Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/929959A28D0911EFA947317A762E951A.roa
File: 929959A28D0911EFA947317A762E951A.roa (raw, json)
Hash identifier: 3GqMo6On8xRZFctyfNkt2HJyNVyPudemSXWoKZYF9f4=
Subject key identifier: 2D:B3:72:27:59:D5:25:07:24:23:39:FE:EE:F2:D3:32:BE:F8:0A:29
Certificate issuer: /CN=F364819CAF/serialNumber=A2974E67304324388C88802E717D6B9281A52632
Certificate serial: 0323
Authority key identifier: A2:97:4E:67:30:43:24:38:8C:88:80:2E:71:7D:6B:92:81:A5:26:32
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/opdOZzBDJDiMiIAucX1rkoGlJjI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/929959A28D0911EFA947317A762E951A.roa
Signing time: Fri 18 Oct 2024 04:29:33 +0000
ROA not before: Fri 18 Oct 2024 04:29:29 +0000
ROA not after: Tue 25 Mar 2025 04:29:29 +0000
asID: 329159
IP address blocks: 102.214.200.0/22 maxlen: 22
102.214.200.0/24 maxlen: 24
102.214.201.0/24 maxlen: 24
102.214.202.0/24 maxlen: 24
102.214.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/opdOZzBDJDiMiIAucX1rkoGlJjI.crl
rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/opdOZzBDJDiMiIAucX1rkoGlJjI.mft
rsync://rpki.afrinic.net/repository/afrinic/opdOZzBDJDiMiIAucX1rkoGlJjI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 803 (0x323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364819CAF/serialNumber=A2974E67304324388C88802E717D6B9281A52632
Validity
Not Before: Oct 18 04:29:29 2024 GMT
Not After : Mar 25 04:29:29 2025 GMT
Subject: CN=6711e42c-4133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5e:83:72:f0:2a:6c:78:9b:ca:f5:42:74:4f:
a7:ca:d6:0a:af:37:77:36:e8:ac:39:75:cf:9c:e6:
fa:ce:36:f8:fd:d0:a7:72:b5:63:40:5c:70:44:00:
ba:9e:87:e9:8a:f2:d0:bf:8f:e2:61:a0:ae:f3:fd:
bf:61:28:f0:a6:dc:98:af:d3:01:24:95:67:e8:63:
7d:4c:a3:6d:1d:fa:62:6f:e9:39:41:8a:36:43:9d:
83:d8:a6:e3:32:73:30:20:23:5d:80:5c:17:68:09:
28:22:b1:53:4e:ba:a1:fb:1d:e4:34:35:70:05:53:
3e:39:0c:aa:59:2b:c5:bd:f5:49:bb:46:22:f4:ad:
ab:32:ab:1d:ec:08:23:13:11:22:5f:3b:ec:4b:14:
91:7b:b9:59:5e:f0:91:5b:e5:65:9d:59:c4:ba:bd:
d5:ab:a5:86:c3:07:0a:7c:7b:ff:f7:95:e2:40:ae:
3f:19:57:15:66:c5:31:6e:06:f0:1d:02:6e:72:d3:
92:cb:8b:72:26:52:71:f5:86:1b:06:ca:79:ba:b4:
9d:16:8e:58:ac:54:36:0c:8b:b0:18:f5:e8:0c:96:
86:35:fc:b9:2a:87:92:89:69:ae:5b:ac:4e:f2:ac:
f4:23:b5:4c:07:4c:3a:8f:46:43:45:ea:27:fd:e0:
50:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B3:72:27:59:D5:25:07:24:23:39:FE:EE:F2:D3:32:BE:F8:0A:29
X509v3 Authority Key Identifier:
