Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/D17F6EEC902411ED9E7767D2F1222468.roa
File: D17F6EEC902411ED9E7767D2F1222468.roa (raw, json)
Hash identifier: JO/7laMxt+UsHBnYsLId8OjP3XjZJzj6vEh7zTGEoAg=
Subject key identifier: 60:4E:64:EE:6E:1C:4B:BA:FD:FE:82:82:65:3B:0D:5C:BD:36:5E:14
Certificate issuer: /CN=F367972FRI/serialNumber=4869B975F49D980FE515CEDD49A0C40EBB81ACA2
Certificate serial: 05
Authority key identifier: 48:69:B9:75:F4:9D:98:0F:E5:15:CE:DD:49:A0:C4:0E:BB:81:AC:A2
Authority info access: rsync://rpki.afrinic.net/repository/ripe/SGm5dfSdmA_lFc7dSaDEDruBrKI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/D17F6EEC902411ED9E7767D2F1222468.roa
Signing time: Mon 09 Jan 2023 13:52:13 +0000
ROA not before: Mon 09 Jan 2023 13:52:09 +0000
ROA not after: Sat 01 Jan 2033 13:52:09 +0000
asID: 24757
IP address blocks: 213.55.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/SGm5dfSdmA_lFc7dSaDEDruBrKI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/SGm5dfSdmA_lFc7dSaDEDruBrKI.mft
rsync://rpki.afrinic.net/repository/ripe/SGm5dfSdmA_lFc7dSaDEDruBrKI.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367972FRI/serialNumber=4869B975F49D980FE515CEDD49A0C40EBB81ACA2
Validity
Not Before: Jan 9 13:52:09 2023 GMT
Not After : Jan 1 13:52:09 2033 GMT
Subject: CN=63bc1c0d-495b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:28:9b:d2:89:fb:b5:45:5b:4e:70:f7:38:9e:
ae:f1:ac:e4:bc:d0:f7:33:f5:6f:0d:4a:87:70:0c:
0c:52:d6:17:3f:d2:eb:8e:85:58:f1:0f:73:cc:37:
2b:db:87:9f:2c:75:3d:e9:78:b5:35:f3:f0:20:9c:
fd:b6:19:0f:52:6a:32:78:fb:62:62:12:7e:ea:61:
e3:9f:65:61:6d:bd:2e:b0:c0:7a:85:31:d7:5a:49:
fb:49:37:4c:c6:fb:c0:18:aa:4d:f4:4b:58:c3:c1:
e5:83:8b:f9:2a:23:02:14:bd:b7:94:09:ab:1f:05:
b1:d8:f2:6f:0a:0e:57:9b:2c:78:3d:b3:56:94:e5:
6c:72:18:3f:b5:56:a2:a7:74:dd:c3:93:eb:2e:b5:
fe:66:a1:a1:89:68:ab:4c:3c:60:ab:8a:ad:c9:94:
00:53:85:45:58:a9:7d:81:86:21:ce:e2:a4:a5:07:
cc:c5:a5:d6:c9:e4:e9:8c:e4:ae:0c:a7:30:cc:80:
8b:d7:bc:d5:ea:a9:b2:63:76:d9:01:ec:17:85:29:
fd:cc:a7:28:03:29:d6:a0:4e:25:40:81:6e:a3:d9:
c3:98:ad:3a:8a:c3:4c:32:01:30:ed:65:bc:f9:f5:
53:37:8b:84:a9:8b:6a:97:60:21:d6:02:b2:ea:b3:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4E:64:EE:6E:1C:4B:BA:FD:FE:82:82:65:3B:0D:5C:BD:36:5E:14
X509v3 Authority Key Identifier:
keyid:48:69:B9:75:F4:9D:98:0F:E5:15:CE:DD:49:A0:C4:0E:BB:81:AC:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/SGm5dfSdmA_lFc7dSaDEDruBrKI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/SGm5dfSdmA_lFc7dSaDEDruBrKI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/4C758F6A901011EDBC3E0F9BF1222468/D17F6EEC902411ED9E7767D2F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
