Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/01FFB238325511EFBB9C746F762E951A.roa
File: 01FFB238325511EFBB9C746F762E951A.roa (raw, json)
Hash identifier: HwB4zPJU9kPQhOWUZlM6j0iw2tO8p/LDrcqvDUSUml8=
Subject key identifier: F4:AB:1C:48:A5:4A:10:B2:3B:D3:84:92:4E:39:B8:BA:BC:09:CB:E9
Certificate issuer: /CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Certificate serial: 75
Authority key identifier: 4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/01FFB238325511EFBB9C746F762E951A.roa
Signing time: Mon 24 Jun 2024 18:10:16 +0000
ROA not before: Mon 24 Jun 2024 18:10:13 +0000
ROA not after: Mon 26 Jun 2034 18:10:13 +0000
asID: 328866
IP address blocks: 41.217.148.0/22 maxlen: 30
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.mft
rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117 (0x75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Validity
Not Before: Jun 24 18:10:13 2024 GMT
Not After : Jun 26 18:10:13 2034 GMT
Subject: CN=6679b688-727f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:41:51:92:33:c0:03:93:5e:ec:7a:53:ea:d1:
bc:9b:de:43:b5:30:af:c4:da:4c:1e:07:09:dc:ac:
04:52:a1:0e:7e:00:a0:f4:17:33:a8:82:f2:e9:5b:
6c:ac:6b:74:03:7d:28:cb:39:57:2a:37:dd:e8:e6:
a6:86:ad:f5:48:2b:fa:78:43:ce:13:5f:1b:55:00:
7a:4c:b0:66:de:90:ee:c6:7f:a6:a4:39:ef:a5:ad:
c5:58:d5:48:63:c3:31:1d:57:eb:cf:8d:3c:20:bb:
38:bc:f9:09:0d:ed:c3:30:ff:ad:dc:5d:bd:ff:70:
57:f7:a2:d3:1a:6d:6e:3d:8c:2e:10:e3:94:b9:fb:
c5:45:44:33:17:ea:56:d6:05:56:34:ab:39:d9:f1:
a6:3f:25:f2:af:8c:25:8f:9d:78:cf:f8:45:af:9c:
68:56:20:9a:d6:50:b3:ec:6e:95:95:1b:81:3f:fb:
5d:cf:95:d2:12:cc:e3:b0:4c:60:23:a6:99:8f:10:
4e:5e:9d:50:62:ce:af:19:87:24:68:7f:78:30:4c:
d5:bb:b2:6e:01:7b:0c:69:d7:8e:24:a0:dd:d7:fe:
c4:c6:2d:4c:0d:5f:7a:44:bb:f8:5a:f5:9f:66:d5:
cb:a6:1b:a3:d9:75:e7:73:1f:8f:fa:43:1c:0b:b8:
30:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:AB:1C:48:A5:4A:10:B2:3B:D3:84:92:4E:39:B8:BA:BC:09:CB:E9
X509v3 Authority Key Identifier:
keyid:4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/01FFB238325511EFBB9C746F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.217.148.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:f5:6f:75:13:cd:5d:95:1f:be:3a:fa:4c:94:d9:68:2a:03:
39:ee:f9:5e:a6:0a:50:33:fd:b6:1f:7e:9e:7a:6c:56:2a:5e:
de:c3:cd:40:ec:80:87:bf:b4:e1:5e:38:f9:fe:ad:ac:0f:55:
1c:6d:62:c4:73:95:ea:96:dd:de:29:84:85:99:0d:48:ff:03:
f9:9a:5d:fd:54:c9:73:41:7e:15:d4:44:da:6e:d6:ac:d9:fd:
bf:93:f9:c8:1d:56:ab:26:1d:63:2e:bb:c0:f6:9f:65:27:ca:
51:1d:3b:c6:9a:bc:fb:d3:5f:50:39:2a:b3:ab:e2:09:53:f5:
0b:de:84:09:bd:0e:4a:a4:55:85:37:e2:1a:21:2c:38:6e:8f:
a5:6f:7e:09:1a:ca:c4:8b:15:6e:5c:cd:0b:a7:3c:c5:fa:89:
b5:0b:c8:36:e6:0a:0f:c3:1d:6c:b7:1c:dc:0a:6e:ac:6a:14:
a4:53:a9:97:e5:ab:ef:92:1e:8f:ea:a9:05:4b:df:61:c2:12:
64:49:d2:8b:a3:dc:b9:dd:1b:59:ec:dc:90:d8:17:64:f7:1f:
b3:32:57:b5:15:6e:d5:50:47:f6:1e:18:91:80:2e:15:29:cc:
c5:b7:f7:8c:3d:8e:42:12:7d:21:b8:a6:08:1b:90:fb:f4:98:
16:b4:67:0b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBdTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
QkE2QUFGMTEwLwYDVQQFEyg0RjQ4RTdFQTMwQzk4OUIxNUQzNjM5Mzc3NjM1NTNB
MDdFMTZDRDhFMB4XDTI0MDYyNDE4MTAxM1oXDTM0MDYyNjE4MTAxM1owGDEWMBQG
A1UEAxMNNjY3OWI2ODgtNzI3ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMFBUZIzwAOTXux6U+rRvJveQ7Uwr8TaTB4HCdysBFKhDn4AoPQXM6iC8ulb
bKxrdAN9KMs5Vyo33ejmpoat9Ugr+nhDzhNfG1UAekywZt6Q7sZ/pqQ576WtxVjV
SGPDMR1X68+NPCC7OLz5CQ3twzD/rdxdvf9wV/ei0xptbj2MLhDjlLn7xUVEMxfq
VtYFVjSrOdnxpj8l8q+MJY+deM/4Ra+caFYgmtZQs+xulZUbgT/7Xc+V0hLM47BM
YCOmmY8QTl6dUGLOrxmHJGh/eDBM1buybgF7DGnXjiSg3df+xMYtTA1fekS7+Fr1
n2bVy6Ybo9l153Mfj/pDHAu4MJUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBT0qxxI
pUoQsjvThJJOObi6vAnL6TAfBgNVHSMEGDAWgBRPSOfqMMmJsV02OTd2NVOgfhbN
jjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0JBNkEvMEY0QTM3RjRFQ0Q5MTFFRTlGNzMyQzY3Nzc1NDEyRTYvVDBqbjZq
REppYkZkTmprM2RqVlRvSDRXelk0LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVDBqbjZqREppYkZkTmprM2RqVlRvSDRXelk0LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0JBNkEvMEY0QTM3RjRFQ0Q5MTFFRTlGNzMyQzY3Nzc1
NDEyRTYvMDFGRkIyMzgzMjU1MTFFRkJCOUM3NDZGNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAinZlDANBgkqhkiG9w0BAQsF
AAOCAQEAHPVvdRPNXZUfvjr6TJTZaCoDOe75XqYKUDP9th9+nnpsVipe3sPNQOyA
h7+04V44+f6trA9VHG1ixHOV6pbd3imEhZkNSP8D+Zpd/VTJc0F+FdRE2m7WrNn9
v5P5yB1WqyYdYy67wPafZSfKUR07xpq8+9NfUDkqs6viCVP1C96ECb0OSqRVhTfi
GiEsOG6PpW9+CRrKxIsVblzNC6c8xfqJtQvINuYKD8MdbLcc3ApurGoUpFOpl+Wr
75Iej+qpBUvfYcISZEnSi6Pcud0bWezckNgXZPcfszJXtRVu1VBH9h4YkYAuFSnM
xbf3jD2OQhJ9IbimCBuQ+/SYFrRnCw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org