Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/169C21DE0BF311ED9F1B34A3F1222468.roa
File: 169C21DE0BF311ED9F1B34A3F1222468.roa (raw, json)
Hash identifier: 2ZVaOPNfOvnFRcQFphHUNtwH9omdmsY9ygmlU0amXRw=
Subject key identifier: E8:4E:3A:A7:4D:1E:7B:67:49:CB:99:DA:56:00:30:E1:B0:98:ED:7A
Certificate issuer: /CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Certificate serial: 0576
Authority key identifier: 95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/169C21DE0BF311ED9F1B34A3F1222468.roa
Signing time: Mon 25 Jul 2022 08:23:40 +0000
ROA not before: Mon 25 Jul 2022 08:23:35 +0000
ROA not after: Wed 07 Jul 2032 08:23:35 +0000
asID: 36916
IP address blocks: 41.221.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.mft
rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1398 (0x576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAF/serialNumber=959733DF59E86EA7C23B2FB37A6E846DBB18827B
Validity
Not Before: Jul 25 08:23:35 2022 GMT
Not After : Jul 7 08:23:35 2032 GMT
Subject: CN=62de530c-e890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7d:bd:d0:2a:78:b8:86:b0:f0:77:0a:95:63:
a2:24:fb:91:3f:0a:76:e5:f7:c5:13:bd:08:3b:a0:
ce:ab:b2:bf:9e:25:d2:f3:7e:7f:b4:22:ac:c3:d5:
5b:1b:62:eb:9e:ba:a4:b7:f1:ef:a3:25:88:18:ab:
9b:fc:3a:1f:07:a8:74:f9:d8:64:0e:31:df:6b:2e:
6f:69:00:c3:6d:ac:be:93:94:32:b2:50:3d:2a:a2:
fe:69:74:59:19:8a:0f:8c:b2:d7:9e:4f:ac:9f:a1:
f5:13:6b:fd:d7:91:6e:54:4c:ea:af:5a:40:53:0b:
8c:4d:7a:74:e1:8d:d6:80:bb:14:ca:67:c5:9c:27:
cf:53:27:e9:08:f3:18:00:92:ff:87:48:d6:d3:94:
54:e9:62:4c:48:69:8c:36:a6:c8:76:6b:55:cb:0a:
97:78:11:00:7a:25:36:c2:9b:50:39:ff:4d:c7:78:
a0:af:64:33:77:6f:eb:04:66:52:b6:46:01:15:36:
50:70:25:09:f9:71:c0:ea:0c:34:7c:a1:40:d2:88:
40:11:7f:e2:c1:de:64:42:ed:d9:b2:99:e3:76:d4:
7e:3d:8e:d6:14:14:a2:22:c2:53:e4:b4:3a:c2:4f:
1c:59:11:54:5c:5f:c4:93:a6:9d:47:40:23:b8:7b:
cc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:4E:3A:A7:4D:1E:7B:67:49:CB:99:DA:56:00:30:E1:B0:98:ED:7A
X509v3 Authority Key Identifier:
keyid:95:97:33:DF:59:E8:6E:A7:C2:3B:2F:B3:7A:6E:84:6D:BB:18:82:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/lZcz31nobqfCOy-zem6EbbsYgns.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lZcz31nobqfCOy-zem6EbbsYgns.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/BEFB44EE879A11E99F393351F8AEA228/169C21DE0BF311ED9F1B34A3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.227.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ec:0c:e3:9b:56:83:17:3b:1f:7d:d3:46:cf:40:4e:fa:c0:
15:ea:f2:b1:09:ef:73:92:02:07:27:30:c1:64:a5:fd:d3:d7:
87:d5:d0:28:0d:1c:df:c6:1d:56:ea:27:99:17:d5:d7:5c:d8:
e3:df:55:e7:43:44:83:c2:d9:76:93:66:4d:c1:8c:9a:68:28:
6c:ea:fe:68:03:e6:2e:46:9f:7a:71:bc:f5:ce:b4:4a:16:8b:
f9:29:cf:11:99:b8:ec:6f:6c:de:5f:0c:ea:80:d0:c5:52:96:
b0:3b:97:7c:79:fa:5d:9c:a9:8d:d5:8b:4f:88:43:0a:75:09:
79:86:43:83:78:cf:d4:d5:20:aa:97:41:6b:35:0d:ac:b9:0c:
f8:95:51:5a:f9:bb:34:e0:fd:0e:ff:74:84:6e:98:7a:8d:71:
b8:49:72:ff:e6:89:06:df:c5:03:aa:e2:03:7a:e2:e6:b5:4c:
75:54:9d:30:14:11:c6:3f:43:bd:69:5e:62:89:d5:a4:f7:9e:
1c:02:4c:67:22:53:94:68:07:bd:8d:5c:5d:b1:cf:0c:43:06:
13:cb:f0:bb:32:27:15:67:99:f8:26:c9:6c:d1:13:bd:e6:fa:
de:3e:1a:01:d8:6d:c9:a9:79:7a:bd:4b:76:32:c4:26:29:3a:
fe:39:a2:83
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
NjlENkJBRjExMC8GA1UEBRMoOTU5NzMzREY1OUU4NkVBN0MyM0IyRkIzN0E2RTg0
NkRCQjE4ODI3QjAeFw0yMjA3MjUwODIzMzVaFw0zMjA3MDcwODIzMzVaMBgxFjAU
BgNVBAMMDTYyZGU1MzBjLWU4OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDbfb3QKni4hrDwdwqVY6Ik+5E/Cnbl98UTvQg7oM6rsr+eJdLzfn+0IqzD
1VsbYuueuqS38e+jJYgYq5v8Oh8HqHT52GQOMd9rLm9pAMNtrL6TlDKyUD0qov5p
dFkZig+MsteeT6yfofUTa/3XkW5UTOqvWkBTC4xNenThjdaAuxTKZ8WcJ89TJ+kI
8xgAkv+HSNbTlFTpYkxIaYw2psh2a1XLCpd4EQB6JTbCm1A5/03HeKCvZDN3b+sE
ZlK2RgEVNlBwJQn5ccDqDDR8oUDSiEARf+LB3mRC7dmymeN21H49jtYUFKIiwlPk
tDrCTxxZEVRcX8STpp1HQCO4e8yBAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU6E46
p00ee2dJy5naVgAw4bCY7XowHwYDVR0jBBgwFoAUlZcz31nobqfCOy+zem6EbbsY
gnswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0JFRkI0NEVFODc5QTExRTk5RjM5MzM1MUY4QUVBMjI4L2xaY3oz
MW5vYnFmQ095LXplbTZFYmJzWWducy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2xaY3ozMW5vYnFmQ095LXplbTZFYmJzWWducy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjY5RDZCL0JFRkI0NEVFODc5QTExRTk5RjM5MzM1MUY4
QUVBMjI4LzE2OUMyMURFMEJGMzExRUQ5RjFCMzRBM0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAp3eMwDQYJKoZIhvcNAQEL
BQADggEBAB/sDOObVoMXOx9900bPQE76wBXq8rEJ73OSAgcnMMFkpf3T14fV0CgN
HN/GHVbqJ5kX1ddc2OPfVedDRIPC2XaTZk3BjJpoKGzq/mgD5i5Gn3pxvPXOtEoW
i/kpzxGZuOxvbN5fDOqA0MVSlrA7l3x5+l2cqY3Vi0+IQwp1CXmGQ4N4z9TVIKqX
QWs1Day5DPiVUVr5uzTg/Q7/dIRumHqNcbhJcv/miQbfxQOq4gN64ua1THVUnTAU
EcY/Q71pXmKJ1aT3nhwCTGciU5RoB72NXF2xzwxDBhPL8LsyJxVnmfgmyWzRE73m
+t4+GgHYbcmpeXq9S3YyxCYpOv45ooM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org