Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/7B87C448C60111EA86B4873EF8AEA228.roa
File: 7B87C448C60111EA86B4873EF8AEA228.roa (raw, json)
Hash identifier: 8s32B8dMmFio0RMWbrESmIIs0504hiJMh4Fs90vcTTY=
Subject key identifier: 0C:96:46:A1:ED:12:20:70:D4:96:56:62:A4:9E:62:DF:D4:9D:82:0A
Certificate issuer: /CN=F367C385AF/serialNumber=CF6F4D60D0D5C2E6D379A711D1B6AF01130C2A6C
Certificate serial: 09
Authority key identifier: CF:6F:4D:60:D0:D5:C2:E6:D3:79:A7:11:D1:B6:AF:01:13:0C:2A:6C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/7B87C448C60111EA86B4873EF8AEA228.roa
Signing time: Tue 14 Jul 2020 18:40:26 +0000
ROA not before: Tue 14 Jul 2020 18:40:21 +0000
ROA not after: Sun 14 Jul 2030 18:40:21 +0000
asID: 328320
IP address blocks: 102.132.64.0/20 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.crl
rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.mft
rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 May 2024 00:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367C385AF/serialNumber=CF6F4D60D0D5C2E6D379A711D1B6AF01130C2A6C
Validity
Not Before: Jul 14 18:40:21 2020 GMT
Not After : Jul 14 18:40:21 2030 GMT
Subject: CN=5f0dfc1a-f4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ad:3e:0e:6e:e6:1e:13:3a:5b:e5:b8:07:12:
3e:84:ba:71:8b:5b:10:09:bf:b2:48:14:12:4c:2a:
e3:cc:94:72:56:18:c1:0b:5f:81:3b:1e:92:f3:dd:
ea:6a:3d:bc:ce:c8:a0:fa:d7:16:40:19:ae:fa:36:
39:3b:1b:34:5f:88:98:4b:86:93:b9:f5:ca:4f:d7:
c3:9c:89:7b:15:9c:92:26:c2:a3:64:04:3f:8e:15:
81:51:f2:38:7d:83:3b:37:3c:bf:98:1f:4f:9d:7b:
40:c7:7e:2f:38:a9:7c:ee:ec:e5:6c:f5:c5:65:29:
76:64:fc:06:ac:e9:e5:54:18:4e:73:96:92:71:09:
2c:35:dd:bd:40:f7:eb:af:c0:2b:cf:78:bc:fb:f8:
1c:96:76:be:a2:9a:9d:dd:9b:09:5e:62:e9:e4:fb:
b4:fb:05:1e:ab:ea:e1:79:53:8c:2e:e9:e5:bc:99:
b2:a8:c0:0d:ee:ec:e8:0e:8a:13:0b:cd:62:f1:b6:
4a:1d:41:e6:20:c3:d0:17:31:f7:d2:24:e7:a7:d3:
78:37:59:54:ef:bf:85:be:57:7c:10:95:86:09:a5:
ee:90:a4:6a:91:26:5d:95:1b:88:63:f6:0d:bc:f2:
c2:88:ff:14:21:9d:b0:92:01:f2:0e:1f:8a:2f:cc:
fd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:96:46:A1:ED:12:20:70:D4:96:56:62:A4:9E:62:DF:D4:9D:82:0A
X509v3 Authority Key Identifier:
keyid:CF:6F:4D:60:D0:D5:C2:E6:D3:79:A7:11:D1:B6:AF:01:13:0C:2A:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/z29NYNDVwubTeacR0bavARMMKmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/z29NYNDVwubTeacR0bavARMMKmw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367C385/A3D2CE00C5E511EAAB62B122F8AEA228/7B87C448C60111EA86B4873EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.132.64.0/20