keyid:A2:97:4E:67:30:43:24:38:8C:88:80:2E:71:7D:6B:92:81:A5:26:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/opdOZzBDJDiMiIAucX1rkoGlJjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/opdOZzBDJDiMiIAucX1rkoGlJjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364819C/515B0F044E0D11ED8FA200A9F1222468/929959A28D0911EFA947317A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.200.0/22
Signature Algorithm: sha256WithRSAEncryption
32:70:c3:d7:e6:db:77:90:60:cd:05:6d:16:05:82:67:d3:8e:
38:93:73:55:61:77:2d:fa:92:9e:56:a6:23:e6:b6:ef:67:2c:
4f:bc:85:d7:d7:3a:95:5f:8f:7b:5b:a7:e5:7c:ec:41:8c:25:
ee:67:8d:51:a2:10:19:74:d5:ff:c2:c5:39:a8:0e:0c:72:c3:
9a:aa:bf:22:aa:fc:33:0a:7a:a0:7e:12:1e:30:83:c6:b6:9d:
53:b7:11:93:3a:55:31:ee:30:ba:66:ea:43:f1:7a:ac:38:78:
95:cd:97:f8:c8:c3:0f:51:a5:55:45:a3:c4:3a:09:20:e1:c8:
b5:89:ee:88:3a:25:ee:5c:94:e9:2d:f0:02:4c:0f:da:de:5a:
35:cf:c8:44:36:a2:63:1b:53:c2:3e:eb:52:ed:ab:e1:93:ec:
f0:ce:e8:aa:fb:f8:62:26:9a:f3:3b:36:4e:cb:6f:a4:70:02:
92:73:e8:2c:de:2b:d6:49:a9:08:23:2c:77:c2:6f:d7:87:ef:
bb:07:f3:21:e0:d8:f4:df:6e:2b:69:c9:c5:32:e5:1e:6d:38:
54:8e:69:73:92:77:98:ee:40:1d:78:9b:a6:64:64:d0:19:30:
9a:0c:ca:e1:0f:97:29:0a:22:56:14:c5:c8:20:03:9a:6a:e9:
9d:b2:27:49
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NDgxOUNBRjExMC8GA1UEBRMoQTI5NzRFNjczMDQzMjQzODhDODg4MDJFNzE3RDZC
OTI4MUE1MjYzMjAeFw0yNDEwMTgwNDI5MjlaFw0yNTAzMjUwNDI5MjlaMBgxFjAU
BgNVBAMTDTY3MTFlNDJjLTQxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+XoNy8CpseJvK9UJ0T6fK1gqvN3c26Kw5dc+c5vrONvj90KdytWNAXHBE
ALqeh+mK8tC/j+JhoK7z/b9hKPCm3Jiv0wEklWfoY31Mo20d+mJv6TlBijZDnYPY
puMyczAgI12AXBdoCSgisVNOuqH7HeQ0NXAFUz45DKpZK8W99Um7RiL0rasyqx3s
CCMTESJfO+xLFJF7uVle8JFb5WWdWcS6vdWrpYbDBwp8e//3leJArj8ZVxVmxTFu
BvAdAm5y05LLi3ImUnH1hhsGynm6tJ0WjlisVDYMi7AY9egMloY1/Lkqh5KJaa5b
rE7yrPQjtUwHTDqPRkNF6if94FAtAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQULbNy
J1nVJQckIzn+7vLTMr74CikwHwYDVR0jBBgwFoAUopdOZzBDJDiMiIAucX1rkoGl
JjIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjQ4MTlDLzUxNUIwRjA0NEUwRDExRUQ4RkEyMDBBOUYxMjIyNDY4L29wZE9a
ekJESkRpTWlJQXVjWDFya29HbEpqSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL29wZE9aekJESkRpTWlJQXVjWDFya29HbEpqSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjQ4MTlDLzUxNUIwRjA0NEUwRDExRUQ4RkEyMDBBOUYx
MjIyNDY4LzkyOTk1OUEyOEQwOTExRUZBOTQ3MzE3QTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1sgwDQYJKoZIhvcNAQEL
BQADggEBADJww9fm23eQYM0FbRYFgmfTjjiTc1Vhdy36kp5WpiPmtu9nLE+8hdfX
OpVfj3tbp+V87EGMJe5njVGiEBl01f/CxTmoDgxyw5qqvyKq/DMKeqB+Eh4wg8a2
nVO3EZM6VTHuMLpm6kPxeqw4eJXNl/jIww9RpVVFo8Q6CSDhyLWJ7og6Je5clOkt
8AJMD9reWjXPyEQ2omMbU8I+61Ltq+GT7PDO6Kr7+GImmvM7Nk7Lb6RwApJz6Cze
K9ZJqQgjLHfCb9eH77sH8yHg2PTfbitpycUy5R5tOFSOaXOSd5juQB14m6ZkZNAZ
MJoMyuEPlykKIlYUxcggA5pq6Z2yJ0k=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org