Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/31CFB30C052C11EEAC0EDC4E4AD9E6FC.roa
File: 31CFB30C052C11EEAC0EDC4E4AD9E6FC.roa (raw, json)
Hash identifier: 707c2EgzG32Mlw18CbzTHauUb9G8+7v2J+8ka2UNIbA=
Subject key identifier: 7B:6A:70:A5:73:92:89:EE:3E:DB:E3:E4:08:A5:ED:BB:6C:C5:44:C0
Certificate issuer: /CN=F3681ED0AF/serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Certificate serial: 56
Authority key identifier: 4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/31CFB30C052C11EEAC0EDC4E4AD9E6FC.roa
Signing time: Wed 07 Jun 2023 12:09:47 +0000
ROA not before: Wed 07 Jun 2023 12:09:43 +0000
ROA not after: Wed 08 Jun 2033 12:09:43 +0000
asID: 30986
IP address blocks: 154.160.32.0/20 maxlen: 24
154.160.48.0/20 maxlen: 24
154.160.64.0/20 maxlen: 24
154.160.80.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.mft
rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86 (0x56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3681ED0AF/serialNumber=4A83F31B1B0604CA6D0B72A453DAA3EB587B4C82
Validity
Not Before: Jun 7 12:09:43 2023 GMT
Not After : Jun 8 12:09:43 2033 GMT
Subject: CN=6480738b-318d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ac:1b:1c:3b:d5:82:14:76:e5:e0:85:2c:4d:
38:26:ee:77:06:fe:84:9a:0d:54:53:45:53:62:58:
0c:2c:96:e3:5c:e8:12:a5:e9:db:89:45:c5:86:c4:
e3:61:9a:7c:f1:ba:0c:5e:48:2c:09:0d:39:40:70:
6c:7d:66:3f:25:03:f0:5f:0d:f3:39:6c:62:8f:30:
05:04:ae:79:d6:cd:39:0f:6c:ab:40:18:b4:e1:88:
af:1a:ef:de:dd:fa:fa:d9:60:ed:69:2c:18:c9:e3:
2a:f6:d2:8b:c2:75:0a:33:fa:67:65:88:27:a5:88:
4c:bb:e6:1f:ef:0c:38:73:c8:b0:d6:d8:c5:8b:99:
13:e6:1c:bf:28:99:45:1d:ae:39:cd:60:32:7c:09:
40:d5:76:4e:80:9c:23:dc:9d:4a:46:c3:10:ca:31:
c6:10:fb:be:1d:f0:5a:76:1b:c9:5c:dc:05:2e:ed:
43:45:c1:5f:71:e8:ea:e4:c1:88:f2:40:d0:27:0f:
14:6f:e7:35:f0:8c:0c:3a:9c:f9:ad:bc:9a:9b:d5:
2c:41:ca:c0:4e:49:4c:ae:54:fd:7f:27:fa:3c:29:
e9:2d:44:3a:16:e7:cb:2f:57:f3:e5:2d:85:72:24:
35:70:e2:fe:7b:d0:96:16:d2:c1:23:7c:80:3d:98:
12:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6A:70:A5:73:92:89:EE:3E:DB:E3:E4:08:A5:ED:BB:6C:C5:44:C0
X509v3 Authority Key Identifier:
keyid:4A:83:F3:1B:1B:06:04:CA:6D:0B:72:A4:53:DA:A3:EB:58:7B:4C:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/SoPzGxsGBMptC3KkU9qj61h7TII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SoPzGxsGBMptC3KkU9qj61h7TII.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3681ED0/5251C078CE2411EDA092D0ACF1222468/31CFB30C052C11EEAC0EDC4E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.160.32.0-154.160.95.255
