Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/3A036A0023E311EBA7E4515EF8AEA228.roa
File: 3A036A0023E311EBA7E4515EF8AEA228.roa (raw, json)
Hash identifier: 8IUYdHouL/KgAyYJ5ZHIEJY8Ka7R1x0U8rxHyMR+85A=
Subject key identifier: AB:42:7D:50:F4:E0:07:41:27:3D:4F:EF:B4:03:A5:02:1B:EC:CB:62
Certificate issuer: /CN=F36795C4AF/serialNumber=954AB88AE4948A9B75177DEE657FAB4E6E0C578A
Certificate serial: 0214
Authority key identifier: 95:4A:B8:8A:E4:94:8A:9B:75:17:7D:EE:65:7F:AB:4E:6E:0C:57:8A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/lUq4iuSUipt1F33uZX-rTm4MV4o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/3A036A0023E311EBA7E4515EF8AEA228.roa
Signing time: Wed 11 Nov 2020 06:00:41 +0000
ROA not before: Wed 11 Nov 2020 06:00:35 +0000
ROA not after: Fri 11 Nov 2039 06:00:35 +0000
asID: 6968
IP address blocks: 196.216.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/lUq4iuSUipt1F33uZX-rTm4MV4o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/lUq4iuSUipt1F33uZX-rTm4MV4o.mft
rsync://rpki.afrinic.net/repository/afrinic/lUq4iuSUipt1F33uZX-rTm4MV4o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 532 (0x214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36795C4AF/serialNumber=954AB88AE4948A9B75177DEE657FAB4E6E0C578A
Validity
Not Before: Nov 11 06:00:35 2020 GMT
Not After : Nov 11 06:00:35 2039 GMT
Subject: CN=5fab7e08-ae77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6b:07:c9:f6:2a:10:29:49:88:49:5a:a9:8d:
66:85:ba:6c:9a:c2:8d:17:30:46:2e:11:9a:90:65:
b7:2b:35:86:1c:52:ac:17:2d:50:cc:82:ff:8a:4a:
1a:4e:9a:c5:22:3a:cb:ed:93:10:c8:72:46:91:ec:
de:10:f3:dc:6e:38:7f:ed:98:14:76:43:66:7e:cc:
77:ca:d0:f4:58:f5:57:af:4a:2f:69:7f:e9:5d:9b:
2d:6a:36:5d:97:eb:7f:62:54:04:cf:30:11:72:33:
e6:03:6c:8e:f1:66:6d:5e:91:64:9c:ef:5b:e4:b4:
32:4b:40:de:19:b6:42:09:9e:b0:11:c0:c1:26:43:
ab:55:ba:68:25:ce:58:6f:85:ba:e9:dc:6e:53:6c:
3f:3f:87:56:25:da:21:4b:fb:4b:21:36:39:5f:33:
6b:87:e2:74:1e:72:8c:8d:58:a5:6d:c3:b3:bb:96:
31:ea:47:6e:cb:dd:7a:94:3b:75:c1:a3:c6:1d:af:
3d:1a:80:72:55:13:d7:be:35:43:d2:31:5d:1f:4f:
2a:28:63:ab:bc:e1:6b:9a:22:b8:7e:d9:22:5f:cb:
ce:03:47:d2:88:98:f4:4a:82:77:05:d8:50:85:24:
7a:0b:45:15:1f:b4:b9:43:76:dc:b4:c5:50:0e:16:
08:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:42:7D:50:F4:E0:07:41:27:3D:4F:EF:B4:03:A5:02:1B:EC:CB:62
X509v3 Authority Key Identifier:
keyid:95:4A:B8:8A:E4:94:8A:9B:75:17:7D:EE:65:7F:AB:4E:6E:0C:57:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/lUq4iuSUipt1F33uZX-rTm4MV4o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/lUq4iuSUipt1F33uZX-rTm4MV4o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36795C4/D603990491ED11E9841D5A7DF8AEA228/3A036A0023E311EBA7E4515EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.170.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:97:c0:b4:cc:1e:fb:a0:8a:a6:61:2b:f6:bb:b5:fa:9b:c8:
87:34:a3:79:cf:5d:3c:a4:96:9e:3a:f4:40:4e:a3:76:21:b5:
66:80:5e:f2:c7:f0:3b:81:80:fe:00:4e:11:9f:5b:76:05:8e:
65:f1:24:e1:17:cc:f5:6e:80:e9:28:56:8c:b3:4b:b4:27:ab:
77:4c:e2:93:c7:b3:e8:42:71:72:56:50:15:4a:83:40:3c:de:
9a:97:5c:30:d4:66:00:04:ed:f3:61:34:bc:08:be:30:82:51:
62:12:44:e6:56:0b:ca:d4:91:1d:c0:a0:c6:00:3c:01:21:da:
c3:05:9c:26:43:6d:b2:d0:fb:78:59:4e:42:cd:66:42:36:70:
d3:d6:31:29:b0:25:76:6c:b1:a5:90:34:f8:53:8d:61:13:ee:
14:51:5b:aa:1b:fe:01:8b:2d:6e:26:79:86:ae:93:43:c1:be:
9b:31:80:d4:1b:ab:b4:7f:6e:ac:5e:2d:e6:28:b1:2b:c3:0a:
33:04:79:a0:a6:6a:e9:ce:38:02:ce:d5:98:af:5b:4c:36:96:
75:29:d6:01:22:4e:81:10:f6:f8:f3:5f:2e:13:0f:40:7d:6a:
59:2d:f5:08:b5:2b:59:56:52:7b:e4:c0:64:22:7b:d3:04:a3:
70:14:ca:5e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
Nzk1QzRBRjExMC8GA1UEBRMoOTU0QUI4OEFFNDk0OEE5Qjc1MTc3REVFNjU3RkFC
NEU2RTBDNTc4QTAeFw0yMDExMTEwNjAwMzVaFw0zOTExMTEwNjAwMzVaMBgxFjAU
BgNVBAMTDTVmYWI3ZTA4LWFlNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQawfJ9ioQKUmISVqpjWaFumyawo0XMEYuEZqQZbcrNYYcUqwXLVDMgv+K
ShpOmsUiOsvtkxDIckaR7N4Q89xuOH/tmBR2Q2Z+zHfK0PRY9VevSi9pf+ldmy1q
Nl2X639iVATPMBFyM+YDbI7xZm1ekWSc71vktDJLQN4ZtkIJnrARwMEmQ6tVumgl
zlhvhbrp3G5TbD8/h1Yl2iFL+0shNjlfM2uH4nQecoyNWKVtw7O7ljHqR27L3XqU
O3XBo8Ydrz0agHJVE9e+NUPSMV0fTyooY6u84WuaIrh+2SJfy84DR9KImPRKgncF
2FCFJHoLRRUftLlDdty0xVAOFghdAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUq0J9
UPTgB0EnPU/vtAOlAhvsy2IwHwYDVR0jBBgwFoAUlUq4iuSUipt1F33uZX+rTm4M
V4owDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjc5NUM0L0Q2MDM5OTA0OTFFRDExRTk4NDFENUE3REY4QUVBMjI4L2xVcTRp
dVNVaXB0MUYzM3VaWC1yVG00TVY0by5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2xVcTRpdVNVaXB0MUYzM3VaWC1yVG00TVY0by5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjc5NUM0L0Q2MDM5OTA0OTFFRDExRTk4NDFENUE3REY4
QUVBMjI4LzNBMDM2QTAwMjNFMzExRUJBN0U0NTE1RUY4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE2KowDQYJKoZIhvcNAQEL
BQADggEBAByXwLTMHvugiqZhK/a7tfqbyIc0o3nPXTyklp469EBOo3YhtWaAXvLH
8DuBgP4AThGfW3YFjmXxJOEXzPVugOkoVoyzS7Qnq3dM4pPHs+hCcXJWUBVKg0A8
3pqXXDDUZgAE7fNhNLwIvjCCUWISROZWC8rUkR3AoMYAPAEh2sMFnCZDbbLQ+3hZ
TkLNZkI2cNPWMSmwJXZssaWQNPhTjWET7hRRW6ob/gGLLW4meYauk0PBvpsxgNQb
q7R/bqxeLeYosSvDCjMEeaCmaunOOALO1ZivW0w2lnUp1gEiToEQ9vjzXy4TD0B9
alkt9Qi1K1lWUnvkwGQie9MEo3AUyl4=
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:21 2024 by rpki-client on console-ams.rpki-client.org