Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/90D2A93A864611EFA9E0D1BB762E951A.roa
File: 90D2A93A864611EFA9E0D1BB762E951A.roa (raw, json)
Hash identifier: hHcRsx+3TMnxCoIVX/gwT5hgBSq25sZvD7OsFYp4S6c=
Subject key identifier: 0F:C8:75:11:D2:CA:C5:C5:F7:B5:48:86:51:23:3A:A9:B5:EF:21:CC
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 06EB
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/90D2A93A864611EFA9E0D1BB762E951A.roa
Signing time: Wed 09 Oct 2024 13:58:31 +0000
ROA not before: Wed 09 Oct 2024 13:58:26 +0000
ROA not after: Sun 09 Oct 2044 13:58:26 +0000
asID: 20011
IP address blocks: 197.101.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1771 (0x6eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Oct 9 13:58:26 2024 GMT
Not After : Oct 9 13:58:26 2044 GMT
Subject: CN=67068c07-208d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9e:2d:7f:64:26:f5:c0:bc:fa:02:0f:43:8c:
e5:f6:5d:04:fb:ae:51:77:60:2b:4b:eb:ca:08:ee:
8b:2f:37:fd:28:58:b2:92:d6:7f:58:04:1d:58:a1:
70:29:49:17:19:10:fc:d5:f3:9e:7b:73:b2:67:0a:
87:b3:85:82:75:1f:d2:7b:fc:66:e3:c9:12:b7:ef:
5b:6f:23:df:81:0a:12:3b:11:54:95:45:b2:73:13:
0d:8c:45:53:47:cb:f5:2a:95:04:a7:2b:fb:13:e8:
66:6c:d9:28:3f:1c:6d:9e:4c:6b:93:7a:31:15:fc:
86:16:f8:3b:87:02:91:50:7d:6d:f2:d6:13:16:8c:
b2:f5:20:d0:44:e3:47:27:87:82:b8:c3:22:d4:54:
10:bc:5d:0c:98:e0:48:7f:12:9f:de:54:0f:10:80:
2c:58:54:8b:66:f3:27:f7:21:0e:bc:6e:12:c0:80:
16:87:df:52:5b:03:f2:32:b0:52:15:e9:e5:18:58:
be:7a:1e:66:2a:73:f6:37:f7:38:ff:7b:4e:84:38:
6e:74:d5:4b:e2:1f:f4:49:c2:32:05:32:83:55:bc:
c8:3e:b7:c7:ab:62:f1:79:44:90:df:1e:96:9f:2a:
38:d7:f4:ca:53:3d:b3:45:3f:e4:bb:24:7d:54:2c:
3a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C8:75:11:D2:CA:C5:C5:F7:B5:48:86:51:23:3A:A9:B5:EF:21:CC
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/90D2A93A864611EFA9E0D1BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.101.172.0/22
Signature Algorithm: sha256WithRSAEncryption
91:86:54:45:a8:e8:c0:d8:5c:70:0a:fc:bd:81:83:0d:56:1a:
01:f1:0f:8c:77:3a:b4:d3:9e:a0:ad:9d:d1:4a:47:7d:13:68:
49:be:42:9d:41:ca:61:98:7d:9d:86:a7:6d:2d:72:5c:75:00:
ff:24:31:64:0a:6e:2d:e0:05:c4:07:ec:c6:22:4a:01:4d:3c:
be:0a:3f:42:a5:e3:6b:85:68:2c:61:7f:d8:8d:2a:d3:b6:ea:
8e:03:b8:c7:bb:74:88:12:e5:10:dd:6c:b7:5b:50:5a:ac:f3:
ba:1b:ba:5e:ed:c9:1f:78:70:80:db:48:9f:63:7e:b2:bf:87:
b2:71:83:7c:f4:68:1f:20:57:22:3d:3a:50:7d:eb:5f:0e:dc:
b4:83:5e:a7:c9:76:81:2f:0f:62:f6:74:3b:87:da:3f:fb:6f:
e7:bf:8e:c0:4c:6f:f9:17:2d:58:5e:b5:d5:1e:40:22:9a:b2:
63:f4:00:08:a6:ce:4a:b4:d8:81:8a:b6:da:67:6e:57:94:15:
f7:c8:36:a6:a1:88:37:27:cf:76:ee:ee:72:5f:30:0a:b0:46:
21:36:cb:fe:b8:11:3a:1d:2e:b9:bb:af:1f:2a:ed:aa:ef:a4:
a2:8b:b1:18:e0:79:bf:40:d0:db:ae:63:4d:53:f8:86:ca:40:
95:87:68:45
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBuswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBRjExMC8GA1UEBRMoMkY0MDdGRUNEOEI3REREQ0E1RDVCOTBBNUUxOTU4
OUQwNkMxMDFEQzAeFw0yNDEwMDkxMzU4MjZaFw00NDEwMDkxMzU4MjZaMBgxFjAU
BgNVBAMTDTY3MDY4YzA3LTIwOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDni1/ZCb1wLz6Ag9DjOX2XQT7rlF3YCtL68oI7osvN/0oWLKS1n9YBB1Y
oXApSRcZEPzV8557c7JnCoezhYJ1H9J7/GbjyRK371tvI9+BChI7EVSVRbJzEw2M
RVNHy/UqlQSnK/sT6GZs2Sg/HG2eTGuTejEV/IYW+DuHApFQfW3y1hMWjLL1INBE
40cnh4K4wyLUVBC8XQyY4Eh/Ep/eVA8QgCxYVItm8yf3IQ68bhLAgBaH31JbA/Iy
sFIV6eUYWL56HmYqc/Y39zj/e06EOG501UviH/RJwjIFMoNVvMg+t8erYvF5RJDf
HpafKjjX9MpTPbNFP+S7JH1ULDpPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUD8h1
EdLKxcX3tUiGUSM6qbXvIcwwHwYDVR0jBBgwFoAUL0B/7Ni33dyl1bkKXhlYnQbB
AdwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4QUVBMjI4L0wwQl83
TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0wwQl83TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4
QUVBMjI4LzkwRDJBOTNBODY0NjExRUZBOUUwRDFCQjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALFZawwDQYJKoZIhvcNAQEL
BQADggEBAJGGVEWo6MDYXHAK/L2Bgw1WGgHxD4x3OrTTnqCtndFKR30TaEm+Qp1B
ymGYfZ2Gp20tclx1AP8kMWQKbi3gBcQH7MYiSgFNPL4KP0Kl42uFaCxhf9iNKtO2
6o4DuMe7dIgS5RDdbLdbUFqs87obul7tyR94cIDbSJ9jfrK/h7Jxg3z0aB8gVyI9
OlB9618O3LSDXqfJdoEvD2L2dDuH2j/7b+e/jsBMb/kXLVhetdUeQCKasmP0AAim
zkq02IGKttpnbleUFffINqahiDcnz3bu7nJfMAqwRiE2y/64ETodLrm7rx8q7arv
pKKLsRjgeb9A0NuuY01T+IbKQJWHaEU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org