Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/075325AADB9211ED8863A90D306D8C1D.roa
File: 075325AADB9211ED8863A90D306D8C1D.roa (raw, json)
Hash identifier: ewcEqd/aLYGXXQy74ilhbCeN4Nnp4H8VCOE78vyhRHg=
Subject key identifier: 71:06:49:82:3A:44:DD:33:A4:63:3B:30:A6:66:FA:39:D6:05:D4:11
Certificate issuer: /CN=F365C754AF/serialNumber=33FBE1DCDE341C649868D416BF3EA00002C4DF20
Certificate serial: 02
Authority key identifier: 33:FB:E1:DC:DE:34:1C:64:98:68:D4:16:BF:3E:A0:00:02:C4:DF:20
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/075325AADB9211ED8863A90D306D8C1D.roa
Signing time: Sat 15 Apr 2023 13:32:55 +0000
ROA not before: Sat 15 Apr 2023 13:32:50 +0000
ROA not after: Tue 15 Apr 2025 13:32:50 +0000
asID: 328442
IP address blocks: 102.68.56.0/21 maxlen: 24
102.216.240.0/22 maxlen: 24
2c0f:ed00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.crl
rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.mft
rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365C754AF
Validity
Not Before: Apr 15 13:32:50 2023 GMT
Not After : Apr 15 13:32:50 2025 GMT
Subject: CN=643aa787-542a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:45:44:f5:f6:a4:84:a3:d0:03:93:07:fb:95:
ed:40:1d:0c:f8:4b:f3:75:9f:c3:64:23:ae:41:aa:
53:d8:76:5a:a8:29:19:57:f8:4d:cb:a0:51:b9:ee:
16:87:32:fb:12:db:d9:df:b8:16:7e:a2:3d:cf:f2:
5c:07:01:38:4a:c9:43:92:fc:5d:38:cb:18:ab:e7:
e1:a3:03:5d:f0:4d:e2:a6:9c:95:f2:f1:75:94:fd:
3e:5c:87:9d:fc:f8:24:01:4c:00:02:aa:d0:fb:92:
20:87:b2:a6:92:0e:d8:8b:9a:44:10:0d:69:94:26:
37:bf:37:c1:62:be:e7:4d:68:8c:18:45:d0:bf:f1:
13:ee:28:ee:f4:a7:06:2e:e3:23:e8:82:d5:31:47:
97:85:33:83:27:f2:9d:25:53:99:c9:c0:54:af:cc:
60:a7:1f:53:58:13:e8:88:94:79:02:51:6c:63:c1:
11:12:d3:b1:2f:71:65:47:da:fc:cc:86:77:f0:3b:
c9:93:d1:da:2a:0c:b5:56:48:1d:02:60:ec:04:93:
b4:db:7a:ad:61:24:3d:a2:4c:02:9f:2c:a0:1f:1a:
3a:38:b5:f3:3e:16:b3:c4:4d:9d:c1:fc:fb:ce:90:
79:85:8d:50:8c:8f:0f:e5:9c:56:8e:e2:16:b3:ea:
38:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:06:49:82:3A:44:DD:33:A4:63:3B:30:A6:66:FA:39:D6:05:D4:11
X509v3 Authority Key Identifier:
keyid:33:FB:E1:DC:DE:34:1C:64:98:68:D4:16:BF:3E:A0:00:02:C4:DF:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/M_vh3N40HGSYaNQWvz6gAALE3yA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M_vh3N40HGSYaNQWvz6gAALE3yA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365C754/9C2341E8DB9111EDBEBF620C306D8C1D/075325AADB9211ED8863A90D306D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.56.0/21
102.216.240.0/22
