Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/6399788A69BA11EE9D71534A4AD9E6FC.roa
File: 6399788A69BA11EE9D71534A4AD9E6FC.roa (raw, json)
Hash identifier: kaAHuzndBPzeMjc2nNN3ZcTB7Ew41AHipGqkh1wKLvg=
Subject key identifier: FF:C3:C6:54:81:0E:A6:27:68:53:A4:E3:52:C3:06:C5:6B:90:00:55
Certificate issuer: /CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Certificate serial: 0A
Authority key identifier: 2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/6399788A69BA11EE9D71534A4AD9E6FC.roa
Signing time: Fri 13 Oct 2023 11:19:35 +0000
ROA not before: Fri 13 Oct 2023 11:19:32 +0000
ROA not after: Wed 13 Oct 2027 11:19:32 +0000
asID: 37513
IP address blocks: 196.216.164.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.mft
rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Validity
Not Before: Oct 13 11:19:32 2023 GMT
Not After : Oct 13 11:19:32 2027 GMT
Subject: CN=652927c7-0c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:56:36:91:30:aa:b0:49:6a:a6:b4:6c:9f:
9d:3b:48:10:77:33:95:85:d4:23:90:17:9a:19:b0:
a9:0a:d4:3a:75:66:6e:9b:c5:03:36:a8:6b:16:fb:
8e:4f:1f:ff:19:43:20:00:9b:b2:c6:b0:4a:93:b5:
89:fb:db:4b:a6:1c:9f:1f:7e:7f:f4:20:e2:16:b5:
5e:c8:1c:5c:96:ed:16:44:ff:91:78:28:2e:5c:8d:
89:f7:75:54:a5:6b:ff:09:23:78:82:28:a0:ba:e7:
19:4b:2c:48:ee:db:4b:a1:b5:7e:d7:bd:57:f3:18:
64:2a:08:a4:66:00:3f:9d:9a:0b:90:d5:51:48:b0:
5d:be:5c:8e:90:80:94:b8:67:2c:88:33:25:10:b1:
d1:02:30:7e:c8:76:ea:05:13:64:c7:8b:5f:0a:62:
c4:56:cc:b4:e4:f0:ae:1c:21:45:af:30:0e:4c:24:
28:ed:49:96:82:d8:4d:9f:a8:72:88:c6:03:ab:e5:
41:85:ba:b5:56:e9:00:98:44:28:2e:a6:9e:4b:df:
2f:85:1d:d1:90:ee:4d:ba:31:7d:05:76:70:1f:29:
8f:45:c0:61:ab:a1:09:46:c2:4f:e5:a8:60:59:c4:
0e:02:65:26:54:67:6a:51:5c:43:19:e3:c1:c4:f8:
ff:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C3:C6:54:81:0E:A6:27:68:53:A4:E3:52:C3:06:C5:6B:90:00:55
X509v3 Authority Key Identifier:
keyid:2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/6399788A69BA11EE9D71534A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.164.0/23
Signature Algorithm: sha256WithRSAEncryption
74:7d:21:9e:1d:ab:b3:d9:fe:99:e6:33:44:62:5d:a1:e8:b2:
54:ff:bd:7f:ee:b5:02:f7:74:86:bc:24:ff:99:2d:cc:d3:55:
f9:95:58:79:e2:32:33:98:15:e0:14:57:ac:4f:ef:ea:94:dd:
1c:44:6c:f0:49:0b:e8:e2:23:da:5f:db:f4:62:0a:03:7c:1c:
6a:e4:27:4d:b1:97:1e:26:35:86:1f:fe:ac:ea:e2:c2:16:db:
15:81:48:22:39:9e:62:d7:fb:98:c1:96:68:82:55:a4:32:9f:
fb:af:a7:2d:62:e6:5b:1e:cf:a7:eb:6f:4d:b6:04:34:da:cf:
c5:56:8d:ba:43:b3:d4:02:d2:40:22:47:e1:e1:e7:5d:52:a7:
06:18:5e:e5:ac:7b:94:ce:39:66:2b:b0:ba:ad:f4:e1:69:7e:
f6:1b:ea:b3:5a:66:02:35:5c:cd:a9:6a:ac:45:15:9e:93:59:
68:d1:7c:33:90:91:9f:e3:16:87:f3:d0:be:1c:82:6f:fe:73:
00:fd:0d:8d:74:49:70:cd:9c:1d:9e:0b:ea:11:06:10:65:a5:
58:a2:af:7b:f1:f8:88:25:d5:74:4a:46:02:be:e0:e4:c6:92:
35:e8:59:44:7f:be:24:fd:9e:f5:4d:91:9c:6b:f6:5e:77:e9:
29:6b:1d:03
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
Q0U2RkFGMTEwLwYDVQQFEygyQTdDRUU3OTE4MkJCODU5MUJCMTM1RERCRkJCRUU5
NEMxREY0MDg3MB4XDTIzMTAxMzExMTkzMloXDTI3MTAxMzExMTkzMlowGDEWMBQG
A1UEAxMNNjUyOTI3YzctMGM5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKHVVjaRMKqwSWqmtGyfnTtIEHczlYXUI5AXmhmwqQrUOnVmbpvFAzaoaxb7
jk8f/xlDIACbssawSpO1ifvbS6Ycnx9+f/Qg4ha1XsgcXJbtFkT/kXgoLlyNifd1
VKVr/wkjeIIooLrnGUssSO7bS6G1fte9V/MYZCoIpGYAP52aC5DVUUiwXb5cjpCA
lLhnLIgzJRCx0QIwfsh26gUTZMeLXwpixFbMtOTwrhwhRa8wDkwkKO1JloLYTZ+o
cojGA6vlQYW6tVbpAJhEKC6mnkvfL4Ud0ZDuTboxfQV2cB8pj0XAYauhCUbCT+Wo
YFnEDgJlJlRnalFcQxnjwcT4/8MCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBT/w8ZU
gQ6mJ2hTpONSwwbFa5AAVTAfBgNVHSMEGDAWgBQqfO55GCu4WRuxNd2/u+6Uwd9A
hzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkNFNkYvRDlBNDY3NkM2OTlBMTFFRUJDQzVGQjY3NEFEOUU2RkMvS256dWVS
Z3J1Rmtic1RYZHY3dnVsTUhmUUljLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvS256dWVSZ3J1Rmtic1RYZHY3dnVsTUhmUUljLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkNFNkYvRDlBNDY3NkM2OTlBMTFFRUJDQzVGQjY3NEFE
OUU2RkMvNjM5OTc4OEE2OUJBMTFFRTlENzE1MzRBNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcTYpDANBgkqhkiG9w0BAQsF
AAOCAQEAdH0hnh2rs9n+meYzRGJdoeiyVP+9f+61Avd0hrwk/5ktzNNV+ZVYeeIy
M5gV4BRXrE/v6pTdHERs8EkL6OIj2l/b9GIKA3wcauQnTbGXHiY1hh/+rOriwhbb
FYFIIjmeYtf7mMGWaIJVpDKf+6+nLWLmWx7Pp+tvTbYENNrPxVaNukOz1ALSQCJH
4eHnXVKnBhhe5ax7lM45Ziuwuq304Wl+9hvqs1pmAjVczalqrEUVnpNZaNF8M5CR
n+MWh/PQvhyCb/5zAP0NjXRJcM2cHZ4L6hEGEGWlWKKve/H4iCXVdEpGAr7g5MaS
NehZRH++JP2e9U2RnGv2XnfpKWsdAw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org