Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/98FDCD4669BA11EE95130C4B4AD9E6FC.roa
File: 98FDCD4669BA11EE95130C4B4AD9E6FC.roa (raw, json)
Hash identifier: V8tXop4xNSLK7NTMuObTNFw9mcHKdpwbwIJqeSi9teo=
Subject key identifier: 29:CD:51:CE:3B:AC:85:92:3D:1E:05:42:47:41:E0:0C:D3:6D:57:3B
Certificate issuer: /CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Certificate serial: 0C
Authority key identifier: 2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/98FDCD4669BA11EE95130C4B4AD9E6FC.roa
Signing time: Fri 13 Oct 2023 11:21:05 +0000
ROA not before: Fri 13 Oct 2023 11:21:01 +0000
ROA not after: Wed 13 Oct 2027 11:21:01 +0000
asID: 37513
IP address blocks: 196.216.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.mft
rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366CE6FAF/serialNumber=2A7CEE79182BB8591BB135DDBFBBEE94C1DF4087
Validity
Not Before: Oct 13 11:21:01 2023 GMT
Not After : Oct 13 11:21:01 2027 GMT
Subject: CN=65292821-3bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:dd:d7:6e:03:c9:95:84:b3:54:9d:3d:23:
0f:1e:b2:0e:e5:b8:2e:fc:9d:2f:f5:68:7f:bf:26:
25:a3:1e:d6:da:6e:27:3a:97:61:ca:31:0c:6b:1d:
a3:7f:13:48:63:75:34:e4:d0:9c:4b:d4:e4:14:19:
4d:00:d6:75:26:c2:59:eb:65:52:14:55:6a:85:87:
86:de:32:dc:6b:14:82:ab:bb:00:f8:5a:b9:ac:b5:
f1:e0:01:41:41:19:ce:67:f9:9c:03:ef:90:b2:28:
e6:3a:ec:42:dc:97:bd:db:a4:30:5a:be:df:08:a2:
5b:54:de:c8:76:ea:73:d1:f8:0f:47:96:3e:c3:a5:
43:4f:7e:8b:2e:84:a9:73:62:7a:88:b0:ba:c3:be:
86:e3:43:35:b2:51:80:a3:4d:a5:ed:7b:9b:0e:36:
e3:a5:6f:19:2c:6f:02:44:4c:b3:78:3a:8e:e9:a1:
2c:90:da:5e:79:dc:db:43:f0:25:d8:fa:5e:a5:c1:
60:70:dd:bf:9d:33:cb:c4:d4:8c:c0:3d:81:f5:35:
f9:2f:ef:f7:46:bb:2d:30:3c:0d:8b:6e:38:40:65:
fb:37:5d:75:40:4c:8f:31:6d:9c:62:75:e4:88:49:
9b:82:c1:53:fc:43:10:fc:29:7d:12:e2:7b:3a:67:
8b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:51:CE:3B:AC:85:92:3D:1E:05:42:47:41:E0:0C:D3:6D:57:3B
X509v3 Authority Key Identifier:
keyid:2A:7C:EE:79:18:2B:B8:59:1B:B1:35:DD:BF:BB:EE:94:C1:DF:40:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/KnzueRgruFkbsTXdv7vulMHfQIc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KnzueRgruFkbsTXdv7vulMHfQIc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366CE6F/D9A4676C699A11EEBCC5FB674AD9E6FC/98FDCD4669BA11EE95130C4B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.164.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:8c:e8:fa:6a:ca:05:3a:13:3f:e1:41:98:20:1d:b4:25:93:
2f:6a:f7:58:39:e4:6a:fb:5e:d0:a3:26:e1:34:03:94:21:12:
bf:e0:80:e7:7c:13:76:e2:1b:1e:fc:32:c3:6c:bf:f9:73:c3:
48:9b:d7:66:49:57:15:26:f9:f6:6a:c3:85:46:dd:08:0e:7d:
6c:1a:f6:82:04:93:04:a6:29:50:db:92:8a:80:69:b0:0a:02:
24:87:bf:a1:aa:c0:78:e0:0b:56:5a:68:44:6f:2d:5c:81:aa:
3b:96:99:79:27:25:1d:4b:b2:b8:57:ca:cf:a0:0a:16:fb:88:
34:62:4a:7f:c5:e8:f9:14:b9:dd:8f:37:8e:1e:94:c2:e0:a1:
ec:ea:d5:cf:7d:de:f0:78:72:45:79:da:ec:4f:20:9a:a4:50:
35:1c:c9:08:e5:60:9f:4f:96:d7:56:63:1c:64:1a:d5:e7:8e:
a0:30:a9:88:37:cb:57:ce:6e:7f:da:64:e2:5d:75:26:76:f3:
1c:ff:28:b9:8f:2c:33:c0:ea:a5:9e:bd:a5:2e:3f:66:cb:b6:
89:11:ca:05:98:63:d4:22:ed:8d:0c:95:13:f8:83:34:d6:5e:
3b:df:df:f2:0d:f7:71:69:6a:65:f2:28:8a:6d:98:66:f2:8e:
50:62:5c:96
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBDDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
Q0U2RkFGMTEwLwYDVQQFEygyQTdDRUU3OTE4MkJCODU5MUJCMTM1RERCRkJCRUU5
NEMxREY0MDg3MB4XDTIzMTAxMzExMjEwMVoXDTI3MTAxMzExMjEwMVowGDEWMBQG
A1UEAxMNNjUyOTI4MjEtM2JiZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL1S3dduA8mVhLNUnT0jDx6yDuW4LvydL/Vof78mJaMe1tpuJzqXYcoxDGsd
o38TSGN1NOTQnEvU5BQZTQDWdSbCWetlUhRVaoWHht4y3GsUgqu7APhauay18eAB
QUEZzmf5nAPvkLIo5jrsQtyXvdukMFq+3wiiW1TeyHbqc9H4D0eWPsOlQ09+iy6E
qXNieoiwusO+huNDNbJRgKNNpe17mw4246VvGSxvAkRMs3g6jumhLJDaXnnc20Pw
Jdj6XqXBYHDdv50zy8TUjMA9gfU1+S/v90a7LTA8DYtuOEBl+zdddUBMjzFtnGJ1
5IhJm4LBU/xDEPwpfRLiezpni9ECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQpzVHO
O6yFkj0eBUJHQeAM021XOzAfBgNVHSMEGDAWgBQqfO55GCu4WRuxNd2/u+6Uwd9A
hzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NkNFNkYvRDlBNDY3NkM2OTlBMTFFRUJDQzVGQjY3NEFEOUU2RkMvS256dWVS
Z3J1Rmtic1RYZHY3dnVsTUhmUUljLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvS256dWVSZ3J1Rmtic1RYZHY3dnVsTUhmUUljLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NkNFNkYvRDlBNDY3NkM2OTlBMTFFRUJDQzVGQjY3NEFE
OUU2RkMvOThGRENENDY2OUJBMTFFRTk1MTMwQzRCNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMTYpDANBgkqhkiG9w0BAQsF
AAOCAQEAfYzo+mrKBToTP+FBmCAdtCWTL2r3WDnkavte0KMm4TQDlCESv+CA53wT
duIbHvwyw2y/+XPDSJvXZklXFSb59mrDhUbdCA59bBr2ggSTBKYpUNuSioBpsAoC
JIe/oarAeOALVlpoRG8tXIGqO5aZeSclHUuyuFfKz6AKFvuINGJKf8Xo+RS53Y83
jh6UwuCh7OrVz33e8HhyRXna7E8gmqRQNRzJCOVgn0+W11ZjHGQa1eeOoDCpiDfL
V85uf9pk4l11JnbzHP8ouY8sM8DqpZ69pS4/Zsu2iRHKBZhj1CLtjQyVE/iDNNZe
O9/f8g33cWlqZfIoim2YZvKOUGJclg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:42 2024 by rpki-client on console-ams.rpki-client.org