Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/95E5589CFCF911EC91C59591F1222468.roa
File: 95E5589CFCF911EC91C59591F1222468.roa (raw, json)
Hash identifier: rnLUsfXlrYCyRp7IztJ9xzb5+MMJaSe1lmd7KitFfus=
Subject key identifier: BA:A6:7C:5D:C3:3C:B8:A2:1A:44:4A:AD:E1:E4:8F:21:77:23:2F:94
Certificate issuer: /CN=F36576E8AF/serialNumber=DBF68C9C5C01D68EBC0C90DEE4C0749DA23A2FD6
Certificate serial: 04
Authority key identifier: DB:F6:8C:9C:5C:01:D6:8E:BC:0C:90:DE:E4:C0:74:9D:A2:3A:2F:D6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2_aMnFwB1o68DJDe5MB0naI6L9Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/95E5589CFCF911EC91C59591F1222468.roa
Signing time: Wed 06 Jul 2022 07:02:23 +0000
ROA not before: Wed 06 Jul 2022 07:02:20 +0000
ROA not after: Wed 01 Dec 2032 07:02:20 +0000
asID: 327991
IP address blocks: 102.64.32.0/20 maxlen: 20
102.64.32.0/21 maxlen: 21
102.64.40.0/21 maxlen: 21
102.129.48.0/20 maxlen: 20
102.129.48.0/21 maxlen: 21
102.129.56.0/21 maxlen: 21
2c0f:ec48::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/2_aMnFwB1o68DJDe5MB0naI6L9Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/2_aMnFwB1o68DJDe5MB0naI6L9Y.mft
rsync://rpki.afrinic.net/repository/afrinic/2_aMnFwB1o68DJDe5MB0naI6L9Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36576E8AF/serialNumber=DBF68C9C5C01D68EBC0C90DEE4C0749DA23A2FD6
Validity
Not Before: Jul 6 07:02:20 2022 GMT
Not After : Dec 1 07:02:20 2032 GMT
Subject: CN=62c5337f-1c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:15:ab:a1:51:09:03:3e:c1:e2:6b:84:14:
2e:eb:9b:d2:87:af:ef:72:3f:26:72:43:3f:fd:83:
84:90:12:8f:02:96:20:e7:77:b0:10:d5:c0:6b:82:
4d:bc:3c:36:53:d6:a2:1c:ce:5c:9b:38:d9:28:71:
3f:41:a2:d2:73:06:9b:68:bf:2f:4e:ce:af:5b:77:
7b:e5:a8:e8:09:20:6e:32:17:12:51:a0:65:d0:ae:
61:ff:77:8b:df:22:d9:1b:73:5b:bd:0a:75:85:d1:
08:c0:92:12:3b:16:53:48:21:7a:c3:4c:91:11:98:
2e:fe:2a:6c:09:c1:62:cc:7a:3a:bd:4e:09:41:42:
e1:17:c9:2a:9b:f0:69:60:9d:7a:7e:af:fe:ea:b7:
79:e8:67:70:e1:1a:4c:05:50:72:7b:8d:d0:a1:a2:
4a:ae:28:19:57:20:39:2c:0e:90:4a:b0:ff:20:b4:
1a:6d:db:14:3e:3f:61:b5:de:c0:08:d1:ff:26:0b:
3c:33:8b:2b:43:21:ce:7a:dd:d4:c1:45:0c:e0:44:
bf:22:80:5f:56:f8:d7:a8:72:ba:78:71:5d:46:e3:
b6:ca:fa:ca:43:20:b0:c6:c9:ca:82:0d:f5:a7:c0:
bd:06:0f:1c:2f:0e:b2:0d:7a:91:38:9c:6b:bd:26:
31:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A6:7C:5D:C3:3C:B8:A2:1A:44:4A:AD:E1:E4:8F:21:77:23:2F:94
X509v3 Authority Key Identifier:
keyid:DB:F6:8C:9C:5C:01:D6:8E:BC:0C:90:DE:E4:C0:74:9D:A2:3A:2F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/2_aMnFwB1o68DJDe5MB0naI6L9Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2_aMnFwB1o68DJDe5MB0naI6L9Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/95E5589CFCF911EC91C59591F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.64.32.0/20
