Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/93497D1A4C2611EFB22D3094762E951A.roa
File: 93497D1A4C2611EFB22D3094762E951A.roa (raw, json)
Hash identifier: VZHe+souUw5aWOV71j+5Y+w4oxLPzuiUD+rog51iDBY=
Subject key identifier: FE:D8:DC:64:7E:91:4C:6E:21:77:92:1C:4A:8E:78:49:8F:48:89:B0
Certificate issuer: /CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Certificate serial: 0529
Authority key identifier: 38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/93497D1A4C2611EFB22D3094762E951A.roa
Signing time: Sat 27 Jul 2024 14:43:24 +0000
ROA not before: Sat 27 Jul 2024 14:43:20 +0000
ROA not after: Tue 27 Jul 2027 14:43:20 +0000
asID: 37716
IP address blocks: 196.49.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.mft
rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1321 (0x529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366D2C6AF/serialNumber=386298D9D0EB71CA90F486A16134AF1361D271C8
Validity
Not Before: Jul 27 14:43:20 2024 GMT
Not After : Jul 27 14:43:20 2027 GMT
Subject: CN=66a5078b-aff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:0c:7d:62:75:0b:d3:d7:96:2d:9e:5a:dc:1b:
44:db:84:93:f5:4b:96:e1:9d:a0:6a:91:5b:9a:6f:
5a:37:1c:4e:11:04:72:ac:d0:1f:48:94:5b:9b:cb:
68:03:96:41:ea:b6:b3:50:34:28:ee:49:eb:df:d4:
bc:8a:60:14:50:d7:0c:e4:49:27:44:75:52:a6:6b:
6b:29:ec:cb:63:ad:fc:88:bd:5f:fe:87:3c:76:af:
a9:14:4a:c9:66:87:31:d8:d3:03:a2:82:30:96:4b:
63:48:66:53:e9:c1:94:ac:13:53:26:2f:4a:d5:50:
66:de:42:f3:6c:b0:26:2a:d4:a2:b0:8b:30:30:a5:
e4:e4:ed:10:65:c5:43:d5:fb:68:08:1c:8d:07:66:
c4:d1:23:d9:99:20:ef:13:a3:ab:bb:11:ea:09:22:
67:82:e9:57:d0:ab:ca:11:55:aa:4e:2a:7e:5f:31:
46:67:7b:98:d8:55:05:c5:9b:4b:c8:4d:2a:85:e3:
65:8d:38:42:f9:62:de:59:fa:8f:3d:bb:8e:00:d3:
a3:44:d8:51:fd:e8:b9:83:94:4a:7a:27:18:e6:ae:
cc:1b:5a:db:01:3c:0c:c7:f3:99:0f:84:8b:c3:a6:
d7:55:cc:0b:76:5a:7a:f7:3f:1e:72:27:20:d4:03:
69:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D8:DC:64:7E:91:4C:6E:21:77:92:1C:4A:8E:78:49:8F:48:89:B0
X509v3 Authority Key Identifier:
keyid:38:62:98:D9:D0:EB:71:CA:90:F4:86:A1:61:34:AF:13:61:D2:71:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/OGKY2dDrccqQ9IahYTSvE2HSccg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OGKY2dDrccqQ9IahYTSvE2HSccg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366D2C6/0BEC0256711A11EB9EB6B41CF8AEA228/93497D1A4C2611EFB22D3094762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.49.74.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:00:8f:5e:56:ee:ba:55:1e:5f:d3:94:c7:26:47:b6:e9:6e:
f2:c0:2c:96:f7:a4:3c:e4:df:de:98:9d:bd:6f:cb:4b:dd:42:
b4:59:d4:1c:60:71:0e:3a:d5:75:33:dc:0d:e9:64:cf:83:c6:
63:5a:d6:b2:08:a9:8c:5f:b6:12:bb:c0:95:25:ed:c4:e4:23:
6a:ec:83:6b:fa:57:50:af:24:cd:14:47:c7:60:2d:7e:66:da:
77:e0:0f:ee:8e:32:54:41:4d:ef:6f:1c:0d:f9:1b:7c:12:29:
59:59:72:31:9c:f5:fa:d3:18:f3:11:22:04:13:f1:e6:d6:47:
83:a7:3c:36:3c:e1:6c:e2:f3:7a:d5:e3:24:4d:0f:c6:09:cd:
52:b3:2e:ad:af:e5:ae:e7:2d:6d:d8:5d:68:0c:65:ae:0c:a8:
f1:9a:25:9f:fe:f2:0f:a4:b9:49:69:40:c5:46:6e:58:0d:cd:
0c:eb:b2:80:aa:4f:e6:e2:1d:0a:b7:ca:5c:97:52:5b:41:91:
4d:c9:9a:b7:6f:b9:72:5b:a8:dc:35:90:fe:1f:a7:ac:1f:74:
15:c6:71:32:5c:9b:6b:20:ca:cd:f3:67:7b:90:85:a6:66:2e:
05:e8:f2:29:64:0e:39:27:3f:8b:19:a5:f0:15:fb:b1:23:48:
ee:32:cf:cb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NkQyQzZBRjExMC8GA1UEBRMoMzg2Mjk4RDlEMEVCNzFDQTkwRjQ4NkExNjEzNEFG
MTM2MUQyNzFDODAeFw0yNDA3MjcxNDQzMjBaFw0yNzA3MjcxNDQzMjBaMBgxFjAU
BgNVBAMTDTY2YTUwNzhiLWFmZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD9DH1idQvT15YtnlrcG0TbhJP1S5bhnaBqkVuab1o3HE4RBHKs0B9IlFub
y2gDlkHqtrNQNCjuSevf1LyKYBRQ1wzkSSdEdVKma2sp7MtjrfyIvV/+hzx2r6kU
SslmhzHY0wOigjCWS2NIZlPpwZSsE1MmL0rVUGbeQvNssCYq1KKwizAwpeTk7RBl
xUPV+2gIHI0HZsTRI9mZIO8To6u7EeoJImeC6VfQq8oRVapOKn5fMUZne5jYVQXF
m0vITSqF42WNOEL5Yt5Z+o89u44A06NE2FH96LmDlEp6JxjmrswbWtsBPAzH85kP
hIvDptdVzAt2Wnr3Px5yJyDUA2ldAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU/tjc
ZH6RTG4hd5IcSo54SY9IibAwHwYDVR0jBBgwFoAUOGKY2dDrccqQ9IahYTSvE2HS
ccgwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjZEMkM2LzBCRUMwMjU2NzExQTExRUI5RUI2QjQxQ0Y4QUVBMjI4L09HS1ky
ZERyY2NxUTlJYWhZVFN2RTJIU2NjZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09HS1kyZERyY2NxUTlJYWhZVFN2RTJIU2NjZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjZEMkM2LzBCRUMwMjU2NzExQTExRUI5RUI2QjQxQ0Y4
QUVBMjI4LzkzNDk3RDFBNEMyNjExRUZCMjJEMzA5NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEMUowDQYJKoZIhvcNAQEL
BQADggEBAMYAj15W7rpVHl/TlMcmR7bpbvLALJb3pDzk396Ynb1vy0vdQrRZ1Bxg
cQ461XUz3A3pZM+DxmNa1rIIqYxfthK7wJUl7cTkI2rsg2v6V1CvJM0UR8dgLX5m
2nfgD+6OMlRBTe9vHA35G3wSKVlZcjGc9frTGPMRIgQT8ebWR4OnPDY84Wzi83rV
4yRND8YJzVKzLq2v5a7nLW3YXWgMZa4MqPGaJZ/+8g+kuUlpQMVGblgNzQzrsoCq
T+biHQq3ylyXUltBkU3JmrdvuXJbqNw1kP4fp6wfdBXGcTJcm2sgys3zZ3uQhaZm
LgXo8ilkDjknP4sZpfAV+7EjSO4yz8s=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org