Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/E7440F0C8B9A11EBBB399B77F8AEA228.roa
File: E7440F0C8B9A11EBBB399B77F8AEA228.roa (raw, json)
Hash identifier: H+fZfI5Dexl52+JWXRO6eqPrxMF60z8ZgV1j6Q+obd0=
Subject key identifier: 19:29:7A:24:76:A7:8A:C1:10:1D:96:B3:66:2E:F6:AC:7A:EE:4D:29
Certificate issuer: /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial: 0A
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/E7440F0C8B9A11EBBB399B77F8AEA228.roa
Signing time: Tue 23 Mar 2021 05:44:59 +0000
ROA not before: Tue 23 Mar 2021 05:44:53 +0000
ROA not after: Sun 23 Mar 2031 05:44:53 +0000
asID: 3741
IP address blocks: 196.4.160.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Validity
Not Before: Mar 23 05:44:53 2021 GMT
Not After : Mar 23 05:44:53 2031 GMT
Subject: CN=6059805a-3f17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:73:07:82:0b:2c:05:36:da:b0:8d:88:76:b1:
b1:f7:43:5d:21:00:68:1a:8d:ff:13:42:ea:3b:73:
e1:f8:83:aa:ba:96:75:b6:d8:74:db:ec:34:02:f5:
0c:42:72:09:88:88:89:1d:c7:ea:20:86:71:7a:c5:
ef:b3:68:fa:08:ae:b3:1b:05:d0:0c:d2:d9:0a:e8:
60:94:fc:01:70:a8:9d:1c:c3:20:96:c5:22:82:6f:
65:e8:a3:8e:ed:dc:f1:bf:ba:2b:65:3e:43:ca:ef:
07:7d:fc:4f:24:92:25:71:9b:ce:4e:95:7f:ec:f9:
0c:b0:42:3c:43:77:24:01:73:0b:13:a9:58:93:2e:
2d:78:02:a7:db:c2:ee:9f:73:82:fc:78:da:b9:10:
cb:33:84:69:48:b6:f0:f2:6f:b8:f8:d7:89:d2:27:
ce:4f:5b:93:24:87:8e:69:80:32:47:b5:56:55:53:
74:ae:9b:e3:ac:75:23:e2:f3:b4:ec:84:9d:1d:8e:
02:2d:9d:22:3f:ca:f4:b6:a4:86:c9:3f:c8:69:03:
82:47:18:74:f4:3f:59:4d:5f:bf:dc:8f:01:51:14:
bf:a0:1c:d1:f7:c7:61:65:84:16:76:e1:a2:42:41:
32:e4:03:68:c1:37:d7:af:22:36:37:e0:ef:3c:80:
9b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:29:7A:24:76:A7:8A:C1:10:1D:96:B3:66:2E:F6:AC:7A:EE:4D:29
X509v3 Authority Key Identifier:
keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/E7440F0C8B9A11EBBB399B77F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.4.160.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:16:d8:b3:cf:19:45:f2:a3:52:4c:06:4c:a9:e1:25:f3:c3:
0e:12:45:98:c4:62:3f:f6:8d:77:21:df:2f:c9:3a:e3:3a:ee:
c5:2d:d8:7b:85:20:37:1f:27:81:f4:a0:64:22:da:01:c5:b9:
42:eb:25:96:7e:44:9a:ec:c8:67:15:8c:a5:69:52:32:7b:30:
e6:bb:63:b9:f9:90:c5:58:62:88:ea:ae:cd:d8:5d:6e:99:a9:
35:a7:99:e4:fd:e4:b8:dd:1b:1b:4f:b7:87:4e:c4:ef:df:61:
7c:bf:4c:56:9a:a4:1a:8b:68:0f:a2:c6:ca:6e:86:d0:f5:2c:
b5:e7:da:63:de:a5:df:c9:3d:b8:8c:51:28:5c:81:91:67:f9:
d7:57:1b:5d:f3:41:a5:d1:6b:d4:57:75:3b:e3:c4:e4:75:30:
a1:9c:43:8b:f9:01:14:c2:c3:36:83:5e:af:4f:1b:b4:f8:ec:
2c:be:34:0b:b5:00:80:0c:ad:89:68:41:7e:09:00:4d:9b:03:
8a:70:79:be:dd:62:05:de:4e:c9:ef:66:b3:e1:1a:8a:90:75:
66:85:98:b5:46:e3:4b:92:8c:99:56:c6:7d:f3:15:0b:04:34:
70:34:7a:82:0d:3f:f4:bf:8a:cf:fd:88:a8:f9:ea:a2:10:c8:
51:55:95:e1
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
QjIxNkFGMTEwLwYDVQQFEygyRjQwN0ZFQ0Q4QjdERERDQTVENUI5MEE1RTE5NTg5
RDA2QzEwMURDMB4XDTIxMDMyMzA1NDQ1M1oXDTMxMDMyMzA1NDQ1M1owGDEWMBQG
A1UEAxMNNjA1OTgwNWEtM2YxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANBzB4ILLAU22rCNiHaxsfdDXSEAaBqN/xNC6jtz4fiDqrqWdbbYdNvsNAL1
DEJyCYiIiR3H6iCGcXrF77No+giusxsF0AzS2QroYJT8AXConRzDIJbFIoJvZeij
ju3c8b+6K2U+Q8rvB338TySSJXGbzk6Vf+z5DLBCPEN3JAFzCxOpWJMuLXgCp9vC
7p9zgvx42rkQyzOEaUi28PJvuPjXidInzk9bkySHjmmAMke1VlVTdK6b46x1I+Lz
tOyEnR2OAi2dIj/K9Lakhsk/yGkDgkcYdPQ/WU1fv9yPAVEUv6Ac0ffHYWWEFnbh
okJBMuQDaME3168iNjfg7zyAm10CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQZKXok
dqeKwRAdlrNmLvaseu5NKTAfBgNVHSMEGDAWgBQvQH/s2Lfd3KXVuQpeGVidBsEB
3DAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0IyMTYvMzZBQzBGOTY4N0Q1MTFFQkFBRkYzNDQ3RjhBRUEyMjgvTDBCXzdO
aTMzZHlsMWJrS1hobFluUWJCQWR3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTDBCXzdOaTMzZHlsMWJrS1hobFluUWJCQWR3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0IyMTYvMzZBQzBGOTY4N0Q1MTFFQkFBRkYzNDQ3RjhB
RUEyMjgvRTc0NDBGMEM4QjlBMTFFQkJCMzk5Qjc3RjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcQEoDANBgkqhkiG9w0BAQsF
AAOCAQEAHRbYs88ZRfKjUkwGTKnhJfPDDhJFmMRiP/aNdyHfL8k64zruxS3Ye4Ug
Nx8ngfSgZCLaAcW5Quslln5EmuzIZxWMpWlSMnsw5rtjufmQxVhiiOquzdhdbpmp
NaeZ5P3kuN0bG0+3h07E799hfL9MVpqkGotoD6LGym6G0PUstefaY96l38k9uIxR
KFyBkWf511cbXfNBpdFr1Fd1O+PE5HUwoZxDi/kBFMLDNoNer08btPjsLL40C7UA
gAytiWhBfgkATZsDinB5vt1iBd5Oye9ms+EaipB1ZoWYtUbjS5KMmVbGffMVCwQ0
cDR6gg0/9L+Kz/2IqPnqohDIUVWV4Q==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org