Signature Algorithm: sha256WithRSAEncryption
02:ac:1d:50:d1:bb:52:8e:1e:15:b4:47:d5:62:0c:32:67:ca:
ea:47:a5:73:00:5b:22:a1:03:60:2b:93:af:6a:e7:da:46:d1:
ef:8f:a5:2c:80:86:f4:35:9f:9a:c9:05:97:91:17:9b:72:15:
c6:8d:46:7b:2c:e7:d4:a6:c3:7f:2b:fd:ff:5b:aa:60:b3:eb:
a7:39:49:af:c6:aa:97:8c:52:b0:d0:23:54:c6:60:8a:73:21:
7e:d4:8d:1c:cd:f6:62:60:cd:32:c3:bd:60:e4:b4:01:16:9f:
4c:49:25:12:80:a0:e2:d8:9f:58:34:95:c1:e4:14:c2:52:7f:
ef:44:b2:b8:ef:91:6e:a2:f3:b9:6c:59:15:96:9b:62:e7:21:
7f:47:34:ad:28:cf:c6:5c:4c:d0:1a:d3:d3:1b:a4:ac:0f:de:
4b:0e:32:ea:25:10:f1:ce:f7:7b:12:0a:2f:70:28:03:c2:2f:
4a:c2:07:0e:05:b5:24:33:1b:6f:50:02:95:fc:ef:44:87:0a:
cd:02:f0:9f:9c:3e:a0:12:4f:e8:79:23:98:7b:80:33:94:d8:
49:b6:70:ed:58:f3:bc:1f:da:be:b0:6b:a2:94:a2:6a:00:16:
87:b8:5d:b5:e3:46:df:65:a1:d3:d0:d4:84:8c:33:14:f4:af:
05:a8:aa:36
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
QzM4NUFGMTEwLwYDVQQFEyhDRjZGNEQ2MEQwRDVDMkU2RDM3OUE3MTFEMUI2QUYw
MTEzMEMyQTZDMB4XDTIwMDcxNDE4NDAyMVoXDTMwMDcxNDE4NDAyMVowGDEWMBQG
A1UEAxMNNWYwZGZjMWEtZjRkZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOatPg5u5h4TOlvluAcSPoS6cYtbEAm/skgUEkwq48yUclYYwQtfgTsekvPd
6mo9vM7IoPrXFkAZrvo2OTsbNF+ImEuGk7n1yk/Xw5yJexWckibCo2QEP44VgVHy
OH2DOzc8v5gfT517QMd+LzipfO7s5Wz1xWUpdmT8Bqzp5VQYTnOWknEJLDXdvUD3
66/AK894vPv4HJZ2vqKand2bCV5i6eT7tPsFHqvq4XlTjC7p5byZsqjADe7s6A6K
EwvNYvG2Sh1B5iDD0Bcx99Ik56fTeDdZVO+/hb5XfBCVhgml7pCkapEmXZUbiGP2
Dbzywoj/FCGdsJIB8g4fii/M/TkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQMlkah
7RIgcNSWVmKknmLf1J2CCjAfBgNVHSMEGDAWgBTPb01g0NXC5tN5pxHRtq8BEwwq
bDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0MzODUvQTNEMkNFMDBDNUU1MTFFQUFCNjJCMTIyRjhBRUEyMjgvejI5TllO
RFZ3dWJUZWFjUjBiYXZBUk1NS213LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvejI5TllORFZ3dWJUZWFjUjBiYXZBUk1NS213LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0MzODUvQTNEMkNFMDBDNUU1MTFFQUFCNjJCMTIyRjhB
RUEyMjgvN0I4N0M0NDhDNjAxMTFFQTg2QjQ4NzNFRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGaEQDANBgkqhkiG9w0BAQsF
AAOCAQEAAqwdUNG7Uo4eFbRH1WIMMmfK6kelcwBbIqEDYCuTr2rn2kbR74+lLICG
9DWfmskFl5EXm3IVxo1Geyzn1KbDfyv9/1uqYLPrpzlJr8aql4xSsNAjVMZginMh
ftSNHM32YmDNMsO9YOS0ARafTEklEoCg4tifWDSVweQUwlJ/70SyuO+RbqLzuWxZ
FZabYuchf0c0rSjPxlxM0BrT0xukrA/eSw4y6iUQ8c73exIKL3AoA8IvSsIHDgW1
JDMbb1AClfzvRIcKzQLwn5w+oBJP6HkjmHuAM5TYSbZw7VjzvB/avrBropSiagAW
h7hdteNG32Wh09DUhIwzFPSvBaiqNg==
-----END CERTIFICATE-----
Generated at Wed May 8 01:49:50 2024 by rpki-client on console-fra.rpki-client.org