213.55.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:88:bc:6c:fc:b0:d7:c4:db:74:42:40:15:5a:30:65:b4:84:
1d:e5:43:d2:29:1e:38:c2:74:9d:f2:51:82:a8:8d:c0:25:6b:
04:ff:f5:fc:3c:e9:46:4e:04:51:29:3d:96:ad:18:aa:2b:aa:
dc:be:eb:e8:ce:e6:0a:52:8a:4b:63:77:6e:15:8b:11:77:84:
ad:8d:83:68:99:ab:df:da:9c:09:42:d3:c4:55:80:f2:91:75:
e7:6e:4d:c7:d9:34:a4:a4:c3:5e:d0:93:71:ec:3a:07:d7:df:
1b:12:1d:c7:c1:7a:6b:0c:e9:c3:c1:a9:9e:e9:55:5f:89:68:
13:62:da:4a:0b:30:89:dc:e3:07:7b:0b:df:85:81:ae:8d:df:
90:bf:f4:b1:98:c9:d7:5c:0b:2d:4f:ad:db:8d:e1:52:78:52:
97:a1:ef:0b:d6:23:e0:35:f9:05:3f:0b:d0:96:a0:a1:93:c6:
64:28:d5:72:cb:ce:08:0e:11:7c:db:c2:18:ab:6e:40:16:75:
b4:16:24:c7:ac:0c:e9:73:9a:2a:54:5d:ad:3e:e6:e8:20:4d:
ec:70:38:5d:fd:5c:1f:48:b9:7a:22:ab:18:d4:f2:f0:73:3d:
9c:01:14:dd:33:24:db:56:72:db:27:09:51:d9:cb:07:37:79:
9d:b7:8e:53
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBBTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY3
OTcyRlJJMTEwLwYDVQQFEyg0ODY5Qjk3NUY0OUQ5ODBGRTUxNUNFREQ0OUEwQzQw
RUJCODFBQ0EyMB4XDTIzMDEwOTEzNTIwOVoXDTMzMDEwMTEzNTIwOVowGDEWMBQG
A1UEAwwNNjNiYzFjMGQtNDk1YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKgom9KJ+7VFW05w9ziervGs5LzQ9zP1bw1Kh3AMDFLWFz/S646FWPEPc8w3
K9uHnyx1Pel4tTXz8CCc/bYZD1JqMnj7YmISfuph459lYW29LrDAeoUx11pJ+0k3
TMb7wBiqTfRLWMPB5YOL+SojAhS9t5QJqx8FsdjybwoOV5sseD2zVpTlbHIYP7VW
oqd03cOT6y61/mahoYloq0w8YKuKrcmUAFOFRVipfYGGIc7ipKUHzMWl1snk6Yzk
rgynMMyAi9e81eqpsmN22QHsF4Up/cynKAMp1qBOJUCBbqPZw5itOorDTDIBMO1l
vPn1UzeLhKmLapdgIdYCsuqzSQcCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBRgTmTu
bhxLuv3+goJlOw1cvTZeFDAfBgNVHSMEGDAWgBRIabl19J2YD+UVzt1JoMQOu4Gs
ojAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2Nzk3MkYvNEM3NThGNkE5MDEwMTFFREJDM0UwRjlCRjEyMjI0NjgvU0dtNWRm
U2RtQV9sRmM3ZFNhREVEcnVCcktJLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L3JpcGUv
U0dtNWRmU2RtQV9sRmM3ZFNhREVEcnVCcktJLmNlcjBPBgNVHSABAf8ERTBDMEEG
CCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmljLm5l
dC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUFBzAL
hoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3Jl
cG9zaXRvcnkvRjM2Nzk3MkYvNEM3NThGNkE5MDEwMTFFREJDM0UwRjlCRjEyMjI0
NjgvRDE3RjZFRUM5MDI0MTFFRDlFNzc2N0QyRjEyMjI0Njgucm9hMDUGCCsGAQUF
BzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtU3QDANBgkqhkiG9w0BAQsFAAOC
AQEAqYi8bPyw18TbdEJAFVowZbSEHeVD0ikeOMJ0nfJRgqiNwCVrBP/1/DzpRk4E
USk9lq0Yqiuq3L7r6M7mClKKS2N3bhWLEXeErY2DaJmr39qcCULTxFWA8pF1525N
x9k0pKTDXtCTcew6B9ffGxIdx8F6awzpw8GpnulVX4loE2LaSgswidzjB3sL34WB
ro3fkL/0sZjJ11wLLU+t243hUnhSl6HvC9Yj4DX5BT8L0JagoZPGZCjVcsvOCA4R
fNvCGKtuQBZ1tBYkx6wM6XOaKlRdrT7m6CBN7HA4Xf1cH0i5eiKrGNTy8HM9nAEU
3TMk21Zy2ycJUdnLBzd5nbeOUw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org