Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/40DDBBD0697011ED9FF1D1DFF1222468.roa
File: 40DDBBD0697011ED9FF1D1DFF1222468.roa (raw, json)
Hash identifier: 9yUPzierdn2O592kHymHo5qeiCIOptKnSJWBFxxbCyk=
Subject key identifier: 88:93:41:4D:9D:5C:D9:B1:D6:E5:93:85:F6:02:CD:75:54:47:9E:75
Certificate issuer: /CN=F3662367AF/serialNumber=0BD00848F838FD90B99EDC37690720955FB00906
Certificate serial: 86
Authority key identifier: 0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/40DDBBD0697011ED9FF1D1DFF1222468.roa
Signing time: Mon 21 Nov 2022 07:43:57 +0000
ROA not before: Mon 21 Nov 2022 07:43:53 +0000
ROA not after: Tue 30 Nov 2032 07:43:53 +0000
asID: 328178
IP address blocks: 102.217.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.mft
rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134 (0x86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662367AF/serialNumber=0BD00848F838FD90B99EDC37690720955FB00906
Validity
Not Before: Nov 21 07:43:53 2022 GMT
Not After : Nov 30 07:43:53 2032 GMT
Subject: CN=637b2c3c-e3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:25:b5:eb:03:a4:c5:1e:5c:7f:dc:e2:4a:a1:
2c:63:9b:d4:80:d6:ee:53:df:97:10:1e:a8:5a:90:
87:d7:39:54:8a:13:02:2f:d4:45:8a:37:b8:7a:02:
d3:98:c4:c2:91:33:c6:3e:15:89:67:60:5f:d2:f4:
ca:d3:6b:2e:33:d6:21:a8:7a:42:d5:16:5e:ad:93:
f4:12:f7:bf:70:b1:62:4e:fe:ea:49:9e:95:5e:be:
c2:a3:81:aa:1f:b2:80:8c:95:88:53:7d:c2:84:ed:
8c:21:40:a6:c3:5f:00:84:a8:51:12:7e:ff:03:be:
2e:42:97:41:a0:5e:95:ef:00:7c:85:9b:14:48:f8:
e1:cf:66:15:1a:ab:97:4c:f1:51:7b:c0:b8:2a:d1:
c8:04:1d:ae:ea:f2:3c:b6:ba:68:ef:79:cd:3b:af:
0c:4e:b3:25:11:b9:2f:46:01:16:44:78:83:f2:e4:
d8:0a:d4:68:17:1a:51:bf:4a:a3:56:9e:45:53:55:
d2:81:a2:52:a5:78:e0:45:1b:79:63:55:ac:60:91:
d5:42:9b:06:ec:e3:9e:2e:81:5d:14:ff:05:2e:84:
12:01:8b:70:0f:22:c7:95:ef:73:74:39:10:5f:3b:
0d:46:0e:8a:67:2d:04:df:04:a7:73:50:c3:00:fa:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:93:41:4D:9D:5C:D9:B1:D6:E5:93:85:F6:02:CD:75:54:47:9E:75
X509v3 Authority Key Identifier:
keyid:0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/40DDBBD0697011ED9FF1D1DFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c6:31:bb:1f:c2:84:cf:f7:38:ce:53:ae:e6:cf:54:51:3a:49:
44:fe:04:a5:a8:7e:e0:a6:a5:95:96:80:fc:b8:eb:a3:b9:01:
3f:1a:55:5a:ac:3f:2a:40:59:6c:96:b1:ab:14:63:bc:94:4e:
00:d0:e6:40:cc:a3:06:bb:1d:1d:f5:6c:75:6d:36:ef:a6:75:
fb:c4:5b:d3:37:cb:11:8e:56:31:f4:09:3b:fa:ca:de:6f:4a:
f4:8f:be:5b:1a:ea:1f:cd:b4:e0:64:f6:b9:fd:8d:b3:6c:31:
03:f2:52:9d:ba:1e:a3:5b:fb:97:b6:a5:a1:c5:98:0f:28:f2:
bc:6c:2a:c8:9e:a3:9b:ff:f8:b0:bd:ef:86:22:5e:bd:b9:f0:
31:96:ec:7d:33:5a:ec:a6:fe:45:54:88:9a:04:e5:59:fe:2a:
6d:5f:1a:ee:92:50:a3:d2:87:aa:37:c4:5c:f6:5c:62:6b:f7:
35:63:0f:ef:59:5b:d3:0a:26:e7:a9:90:d5:d9:5e:a7:b6:42:
39:9e:69:ad:5f:27:e7:6f:d1:82:ed:50:01:85:b0:5a:7c:3e:
68:55:42:58:5d:1e:7c:95:8b:24:3c:ac:39:84:04:09:9c:06:
0a:c9:31:e5:64:08:2d:33:83:13:04:1f:6a:99:2f:07:cc:9b:
36:ec:9b:94
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NjIzNjdBRjExMC8GA1UEBRMoMEJEMDA4NDhGODM4RkQ5MEI5OUVEQzM3NjkwNzIw
OTU1RkIwMDkwNjAeFw0yMjExMjEwNzQzNTNaFw0zMjExMzAwNzQzNTNaMBgxFjAU
BgNVBAMMDTYzN2IyYzNjLWUzYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDMJbXrA6TFHlx/3OJKoSxjm9SA1u5T35cQHqhakIfXOVSKEwIv1EWKN7h6
AtOYxMKRM8Y+FYlnYF/S9MrTay4z1iGoekLVFl6tk/QS979wsWJO/upJnpVevsKj
gaofsoCMlYhTfcKE7YwhQKbDXwCEqFESfv8Dvi5Cl0GgXpXvAHyFmxRI+OHPZhUa
q5dM8VF7wLgq0cgEHa7q8jy2umjvec07rwxOsyURuS9GARZEeIPy5NgK1GgXGlG/
SqNWnkVTVdKBolKleOBFG3ljVaxgkdVCmwbs454ugV0U/wUuhBIBi3APIseV73N0
ORBfOw1GDopnLQTfBKdzUMMA+sndAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUiJNB
TZ1c2bHW5ZOF9gLNdVRHnnUwHwYDVR0jBBgwFoAUC9AISPg4/ZC5ntw3aQcglV+w
CQYwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjYyMzY3L0I0NTA4Q0U4MDgyMDExRUQ4Mjg1ODhGN0YxMjIyNDY4L0M5QUlT
UGc0X1pDNW50dzNhUWNnbFYtd0NRWS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0M5QUlTUGc0X1pDNW50dzNhUWNnbFYtd0NRWS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjYyMzY3L0I0NTA4Q0U4MDgyMDExRUQ4Mjg1ODhGN0Yx
MjIyNDY4LzQwRERCQkQwNjk3MDExRUQ5RkYxRDFERkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm2RQwDQYJKoZIhvcNAQEL
BQADggEBAMYxux/ChM/3OM5TrubPVFE6SUT+BKWofuCmpZWWgPy466O5AT8aVVqs
PypAWWyWsasUY7yUTgDQ5kDMowa7HR31bHVtNu+mdfvEW9M3yxGOVjH0CTv6yt5v
SvSPvlsa6h/NtOBk9rn9jbNsMQPyUp26HqNb+5e2paHFmA8o8rxsKsieo5v/+LC9
74YiXr258DGW7H0zWuym/kVUiJoE5Vn+Km1fGu6SUKPSh6o3xFz2XGJr9zVjD+9Z
W9MKJuepkNXZXqe2Qjmeaa1fJ+dv0YLtUAGFsFp8PmhVQlhdHnyViyQ8rDmEBAmc
BgrJMeVkCC0zgxMEH2qZLwfMmzbsm5Q=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:41 2024 by rpki-client on console-ams.rpki-client.org