Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/0755AE8C5E4911EC910446DF5A40D577.roa
File: 0755AE8C5E4911EC910446DF5A40D577.roa (raw, json)
Hash identifier: AItjzWPSlit+SXvmdCFmobWIhqJxwMx7F/NvBd+HRhQ=
Subject key identifier: 86:DC:10:9E:4D:E3:D4:CC:55:BB:EA:76:B5:C0:6A:E0:E3:3B:77:F2
Certificate issuer: /CN=F36746EBAF/serialNumber=2B17EDB225A8A9AD4EA1D482FAD7F3B78270BDA4
Certificate serial: 02
Authority key identifier: 2B:17:ED:B2:25:A8:A9:AD:4E:A1:D4:82:FA:D7:F3:B7:82:70:BD:A4
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KxftsiWoqa1OodSC-tfzt4JwvaQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/0755AE8C5E4911EC910446DF5A40D577.roa
Signing time: Thu 16 Dec 2021 08:20:29 +0000
ROA not before: Thu 16 Dec 2021 08:20:25 +0000
ROA not after: Wed 31 Dec 2031 08:20:25 +0000
asID: 328978
IP address blocks: 102.219.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/KxftsiWoqa1OodSC-tfzt4JwvaQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/KxftsiWoqa1OodSC-tfzt4JwvaQ.mft
rsync://rpki.afrinic.net/repository/afrinic/KxftsiWoqa1OodSC-tfzt4JwvaQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36746EBAF/serialNumber=2B17EDB225A8A9AD4EA1D482FAD7F3B78270BDA4
Validity
Not Before: Dec 16 08:20:25 2021 GMT
Not After : Dec 31 08:20:25 2031 GMT
Subject: CN=61baf6cd-89d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:08:1d:3f:88:87:82:07:79:f6:5a:7b:7f:43:
b3:5a:ca:76:e8:32:e1:d1:2f:98:52:cf:82:f2:78:
f9:45:c7:c0:2c:2c:d3:96:aa:32:28:8b:c2:38:d0:
01:1c:51:04:c6:6f:31:6e:96:b2:ec:a1:ca:fc:ca:
68:3e:19:3f:c0:24:94:59:f0:9d:da:5d:df:71:15:
c1:65:bb:e2:eb:ee:0b:33:eb:99:e5:2c:41:3b:e7:
be:71:8d:2d:a4:42:ba:70:6b:4c:73:a7:4a:55:fa:
c8:b6:00:ac:e8:ee:13:43:fe:69:82:86:79:67:f1:
89:81:52:d7:8f:cf:f8:51:39:e4:33:3a:46:13:e0:
3e:97:25:15:d6:f6:cf:04:5a:01:52:9a:0b:57:ac:
b9:7b:5c:03:eb:73:bd:b9:6c:4f:74:15:d0:0c:53:
17:e8:67:aa:e9:bd:48:d5:c8:7c:bd:20:05:0e:c4:
b3:63:d7:3a:87:1e:cb:ce:44:bd:5d:64:33:ba:f7:
ac:3f:79:12:1f:41:90:dd:87:0f:97:31:00:51:3f:
79:1e:8f:7a:d6:59:ec:ab:80:ed:e2:9a:97:62:9c:
dc:8e:1a:45:2b:7f:db:21:21:a4:95:b1:7f:f9:7e:
75:54:18:2b:66:99:61:84:12:05:f4:17:e4:6a:a3:
34:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DC:10:9E:4D:E3:D4:CC:55:BB:EA:76:B5:C0:6A:E0:E3:3B:77:F2
X509v3 Authority Key Identifier:
keyid:2B:17:ED:B2:25:A8:A9:AD:4E:A1:D4:82:FA:D7:F3:B7:82:70:BD:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/KxftsiWoqa1OodSC-tfzt4JwvaQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KxftsiWoqa1OodSC-tfzt4JwvaQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/0755AE8C5E4911EC910446DF5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.219.23.0/24
