Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/375E97123C0311EEBC639F504AD9E6FC.roa
File: 375E97123C0311EEBC639F504AD9E6FC.roa (raw, json)
Hash identifier: l5abLV0512VE16cfresgIPK/pfdCw5NiDVObtKJJJao=
Subject key identifier: 9C:5E:2A:A3:2B:90:06:FA:DB:30:84:FB:B9:19:3F:BE:9F:97:E9:4F
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 04D7
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/375E97123C0311EEBC639F504AD9E6FC.roa
Signing time: Wed 16 Aug 2023 07:05:01 +0000
ROA not before: Wed 16 Aug 2023 07:04:57 +0000
ROA not after: Wed 31 Aug 2033 07:04:57 +0000
asID: 20011
IP address blocks: 197.95.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1239 (0x4d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Aug 16 07:04:57 2023 GMT
Not After : Aug 31 07:04:57 2033 GMT
Subject: CN=64dc751d-bdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1b:49:a9:1f:00:f1:34:9f:53:45:0a:9f:b7:
f2:0b:bb:c6:21:23:f0:c9:39:f0:ed:c7:14:c3:8a:
f9:39:81:3e:4d:5d:f0:9c:3e:43:b6:ca:78:35:96:
b1:6c:bf:cc:2f:ea:1d:ee:27:a3:52:0c:66:8e:88:
ea:b9:ef:8f:ab:51:6a:67:e4:c6:14:a7:e4:a4:ed:
4b:d2:ee:9b:31:01:79:0b:1d:15:ce:09:f6:ff:7a:
75:f0:c6:75:7a:37:ab:65:64:c7:76:2c:58:83:4b:
1d:4d:7e:11:04:d2:98:bc:d8:dc:9f:13:0e:92:07:
b8:bb:76:0c:f6:c5:e8:7c:92:8d:b0:27:ff:3c:41:
ec:e8:fa:99:9c:99:63:11:8e:dc:ce:21:2a:cc:fd:
0f:8b:88:32:b4:cf:2a:b1:f7:05:8f:bc:89:a4:63:
c6:30:86:6c:bf:f2:79:23:7f:5b:66:7f:db:ca:42:
ac:a4:06:52:4c:10:fa:2a:d1:aa:a0:e3:51:0c:c7:
8e:bb:4c:82:8a:b0:34:f8:7e:c8:9e:c4:09:2d:d5:
e9:dd:a8:3b:cf:0a:d0:ff:0e:fe:2a:06:f5:bb:ec:
b4:d7:bc:c5:41:3c:56:b6:d6:a6:00:a0:af:ba:e4:
6c:a3:66:0f:f5:a1:2c:87:80:9d:3a:51:2a:b6:c0:
26:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5E:2A:A3:2B:90:06:FA:DB:30:84:FB:B9:19:3F:BE:9F:97:E9:4F
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/375E97123C0311EEBC639F504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.95.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8c:37:7f:6e:8f:46:71:24:04:55:39:97:1a:a8:a6:b7:df:be:
d3:92:7d:70:f8:f9:6d:c3:cd:f3:11:f9:aa:86:9a:90:bb:7a:
2b:53:a3:5a:1c:70:db:ce:04:10:05:8f:de:58:17:3b:a5:7f:
f7:bb:83:08:c6:c1:b9:e3:d7:47:b4:54:ba:3c:ce:86:59:4b:
5d:e6:08:ea:9b:d5:3e:fb:c5:ee:88:c8:2e:9a:62:78:cf:7f:
a3:7f:4b:7b:8c:3b:59:d2:80:26:88:b1:4b:04:b1:90:94:d7:
b3:5b:df:c0:aa:96:d2:e1:bf:ab:3d:2b:24:3f:d2:f4:8a:a8:
18:db:63:79:1e:1a:81:3b:a6:af:6c:c9:b0:f7:cc:6b:79:67:
cf:48:85:75:50:74:7b:9d:7a:b1:23:51:fd:ec:b7:20:bd:dc:
06:80:3b:03:8c:ba:a9:5e:9c:e8:40:98:4a:ee:21:33:72:5b:
85:fd:2d:b6:35:8a:d5:ee:46:7b:d1:ca:5a:fc:37:27:b2:f0:
12:15:c5:d4:67:88:ae:db:dc:6c:46:8c:4d:06:36:68:51:b3:
08:91:70:b6:49:6c:19:bd:f1:db:27:c4:b9:d7:1b:a6:99:33:
ac:80:f8:55:0d:95:2d:b1:20:83:cb:cd:81:79:ca:3d:e8:95:
c0:91:b6:2b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0IyMTZBRjExMC8GA1UEBRMoMkY0MDdGRUNEOEI3REREQ0E1RDVCOTBBNUUxOTU4
OUQwNkMxMDFEQzAeFw0yMzA4MTYwNzA0NTdaFw0zMzA4MzEwNzA0NTdaMBgxFjAU
BgNVBAMTDTY0ZGM3NTFkLWJkZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDqG0mpHwDxNJ9TRQqft/ILu8YhI/DJOfDtxxTDivk5gT5NXfCcPkO2yng1
lrFsv8wv6h3uJ6NSDGaOiOq574+rUWpn5MYUp+Sk7UvS7psxAXkLHRXOCfb/enXw
xnV6N6tlZMd2LFiDSx1NfhEE0pi82NyfEw6SB7i7dgz2xeh8ko2wJ/88Qezo+pmc
mWMRjtzOISrM/Q+LiDK0zyqx9wWPvImkY8Ywhmy/8nkjf1tmf9vKQqykBlJMEPoq
0aqg41EMx467TIKKsDT4fsiexAkt1endqDvPCtD/Dv4qBvW77LTXvMVBPFa21qYA
oK+65GyjZg/1oSyHgJ06USq2wCaxAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUnF4q
oyuQBvrbMIT7uRk/vp+X6U8wHwYDVR0jBBgwFoAUL0B/7Ni33dyl1bkKXhlYnQbB
AdwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4QUVBMjI4L0wwQl83
TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0wwQl83TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4
QUVBMjI4LzM3NUU5NzEyM0MwMzExRUVCQzYzOUY1MDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfFXwAwDQYJKoZIhvcNAQEL
BQADggEBAIw3f26PRnEkBFU5lxqoprffvtOSfXD4+W3DzfMR+aqGmpC7eitTo1oc
cNvOBBAFj95YFzulf/e7gwjGwbnj10e0VLo8zoZZS13mCOqb1T77xe6IyC6aYnjP
f6N/S3uMO1nSgCaIsUsEsZCU17Nb38CqltLhv6s9KyQ/0vSKqBjbY3keGoE7pq9s
ybD3zGt5Z89IhXVQdHuderEjUf3styC93AaAOwOMuqlenOhAmEruITNyW4X9LbY1
itXuRnvRylr8Nyey8BIVxdRniK7b3GxGjE0GNmhRswiRcLZJbBm98dsnxLnXG6aZ
M6yA+FUNlS2xIIPLzYF5yj3olcCRtis=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org