IPv6:
2c0f:ed00::/32
Signature Algorithm: sha256WithRSAEncryption
0e:46:11:d1:d6:b2:ec:b8:3f:06:35:9e:de:03:5b:a4:58:67:
2c:9f:42:f1:aa:d5:d8:54:1a:d7:f4:72:5c:18:e6:22:5a:a5:
e4:2e:0f:51:58:8a:ab:fe:95:3e:0a:f3:14:f7:ca:6d:31:61:
a2:a8:87:2d:fa:7c:c6:70:70:e8:b1:72:b5:a0:9b:0d:b5:05:
48:7f:ca:17:65:38:13:79:2f:f0:93:d2:fb:ed:e2:9e:37:90:
a1:bb:62:18:fa:f3:93:7c:15:30:93:d7:a3:cb:8c:8e:11:33:
8b:cb:58:5a:03:47:86:fc:e0:86:30:d3:3a:80:f6:e4:8c:50:
44:67:44:e5:fa:eb:a5:3d:eb:35:87:44:57:c7:3f:6a:0a:8c:
7e:98:97:fb:f5:a2:8c:4b:1c:f9:3d:37:07:fd:ff:20:bd:61:
00:4b:4d:fe:70:42:67:a9:94:74:5a:3f:31:72:24:23:da:93:
af:66:4c:54:e4:d6:2c:de:05:17:ff:25:dc:45:d4:11:fc:a2:
14:75:f9:9a:59:c8:0c:95:a7:7c:92:91:86:2b:4c:49:5c:91:
47:a6:df:cf:1a:86:03:d9:88:19:3b:35:5e:15:b9:98:5f:05:
0c:90:fb:27:ee:20:17:74:65:b5:ca:a8:c8:73:ae:07:55:27:
4c:1c:97:df
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY1
Qzc1NEFGMTEwLwYDVQQFEygzM0ZCRTFEQ0RFMzQxQzY0OTg2OEQ0MTZCRjNFQTAw
MDAyQzRERjIwMB4XDTIzMDQxNTEzMzI1MFoXDTI1MDQxNTEzMzI1MFowGDEWMBQG
A1UEAwwNNjQzYWE3ODctNTQyYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAO5FRPX2pISj0AOTB/uV7UAdDPhL83Wfw2QjrkGqU9h2WqgpGVf4TcugUbnu
Focy+xLb2d+4Fn6iPc/yXAcBOErJQ5L8XTjLGKvn4aMDXfBN4qaclfLxdZT9PlyH
nfz4JAFMAAKq0PuSIIeyppIO2IuaRBANaZQmN783wWK+501ojBhF0L/xE+4o7vSn
Bi7jI+iC1TFHl4UzgyfynSVTmcnAVK/MYKcfU1gT6IiUeQJRbGPBERLTsS9xZUfa
/MyGd/A7yZPR2ioMtVZIHQJg7ASTtNt6rWEkPaJMAp8soB8aOji18z4Ws8RNncH8
+86QeYWNUIyPD+WcVo7iFrPqOKcCAwEAAaOCArowggK2MB0GA1UdDgQWBBRxBkmC
OkTdM6RjOzCmZvo51gXUETAfBgNVHSMEGDAWgBQz++Hc3jQcZJho1Ba/PqAAAsTf
IDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NUM3NTQvOUMyMzQxRThEQjkxMTFFREJFQkY2MjBDMzA2RDhDMUQvTV92aDNO
NDBIR1NZYU5RV3Z6NmdBQUxFM3lBLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTV92aDNONDBIR1NZYU5RV3Z6NmdBQUxFM3lBLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NUM3NTQvOUMyMzQxRThEQjkxMTFFREJFQkY2MjBDMzA2
RDhDMUQvMDc1MzI1QUFEQjkyMTFFRDg4NjNBOTBEMzA2RDhDMUQucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEA2ZEOAMEAmbY8DANBAIAAjAH
AwUALA/tADANBgkqhkiG9w0BAQsFAAOCAQEADkYR0day7Lg/BjWe3gNbpFhnLJ9C
8arV2FQa1/RyXBjmIlql5C4PUViKq/6VPgrzFPfKbTFhoqiHLfp8xnBw6LFytaCb
DbUFSH/KF2U4E3kv8JPS++3injeQobtiGPrzk3wVMJPXo8uMjhEzi8tYWgNHhvzg
hjDTOoD25IxQRGdE5frrpT3rNYdEV8c/agqMfpiX+/WijEsc+T03B/3/IL1hAEtN
/nBCZ6mUdFo/MXIkI9qTr2ZMVOTWLN4FF/8l3EXUEfyiFHX5mlnIDJWnfJKRhitM
SVyRR6bfzxqGA9mIGTs1XhW5mF8FDJD7J+4gF3RltcqoyHOuB1UnTByX3w==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:56:01 2025 by rpki-client