Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/59B00C76D8DE11ECA20A28A5F1222468.roa
File: 59B00C76D8DE11ECA20A28A5F1222468.roa (raw, json)
Hash identifier: InsnW2gsvoNL9mr1/iDLvZtz1hzVfuBpZAqciK67t64=
Subject key identifier: E5:1D:0F:18:86:5E:C9:01:F4:2C:65:AF:8B:28:B8:BA:0F:15:B0:5C
Certificate issuer: /CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Certificate serial: 1C
Authority key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/59B00C76D8DE11ECA20A28A5F1222468.roa
Signing time: Sat 21 May 2022 08:16:44 +0000
ROA not before: Sat 21 May 2022 08:16:41 +0000
ROA not after: Wed 21 May 2025 08:16:41 +0000
asID: 29286
IP address blocks: 196.43.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Validity
Not Before: May 21 08:16:41 2022 GMT
Not After : May 21 08:16:41 2025 GMT
Subject: CN=62889fec-2756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6f:5f:3f:43:14:93:24:b7:e1:58:66:23:96:
e7:89:08:f7:07:bb:43:c5:12:79:29:b8:bb:19:2b:
10:2b:0a:74:50:9b:8b:97:ee:8e:a7:0d:e4:a7:14:
16:db:d9:fe:c6:17:db:d6:da:b9:30:80:6b:27:9a:
f8:58:e1:df:8c:e2:b2:5a:4f:0e:73:e6:32:23:c6:
19:5c:18:bc:c3:25:ca:fa:78:72:f8:f4:51:b4:bd:
d1:f6:e1:ef:32:b7:e5:be:4b:48:c3:8a:7a:cc:55:
10:ca:27:9e:17:3b:da:6b:29:07:8f:50:3e:67:4e:
b2:38:bf:85:5a:44:15:c2:26:5f:96:19:0f:4c:5c:
76:26:91:5b:fb:9f:ca:87:36:50:34:61:a2:68:ce:
86:6f:d3:e6:03:ab:b3:8b:f9:15:b5:8e:75:02:75:
68:96:52:00:6c:7e:fd:d5:8b:10:9a:17:b0:ae:67:
18:81:6a:ac:d7:7a:0d:36:3b:79:a1:e3:04:51:d0:
9a:75:18:27:12:f2:6f:9e:61:13:6c:f3:eb:f9:8a:
fa:c5:b4:06:2f:f9:41:1b:ff:10:3a:87:a7:6e:ab:
3b:6a:0e:95:36:0b:f7:aa:ed:0a:d7:5b:c6:4d:bd:
60:c5:79:55:2a:a9:3f:8f:b6:78:de:3f:71:0c:62:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1D:0F:18:86:5E:C9:01:F4:2C:65:AF:8B:28:B8:BA:0F:15:B0:5C
X509v3 Authority Key Identifier:
keyid:E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/59B00C76D8DE11ECA20A28A5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.126.0/24
Signature Algorithm: sha256WithRSAEncryption
00:da:25:d7:75:51:bc:a9:a5:3d:46:9a:11:b4:fd:52:33:5b:
8b:20:5f:e0:07:b0:0f:99:91:c6:a0:00:56:9a:ef:66:e9:3f:
e3:e2:44:62:0a:f1:a5:b7:6c:96:b2:bb:40:36:94:5d:8d:f4:
eb:d4:2e:41:2b:57:bc:f6:e0:88:7f:8e:fe:60:20:a3:11:42:
d5:31:2c:54:62:95:c2:4f:7f:88:75:21:da:85:6f:9e:aa:34:
97:e8:ee:e7:bb:77:36:28:5b:53:9c:28:10:a0:82:55:2e:3e:
3b:92:6a:b0:58:b4:7a:bf:68:13:87:3b:51:87:84:d2:c7:c0:
bc:01:c7:2e:35:1c:fe:9e:5a:28:99:c9:6f:0a:91:e5:0a:87:
54:a3:b9:12:ba:60:76:91:c3:3b:f0:52:83:89:ad:18:bb:1e:
91:23:85:47:45:eb:32:af:79:07:94:40:95:f3:3e:ee:67:d2:
49:56:74:ed:da:f3:40:c9:3f:58:1c:68:c0:c0:da:88:4b:fd:
51:32:e8:25:2a:b1:6d:05:94:5d:1d:a2:6a:f5:61:48:2e:99:
63:e3:2a:8e:49:5e:9d:1b:22:80:7c:ca:d3:5b:90:be:f6:09:
e4:3f:ed:f0:7d:d5:a3:4d:4f:50:7d:79:83:c0:a7:a4:87:c3:
fa:95:9e:47
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY2
NjNDMkFGMTEwLwYDVQQFEyhFMDIxOUQ1QTRDRDg1ODJDNEYzN0UyRDBEREQ3MDZC
NzdFQkQ5RjZDMB4XDTIyMDUyMTA4MTY0MVoXDTI1MDUyMTA4MTY0MVowGDEWMBQG
A1UEAwwNNjI4ODlmZWMtMjc1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMBvXz9DFJMkt+FYZiOW54kI9we7Q8USeSm4uxkrECsKdFCbi5fujqcN5KcU
FtvZ/sYX29bauTCAayea+Fjh34zislpPDnPmMiPGGVwYvMMlyvp4cvj0UbS90fbh
7zK35b5LSMOKesxVEMonnhc72mspB49QPmdOsji/hVpEFcImX5YZD0xcdiaRW/uf
yoc2UDRhomjOhm/T5gOrs4v5FbWOdQJ1aJZSAGx+/dWLEJoXsK5nGIFqrNd6DTY7
eaHjBFHQmnUYJxLyb55hE2zz6/mK+sW0Bi/5QRv/EDqHp26rO2oOlTYL96rtCtdb
xk29YMV5VSqpP4+2eN4/cQxi0dcCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTlHQ8Y
hl7JAfQsZa+LKLi6DxWwXDAfBgNVHSMEGDAWgBTgIZ1aTNhYLE834tDd1wa3fr2f
bDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjYzQzIvQjM5MEU5RThDNzgzMTFFQ0IxOTgyODk0RjEyMjI0NjgvNENHZFdr
ellXQ3hQTi1MUTNkY0d0MzY5bjJ3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvNENHZFdrellXQ3hQTi1MUTNkY0d0MzY5bjJ3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NjYzQzIvQjM5MEU5RThDNzgzMTFFQ0IxOTgyODk0RjEy
MjI0NjgvNTlCMDBDNzZEOERFMTFFQ0EyMEEyOEE1RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMQrfjANBgkqhkiG9w0BAQsF
AAOCAQEAANol13VRvKmlPUaaEbT9UjNbiyBf4AewD5mRxqAAVprvZuk/4+JEYgrx
pbdslrK7QDaUXY3069QuQStXvPbgiH+O/mAgoxFC1TEsVGKVwk9/iHUh2oVvnqo0
l+ju57t3NihbU5woEKCCVS4+O5JqsFi0er9oE4c7UYeE0sfAvAHHLjUc/p5aKJnJ
bwqR5QqHVKO5ErpgdpHDO/BSg4mtGLsekSOFR0XrMq95B5RAlfM+7mfSSVZ07drz
QMk/WBxowMDaiEv9UTLoJSqxbQWUXR2iavVhSC6ZY+MqjklenRsigHzK01uQvvYJ
5D/t8H3Vo01PUH15g8CnpIfD+pWeRw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org