Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/55ED8DDE3EA811EF9BE0DFB1762E951A.roa
File: 55ED8DDE3EA811EF9BE0DFB1762E951A.roa (raw, json)
Hash identifier: iSzoSuhrgMPdzpIVdJCM3XSKCXtDdfeFukLY/1aUvG8=
Subject key identifier: F4:31:10:23:7B:47:19:41:F6:FD:17:F7:AB:0A:10:83:34:5C:70:5F
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 067D
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/55ED8DDE3EA811EF9BE0DFB1762E951A.roa
Signing time: Wed 10 Jul 2024 10:36:59 +0000
ROA not before: Wed 10 Jul 2024 10:36:55 +0000
ROA not after: Sun 31 Dec 2034 10:36:55 +0000
asID: 20011
IP address blocks: 197.88.0.0/13 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1661 (0x67d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Jul 10 10:36:55 2024 GMT
Not After : Dec 31 10:36:55 2034 GMT
Subject: CN=668e644b-ffa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:a1:5e:3d:e8:09:6e:72:e5:33:c9:35:66:
71:3c:3a:6c:de:e6:87:71:6e:b6:08:78:4e:88:8c:
96:2e:69:8d:f5:26:82:0a:45:93:7a:b2:da:20:2d:
f2:a4:65:5a:46:bf:fd:5c:5f:0a:6b:1d:d2:e5:39:
ff:4f:be:15:43:21:94:20:c7:29:8f:fb:ae:6f:05:
b5:69:2f:b1:09:39:aa:5f:9f:28:b8:02:d2:c3:fe:
15:8a:4f:a8:78:5d:55:08:40:86:bf:3a:79:72:1e:
10:0c:4c:c0:d5:8d:0a:21:a9:04:ed:2a:25:c0:2c:
80:41:11:42:c4:e2:69:8e:ce:0e:54:db:4b:63:f4:
e2:55:6e:19:71:de:42:b3:4d:10:72:33:31:50:dc:
b3:f4:87:10:75:70:62:f7:85:7b:44:fd:80:94:44:
bf:3b:6e:8f:04:97:f8:72:59:c6:71:34:8f:63:22:
a5:e8:48:4c:3b:8d:58:2f:a4:cf:48:dd:43:fc:a8:
a0:56:57:42:7e:4c:12:48:fb:5f:bb:86:d7:ee:fe:
ea:88:d2:31:af:75:74:a3:7d:49:fe:42:95:46:51:
0b:f6:bf:a2:1f:19:97:81:f4:1b:48:62:2a:6d:2a:
56:5e:53:a3:8a:ec:49:fa:65:7d:67:76:b2:fb:c6:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:31:10:23:7B:47:19:41:F6:FD:17:F7:AB:0A:10:83:34:5C:70:5F
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/55ED8DDE3EA811EF9BE0DFB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.88.0.0/13
Signature Algorithm: sha256WithRSAEncryption
9a:56:3f:28:6f:d1:45:60:7f:47:96:77:b9:3f:78:83:ec:fb:
e5:40:02:ed:7e:93:89:a7:88:e7:97:54:f3:e8:84:06:9c:7c:
8a:ec:f0:20:a9:a2:09:00:6b:9e:4e:42:69:c2:88:68:d9:20:
01:5b:60:a7:e7:0c:da:9d:13:a7:16:3a:92:70:cb:9b:6f:ee:
89:58:ed:b9:3d:49:f6:63:0f:f1:90:37:b9:4b:cf:9e:ca:04:
68:34:55:08:47:b8:c3:54:4b:0a:71:0f:6a:7a:75:4a:a1:5c:
54:5a:63:b3:25:a5:6c:1a:e7:bc:45:ab:aa:f3:0a:8e:c6:7b:
f8:3b:fc:91:6f:8b:34:38:4e:e2:51:7a:ab:93:a8:59:b3:db:
ec:51:ca:f8:ce:88:41:a4:88:98:38:98:34:27:8c:bf:6d:f5:
e1:77:47:47:af:75:71:44:b8:1c:25:47:2d:fa:14:42:2c:db:
e1:4f:7b:cd:1f:51:53:43:79:3d:cb:01:e6:b1:2a:55:98:54:
d2:a5:6c:3c:29:89:32:c3:1f:26:63:27:24:95:64:ef:e5:5e:
80:91:cf:0b:96:e5:6d:aa:f8:66:6c:40:82:3d:91:7a:0b:58:
de:5e:fe:bf:04:57:7b:5c:c3:0f:c6:04:39:41:07:c6:4b:93:
75:af:6f:54
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBRjExMC8GA1UEBRMoMkY0MDdGRUNEOEI3REREQ0E1RDVCOTBBNUUxOTU4
OUQwNkMxMDFEQzAeFw0yNDA3MTAxMDM2NTVaFw0zNDEyMzExMDM2NTVaMBgxFjAU
BgNVBAMTDTY2OGU2NDRiLWZmYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC32KFePegJbnLlM8k1ZnE8Omze5odxbrYIeE6IjJYuaY31JoIKRZN6stog
LfKkZVpGv/1cXwprHdLlOf9PvhVDIZQgxymP+65vBbVpL7EJOapfnyi4AtLD/hWK
T6h4XVUIQIa/OnlyHhAMTMDVjQohqQTtKiXALIBBEULE4mmOzg5U20tj9OJVbhlx
3kKzTRByMzFQ3LP0hxB1cGL3hXtE/YCURL87bo8El/hyWcZxNI9jIqXoSEw7jVgv
pM9I3UP8qKBWV0J+TBJI+1+7htfu/uqI0jGvdXSjfUn+QpVGUQv2v6IfGZeB9BtI
YiptKlZeU6OK7En6ZX1ndrL7xpHVAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU9DEQ
I3tHGUH2/Rf3qwoQgzRccF8wHwYDVR0jBBgwFoAUL0B/7Ni33dyl1bkKXhlYnQbB
AdwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4QUVBMjI4L0wwQl83
TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0wwQl83TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4
QUVBMjI4LzU1RUQ4RERFM0VBODExRUY5QkUwREZCMTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwPFWDANBgkqhkiG9w0BAQsF
AAOCAQEAmlY/KG/RRWB/R5Z3uT94g+z75UAC7X6TiaeI55dU8+iEBpx8iuzwIKmi
CQBrnk5CacKIaNkgAVtgp+cM2p0TpxY6knDLm2/uiVjtuT1J9mMP8ZA3uUvPnsoE
aDRVCEe4w1RLCnEPanp1SqFcVFpjsyWlbBrnvEWrqvMKjsZ7+Dv8kW+LNDhO4lF6
q5OoWbPb7FHK+M6IQaSImDiYNCeMv2314XdHR691cUS4HCVHLfoUQizb4U97zR9R
U0N5PcsB5rEqVZhU0qVsPCmJMsMfJmMnJJVk7+VegJHPC5blbar4ZmxAgj2RegtY
3l7+vwRXe1zDD8YEOUEHxkuTda9vVA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org