Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/FDE0E02C1E4611EF94A680057DDC24C2.roa
File: FDE0E02C1E4611EF94A680057DDC24C2.roa (raw, json)
Hash identifier: 1djty5fRWOAsejw0HL8rgxOF0W9HT4RaKUN6d3OwjTM=
Subject key identifier: FE:0A:17:29:DC:AC:94:77:6C:48:20:5D:18:7C:99:5A:2E:40:94:05
Certificate issuer: /CN=F36598F5AF/serialNumber=3D4A4EFD029A112EB89AAC8ECA9D917A47CB6C5C
Certificate serial: 02FE
Authority key identifier: 3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/FDE0E02C1E4611EF94A680057DDC24C2.roa
Signing time: Thu 30 May 2024 05:39:33 +0000
ROA not before: Thu 30 May 2024 05:39:29 +0000
ROA not after: Sat 30 May 2026 05:39:29 +0000
asID: 328820
IP address blocks: 102.220.104.0/22 maxlen: 24
2c0f:1200::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 26 Jun 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 766 (0x2fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36598F5AF/serialNumber=3D4A4EFD029A112EB89AAC8ECA9D917A47CB6C5C
Validity
Not Before: May 30 05:39:29 2024 GMT
Not After : May 30 05:39:29 2026 GMT
Subject: CN=66581115-367b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6e:d6:7d:44:71:17:24:0b:25:5a:a0:20:03:
b6:d4:cb:f2:46:03:f8:5d:ff:2f:9d:59:95:f1:16:
16:32:31:0a:8f:ea:43:c3:47:53:19:03:dc:b2:63:
7d:e4:4b:ba:95:45:bb:dd:35:1f:c3:c5:9a:a2:35:
22:42:df:20:93:52:a7:3c:c7:fd:13:9a:a7:cb:1d:
89:c0:56:6b:95:74:55:b0:93:b3:46:02:50:c4:01:
f3:49:f0:c6:4b:86:b9:3a:10:a3:ba:a2:46:68:7a:
4e:87:83:ed:c2:73:fa:fc:43:fd:56:5f:77:e1:bb:
08:d6:5e:96:77:d6:3c:3b:65:fe:da:53:b0:0a:34:
b1:ff:54:ec:8b:53:dc:6e:2c:87:f6:09:ff:51:ca:
67:98:f5:64:51:5e:45:56:84:bd:78:b7:15:50:ca:
8d:b4:2d:e4:44:25:bc:cf:81:ab:4f:b1:46:1f:75:
0e:56:88:8d:2e:47:1c:b2:a3:cc:f7:85:4b:17:1b:
48:a1:5c:d7:a9:70:af:bf:3a:10:d3:58:f1:1d:3d:
03:cb:0a:ba:16:48:59:ca:4e:91:b8:fa:3a:ed:c3:
78:3e:db:45:ef:d5:2e:e6:96:92:77:20:0e:2d:c5:
38:59:c1:70:e3:c2:96:c3:77:46:07:5e:d8:7b:c6:
59:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0A:17:29:DC:AC:94:77:6C:48:20:5D:18:7C:99:5A:2E:40:94:05
X509v3 Authority Key Identifier:
keyid:3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/FDE0E02C1E4611EF94A680057DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.104.0/22
IPv6:
2c0f:1200::/32
Signature Algorithm: sha256WithRSAEncryption
8c:80:50:b3:bf:c4:86:e5:5b:3c:1b:23:04:d8:a1:3f:0e:c9:
56:15:6f:9e:3e:1a:b5:10:b9:f9:ef:58:09:02:13:88:ce:c2:
e6:de:53:34:bb:d6:a9:bc:f9:9d:c1:aa:dc:85:11:15:68:5b:
0f:49:15:c5:17:0d:c7:4d:dd:eb:0c:35:18:98:35:bf:e8:73:
41:01:93:49:50:cb:61:52:7b:ce:49:8c:df:2b:31:da:bd:e0:
86:ff:aa:02:27:20:64:6e:74:bc:e1:f9:16:d4:63:63:aa:9f:
67:58:6a:8a:da:20:72:cc:37:bc:7a:65:ae:d1:d1:2e:93:98:
ad:60:b9:4f:7e:82:4c:fc:16:27:42:d5:75:2a:d9:dd:7a:b1:
98:20:de:2c:b4:e1:32:bd:a0:e4:1c:e2:e2:4e:8e:35:8d:73:
6c:01:52:3d:8e:e5:45:46:7f:c8:81:3a:d5:34:c3:2e:e1:26:
ba:6e:94:11:40:22:17:26:20:a8:e7:98:09:33:1c:54:42:94:
3a:02:78:68:4f:5a:dd:e5:c1:87:d4:4e:34:ec:3b:f5:fd:98:
b7:62:0d:5a:c9:6a:15:ae:18:99:a3:c9:59:4e:e6:da:29:86:
08:95:05:5c:c2:66:af:d3:b3:bf:72:49:7b:26:5f:56:14:b9:
86:34:92:8a
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTk4RjVBRjExMC8GA1UEBRMoM0Q0QTRFRkQwMjlBMTEyRUI4OUFBQzhFQ0E5RDkx
N0E0N0NCNkM1QzAeFw0yNDA1MzAwNTM5MjlaFw0yNjA1MzAwNTM5MjlaMBgxFjAU
BgNVBAMTDTY2NTgxMTE1LTM2N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCjbtZ9RHEXJAslWqAgA7bUy/JGA/hd/y+dWZXxFhYyMQqP6kPDR1MZA9yy
Y33kS7qVRbvdNR/DxZqiNSJC3yCTUqc8x/0TmqfLHYnAVmuVdFWwk7NGAlDEAfNJ
8MZLhrk6EKO6okZoek6Hg+3Cc/r8Q/1WX3fhuwjWXpZ31jw7Zf7aU7AKNLH/VOyL
U9xuLIf2Cf9RymeY9WRRXkVWhL14txVQyo20LeREJbzPgatPsUYfdQ5WiI0uRxyy
o8z3hUsXG0ihXNepcK+/OhDTWPEdPQPLCroWSFnKTpG4+jrtw3g+20Xv1S7mlpJ3
IA4txThZwXDjwpbDd0YHXth7xln1AgMBAAGjggK0MIICsDAdBgNVHQ4EFgQU/goX
KdyslHdsSCBdGHyZWi5AlAUwHwYDVR0jBBgwFoAUPUpO/QKaES64mqyOyp2RekfL
bFwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjU5OEY1L0E0MTBEMzUwREMwMjExRUM5OUUzNjE4OEYxMjIyNDY4L1BVcE9f
UUthRVM2NG1xeU95cDJSZWtmTGJGdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1BVcE9fUUthRVM2NG1xeU95cDJSZWtmTGJGdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjU5OEY1L0E0MTBEMzUwREMwMjExRUM5OUUzNjE4OEYx
MjIyNDY4L0ZERTBFMDJDMUU0NjExRUY5NEE2ODAwNTdEREMyNEMyLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm3GgwDQQCAAIwBwMFACwP
EgAwDQYJKoZIhvcNAQELBQADggEBAIyAULO/xIblWzwbIwTYoT8OyVYVb54+GrUQ
ufnvWAkCE4jOwubeUzS71qm8+Z3BqtyFERVoWw9JFcUXDcdN3esMNRiYNb/oc0EB
k0lQy2FSe85JjN8rMdq94Ib/qgInIGRudLzh+RbUY2Oqn2dYaoraIHLMN7x6Za7R
0S6TmK1guU9+gkz8FidC1XUq2d16sZgg3iy04TK9oOQc4uJOjjWNc2wBUj2O5UVG
f8iBOtU0wy7hJrpulBFAIhcmIKjnmAkzHFRClDoCeGhPWt3lwYfUTjTsO/X9mLdi
DVrJahWuGJmjyVlO5tophgiVBVzCZq/Ts79ySXsmX1YUuYY0koo=
-----END CERTIFICATE-----
Generated at Mon Jun 24 03:59:03 2024 by rpki-client on console-fra.rpki-client.org