102.129.48.0/20
IPv6:
2c0f:ec48::/32
Signature Algorithm: sha256WithRSAEncryption
2b:28:29:29:20:10:f4:ae:5c:69:f2:74:17:df:84:50:9f:db:
b3:e5:eb:2a:de:c9:01:46:0a:1f:f9:fc:26:3b:89:89:31:8e:
1e:f6:06:ab:66:cd:5b:53:07:c3:62:ab:fd:72:65:b5:08:87:
e1:40:f4:d5:d9:f2:cc:8d:cc:b8:f7:fc:3a:df:28:83:65:0d:
d5:0d:3b:0d:89:3f:af:97:56:7b:c3:ac:a7:d6:43:83:c4:65:
f4:bf:d2:13:41:12:df:24:7d:3c:3d:59:f9:22:05:4e:51:03:
bd:aa:37:aa:c3:2f:1f:4b:c0:4d:1d:fa:ac:c0:90:d5:a5:4a:
c5:26:54:5c:5a:34:d5:42:52:14:c7:3a:46:eb:f2:10:d9:29:
8e:01:6d:97:82:22:66:48:76:53:2b:f3:92:19:6d:07:09:24:
01:e6:87:59:22:10:15:97:8c:10:15:ca:ac:e2:25:1b:31:23:
41:6b:b7:30:b4:9d:f0:ae:6a:3f:ea:e3:f3:b5:74:6c:ae:dd:
e9:0a:fe:16:30:a1:96:ca:43:bd:c9:15:7c:8d:b7:f6:f4:ad:
74:63:68:32:a0:ea:88:ee:da:dc:3b:d7:08:8a:55:f2:7f:a1:
b3:35:08:1b:ed:d6:0b:2c:a2:23:57:ca:4e:d4:23:dd:54:8e:
5d:96:72:ac
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY1
NzZFOEFGMTEwLwYDVQQFEyhEQkY2OEM5QzVDMDFENjhFQkMwQzkwREVFNEMwNzQ5
REEyM0EyRkQ2MB4XDTIyMDcwNjA3MDIyMFoXDTMyMTIwMTA3MDIyMFowGDEWMBQG
A1UEAwwNNjJjNTMzN2YtMWM2YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALUbFauhUQkDPsHia4QULuub0oev73I/JnJDP/2DhJASjwKWIOd3sBDVwGuC
Tbw8NlPWohzOXJs42ShxP0Gi0nMGm2i/L07Or1t3e+Wo6AkgbjIXElGgZdCuYf93
i98i2RtzW70KdYXRCMCSEjsWU0ghesNMkRGYLv4qbAnBYsx6Or1OCUFC4RfJKpvw
aWCden6v/uq3eehncOEaTAVQcnuN0KGiSq4oGVcgOSwOkEqw/yC0Gm3bFD4/YbXe
wAjR/yYLPDOLK0Mhznrd1MFFDOBEvyKAX1b416hyunhxXUbjtsr6ykMgsMbJyoIN
9afAvQYPHC8Osg16kTica70mMakCAwEAAaOCArowggK2MB0GA1UdDgQWBBS6pnxd
wzy4ohpESq3h5I8hdyMvlDAfBgNVHSMEGDAWgBTb9oycXAHWjrwMkN7kwHSdojov
1jAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NTc2RTgvQzM4MDg5ODZGQzYxMTFFQ0IxN0UyMkFCRjEyMjI0NjgvMl9hTW5G
d0IxbzY4REpEZTVNQjBuYUk2TDlZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMl9hTW5Gd0IxbzY4REpEZTVNQjBuYUk2TDlZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NTc2RTgvQzM4MDg5ODZGQzYxMTFFQ0IxN0UyMkFCRjEy
MjI0NjgvOTVFNTU4OUNGQ0Y5MTFFQzkxQzU5NTkxRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBGZAIAMEBGaBMDANBAIAAjAH
AwUALA/sSDANBgkqhkiG9w0BAQsFAAOCAQEAKygpKSAQ9K5cafJ0F9+EUJ/bs+Xr
Kt7JAUYKH/n8JjuJiTGOHvYGq2bNW1MHw2Kr/XJltQiH4UD01dnyzI3MuPf8Ot8o
g2UN1Q07DYk/r5dWe8Osp9ZDg8Rl9L/SE0ES3yR9PD1Z+SIFTlEDvao3qsMvH0vA
TR36rMCQ1aVKxSZUXFo01UJSFMc6RuvyENkpjgFtl4IiZkh2UyvzkhltBwkkAeaH
WSIQFZeMEBXKrOIlGzEjQWu3MLSd8K5qP+rj87V0bK7d6Qr+FjChlspDvckVfI23
9vStdGNoMqDqiO7a3DvXCIpV8n+hszUIG+3WCyyiI1fKTtQj3VSOXZZyrA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org