Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/46F0B40CABC211ED9ACEA683F1222468.roa
File: 46F0B40CABC211ED9ACEA683F1222468.roa (raw, json)
Hash identifier: gMJyXLKD9QP+OLiQjsuXWN3MuSsqyBtsebI9uk9Cd8I=
Subject key identifier: F6:F0:8E:94:74:01:1B:6A:00:46:CE:7E:A3:D5:C1:FA:D5:6B:B6:42
Certificate issuer: /CN=F367DA9BAF/serialNumber=4851D182FA16FD73BD771454F20D99FC9586205F
Certificate serial: 22
Authority key identifier: 48:51:D1:82:FA:16:FD:73:BD:77:14:54:F2:0D:99:FC:95:86:20:5F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/46F0B40CABC211ED9ACEA683F1222468.roa
Signing time: Mon 13 Feb 2023 17:17:22 +0000
ROA not before: Mon 13 Feb 2023 17:17:17 +0000
ROA not after: Sun 13 Feb 2033 17:17:17 +0000
asID: 37532
IP address blocks: 41.63.0.0/18 maxlen: 24
2c0f:f670::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.mft
rsync://rpki.afrinic.net/repository/afrinic/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DA9BAF/serialNumber=4851D182FA16FD73BD771454F20D99FC9586205F
Validity
Not Before: Feb 13 17:17:17 2023 GMT
Not After : Feb 13 17:17:17 2033 GMT
Subject: CN=63ea70a2-283f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:43:ae:d7:f3:1f:7a:14:0c:44:f4:6e:cd:b7:
20:ef:67:64:82:eb:70:3f:19:25:23:45:b3:95:0a:
d2:a5:22:9b:15:17:52:a9:e8:f0:59:ae:86:3b:99:
f2:e7:8c:b6:16:f2:aa:4a:c0:4e:fd:3e:64:42:19:
e3:3f:f9:ff:85:4b:b7:6f:20:9b:d0:99:37:97:ad:
56:70:7f:dd:42:e1:9f:2c:c1:ba:d6:88:2b:19:f0:
97:0a:a1:d1:f2:b9:0d:be:20:a6:81:0f:9a:0c:0b:
95:f6:4c:e1:71:b9:62:35:97:6a:d0:b3:62:24:eb:
ef:5c:27:5e:2a:16:c6:5f:ba:3f:fd:81:1e:db:ea:
8e:81:f5:10:50:ff:f4:58:03:f0:2d:5c:ee:70:9e:
a8:4a:83:eb:0d:ec:0a:42:1e:91:55:17:83:fd:b2:
58:99:9a:85:f0:2c:03:13:51:47:bf:5b:91:14:5f:
d3:66:c7:ee:99:7c:2b:14:d0:50:c6:ac:2d:87:78:
9d:b7:a0:a2:a5:b4:7d:40:d4:6a:85:24:e1:f7:61:
b4:72:b6:ba:a9:3c:81:a8:1c:76:09:c0:f6:bb:0c:
6f:d9:ca:65:c4:38:45:c7:93:8a:5c:74:d5:40:43:
eb:2a:da:88:60:b5:93:df:00:66:6f:66:a8:36:57:
f3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F0:8E:94:74:01:1B:6A:00:46:CE:7E:A3:D5:C1:FA:D5:6B:B6:42
X509v3 Authority Key Identifier:
keyid:48:51:D1:82:FA:16:FD:73:BD:77:14:54:F2:0D:99:FC:95:86:20:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SFHRgvoW_XO9dxRU8g2Z_JWGIF8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DA9B/89B3558A964911ED8DA75EF4F1222468/46F0B40CABC211ED9ACEA683F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.63.0.0/18
IPv6:
2c0f:f670::/32
Signature Algorithm: sha256WithRSAEncryption
