Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/CBA3C1846B7011EFAF3FE084762E951A.roa
File: CBA3C1846B7011EFAF3FE084762E951A.roa (raw, json)
Hash identifier: pFDrtn8wEhtxFNlu2wmcpGpG41xK4cr84A6LU6JiqYg=
Subject key identifier: E6:F4:DA:94:DF:BC:25:0C:7B:3E:84:DF:A6:B9:FB:07:A0:F6:2C:CE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 05B3
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/CBA3C1846B7011EFAF3FE084762E951A.roa
Signing time: Thu 05 Sep 2024 10:22:47 +0000
ROA not before: Thu 05 Sep 2024 10:22:44 +0000
ROA not after: Tue 03 Feb 2026 10:22:44 +0000
asID: 29684
IP address blocks: 102.177.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1459 (0x5b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 5 10:22:44 2024 GMT
Not After : Feb 3 10:22:44 2026 GMT
Subject: CN=66d98677-c0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:db:42:68:4d:87:65:18:2a:0b:07:85:e0:4a:
41:1c:12:61:2f:2b:2c:6f:80:be:75:91:42:48:c9:
03:b4:66:82:58:68:03:c6:e8:65:98:74:bd:62:bd:
a3:5b:2b:6a:30:dd:cd:6d:e1:71:af:a5:db:32:6d:
0d:01:67:34:23:12:d2:43:d9:85:48:ad:27:db:71:
9e:d1:ae:c4:7f:a7:a1:e5:7f:a6:b6:de:17:b6:8a:
26:0c:99:f6:73:f1:34:1d:59:ee:18:84:51:2c:b3:
dc:72:48:08:87:63:8e:0d:b0:ce:ab:2a:57:32:2c:
6e:af:d8:d1:a5:c2:b7:a6:41:dd:b6:29:53:45:b0:
91:60:00:6d:f6:a1:d7:b8:13:cd:8a:95:34:fb:04:
2f:b3:fb:24:7b:9d:05:63:c7:df:0e:d8:a9:7e:2a:
40:fe:79:28:cc:f5:f7:9d:2e:91:7f:03:ce:0d:4a:
83:3a:00:1a:b1:08:94:72:b3:16:d7:45:2c:36:fa:
36:2c:ae:8f:d1:5c:e9:b7:ee:ba:c6:78:ec:2e:40:
9c:10:1d:a2:d5:4b:fb:9e:49:5c:45:aa:40:9b:59:
6b:c6:ca:c8:92:24:3d:50:08:54:50:cf:6f:24:99:
6d:71:86:03:2e:00:90:1b:e0:72:45:82:07:9d:c4:
b0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F4:DA:94:DF:BC:25:0C:7B:3E:84:DF:A6:B9:FB:07:A0:F6:2C:CE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/CBA3C1846B7011EFAF3FE084762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:29:2d:a3:34:52:ab:49:81:1e:71:10:74:c3:fb:a2:1c:a7:
46:83:00:93:24:3d:6a:92:53:ed:b5:df:d8:24:f7:6e:e2:72:
d2:88:6c:d6:d0:1b:bf:88:30:1f:8e:74:a0:2c:6d:39:2d:d0:
d9:b9:db:46:20:fe:d9:89:85:3c:4d:e0:51:77:f7:ca:fa:98:
83:61:16:fe:5c:92:0a:b7:2e:90:f2:e0:21:55:b7:39:e2:36:
a4:90:77:5a:2d:6f:38:2d:39:a1:aa:c6:2d:c9:ba:0a:e8:f3:
87:88:f6:31:87:7a:25:5d:b8:34:45:f0:d5:41:e8:09:f4:e6:
dd:06:01:32:f0:ca:cf:70:14:83:3e:2a:f6:23:4e:25:a2:56:
71:0f:5d:04:7f:7f:77:53:f1:f4:b1:db:fd:5b:bb:d1:dc:6f:
3f:81:b0:5f:af:79:2c:dd:95:a0:47:cb:d9:83:2b:f1:47:cd:
34:8d:fe:6a:37:70:b0:71:e9:3e:3a:6c:a8:1f:3e:4e:22:42:
09:96:e0:5e:c1:ec:84:f2:d4:1f:14:18:5d:ae:d9:c1:af:c8:
8d:59:e5:8b:d3:e5:86:f2:5a:9e:ee:a9:ec:39:12:eb:06:23:
58:1d:2d:1b:15:78:e8:18:2b:e2:4a:f0:11:49:fc:71:2c:8c:
94:f5:78:ad
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBbMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNDA5MDUxMDIyNDRaFw0yNjAyMDMxMDIyNDRaMBgxFjAU
BgNVBAMTDTY2ZDk4Njc3LWMwZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDT20JoTYdlGCoLB4XgSkEcEmEvKyxvgL51kUJIyQO0ZoJYaAPG6GWYdL1i
vaNbK2ow3c1t4XGvpdsybQ0BZzQjEtJD2YVIrSfbcZ7RrsR/p6Hlf6a23he2iiYM
mfZz8TQdWe4YhFEss9xySAiHY44NsM6rKlcyLG6v2NGlwremQd22KVNFsJFgAG32
ode4E82KlTT7BC+z+yR7nQVjx98O2Kl+KkD+eSjM9fedLpF/A84NSoM6ABqxCJRy
sxbXRSw2+jYsro/RXOm37rrGeOwuQJwQHaLVS/ueSVxFqkCbWWvGysiSJD1QCFRQ
z28kmW1xhgMuAJAb4HJFggedxLA5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5vTa
lN+8JQx7PoTfprn7B6D2LM4wHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0NCQTNDMTg0NkI3MDExRUZBRjNGRTA4NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsb4wDQYJKoZIhvcNAQEL
BQADggEBAD8pLaM0UqtJgR5xEHTD+6Icp0aDAJMkPWqSU+2139gk927ictKIbNbQ
G7+IMB+OdKAsbTkt0Nm520Yg/tmJhTxN4FF398r6mINhFv5ckgq3LpDy4CFVtzni
NqSQd1otbzgtOaGqxi3Jugro84eI9jGHeiVduDRF8NVB6An05t0GATLwys9wFIM+
KvYjTiWiVnEPXQR/f3dT8fSx2/1bu9Hcbz+BsF+veSzdlaBHy9mDK/FHzTSN/mo3
cLBx6T46bKgfPk4iQgmW4F7B7ITy1B8UGF2u2cGvyI1Z5YvT5YbyWp7uqew5EusG
I1gdLRsVeOgYK+JK8BFJ/HEsjJT1eK0=
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:31:55 2024 by rpki-client on console-fra.rpki-client.org