Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A7BEA5748C6511EB8F1CD750F8AEA228.roa
File: A7BEA5748C6511EB8F1CD750F8AEA228.roa (raw, json)
Hash identifier: 07el2ms3F+79PGnj+DQZHI6t8+m4XdMCmmMjQUMhX9Y=
Subject key identifier: 8F:B1:27:1A:F1:56:D7:5A:4A:9D:25:47:62:58:4E:6B:5E:4D:67:E5
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 60
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A7BEA5748C6511EB8F1CD750F8AEA228.roa
Signing time: Wed 24 Mar 2021 05:56:20 +0000
ROA not before: Wed 24 Mar 2021 05:56:14 +0000
ROA not after: Mon 24 Mar 2031 05:56:14 +0000
asID: 10474
IP address blocks: 41.132.0.0/14 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 May 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 24 05:56:14 2021 GMT
Not After : Mar 24 05:56:14 2031 GMT
Subject: CN=605ad484-e8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5f:e0:b0:d2:8b:e4:86:63:c1:35:5d:a2:7c:
56:37:fb:05:32:bb:29:c2:66:90:be:ef:fc:29:91:
e4:91:04:71:24:4c:72:fc:bf:c3:86:3e:dd:65:09:
e2:45:44:b4:2a:58:7e:63:fb:20:cd:07:5c:6c:7d:
df:15:aa:a1:54:22:16:e7:63:64:6a:a7:90:4d:7e:
73:a4:c3:1d:40:d7:31:8c:c5:fa:08:ec:3d:e1:ea:
68:ee:42:a7:b5:5e:b8:e2:fb:fa:71:8c:95:05:16:
02:e3:ab:36:a1:3e:90:f7:b8:ac:a3:2b:59:13:a6:
0a:89:6f:5d:79:86:73:b2:28:ae:86:13:fb:55:eb:
4d:fa:48:24:2e:dc:3b:23:9a:62:c9:f0:24:ff:97:
33:b3:96:a8:62:7b:c3:85:13:11:1b:18:50:ba:29:
79:40:9c:bc:68:48:83:f0:ef:37:c5:1e:e2:63:bd:
78:35:28:a3:af:5a:f5:fd:c6:a2:33:78:31:5e:f0:
6f:8b:57:b8:ea:39:6a:4b:81:8a:13:bd:f7:fa:3f:
7f:f2:09:2b:95:d7:c8:38:fd:db:a0:37:ed:8d:dd:
4e:c2:46:64:6d:42:77:d3:36:f0:0c:3d:50:30:74:
d8:be:cd:74:8a:8c:97:6d:01:3d:98:12:76:4a:fa:
6e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B1:27:1A:F1:56:D7:5A:4A:9D:25:47:62:58:4E:6B:5E:4D:67:E5
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A7BEA5748C6511EB8F1CD750F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
0f:c0:f5:cc:c1:27:85:8e:e2:ed:84:c1:5b:b9:51:83:1c:79:
16:23:10:c7:55:32:e7:43:38:ea:45:18:50:bc:8d:25:6f:98:
cf:b2:fd:62:43:75:32:b8:bc:a6:32:28:73:7b:2c:bc:13:57:
7c:e0:ac:95:85:9c:54:06:54:77:76:8c:c7:ec:a6:9c:77:46:
ad:f9:9b:8a:2a:cb:63:5d:7d:42:02:90:5f:b7:7f:ab:91:b7:
ad:b8:c4:7d:e5:d5:e7:65:ad:4c:e5:49:c0:5c:e6:e9:ca:c3:
8a:59:dd:a0:71:e9:f9:7f:5e:fa:4f:cf:9d:50:ba:dd:b4:d6:
78:bd:d0:45:c2:62:46:ee:b7:c7:3e:4f:98:17:66:ce:23:a3:
85:59:ff:0c:3f:ed:a4:00:3b:55:a8:5b:8a:b8:34:4a:5c:fe:
7a:a4:de:76:be:c4:d7:13:21:d3:dd:88:d1:38:c4:7d:7c:9a:
8a:8c:10:83:00:4c:aa:83:10:c7:71:17:8a:dc:c0:4d:80:20:
52:60:da:84:59:43:1a:26:e1:c9:bc:1c:31:04:2e:2d:4d:74:
59:ac:ce:6b:d0:e7:f7:f3:72:f9:22:48:ef:d2:44:94:6b:44:
47:22:2c:b3:c2:0a:50:cc:f4:28:95:5a:e7:20:c2:04:e3:1c:
2c:89:6f:da
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIBYDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
QjIxNkFGMTEwLwYDVQQFEygyRjQwN0ZFQ0Q4QjdERERDQTVENUI5MEE1RTE5NTg5
RDA2QzEwMURDMB4XDTIxMDMyNDA1NTYxNFoXDTMxMDMyNDA1NTYxNFowGDEWMBQG
A1UEAxMNNjA1YWQ0ODQtZThmOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMBf4LDSi+SGY8E1XaJ8Vjf7BTK7KcJmkL7v/CmR5JEEcSRMcvy/w4Y+3WUJ
4kVEtCpYfmP7IM0HXGx93xWqoVQiFudjZGqnkE1+c6TDHUDXMYzF+gjsPeHqaO5C
p7VeuOL7+nGMlQUWAuOrNqE+kPe4rKMrWROmColvXXmGc7IoroYT+1XrTfpIJC7c
OyOaYsnwJP+XM7OWqGJ7w4UTERsYULopeUCcvGhIg/DvN8Ue4mO9eDUoo69a9f3G
ojN4MV7wb4tXuOo5akuBihO99/o/f/IJK5XXyDj926A37Y3dTsJGZG1Cd9M28Aw9
UDB02L7NdIqMl20BPZgSdkr6blMCAwEAAaOCAqQwggKgMB0GA1UdDgQWBBSPsSca
8VbXWkqdJUdiWE5rXk1n5TAfBgNVHSMEGDAWgBQvQH/s2Lfd3KXVuQpeGVidBsEB
3DAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0IyMTYvMzZBQzBGOTY4N0Q1MTFFQkFBRkYzNDQ3RjhBRUEyMjgvTDBCXzdO
aTMzZHlsMWJrS1hobFluUWJCQWR3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTDBCXzdOaTMzZHlsMWJrS1hobFluUWJCQWR3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0IyMTYvMzZBQzBGOTY4N0Q1MTFFQkFBRkYzNDQ3RjhB
RUEyMjgvQTdCRUE1NzQ4QzY1MTFFQjhGMUNENzUwRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAimEMA0GCSqGSIb3DQEBCwUA
A4IBAQAPwPXMwSeFjuLthMFbuVGDHHkWIxDHVTLnQzjqRRhQvI0lb5jPsv1iQ3Uy
uLymMihzeyy8E1d84KyVhZxUBlR3dozH7Kacd0at+ZuKKstjXX1CApBft3+rkbet
uMR95dXnZa1M5UnAXObpysOKWd2gcen5f176T8+dULrdtNZ4vdBFwmJG7rfHPk+Y
F2bOI6OFWf8MP+2kADtVqFuKuDRKXP56pN52vsTXEyHT3YjROMR9fJqKjBCDAEyq
gxDHcReK3MBNgCBSYNqEWUMaJuHJvBwxBC4tTXRZrM5r0Of383L5Ikjv0kSUa0RH
IiyzwgpQzPQolVrnIMIE4xwsiW/a
-----END CERTIFICATE-----
Generated at Tue May 28 02:03:53 2024 by rpki-client on console-fra.rpki-client.org