Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/5A1BE094EB6511EF853965AB762E951A.roa
File: 5A1BE094EB6511EF853965AB762E951A.roa (raw, json)
Hash identifier: m2DS77Vz7boH9o3knUuqENRMtVGaoDlo5YdpHFrrc4w=
Subject key identifier: A5:58:31:5A:81:63:20:0E:F8:C9:BD:BC:F6:2F:BE:37:30:C8:16:55
Certificate issuer: /CN=F367BA6AAF/serialNumber=4F48E7EA30C989B15D363937763553A07E16CD8E
Certificate serial: 0181
Authority key identifier: 4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/5A1BE094EB6511EF853965AB762E951A.roa
Signing time: Sat 15 Feb 2025 06:23:21 +0000
ROA not before: Sat 15 Feb 2025 06:23:17 +0000
ROA not after: Thu 15 Feb 2035 06:23:17 +0000
asID: 328866
IP address blocks: 41.92.252.0/24 maxlen: 30
41.92.253.0/24 maxlen: 30
41.92.254.0/24 maxlen: 30
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.mft
rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385 (0x181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367BA6AAF
Validity
Not Before: Feb 15 06:23:17 2025 GMT
Not After : Feb 15 06:23:17 2035 GMT
Subject: CN=67b032d9-974e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f1:17:51:25:e8:9f:f0:be:71:7d:8f:33:a1:
fa:55:55:70:ae:5b:07:74:63:f3:59:51:57:e1:f1:
9a:0b:d5:5a:3e:8c:15:72:8f:2d:22:a1:aa:ed:19:
a3:5a:40:36:d3:1e:d2:6c:ec:31:d1:ca:1b:fc:87:
dc:f2:10:1b:c2:4b:af:94:77:a5:ed:6f:96:23:c5:
11:24:74:83:98:c9:d1:de:02:d8:92:a7:6f:b5:d9:
92:50:13:f3:54:76:9d:61:0e:d5:d1:35:45:b6:fa:
2e:af:17:b0:cc:ed:11:e1:e6:f3:2d:7a:38:8c:36:
ba:b5:be:3a:a1:ba:c3:20:2d:52:07:8b:7f:e0:89:
48:5f:78:32:30:77:0f:9c:bf:63:f1:ee:f6:e5:af:
8e:f9:5c:30:67:c4:cc:8e:96:b3:ca:f6:c4:04:21:
8a:3c:7a:0c:eb:79:50:3c:63:ba:18:cd:36:b3:c9:
b5:bf:97:9a:ca:53:d5:49:a4:9e:f9:4b:49:f8:a0:
e7:79:b5:ad:27:df:69:f6:50:52:7b:45:ba:df:d1:
12:bc:6d:f3:65:17:e5:80:9c:a1:27:ee:dd:62:99:
90:2b:75:b6:4f:4d:05:a3:9e:e9:21:0e:90:33:5b:
7c:19:3f:d5:09:bf:22:42:a8:b4:c3:a6:44:c9:43:
27:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:58:31:5A:81:63:20:0E:F8:C9:BD:BC:F6:2F:BE:37:30:C8:16:55
X509v3 Authority Key Identifier:
keyid:4F:48:E7:EA:30:C9:89:B1:5D:36:39:37:76:35:53:A0:7E:16:CD:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/T0jn6jDJibFdNjk3djVToH4WzY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/T0jn6jDJibFdNjk3djVToH4WzY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367BA6A/0F4A37F4ECD911EE9F732C67775412E6/5A1BE094EB6511EF853965AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.92.252.0-41.92.254.255