Signature Algorithm: sha256WithRSAEncryption
5f:3e:6a:fe:60:38:cd:eb:1d:71:78:12:68:4c:02:69:71:37:
86:25:12:7c:32:cf:78:73:4d:cc:fc:6a:82:6a:df:e2:2c:a0:
8a:2e:e8:4c:09:d3:28:69:39:72:b5:89:5c:87:c6:db:32:b2:
48:5e:1c:49:77:16:81:a0:39:cf:a4:d9:5f:22:11:3e:80:16:
bb:52:7a:07:ae:7e:4d:ff:93:97:ad:c9:72:5e:41:8c:63:7c:
41:80:0b:52:99:5e:9b:ff:6f:4e:39:ad:39:e5:26:57:80:75:
08:f4:ca:4a:65:cf:10:8d:7f:49:55:99:42:12:b4:69:61:ae:
b1:7d:d2:d1:4d:94:b6:71:5d:c6:89:43:ef:12:d9:d3:08:96:
d3:21:99:10:ad:bf:46:9d:41:f8:1c:3d:28:1f:12:f5:20:66:
cc:16:4d:b3:f7:38:98:a8:27:f0:4a:92:71:1b:36:a8:c4:9a:
ac:d1:5c:2e:93:62:8c:f2:2a:2a:97:59:21:0a:e5:aa:de:07:
76:a8:90:cd:d9:af:44:1b:37:fa:e2:e5:33:d3:84:10:92:67:
30:4f:aa:78:3a:2c:27:d7:96:8e:1a:5b:14:0b:80:04:25:62:
4b:7e:b2:6b:ea:58:ee:e5:47:46:9e:67:50:2f:0a:04:b8:5f:
e1:21:3b:17
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIBVjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY4
MUVEMEFGMTEwLwYDVQQFEyg0QTgzRjMxQjFCMDYwNENBNkQwQjcyQTQ1M0RBQTNF
QjU4N0I0QzgyMB4XDTIzMDYwNzEyMDk0M1oXDTMzMDYwODEyMDk0M1owGDEWMBQG
A1UEAxMNNjQ4MDczOGItMzE4ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMisGxw71YIUduXghSxNOCbudwb+hJoNVFNFU2JYDCyW41zoEqXp24lFxYbE
42GafPG6DF5ILAkNOUBwbH1mPyUD8F8N8zlsYo8wBQSuedbNOQ9sq0AYtOGIrxrv
3t36+tlg7WksGMnjKvbSi8J1CjP6Z2WIJ6WITLvmH+8MOHPIsNbYxYuZE+YcvyiZ
RR2uOc1gMnwJQNV2ToCcI9ydSkbDEMoxxhD7vh3wWnYbyVzcBS7tQ0XBX3Ho6uTB
iPJA0CcPFG/nNfCMDDqc+a28mpvVLEHKwE5JTK5U/X8n+jwp6S1EOhbnyy9X8+Ut
hXIkNXDi/nvQlhbSwSN8gD2YEjkCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBR7anCl
c5KJ7j7b4+QIpe27bMVEwDAfBgNVHSMEGDAWgBRKg/MbGwYEym0LcqRT2qPrWHtM
gjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODFFRDAvNTI1MUMwNzhDRTI0MTFFREEwOTJEMEFDRjEyMjI0NjgvU29Qekd4
c0dCTXB0QzNLa1U5cWo2MWg3VElJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvU29Qekd4c0dCTXB0QzNLa1U5cWo2MWg3VElJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2ODFFRDAvNTI1MUMwNzhDRTI0MTFFREEwOTJEMEFDRjEy
MjI0NjgvMzFDRkIzMEMwNTJDMTFFRUFDMEVEQzRFNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQFmqAgAwQFmqBAMA0GCSqG
SIb3DQEBCwUAA4IBAQBfPmr+YDjN6x1xeBJoTAJpcTeGJRJ8Ms94c03M/GqCat/i
LKCKLuhMCdMoaTlytYlch8bbMrJIXhxJdxaBoDnPpNlfIhE+gBa7UnoHrn5N/5OX
rclyXkGMY3xBgAtSmV6b/29OOa055SZXgHUI9MpKZc8QjX9JVZlCErRpYa6xfdLR
TZS2cV3GiUPvEtnTCJbTIZkQrb9GnUH4HD0oHxL1IGbMFk2z9ziYqCfwSpJxGzao
xJqs0Vwuk2KM8ioql1khCuWq3gd2qJDN2a9EGzf64uUz04QQkmcwT6p4Oiwn15aO
GlsUC4AEJWJLfrJr6lju5UdGnmdQLwoEuF/hITsX
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:45 2024 by rpki-client on console-ams.rpki-client.org