Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/738A278C8D6511EB9A9FE661F8AEA228.roa
File: 738A278C8D6511EB9A9FE661F8AEA228.roa (raw, json)
Hash identifier: J/cB7y9eRSGUFRj4ga+Gh2wrULvC0wAPP3YstF3sRow=
Subject key identifier: 15:49:17:BD:2A:60:68:E3:1E:CC:85:44:B0:92:F6:A7:28:65:90:50
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: C4
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/738A278C8D6511EB9A9FE661F8AEA228.roa
Signing time: Thu 25 Mar 2021 12:27:23 +0000
ROA not before: Thu 25 Mar 2021 12:27:17 +0000
ROA not after: Tue 25 Mar 2031 12:27:17 +0000
asID: 10474
IP address blocks: 196.2.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196 (0xc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 25 12:27:17 2021 GMT
Not After : Mar 25 12:27:17 2031 GMT
Subject: CN=605c81ab-ed74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:46:6d:c0:e4:a5:a2:44:9f:18:46:9b:14:
ab:7d:53:57:31:0a:fd:0c:00:59:6c:67:39:f8:41:
05:e5:a4:4a:ba:11:76:fb:f1:76:09:c4:fb:20:4a:
29:a0:9a:83:c3:0a:f8:ef:56:b7:9e:df:27:c9:c6:
4b:96:f7:ff:ef:54:61:ac:9d:bb:ad:b7:cf:71:75:
a7:80:26:d3:c9:07:a1:56:0e:83:ea:b7:24:32:e5:
7b:07:9a:89:56:c6:98:90:0b:9c:e1:eb:7b:d2:ef:
2e:fb:26:4e:67:35:ec:e8:ee:6c:f2:24:82:16:82:
97:5d:d6:d2:75:ef:2f:89:df:5b:69:3c:78:1c:e6:
ca:20:35:1d:ff:63:11:ee:1c:86:12:a7:67:e8:c2:
c2:9d:e2:6d:eb:c7:d7:49:97:0c:9d:2c:df:2e:0c:
77:b3:c6:4f:09:5b:65:40:5b:53:d4:1a:4e:67:8b:
ed:20:3d:06:d8:49:97:f9:22:0a:01:d7:55:5e:d4:
55:60:1e:60:b3:54:28:b8:4f:6f:26:0a:d7:77:cc:
0a:9a:b2:d2:28:6f:03:74:41:a7:6a:78:3c:c6:7c:
6a:9f:c0:57:ed:67:4c:ee:7d:4b:98:85:37:d2:66:
e1:78:ea:4d:7b:d9:55:24:6c:e7:3b:54:c6:cf:26:
b6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:49:17:BD:2A:60:68:E3:1E:CC:85:44:B0:92:F6:A7:28:65:90:50
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/738A278C8D6511EB9A9FE661F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.2.43.0/24
Signature Algorithm: sha256WithRSAEncryption
21:96:85:1a:6e:ca:c4:48:34:83:f4:fc:da:68:c2:27:a6:4b:
61:9e:7c:3e:1c:d8:bb:58:5d:5c:03:23:08:c3:5e:06:7d:55:
98:a3:93:8e:83:a8:6a:1b:d7:7d:79:b1:ca:c4:43:10:81:b7:
3f:08:03:f5:bb:42:39:32:4b:24:5f:99:87:c2:fd:97:8d:b3:
21:fc:79:fb:c0:df:c6:f8:78:34:c7:e5:4a:87:b9:49:52:e7:
73:ea:8a:46:c9:c6:1b:3f:a7:a1:c4:06:67:69:89:2c:bf:cd:
ff:7d:8d:0c:05:47:a5:73:b1:6b:92:81:6a:19:dc:d1:94:b6:
4d:22:1e:d4:6d:76:cd:46:3b:9b:03:af:45:7a:a3:18:31:bd:
c4:83:fb:50:35:4f:4a:de:6b:ba:e2:9b:74:74:d8:2e:33:0e:
94:83:18:71:16:3b:dc:cb:2f:96:0f:9b:38:e5:aa:34:e9:48:
63:e3:a7:c0:6c:c6:de:b8:b4:88:ad:1e:5c:4e:b1:41:87:48:
18:49:2d:ad:28:37:5c:0e:a4:6c:61:05:da:a8:31:e2:63:8c:
99:46:a5:ec:1d:f9:30:da:e0:64:1c:cb:f3:be:2e:5d:31:8d:
f8:65:95:ff:a0:95:1c:de:0d:c1:0a:20:75:e9:0f:39:4f:6c:
6b:54:f5:87
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBRjExMC8GA1UEBRMoMkY0MDdGRUNEOEI3REREQ0E1RDVCOTBBNUUxOTU4
OUQwNkMxMDFEQzAeFw0yMTAzMjUxMjI3MTdaFw0zMTAzMjUxMjI3MTdaMBgxFjAU
BgNVBAMTDTYwNWM4MWFiLWVkNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCfr0ZtwOSlokSfGEabFKt9U1cxCv0MAFlsZzn4QQXlpEq6EXb78XYJxPsg
SimgmoPDCvjvVree3yfJxkuW9//vVGGsnbutt89xdaeAJtPJB6FWDoPqtyQy5XsH
molWxpiQC5zh63vS7y77Jk5nNezo7mzyJIIWgpdd1tJ17y+J31tpPHgc5sogNR3/
YxHuHIYSp2fowsKd4m3rx9dJlwydLN8uDHezxk8JW2VAW1PUGk5ni+0gPQbYSZf5
IgoB11Ve1FVgHmCzVCi4T28mCtd3zAqastIobwN0QadqeDzGfGqfwFftZ0zufUuY
hTfSZuF46k172VUkbOc7VMbPJrZhAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUFUkX
vSpgaOMezIVEsJL2pyhlkFAwHwYDVR0jBBgwFoAUL0B/7Ni33dyl1bkKXhlYnQbB
AdwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4QUVBMjI4L0wwQl83
TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0wwQl83TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4
QUVBMjI4LzczOEEyNzhDOEQ2NTExRUI5QTlGRTY2MUY4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEAiswDQYJKoZIhvcNAQEL
BQADggEBACGWhRpuysRINIP0/NpowiemS2GefD4c2LtYXVwDIwjDXgZ9VZijk46D
qGob1315scrEQxCBtz8IA/W7QjkySyRfmYfC/ZeNsyH8efvA38b4eDTH5UqHuUlS
53PqikbJxhs/p6HEBmdpiSy/zf99jQwFR6VzsWuSgWoZ3NGUtk0iHtRtds1GO5sD
r0V6oxgxvcSD+1A1T0rea7rim3R02C4zDpSDGHEWO9zLL5YPmzjlqjTpSGPjp8Bs
xt64tIitHlxOsUGHSBhJLa0oN1wOpGxhBdqoMeJjjJlGpewd+TDa4GQcy/O+Ll0x
jfhllf+glRzeDcEKIHXpDzlPbGtU9Yc=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org