Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa
File: 8B76B110CD5B11E982F62408F8AEA228.roa (raw, json)
Hash identifier: /cWu2nL6HSrRP3knTHp+eSDgxNpMwgwnD7k3nWXKasE=
Subject key identifier: 77:39:80:2D:1B:91:64:43:9A:52:C0:99:F0:70:8C:F3:E2:5A:00:D8
Certificate issuer: /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial: 05DC
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa
Signing time: Mon 02 Sep 2019 08:27:48 +0000
ROA not before: Mon 02 Sep 2019 08:27:40 +0000
ROA not after: Fri 29 Aug 2025 08:27:40 +0000
asID: 36874
IP address blocks: 41.177.0.0/16 maxlen: 18
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1500 (0x5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Validity
Not Before: Sep 2 08:27:40 2019 GMT
Not After : Aug 29 08:27:40 2025 GMT
Subject: CN=5d6cd284-3b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:09:5d:48:4a:b4:bc:47:a0:7f:ac:5f:7e:
93:52:73:3f:45:36:48:01:27:fb:64:ca:6e:89:14:
30:50:09:da:3e:40:58:29:b1:bf:37:22:99:21:a2:
5a:35:10:dd:71:22:e8:b6:5a:a6:86:df:9e:ed:93:
ed:da:4d:ea:92:9f:3a:54:57:cc:66:48:4d:09:5f:
0d:04:8e:32:11:1c:36:4a:a4:df:c9:72:6a:5d:e3:
68:e5:d6:df:cc:bb:56:61:67:73:92:e6:bc:4e:30:
6b:55:f7:60:5f:25:d2:3a:c6:a8:23:cd:2b:37:be:
ba:50:9e:f7:f9:8a:1b:54:f1:82:8c:f0:1a:87:40:
e6:26:c5:b7:23:44:e1:31:59:49:58:fb:d7:95:72:
8f:63:6c:ff:cf:ee:8b:20:66:50:4c:76:e9:35:28:
48:39:fb:f7:9f:be:92:42:f4:eb:7c:22:29:42:81:
37:04:5f:7d:1e:35:88:3a:a4:f8:0b:1b:47:3d:52:
62:d0:e5:30:10:4f:4c:fa:58:2b:37:68:09:76:36:
d9:18:e9:a3:2f:c5:db:53:a6:48:76:18:41:24:2c:
a0:a8:c2:55:28:2b:a1:56:7f:94:4d:df:65:00:db:
26:08:40:1e:3f:7f:45:fe:41:c8:ee:e1:61:ae:05:
9c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:39:80:2D:1B:91:64:43:9A:52:C0:99:F0:70:8C:F3:E2:5A:00:D8
X509v3 Authority Key Identifier:
keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
41.177.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:9b:35:83:50:df:f6:49:bf:5b:1f:74:06:ed:c2:de:82:c1:
c7:74:40:fb:24:e1:70:93:c4:ed:33:85:c5:a3:0b:c2:64:86:
e3:6c:cf:b1:d1:26:cb:7d:eb:dd:51:4a:c1:eb:fd:7c:fa:8b:
96:05:5b:57:92:c0:1d:ed:ce:38:f7:9c:22:92:0e:8d:3b:a9:
e7:60:59:5b:9c:32:0f:cd:f8:a3:46:1d:bf:86:9b:67:ee:ec:
57:7d:99:5c:3c:76:4c:00:a2:3d:83:fd:0d:c7:5a:59:9f:52:
2f:d7:60:f8:8a:8c:ba:8f:01:ef:a3:b3:90:00:6e:7d:c9:ed:
5c:c5:51:db:fa:9d:74:4d:21:0b:dc:52:40:c0:1e:84:4e:1a:
8c:5d:ac:72:50:b8:26:ad:38:7e:26:67:ab:98:1c:a9:bc:b9:
d0:53:f6:11:4a:cd:fc:0b:b4:a7:c9:28:01:c8:f9:88:7e:24:
86:59:f2:91:22:d1:14:45:87:58:a3:40:13:9f:10:4a:e3:4d:
8d:e5:d0:b8:c4:f4:9f:c6:29:e9:bd:74:89:de:72:66:63:5b:
18:ab:5d:9b:c1:58:61:34:4b:9e:b1:f6:8e:46:2c:08:59:eb:
b1:cf:48:0a:49:8c:4c:78:fd:21:02:1a:38:16:cc:54:ce:10:
99:22:2c:cd
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgICBdwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDcyRTVBRjExMC8GA1UEBRMoODZGRUQyRUQxOUMyMDY3QTQ4MjIyMUI2NDVENjBD
NDVBNEQ1NkE5RDAeFw0xOTA5MDIwODI3NDBaFw0yNTA4MjkwODI3NDBaMBgxFjAU
BgNVBAMTDTVkNmNkMjg0LTNiMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCf1AldSEq0vEegf6xffpNScz9FNkgBJ/tkym6JFDBQCdo+QFgpsb83Ipkh
olo1EN1xIui2WqaG357tk+3aTeqSnzpUV8xmSE0JXw0EjjIRHDZKpN/Jcmpd42jl
1t/Mu1ZhZ3OS5rxOMGtV92BfJdI6xqgjzSs3vrpQnvf5ihtU8YKM8BqHQOYmxbcj
ROExWUlY+9eVco9jbP/P7osgZlBMduk1KEg5+/efvpJC9Ot8IilCgTcEX30eNYg6
pPgLG0c9UmLQ5TAQT0z6WCs3aAl2NtkY6aMvxdtTpkh2GEEkLKCowlUoK6FWf5RN
32UA2yYIQB4/f0X+Qcju4WGuBZzTAgMBAAGjggJtMIICaTAdBgNVHQ4EFgQUdzmA
LRuRZEOaUsCZ8HCM8+JaANgwHwYDVR0jBBgwFoAUhv7S7RnCBnpIIiG2RdYMRaTV
ap0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQ3MkU1LzhEQjY1NDdBNTZENzExRTU4NTM1NkQ2MEY4QUVBMjI4L2h2N1M3
Um5DQm5wSUlpRzJSZFlNUmFUVmFwMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2h2N1M3Um5DQm5wSUlpRzJSZFlNUmFUVmFwMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQ3MkU1LzhEQjY1NDdBNTZENzExRTU4NTM1NkQ2MEY4
QUVBMjI4LzhCNzZCMTEwQ0Q1QjExRTk4MkY2MjQwOEY4QUVBMjI4LnJvYTAeBggr
BgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDACmxMA0GCSqGSIb3DQEBCwUAA4IBAQCO
mzWDUN/2Sb9bH3QG7cLegsHHdED7JOFwk8TtM4XFowvCZIbjbM+x0SbLfevdUUrB
6/18+ouWBVtXksAd7c4495wikg6NO6nnYFlbnDIPzfijRh2/hptn7uxXfZlcPHZM
AKI9g/0Nx1pZn1Iv12D4ioy6jwHvo7OQAG59ye1cxVHb+p10TSEL3FJAwB6EThqM
XaxyULgmrTh+JmermBypvLnQU/YRSs38C7SnySgByPmIfiSGWfKRItEURYdYo0AT
nxBK402N5dC4xPSfxinpvXSJ3nJmY1sYq12bwVhhNEuesfaORiwIWeuxz0gKSYxM
eP0hAho4FsxUzhCZIizN
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org