Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/24354C1CB48511EE98999BC2775412E6.roa
File: 24354C1CB48511EE98999BC2775412E6.roa (raw, json)
Hash identifier: 31rlK+hrVNhq6GBkSphluks7pZJKA2YiJ6dkeMFOrxc=
Subject key identifier: 01:F0:60:6B:F5:70:B3:D6:1D:67:9E:F7:A7:D0:DC:9E:36:3B:BD:6D
Certificate issuer: /CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Certificate serial: 10
Authority key identifier: 13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/24354C1CB48511EE98999BC2775412E6.roa
Signing time: Tue 16 Jan 2024 15:37:23 +0000
ROA not before: Tue 16 Jan 2024 15:37:19 +0000
ROA not after: Wed 15 Jan 2025 15:37:19 +0000
asID: 328446
IP address blocks: 41.222.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.mft
rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663C93AF/serialNumber=139653264E61F8C30D4F304F4E004D4A4AF70DDD
Validity
Not Before: Jan 16 15:37:19 2024 GMT
Not After : Jan 15 15:37:19 2025 GMT
Subject: CN=65a6a2b2-eac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:13:ae:58:68:51:0a:89:0b:75:2b:7f:41:01:
2f:7b:dc:5f:bc:0c:71:05:92:76:0e:0e:53:1b:78:
13:b9:2d:67:7d:f7:42:64:bd:0d:30:5e:bf:75:0e:
52:fd:1b:db:1b:96:7e:c6:7f:7d:63:1b:b6:a3:fb:
a1:71:69:bb:b8:21:89:80:95:62:a4:e7:4d:22:5a:
5c:f2:1b:b6:3a:3d:7e:f9:3b:c0:59:57:97:26:3a:
b8:8c:53:97:7e:41:4b:f5:92:68:e0:e2:1c:78:ca:
d8:2c:0d:3c:40:4b:8b:10:11:50:f5:77:96:b9:ac:
32:6e:07:d2:ad:ff:70:f7:e0:a3:b5:1a:9c:0b:54:
07:ca:41:d6:37:95:91:5d:5f:a9:a5:96:be:e6:a0:
25:a4:34:86:9d:17:4e:35:05:46:95:a6:d9:44:ac:
91:21:fb:11:e3:53:0c:58:20:ba:71:57:94:f8:9e:
b5:74:39:05:1e:03:d3:5d:50:38:3e:3b:04:01:ff:
ce:59:bb:ac:1d:44:4d:e3:dd:85:e9:cf:81:0e:c6:
83:84:81:6d:3e:2a:b9:39:e6:13:74:c3:ca:e1:16:
e8:40:0e:c7:83:3c:6f:ab:6e:01:64:25:55:e9:1b:
d0:07:62:3d:d5:b5:05:7d:fc:78:8e:ce:a9:a3:ab:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F0:60:6B:F5:70:B3:D6:1D:67:9E:F7:A7:D0:DC:9E:36:3B:BD:6D
X509v3 Authority Key Identifier:
keyid:13:96:53:26:4E:61:F8:C3:0D:4F:30:4F:4E:00:4D:4A:4A:F7:0D:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/E5ZTJk5h-MMNTzBPTgBNSkr3Dd0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663C93/6244699AB48311EE8AD30EBF775412E6/24354C1CB48511EE98999BC2775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.127.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b9:53:35:7a:a0:77:43:6f:9d:60:46:f2:33:c2:b3:41:68:
3a:62:32:39:88:07:dd:d7:1d:2c:3e:b5:45:36:de:93:07:d9:
bf:26:a1:c4:e0:68:26:26:ce:b1:47:5e:3c:5e:32:06:5f:f6:
9e:43:3b:28:f4:1d:9f:d9:e3:fe:60:e2:2c:a7:e8:47:bc:87:
60:47:14:49:d2:06:6f:c8:02:19:4d:d5:62:27:42:be:5b:ac:
a3:50:a2:56:c6:5f:d6:6f:48:b9:03:b8:70:55:0a:6c:2a:e5:
9e:73:4b:ff:13:1d:cd:10:a0:57:3f:75:df:9d:b4:30:fb:a9:
c7:d4:c4:c0:34:a3:99:c0:54:7a:88:11:f2:e6:f6:12:fa:f9:
b9:05:64:87:a7:20:f0:9e:16:b4:96:28:b4:c9:4e:c1:52:ef:
e4:a4:a8:9d:99:3a:c3:ee:41:a0:88:47:ae:0e:a7:90:ac:e8:
3a:2d:0c:c9:d4:e8:67:08:a7:2e:4c:87:e6:32:8a:13:3b:e6:
94:08:6b:8e:33:f3:f9:fa:f9:f1:86:b6:1b:34:6d:3d:9a:86:
78:c6:38:8c:55:fe:23:f5:d7:f0:24:fb:75:35:ea:0a:25:92:
fb:a4:1e:92:16:6e:3d:2d:66:6d:c8:32:56:71:52:ff:69:28:
96:1c:6c:d4
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
M0M5M0FGMTEwLwYDVQQFEygxMzk2NTMyNjRFNjFGOEMzMEQ0RjMwNEY0RTAwNEQ0
QTRBRjcwREREMB4XDTI0MDExNjE1MzcxOVoXDTI1MDExNTE1MzcxOVowGDEWMBQG
A1UEAxMNNjVhNmEyYjItZWFjNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL4TrlhoUQqJC3Urf0EBL3vcX7wMcQWSdg4OUxt4E7ktZ333QmS9DTBev3UO
Uv0b2xuWfsZ/fWMbtqP7oXFpu7ghiYCVYqTnTSJaXPIbtjo9fvk7wFlXlyY6uIxT
l35BS/WSaODiHHjK2CwNPEBLixARUPV3lrmsMm4H0q3/cPfgo7UanAtUB8pB1jeV
kV1fqaWWvuagJaQ0hp0XTjUFRpWm2USskSH7EeNTDFggunFXlPietXQ5BR4D011Q
OD47BAH/zlm7rB1ETePdhenPgQ7Gg4SBbT4quTnmE3TDyuEW6EAOx4M8b6tuAWQl
Vekb0AdiPdW1BX38eI7OqaOr39kCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQB8GBr
9XCz1h1nnven0NyeNju9bTAfBgNVHSMEGDAWgBQTllMmTmH4ww1PME9OAE1KSvcN
3TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjNDOTMvNjI0NDY5OUFCNDgzMTFFRThBRDMwRUJGNzc1NDEyRTYvRTVaVEpr
NWgtTU1OVHpCUFRnQk5Ta3IzRGQwLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvRTVaVEprNWgtTU1OVHpCUFRnQk5Ta3IzRGQwLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NjNDOTMvNjI0NDY5OUFCNDgzMTFFRThBRDMwRUJGNzc1
NDEyRTYvMjQzNTRDMUNCNDg1MTFFRTk4OTk5QkMyNzc1NDEyRTYucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACnefzANBgkqhkiG9w0BAQsF
AAOCAQEAIrlTNXqgd0NvnWBG8jPCs0FoOmIyOYgH3dcdLD61RTbekwfZvyahxOBo
JibOsUdePF4yBl/2nkM7KPQdn9nj/mDiLKfoR7yHYEcUSdIGb8gCGU3VYidCvlus
o1CiVsZf1m9IuQO4cFUKbCrlnnNL/xMdzRCgVz913520MPupx9TEwDSjmcBUeogR
8ub2Evr5uQVkh6cg8J4WtJYotMlOwVLv5KSonZk6w+5BoIhHrg6nkKzoOi0MydTo
ZwinLkyH5jKKEzvmlAhrjjPz+fr58Ya2GzRtPZqGeMY4jFX+I/XX8CT7dTXqCiWS
+6QekhZuPS1mbcgyVnFS/2kolhxs1A==
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:23 2024 by rpki-client on console-fra.rpki-client.org