Signature Algorithm: sha256WithRSAEncryption
1b:a8:7f:7c:4a:b6:68:a9:e6:71:0a:b9:f5:03:8a:5e:d2:9a:
0f:ca:4d:c6:05:35:aa:39:62:8a:83:e1:6e:1f:37:9c:1d:19:
1d:0a:1d:c8:0a:2d:0d:31:36:76:30:5a:d4:7f:23:9f:76:42:
72:a6:f6:c3:8e:64:40:57:c0:a6:16:10:b6:eb:73:77:16:2f:
47:c6:a9:8d:a8:91:da:6e:b9:86:7c:a6:7d:3b:fc:10:e8:3c:
d1:de:a9:95:56:6e:bc:79:72:75:76:b8:17:1f:f0:36:38:53:
7d:3d:67:7e:57:35:34:aa:d2:23:1f:78:7c:c8:24:1b:0c:04:
09:4d:cf:92:94:42:4f:85:0b:85:91:bc:9c:23:6f:a7:9f:b3:
47:ec:eb:c1:a6:f7:6e:34:7c:31:0c:1d:2f:ee:17:a8:fd:1c:
63:69:d3:12:9a:60:0b:cf:a5:43:cb:28:85:d8:f6:ad:7f:03:
06:c2:02:db:40:16:08:f7:08:85:d4:80:d1:47:03:87:3e:96:
ab:ef:ea:31:7a:f1:1f:54:ad:70:4c:a0:e7:87:83:03:31:95:
cd:58:5e:30:b6:7b:c2:26:e6:51:81:0c:1b:2c:8b:c8:a5:76:
0c:06:28:01:97:c5:50:c2:94:bd:a0:3f:7a:be:95:96:f6:58:
0c:a9:b3:81
-----BEGIN CERTIFICATE-----
MIIFizCCBHOgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0JBNkFBRjExMC8GA1UEBRMoNEY0OEU3RUEzMEM5ODlCMTVEMzYzOTM3NzYzNTUz
QTA3RTE2Q0Q4RTAeFw0yNTAyMTUwNjIzMTdaFw0zNTAyMTUwNjIzMTdaMBgxFjAU
BgNVBAMTDTY3YjAzMmQ5LTk3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDu8RdRJeif8L5xfY8zofpVVXCuWwd0Y/NZUVfh8ZoL1Vo+jBVyjy0ioart
GaNaQDbTHtJs7DHRyhv8h9zyEBvCS6+Ud6Xtb5YjxREkdIOYydHeAtiSp2+12ZJQ
E/NUdp1hDtXRNUW2+i6vF7DM7RHh5vMtejiMNrq1vjqhusMgLVIHi3/giUhfeDIw
dw+cv2Px7vblr475XDBnxMyOlrPK9sQEIYo8egzreVA8Y7oYzTazybW/l5rKU9VJ
pJ75S0n4oOd5ta0n32n2UFJ7Rbrf0RK8bfNlF+WAnKEn7t1imZArdbZPTQWjnukh
DpAzW3wZP9UJvyJCqLTDpkTJQyelAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUpVgx
WoFjIA74yb289i++NzDIFlUwHwYDVR0jBBgwFoAUT0jn6jDJibFdNjk3djVToH4W
zY4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdCQTZBLzBGNEEzN0Y0RUNEOTExRUU5RjczMkM2Nzc3NTQxMkU2L1Qwam42
akRKaWJGZE5qazNkalZUb0g0V3pZNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1Qwam42akRKaWJGZE5qazNkalZUb0g0V3pZNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdCQTZBLzBGNEEzN0Y0RUNEOTExRUU5RjczMkM2Nzc3
NTQxMkU2LzVBMUJFMDk0RUI2NTExRUY4NTM5NjVBQjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgABMA4wDAMEAilc/AMEAClc/jANBgkq
hkiG9w0BAQsFAAOCAQEAG6h/fEq2aKnmcQq59QOKXtKaD8pNxgU1qjliioPhbh83
nB0ZHQodyAotDTE2djBa1H8jn3ZCcqb2w45kQFfAphYQtutzdxYvR8apjaiR2m65
hnymfTv8EOg80d6plVZuvHlydXa4Fx/wNjhTfT1nflc1NKrSIx94fMgkGwwECU3P
kpRCT4ULhZG8nCNvp5+zR+zrwab3bjR8MQwdL+4XqP0cY2nTEppgC8+lQ8sohdj2
rX8DBsIC20AWCPcIhdSA0UcDhz6Wq+/qMXrxH1StcEyg54eDAzGVzVheMLZ7wibm
UYEMGyyLyKV2DAYoAZfFUMKUvaA/er6VlvZYDKmzgQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:11 2025 by rpki-client