c7:f8:97:4c:d4:55:94:0e:28:05:94:62:bb:01:25:58:af:33:
f8:33:48:95:1d:36:36:88:a4:17:37:71:fb:ed:88:2b:c0:95:
f5:88:65:87:e2:0a:77:be:9f:c9:c7:43:00:56:12:63:f6:90:
dc:ea:fc:dd:ce:29:a7:46:32:86:a9:28:2c:d3:ab:8e:bd:82:
a3:f8:4e:63:a9:e4:a2:d9:03:5c:26:9e:aa:78:b9:ba:98:d4:
71:2f:b0:f2:7f:8e:d4:e2:51:7c:58:70:ce:df:79:38:91:f5:
f0:2a:c5:18:1f:bb:14:3d:b4:87:15:a6:a4:ed:5a:80:62:5a:
a7:09:28:d4:05:2b:3e:ec:e5:f8:4a:40:cb:91:2e:b1:e6:79:
07:26:26:e9:9c:5b:4d:ec:5c:af:0e:df:7f:b6:b0:69:e8:a2:
c5:83:eb:66:e3:4f:17:00:f4:f8:8c:55:b2:ac:b0:96:8f:d3:
0c:62:5f:52:59:a5:72:18:57:75:0e:bb:60:ba:f0:fb:c8:19:
e6:ae:53:91:34:97:09:84:8f:49:96:80:ce:a5:77:2c:30:be:
b2:36:49:86:25:af:90:45:93:85:0c:e7:6d:04:80:db:d9:50:
06:0e:22:d4:c1:b4:4d:a1:27:b8:b4:4f:35:84:4a:1d:f2:41:
09:29:bb:54
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIBIjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY3
REE5QkFGMTEwLwYDVQQFEyg0ODUxRDE4MkZBMTZGRDczQkQ3NzE0NTRGMjBEOTlG
Qzk1ODYyMDVGMB4XDTIzMDIxMzE3MTcxN1oXDTMzMDIxMzE3MTcxN1owGDEWMBQG
A1UEAwwNNjNlYTcwYTItMjgzZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMNDrtfzH3oUDET0bs23IO9nZILrcD8ZJSNFs5UK0qUimxUXUqno8FmuhjuZ
8ueMthbyqkrATv0+ZEIZ4z/5/4VLt28gm9CZN5etVnB/3ULhnyzButaIKxnwlwqh
0fK5Db4gpoEPmgwLlfZM4XG5YjWXatCzYiTr71wnXioWxl+6P/2BHtvqjoH1EFD/
9FgD8C1c7nCeqEqD6w3sCkIekVUXg/2yWJmahfAsAxNRR79bkRRf02bH7pl8KxTQ
UMasLYd4nbegoqW0fUDUaoUk4fdhtHK2uqk8gagcdgnA9rsMb9nKZcQ4RceTilx0
1UBD6yraiGC1k98AZm9mqDZX82sCAwEAAaOCArQwggKwMB0GA1UdDgQWBBT28I6U
dAEbagBGzn6j1cH61Wu2QjAfBgNVHSMEGDAWgBRIUdGC+hb9c713FFTyDZn8lYYg
XzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0RBOUIvODlCMzU1OEE5NjQ5MTFFRDhEQTc1RUY0RjEyMjI0NjgvU0ZIUmd2
b1dfWE85ZHhSVThnMlpfSldHSUY4LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvU0ZIUmd2b1dfWE85ZHhSVThnMlpfSldHSUY4LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0RBOUIvODlCMzU1OEE5NjQ5MTFFRDhEQTc1RUY0RjEy
MjI0NjgvNDZGMEI0MENBQkMyMTFFRDlBQ0VBNjgzRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBik/ADANBAIAAjAHAwUALA/2
cDANBgkqhkiG9w0BAQsFAAOCAQEAx/iXTNRVlA4oBZRiuwElWK8z+DNIlR02Noik
Fzdx++2IK8CV9Yhlh+IKd76fycdDAFYSY/aQ3Or83c4pp0YyhqkoLNOrjr2Co/hO
Y6nkotkDXCaeqni5upjUcS+w8n+O1OJRfFhwzt95OJH18CrFGB+7FD20hxWmpO1a
gGJapwko1AUrPuzl+EpAy5EuseZ5ByYm6ZxbTexcrw7ff7awaeiixYPrZuNPFwD0
+IxVsqywlo/TDGJfUlmlchhXdQ67YLrw+8gZ5q5TkTSXCYSPSZaAzqV3LDC+sjZJ
hiWvkEWThQznbQSA29lQBg4i1MG0TaEnuLRPNYRKHfJBCSm7VA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org