Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/43499CAEE06111EEAD369C57775412E6.roa
File: 43499CAEE06111EEAD369C57775412E6.roa (raw, json)
Hash identifier: BqZi3Jf+58/WulzjWYWd6LnvU4vDKMabeieGFixEMoQ=
Subject key identifier: 8E:F2:BB:A8:32:DA:EB:E1:53:CE:61:44:BE:AE:64:D8:2D:80:AE:74
Certificate issuer: /CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Certificate serial: 02D4
Authority key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/43499CAEE06111EEAD369C57775412E6.roa
Signing time: Tue 12 Mar 2024 11:11:24 +0000
ROA not before: Tue 12 Mar 2024 11:11:21 +0000
ROA not after: Sat 31 Mar 2029 11:11:21 +0000
asID: 37183
IP address blocks: 196.43.108.0/23 maxlen: 23
196.43.108.0/24 maxlen: 24
196.43.109.0/24 maxlen: 24
196.43.110.0/23 maxlen: 23
196.43.110.0/24 maxlen: 24
196.43.111.0/24 maxlen: 24
196.43.112.0/23 maxlen: 23
196.43.112.0/24 maxlen: 24
196.43.113.0/24 maxlen: 24
196.43.114.0/23 maxlen: 23
196.43.114.0/24 maxlen: 24
196.43.115.0/24 maxlen: 24
196.43.116.0/23 maxlen: 23
196.43.116.0/24 maxlen: 24
196.43.117.0/24 maxlen: 24
196.43.118.0/24 maxlen: 24
2001:42b0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 May 2024 00:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 724 (0x2d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Validity
Not Before: Mar 12 11:11:21 2024 GMT
Not After : Mar 31 11:11:21 2029 GMT
Subject: CN=65f0385c-4cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0e:94:82:35:76:21:89:f4:38:28:82:ed:25:
4f:1f:a5:db:95:2e:db:db:f4:b8:2a:f8:c1:ec:48:
3d:b0:db:7b:73:53:43:5f:04:fa:99:92:48:40:b2:
4a:f7:58:b7:e2:18:a5:3f:83:f4:06:1a:fb:9d:aa:
61:b2:08:81:9f:26:23:ea:a7:ea:0a:64:59:0a:59:
fb:c1:15:49:71:47:1a:d8:3f:cc:5a:10:e3:18:aa:
14:5c:55:6a:ae:3a:8a:89:e0:8b:7d:49:46:d0:6f:
9e:00:af:1e:2b:bd:e8:5e:39:ea:0e:61:ad:ee:ef:
ca:1c:55:59:2f:99:a8:d1:aa:71:f5:f6:8a:02:94:
09:ce:33:14:0b:50:6a:48:c0:92:35:8f:ac:30:09:
28:a2:11:c9:c0:ae:39:61:9a:13:b9:50:e4:33:a1:
fe:b9:4d:1b:cc:6f:7c:44:43:f2:e5:22:0b:6e:c4:
81:4f:80:45:0d:3a:44:87:22:55:cb:de:fe:5b:cb:
ce:43:ae:2a:57:45:d6:c0:1d:19:56:dd:8f:f8:3d:
ed:80:2a:be:33:d1:fb:75:77:63:ba:95:a1:d4:42:
ed:6b:e2:1d:be:65:8d:f1:a6:c0:94:10:3f:1f:a3:
4a:c3:6c:d2:29:0e:71:6f:6a:e9:e2:69:58:c5:eb:
92:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F2:BB:A8:32:DA:EB:E1:53:CE:61:44:BE:AE:64:D8:2D:80:AE:74
X509v3 Authority Key Identifier:
keyid:E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/43499CAEE06111EEAD369C57775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.108.0-196.43.118.255
IPv6:
2001:42b0::/32
Signature Algorithm: sha256WithRSAEncryption
c5:cf:e0:5f:93:09:15:6c:55:d4:62:fb:97:9e:1b:7d:bb:ca:
15:5b:3b:8a:52:6c:04:d8:9e:6a:ef:08:4d:57:b1:a0:91:b7:
33:fc:cd:16:42:1a:e5:13:0d:15:d5:61:9f:51:68:a9:71:b0:
c6:80:69:d5:d4:3c:80:6f:74:88:50:f4:8d:a8:3b:26:7d:fd:
66:ab:ad:c6:91:01:66:28:93:7f:a3:20:31:a9:3e:ef:46:7c:
65:a9:a2:f7:4f:75:94:61:96:5f:cb:95:b4:e8:86:cd:95:f2:
2a:8f:bb:ac:e3:be:68:f8:4a:63:51:87:a1:9f:10:4b:d6:1f:
39:d5:15:f0:91:79:78:09:4e:c0:80:8c:1b:f4:ca:dd:bb:b5:
9f:5d:18:a9:73:9f:89:8b:bb:78:3c:41:85:be:a1:3d:ff:12:
cf:1e:12:e6:ca:2a:68:76:f1:0a:2c:ef:e3:a7:98:ea:cd:20:
6f:c7:53:25:ce:46:45:3a:2a:12:1c:8a:93:78:9a:6e:90:1f:
bc:3b:11:09:f2:d3:c9:4e:79:88:a9:d4:a5:80:68:ba:d1:7e:
00:51:97:d1:9f:12:0c:57:67:4a:93:80:13:a2:87:e9:83:f9:
42:5b:9d:72:94:49:50:3f:86:c4:d1:46:db:7d:b6:11:ea:a7:
fb:40:ce:82
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjYzQzJBRjExMC8GA1UEBRMoRTAyMTlENUE0Q0Q4NTgyQzRGMzdFMkQwRERENzA2
Qjc3RUJEOUY2QzAeFw0yNDAzMTIxMTExMjFaFw0yOTAzMzExMTExMjFaMBgxFjAU
BgNVBAMTDTY1ZjAzODVjLTRjZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGDpSCNXYhifQ4KILtJU8fpduVLtvb9Lgq+MHsSD2w23tzU0NfBPqZkkhA
skr3WLfiGKU/g/QGGvudqmGyCIGfJiPqp+oKZFkKWfvBFUlxRxrYP8xaEOMYqhRc
VWquOoqJ4It9SUbQb54Arx4rveheOeoOYa3u78ocVVkvmajRqnH19ooClAnOMxQL
UGpIwJI1j6wwCSiiEcnArjlhmhO5UOQzof65TRvMb3xEQ/LlIgtuxIFPgEUNOkSH
IlXL3v5by85DripXRdbAHRlW3Y/4Pe2AKr4z0ft1d2O6laHUQu1r4h2+ZY3xpsCU
ED8fo0rDbNIpDnFvauniaVjF65KvAgMBAAGjggK8MIICuDAdBgNVHQ4EFgQUjvK7
qDLa6+FTzmFEvq5k2C2ArnQwHwYDVR0jBBgwFoAU4CGdWkzYWCxPN+LQ3dcGt369
n2wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY2M0MyL0IzOTBFOUU4Qzc4MzExRUNCMTk4Mjg5NEYxMjIyNDY4LzRDR2RX
a3pZV0N4UE4tTFEzZGNHdDM2OW4ydy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzRDR2RXa3pZV0N4UE4tTFEzZGNHdDM2OW4ydy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjY2M0MyL0IzOTBFOUU4Qzc4MzExRUNCMTk4Mjg5NEYx
MjIyNDY4LzQzNDk5Q0FFRTA2MTExRUVBRDM2OUM1Nzc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwNgYIKwYBBQUHAQcBAf8EJzAlMBQEAgABMA4wDAMEAsQrbAMEAMQrdjANBAIA
AjAHAwUAIAFCsDANBgkqhkiG9w0BAQsFAAOCAQEAxc/gX5MJFWxV1GL7l54bfbvK
FVs7ilJsBNieau8ITVexoJG3M/zNFkIa5RMNFdVhn1FoqXGwxoBp1dQ8gG90iFD0
jag7Jn39ZqutxpEBZiiTf6MgMak+70Z8Zami9091lGGWX8uVtOiGzZXyKo+7rOO+
aPhKY1GHoZ8QS9YfOdUV8JF5eAlOwICMG/TK3bu1n10YqXOfiYu7eDxBhb6hPf8S
zx4S5soqaHbxCizv46eY6s0gb8dTJc5GRToqEhyKk3iabpAfvDsRCfLTyU55iKnU
pYBoutF+AFGX0Z8SDFdnSpOAE6KH6YP5QludcpRJUD+GxNFG2322Eeqn+0DOgg==
-----END CERTIFICATE-----
Generated at Fri May 17 03:06:26 2024 by rpki-client on console-ams.rpki-client.org