Signature Algorithm: sha256WithRSAEncryption
73:10:99:e0:b6:23:46:ea:f4:cf:80:3e:0b:60:8a:d4:7e:8b:
61:df:f9:24:66:d5:17:1a:53:cd:ec:7e:c5:ad:9f:53:d3:e5:
fa:c9:56:fc:af:99:38:92:9f:05:b3:36:50:38:0c:b9:cb:ce:
9e:64:8f:a0:f9:41:29:78:4a:e4:2a:27:60:a7:68:b8:e0:86:
33:7a:a5:cb:82:d1:3e:eb:ab:ab:ca:fc:97:c2:f2:18:2a:fe:
42:39:a7:11:f2:30:b3:35:2b:8c:2e:76:82:fc:91:45:3b:e8:
dd:cb:c3:09:3e:6e:94:b3:f3:94:c0:37:ef:d9:15:6c:db:9f:
a6:93:14:ce:f2:5f:75:ba:cf:8b:8c:74:18:c7:7f:64:af:b6:
72:a3:2b:97:46:ce:15:e1:d5:17:1b:cc:ee:28:ee:d3:8d:56:
f1:3d:34:7d:7e:38:a4:ce:43:f3:80:2f:ba:f4:ce:a0:09:ba:
85:78:b4:58:11:60:33:34:bb:96:43:4a:0f:3c:48:7a:47:07:
ad:a2:b0:df:be:fc:8d:33:7e:92:9e:e1:4b:07:c0:b0:58:fe:
71:88:0b:a8:3b:0d:33:ab:74:05:a5:05:9b:c2:63:a0:5e:26:
56:32:45:ed:26:a4:c1:a8:47:12:9b:a9:a6:7e:07:eb:54:7d:
31:b8:5a:bb
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY3
NDZFQkFGMTEwLwYDVQQFEygyQjE3RURCMjI1QThBOUFENEVBMUQ0ODJGQUQ3RjNC
NzgyNzBCREE0MB4XDTIxMTIxNjA4MjAyNVoXDTMxMTIzMTA4MjAyNVowGDEWMBQG
A1UEAwwNNjFiYWY2Y2QtODlkNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN8IHT+Ih4IHefZae39Ds1rKdugy4dEvmFLPgvJ4+UXHwCws05aqMiiLwjjQ
ARxRBMZvMW6WsuyhyvzKaD4ZP8AklFnwndpd33EVwWW74uvuCzPrmeUsQTvnvnGN
LaRCunBrTHOnSlX6yLYArOjuE0P+aYKGeWfxiYFS14/P+FE55DM6RhPgPpclFdb2
zwRaAVKaC1esuXtcA+tzvblsT3QV0AxTF+hnqum9SNXIfL0gBQ7Es2PXOocey85E
vV1kM7r3rD95Eh9BkN2HD5cxAFE/eR6PetZZ7KuA7eKal2Kc3I4aRSt/2yEhpJWx
f/l+dVQYK2aZYYQSBfQX5GqjND0CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBSG3BCe
TePUzFW76na1wGrg4zt38jAfBgNVHSMEGDAWgBQrF+2yJaiprU6h1IL61/O3gnC9
pDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NzQ2RUIvMEM1NjRDNUU1RTQ3MTFFQ0I5QTFBRUQ5NUE0MEQ1NzcvS3hmdHNp
V29xYTFPb2RTQy10Znp0NEp3dmFRLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvS3hmdHNpV29xYTFPb2RTQy10Znp0NEp3dmFRLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NzQ2RUIvMEM1NjRDNUU1RTQ3MTFFQ0I5QTFBRUQ5NUE0
MEQ1NzcvMDc1NUFFOEM1RTQ5MTFFQzkxMDQ0NkRGNUE0MEQ1Nzcucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbbFzANBgkqhkiG9w0BAQsF
AAOCAQEAcxCZ4LYjRur0z4A+C2CK1H6LYd/5JGbVFxpTzex+xa2fU9Pl+slW/K+Z
OJKfBbM2UDgMucvOnmSPoPlBKXhK5ConYKdouOCGM3qly4LRPuurq8r8l8LyGCr+
QjmnEfIwszUrjC52gvyRRTvo3cvDCT5ulLPzlMA379kVbNufppMUzvJfdbrPi4x0
GMd/ZK+2cqMrl0bOFeHVFxvM7iju041W8T00fX44pM5D84AvuvTOoAm6hXi0WBFg
MzS7lkNKDzxIekcHraKw3778jTN+kp7hSwfAsFj+cYgLqDsNM6t0BaUFm8JjoF4m
VjJF7SakwahHEpuppn4H61R9Mbhauw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org