24 maxlen: 24
41.223.74.0/24 maxlen: 24
41.223.75.0/24 maxlen: 24
102.215.0.0/22 maxlen: 22
102.215.0.0/24 maxlen: 24
102.215.1.0/24 maxlen: 24
102.215.2.0/24 maxlen: 24
102.215.3.0/24 maxlen: 24
2c0f:4780::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/EAy9RkqQWltWj3rc7x-dILx1IzE.crl
rsync://rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/EAy9RkqQWltWj3rc7x-dILx1IzE.mft
rsync://rpki.afrinic.net/repository/afrinic/EAy9RkqQWltWj3rc7x-dILx1IzE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364379DAF/serialNumber=100CBD464A905A5B568F7ADCEF1F9D20BC752331
Validity
Not Before: Mar 14 07:24:12 2023 GMT
Not After : Mar 14 07:24:12 2025 GMT
Subject: CN=64102121-a5af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:7a:d6:53:27:8c:4a:78:d6:19:0c:85:04:
32:ba:e3:9e:33:4b:65:11:d6:b0:f6:ff:73:62:97:
06:8d:34:53:82:fa:b6:88:a3:e7:af:59:e5:ab:4e:
76:06:2a:d4:d0:46:ab:2b:aa:2d:56:8b:9f:05:3e:
5e:8f:04:bf:84:0a:1d:c0:ef:c1:fd:0d:8c:d9:75:
f0:57:b8:db:a7:30:f0:de:c8:c4:12:a5:72:9a:c3:
e8:58:fd:5f:ab:9b:12:b9:10:e7:ed:fa:2f:92:cc:
a5:a7:a6:36:e0:18:42:04:c5:c0:37:09:60:72:b0:
d6:f0:e3:3a:30:3c:b4:a0:c8:4f:fa:92:08:5b:1f:
c9:f6:32:02:f2:bb:04:23:de:f0:f1:2a:34:6b:f1:
de:88:6a:b2:7b:8f:dd:ab:ac:24:eb:bc:1b:08:d1:
5b:48:bb:3a:fb:b0:60:45:4e:1f:0a:67:00:18:7d:
49:f2:6c:bf:c0:3c:d6:de:97:df:72:e4:1d:0a:fa:
3b:28:96:31:46:0c:47:e1:f2:d5:8f:66:60:ac:4d:
ca:ac:c3:be:e9:96:77:29:a2:fc:47:9b:9a:61:00:
0d:a5:8d:bb:79:d5:69:a3:5f:66:ac:f5:8d:c7:ee:
f6:f1:9a:bc:ea:77:57:df:48:da:29:bb:1f:8a:4d:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:97:13:2C:77:72:AE:1F:B3:C3:61:27:DA:AA:68:98:07:8B:A8:00
X509v3 Authority Key Identifier:
keyid:10:0C:BD:46:4A:90:5A:5B:56:8F:7A:DC:EF:1F:9D:20:BC:75:23:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/EAy9RkqQWltWj3rc7x-dILx1IzE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EAy9RkqQWltWj3rc7x-dILx1IzE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364379D/67C6AD4CBF3D11EDA6BF88F1F1222468/3A9A5B44C23911ED87BAE3F5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.72.0/22
102.215.0.0/22
IPv6:
2c0f:4780::/32
Signature Algorithm: sha256WithRSAEncryption
51:da:5b:57:aa:2d:42:8f:48:87:1c:61:8c:47:83:2d:d8:4d:
4f:6a:a5:17:4a:1c:93:3b:4f:50:e8:d5:a5:cb:19:c5:57:3d:
26:c2:d9:75:45:88:05:65:19:30:1d:9e:f8:e3:d8:04:02:a7:
10:9f:5e:d9:71:7d:fd:10:74:c5:6d:7b:86:b0:ca:0f:ff:d1:
bd:ab:12:04:ca:10:55:42:83:99:fa:9d:27:a9:ab:c3:96:d0:
6f:76:8f:a2:e5:c0:2a:7b:76:ee:fc:93:64:91:6f:95:cb:37:
26:78:a8:d1:8f:eb:bc:0e:58:05:93:1a:33:3f:cd:85:15:35:
9e:42:ff:6a:65:89:fc:64:f3:4d:92:12:65:8c:e2:44:e7:80:
68:44:b5:26:19:89:e0:2b:c1:fc:27:7a:51:83:a8:6e:79:76:
ef:54:d1:5c:05:cf:4b:88:fa:67:79:a2:e4:d8:ea:1c:8a:a2:
20:f5:a6:f5:3f:e1:3b:eb:dc:c6:fd:17:04:e2:6e:ae:9d:8f:
2b:aa:d5:ef:24:3e:b5:b1:4d:d7:0f:0c:14:1e:9d:93:9e:a7:
31:87:c8:15:b8:60:5c:53:e3:0c:33:1a:e3:34:6e:ec:44:a6:
85:06:8c:dc:96:74:f2:49:8a:19:b2:5b:5b:91:3b:f6:2e:04:
8a:ba:57:32
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY0
Mzc5REFGMTEwLwYDVQQFEygxMDBDQkQ0NjRBOTA1QTVCNTY4RjdBRENFRjFGOUQy
MEJDNzUyMzMxMB4XDTIzMDMxNDA3MjQxMloXDTI1MDMxNDA3MjQxMlowGDEWMBQG
A1UEAwwNNjQxMDIxMjEtYTVhZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN4uetZTJ4xKeNYZDIUEMrrjnjNLZRHWsPb/c2KXBo00U4L6toij569Z5atO
dgYq1NBGqyuqLVaLnwU+Xo8Ev4QKHcDvwf0NjNl18Fe426cw8N7IxBKlcprD6Fj9
X6ubErkQ5+36L5LMpaemNuAYQgTFwDcJYHKw1vDjOjA8tKDIT/qSCFsfyfYyAvK7
BCPe8PEqNGvx3ohqsnuP3ausJOu8GwjRW0i7OvuwYEVOHwpnABh9SfJsv8A81t6X
33LkHQr6OyiWMUYMR+Hy1Y9mYKxNyqzDvumWdymi/EebmmEADaWNu3nVaaNfZqz1
jcfu9vGavOp3V99I2im7H4pNzOkCAwEAAaOCArowggK2MB0GA1UdDgQWBBQAlxMs
d3KuH7PDYSfaqmiYB4uoADAfBgNVHSMEGDAWgBQQDL1GSpBaW1aPetzvH50gvHUj
MTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NDM3OUQvNjdDNkFENENCRjNEMTFFREE2QkY4OEYxRjEyMjI0NjgvRUF5OVJr
cVFXbHRXajNyYzd4LWRJTHgxSXpFLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvRUF5OVJrcVFXbHRXajNyYzd4LWRJTHgxSXpFLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NDM3OUQvNjdDNkFENENCRjNEMTFFREE2QkY4OEYxRjEy
MjI0NjgvM0E5QTVCNDRDMjM5MTFFRDg3QkFFM0Y1RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAinfSAMEAmbXADANBAIAAjAH
AwUALA9HgDANBgkqhkiG9w0BAQsFAAOCAQEAUdpbV6otQo9IhxxhjEeDLdhNT2ql
F0ockztPUOjVpcsZxVc9JsLZdUWIBWUZMB2e+OPYBAKnEJ9e2XF9/RB0xW17hrDK
D//RvasSBMoQVUKDmfqdJ6mrw5bQb3aPouXAKnt27vyTZJFvlcs3Jnio0Y/rvA5Y
BZMaMz/NhRU1nkL/amWJ/GTzTZISZYziROeAaES1JhmJ4CvB/Cd6UYOobnl271TR
XAXPS4j6Z3mi5NjqHIqiIPWm9T/hO+vcxv0XBOJurp2PK6rV7yQ+tbFN1w8MFB6d
k56nMYfIFbhgXFPjDDMa4zRu7ESmhQaM3JZ08kmKGbJbW5E79i4EirpXMg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org