Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/ABB4563816DC11EF95F7582B017001B1.roa
File: ABB4563816DC11EF95F7582B017001B1.roa (raw, json)
Hash identifier: CpeWQuFJ6CxnYVs4zVEFlcaPTVtXyfvtNT6qHxoPkcw=
Subject key identifier: 3F:DE:EA:03:6B:08:02:17:69:14:A1:07:E6:CF:15:95:21:6A:DB:FC
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0631
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/ABB4563816DC11EF95F7582B017001B1.roa
Signing time: Mon 20 May 2024 19:10:50 +0000
ROA not before: Mon 20 May 2024 19:10:46 +0000
ROA not after: Wed 31 May 2034 19:10:46 +0000
asID: 20011
IP address blocks: 41.135.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1585 (0x631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: May 20 19:10:46 2024 GMT
Not After : May 31 19:10:46 2034 GMT
Subject: CN=664ba03a-2bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b3:e5:d1:46:da:77:d5:e2:7e:97:5d:5d:2c:
68:b4:89:29:67:53:ca:dd:58:66:91:d4:1f:ad:6c:
f7:e3:6a:82:77:32:e3:04:c9:1e:c8:48:8a:eb:e5:
d4:67:42:a3:2a:71:bc:64:64:1f:8f:c5:f3:d1:a6:
98:78:1a:a9:8b:45:ec:9f:37:a4:52:31:7d:05:ac:
e4:1d:29:71:d8:97:72:70:b5:cb:ea:6a:8a:68:a9:
78:30:5e:72:bc:a5:92:ea:e6:df:b8:95:82:ff:e7:
a7:8a:cc:0f:15:5d:03:14:45:0a:89:87:50:6a:97:
7f:70:47:f6:5c:ee:f2:c1:f2:dc:90:c0:43:23:00:
2e:0f:02:3f:29:64:18:5d:a1:75:3f:ee:81:c3:2b:
93:4d:c7:2e:bb:18:1e:b7:0e:00:f4:68:80:e4:f4:
06:77:c5:36:71:36:4e:95:d3:52:3d:45:a2:76:5e:
89:7b:cb:66:a1:8c:e9:d9:f0:a2:de:a5:07:74:99:
51:3b:60:d8:76:66:ba:3e:13:0a:12:cd:18:0e:a2:
76:23:83:08:05:97:7c:3e:2d:8a:ea:b7:47:17:e3:
bb:4d:0e:46:51:e7:a2:e3:85:fc:21:9e:94:07:16:
23:0f:b3:2b:b7:47:2f:46:1d:68:8f:49:6f:4c:cb:
db:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DE:EA:03:6B:08:02:17:69:14:A1:07:E6:CF:15:95:21:6A:DB:FC
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/ABB4563816DC11EF95F7582B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.135.64.0/19
Signature Algorithm: sha256WithRSAEncryption
32:5a:13:aa:61:e8:80:97:84:84:6b:57:25:2f:19:8a:33:35:
97:6a:a1:c7:0c:7a:42:1e:90:83:e9:1c:af:71:f2:64:93:ac:
61:a6:dc:12:c1:2a:13:13:19:a9:ca:77:d1:96:cf:d1:31:5b:
f1:3e:d9:99:dc:36:89:f9:fd:fd:b9:93:5b:e3:e4:ec:0f:58:
68:29:24:d4:13:69:5e:8a:c9:ed:3e:bf:de:a7:41:1a:a5:4e:
14:80:6d:68:06:9d:30:6a:d5:d4:a6:93:9c:63:63:9d:3a:63:
8f:85:b7:c6:4d:61:62:fa:12:62:ae:5c:86:ec:eb:a6:d8:38:
cb:90:b1:65:50:71:30:ba:c1:3a:1f:ef:96:4f:b6:89:0d:9d:
27:dd:57:bf:24:67:25:3b:cc:49:7a:e9:91:b1:db:24:6d:75:
b5:5f:92:22:1d:31:e3:b0:7a:65:89:04:9d:17:b8:94:fb:59:
5c:09:ee:a8:53:ee:25:75:c3:3b:50:54:c4:69:13:11:86:19:
4e:2a:32:a8:f8:b8:c5:bd:6a:ce:b1:2c:ed:36:87:71:40:39:
cf:5c:b8:c6:4f:ec:67:9b:33:35:32:8a:6e:ff:37:8a:5e:83:
4a:48:f8:5f:84:8a:9b:3a:86:7e:49:01:86:32:7b:86:e9:c3:
99:ed:fe:cb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0IyMTZBRjExMC8GA1UEBRMoMkY0MDdGRUNEOEI3REREQ0E1RDVCOTBBNUUxOTU4
OUQwNkMxMDFEQzAeFw0yNDA1MjAxOTEwNDZaFw0zNDA1MzExOTEwNDZaMBgxFjAU
BgNVBAMTDTY2NGJhMDNhLTJiY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJs+XRRtp31eJ+l11dLGi0iSlnU8rdWGaR1B+tbPfjaoJ3MuMEyR7ISIrr
5dRnQqMqcbxkZB+PxfPRpph4GqmLReyfN6RSMX0FrOQdKXHYl3JwtcvqaopoqXgw
XnK8pZLq5t+4lYL/56eKzA8VXQMURQqJh1Bql39wR/Zc7vLB8tyQwEMjAC4PAj8p
ZBhdoXU/7oHDK5NNxy67GB63DgD0aIDk9AZ3xTZxNk6V01I9RaJ2Xol7y2ahjOnZ
8KLepQd0mVE7YNh2Zro+EwoSzRgOonYjgwgFl3w+LYrqt0cX47tNDkZR56Ljhfwh
npQHFiMPsyu3Ry9GHWiPSW9My9tbAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUP97q
A2sIAhdpFKEH5s8VlSFq2/wwHwYDVR0jBBgwFoAUL0B/7Ni33dyl1bkKXhlYnQbB
AdwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4QUVBMjI4L0wwQl83
TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0wwQl83TmkzM2R5bDFia0tYaGxZblFiQkFkdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCMjE2LzM2QUMwRjk2ODdENTExRUJBQUZGMzQ0N0Y4
QUVBMjI4L0FCQjQ1NjM4MTZEQzExRUY5NUY3NTgyQjAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUph0AwDQYJKoZIhvcNAQEL
BQADggEBADJaE6ph6ICXhIRrVyUvGYozNZdqoccMekIekIPpHK9x8mSTrGGm3BLB
KhMTGanKd9GWz9ExW/E+2ZncNon5/f25k1vj5OwPWGgpJNQTaV6Kye0+v96nQRql
ThSAbWgGnTBq1dSmk5xjY506Y4+Ft8ZNYWL6EmKuXIbs66bYOMuQsWVQcTC6wTof
75ZPtokNnSfdV78kZyU7zEl66ZGx2yRtdbVfkiIdMeOwemWJBJ0XuJT7WVwJ7qhT
7iV1wztQVMRpExGGGU4qMqj4uMW9as6xLO02h3FAOc9cuMZP7GebMzUyim7/N4pe
g0pI+F+Eips6hn5JAYYye4bpw5nt/ss=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org