Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/C6128B02498711EA8512D154F8AEA228.roa
File: C6128B02498711EA8512D154F8AEA228.roa (raw, json)
Hash identifier: YenFdE2aLh0x++T/JYlwu3uxxzj0ygFVKQ0oMgyFqM0=
Subject key identifier: 70:1E:2A:A0:38:05:11:6A:00:EE:48:14:B8:3F:70:CF:14:7C:26:62
Certificate issuer: /CN=F3662F58AF/serialNumber=ECF6F3539A4FE08CA26D17F98DCB159A047CBFE8
Certificate serial: 02
Authority key identifier: EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/7PbzU5pP4IyibRf5jcsVmgR8v-g.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/C6128B02498711EA8512D154F8AEA228.roa
Signing time: Fri 07 Feb 2020 08:56:48 +0000
ROA not before: Fri 07 Feb 2020 08:56:44 +0000
ROA not after: Wed 06 Feb 2030 08:56:44 +0000
asID: 328501
IP address blocks: 102.64.112.0/23 maxlen: 24
2001:43f8:13b0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.mft
rsync://rpki.afrinic.net/repository/afrinic/7PbzU5pP4IyibRf5jcsVmgR8v-g.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662F58AF/serialNumber=ECF6F3539A4FE08CA26D17F98DCB159A047CBFE8
Validity
Not Before: Feb 7 08:56:44 2020 GMT
Not After : Feb 6 08:56:44 2030 GMT
Subject: CN=5e3d2650-46ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8f:12:ab:c7:6c:c2:15:20:e3:2f:77:d0:8d:
1e:70:7f:5d:f5:0c:26:59:b2:24:95:2a:d1:ab:af:
6b:53:00:44:68:5b:a1:aa:dc:a1:35:06:ad:2b:53:
41:8b:11:d7:f6:65:07:35:09:d8:dc:8a:e6:09:d5:
f5:71:83:cc:06:06:67:97:cf:95:8f:3f:ef:b4:c5:
1e:52:69:cc:db:fe:07:7d:0a:eb:49:90:b3:4e:5d:
83:ed:95:a7:04:85:eb:98:d3:e8:9b:a5:77:82:1a:
8c:e7:2a:e7:59:cd:2a:f9:48:95:a0:46:9f:b3:bc:
56:fe:0c:dc:d0:b5:5e:85:9e:ad:08:d3:d4:0f:e3:
7d:5d:8d:a8:96:be:d6:9d:a2:8a:ad:7b:e4:6c:43:
b4:ab:b1:a2:84:bc:58:db:49:88:c4:5d:8c:77:92:
f7:bc:d0:22:91:06:ad:81:20:07:9b:8d:60:4e:61:
42:26:3c:e6:2f:d9:19:2c:3a:32:86:a3:05:bc:05:
a8:68:f2:53:83:dc:eb:04:9c:68:c6:df:a2:96:f4:
9b:86:1b:60:56:33:16:2f:fd:d4:a8:24:4d:c9:13:
ce:85:06:82:f0:27:d5:17:2a:46:aa:89:9f:cf:e6:
05:94:16:a7:6e:c1:d8:5d:c5:e5:29:f5:55:ec:93:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1E:2A:A0:38:05:11:6A:00:EE:48:14:B8:3F:70:CF:14:7C:26:62
X509v3 Authority Key Identifier:
keyid:EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/7PbzU5pP4IyibRf5jcsVmgR8v-g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/C6128B02498711EA8512D154F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.64.112.0/23
IPv6:
2001:43f8:13b0::/48
Signature Algorithm: sha256WithRSAEncryption
93:f8:f6:ba:58:6b:a2:cb:bb:bc:9e:19:5a:70:17:1f:ed:c9:
6d:7d:e8:4a:d9:bd:63:78:11:62:bb:f3:05:b2:7a:ca:a3:ea:
a8:15:2a:d4:74:b1:5c:aa:5d:7b:41:2f:5a:c3:f8:9b:98:9d:
60:55:da:db:70:bf:cd:ac:76:02:85:09:2d:9e:32:38:25:1e:
2c:48:6c:20:36:56:27:44:e0:bd:f6:c4:dd:68:ef:e8:09:54:
95:f5:c3:1d:6b:86:ac:fd:31:99:e9:66:83:ca:9a:cf:f3:0c:
8f:c7:08:8e:97:71:d9:8e:b4:57:65:59:64:e9:6c:84:64:5f:
3e:0b:03:3d:5c:84:b4:7e:1e:8f:fd:67:d4:60:96:d3:11:2f:
d5:a1:2a:e1:8c:b4:79:d1:c5:75:03:82:b7:8e:f0:68:36:66:
0b:e5:87:8d:a9:68:0a:a9:2b:3f:28:2f:a3:20:c6:37:33:d6:
ac:b4:34:8d:96:a3:58:9a:f0:92:02:39:f6:61:70:27:5e:38:
8c:fb:f1:81:7a:83:f8:d3:96:10:5d:2d:36:b2:6d:2d:6b:ab:
2b:8c:50:99:f5:d2:ab:99:79:3e:1a:5a:ce:38:d1:43:6e:fc:
4f:7b:be:9a:b1:7d:31:00:51:81:69:11:23:da:5e:12:c3:4d:
02:ab:98:51
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
MkY1OEFGMTEwLwYDVQQFEyhFQ0Y2RjM1MzlBNEZFMDhDQTI2RDE3Rjk4RENCMTU5
QTA0N0NCRkU4MB4XDTIwMDIwNzA4NTY0NFoXDTMwMDIwNjA4NTY0NFowGDEWMBQG
A1UEAxMNNWUzZDI2NTAtNDZhYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKyPEqvHbMIVIOMvd9CNHnB/XfUMJlmyJJUq0auva1MARGhboarcoTUGrStT
QYsR1/ZlBzUJ2NyK5gnV9XGDzAYGZ5fPlY8/77TFHlJpzNv+B30K60mQs05dg+2V
pwSF65jT6Juld4IajOcq51nNKvlIlaBGn7O8Vv4M3NC1XoWerQjT1A/jfV2NqJa+
1p2iiq175GxDtKuxooS8WNtJiMRdjHeS97zQIpEGrYEgB5uNYE5hQiY85i/ZGSw6
MoajBbwFqGjyU4Pc6wScaMbfopb0m4YbYFYzFi/91KgkTckTzoUGgvAn1RcqRqqJ
n8/mBZQWp27B2F3F5Sn1VeyTffcCAwEAAaOCAn8wggJ7MB0GA1UdDgQWBBRwHiqg
OAURagDuSBS4P3DPFHwmYjAfBgNVHSMEGDAWgBTs9vNTmk/gjKJtF/mNyxWaBHy/
6DAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjJGNTgvNzU5NEVCRjI0OTg3MTFFQTk2OUM5NDU0RjhBRUEyMjgvN1BielU1
cFA0SXlpYlJmNWpjc1ZtZ1I4di1nLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvN1BielU1cFA0SXlpYlJmNWpjc1ZtZ1I4di1nLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NjJGNTgvNzU5NEVCRjI0OTg3MTFFQTk2OUM5NDU0RjhB
RUEyMjgvQzYxMjhCMDI0OTg3MTFFQTg1MTJEMTU0RjhBRUEyMjgucm9hMDAGCCsG
AQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZkBwMA8EAgACMAkDBwAgAUP4E7AwDQYJ
KoZIhvcNAQELBQADggEBAJP49rpYa6LLu7yeGVpwFx/tyW196ErZvWN4EWK78wWy
esqj6qgVKtR0sVyqXXtBL1rD+JuYnWBV2ttwv82sdgKFCS2eMjglHixIbCA2VidE
4L32xN1o7+gJVJX1wx1rhqz9MZnpZoPKms/zDI/HCI6XcdmOtFdlWWTpbIRkXz4L
Az1chLR+Ho/9Z9RgltMRL9WhKuGMtHnRxXUDgreO8Gg2Zgvlh42paAqpKz8oL6Mg
xjcz1qy0NI2Wo1ia8JICOfZhcCdeOIz78YF6g/jTlhBdLTaybS1rqyuMUJn10quZ
eT4aWs440UNu/E97vpqxfTEAUYFpESPaXhLDTQKrmFE=
-----END CERTIFICATE-----
Generated at Mon May 20 02:36:57 2024 by rpki-client on console-ams.rpki-client.org