Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/5367F3D062F811ECA5CEAAAC5A40D577.roa
File: 5367F3D062F811ECA5CEAAAC5A40D577.roa (raw, json)
Hash identifier: qkzjHcw1Z4BmaJ/3as1U0JzGTnx4G49F0tgwhJpq68c=
Subject key identifier: F0:64:3A:7C:19:D0:94:73:64:0A:8B:93:E7:EC:89:B8:6E:E9:53:05
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 0284
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/5367F3D062F811ECA5CEAAAC5A40D577.roa
Signing time: Wed 22 Dec 2021 07:25:23 +0000
ROA not before: Wed 22 Dec 2021 07:25:19 +0000
ROA not after: Wed 31 Dec 2031 07:25:19 +0000
asID: 19905
IP address blocks: 197.248.0.0/16 maxlen: 24
2001:43d0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 644 (0x284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Dec 22 07:25:19 2021 GMT
Not After : Dec 31 07:25:19 2031 GMT
Subject: CN=61c2d2e3-2332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:b7:81:81:c2:f2:47:d3:a2:94:10:33:d8:
1d:10:42:b1:74:5f:b8:89:7c:d5:2d:83:dc:62:48:
25:12:86:04:82:80:73:e9:a7:9d:76:09:95:e4:7c:
9c:55:e9:6f:cd:08:6d:2b:f4:29:e4:c8:39:52:cb:
66:54:86:11:4a:65:e6:6b:a2:57:5b:f5:c2:9f:e9:
e1:7c:f1:19:0c:e4:5c:e2:7c:8e:7f:95:90:67:8c:
1d:ce:75:94:97:6b:ac:19:d3:35:79:61:3a:ca:a2:
30:ab:03:b9:69:fd:af:88:ba:d1:05:fa:1e:2c:15:
d7:18:38:a3:86:e9:e2:91:57:55:cd:97:6c:85:23:
5c:10:df:40:52:69:37:d7:86:09:59:ba:dd:e4:34:
96:2d:2f:ed:8d:69:23:88:0a:5f:f1:f3:04:e4:d4:
bd:c7:97:4a:4f:c6:cd:65:68:bf:61:00:8e:33:cc:
c5:07:d4:9e:02:50:43:f3:5b:ae:7f:57:05:78:08:
55:f1:44:f2:2f:29:24:a0:0b:b4:d8:3e:15:a7:36:
2d:31:20:6a:57:dd:a0:0c:97:83:98:fa:40:27:8d:
1f:be:13:d1:c4:cd:0e:85:6e:2b:69:20:bf:fb:9f:
1b:69:8b:e4:0d:7e:73:c7:c6:d7:ab:8d:30:dc:b6:
6b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:64:3A:7C:19:D0:94:73:64:0A:8B:93:E7:EC:89:B8:6E:E9:53:05
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/5367F3D062F811ECA5CEAAAC5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.248.0.0/16
IPv6:
2001:43d0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:48:0d:f3:26:1d:03:1b:63:f3:3e:cd:22:b4:8e:8a:f7:4e:
ff:e5:84:9c:94:12:6d:97:93:7a:2d:46:32:8d:07:16:3f:cc:
e7:34:f7:b9:80:14:81:c5:3e:0b:70:4f:f5:17:e6:36:4d:20:
d8:a6:14:b9:98:bb:4d:78:77:49:93:09:79:71:3d:cd:c0:c3:
3c:38:56:be:1f:48:f2:07:a4:4b:cb:f1:2a:ee:6b:ed:d0:dd:
b8:09:1e:cc:05:71:7b:61:c7:4d:f4:0d:a5:a5:56:ca:f2:2b:
09:c8:70:2e:52:5f:dd:61:1c:3b:64:d5:33:de:1f:cf:fb:da:
8b:a1:e2:2c:7c:5e:1a:9b:ad:98:b3:77:28:ec:87:9b:55:b6:
09:a2:4e:b9:25:ff:dc:d4:74:9c:80:41:eb:37:aa:ab:87:a3:
7c:46:2d:71:75:0c:9f:dd:6c:30:66:9e:b1:a2:ff:c0:57:f2:
1f:29:c6:91:c6:cf:08:ba:e1:58:e9:d7:12:3c:69:5e:7e:78:
10:1b:75:3c:46:c1:65:0b:f9:8f:1d:91:a9:c0:e9:52:6c:5e:
c7:57:37:2a:ef:3a:34:57:e8:cf:eb:72:45:9a:39:4d:2e:7d:
8c:5e:b5:bb:99:bb:e0:15:0a:dc:cd:7d:01:0c:04:25:a7:3e:
f1:b3:b6:ff
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODIxMDRBRjExMC8GA1UEBRMoOEIxMDI2OTUzRUNGN0M0Q0UxMzlGRTlBNTlCREQ3
MjI4QTE1MzU0NDAeFw0yMTEyMjIwNzI1MTlaFw0zMTEyMzEwNzI1MTlaMBgxFjAU
BgNVBAMMDTYxYzJkMmUzLTIzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC9ubeBgcLyR9OilBAz2B0QQrF0X7iJfNUtg9xiSCUShgSCgHPpp512CZXk
fJxV6W/NCG0r9CnkyDlSy2ZUhhFKZeZroldb9cKf6eF88RkM5FzifI5/lZBnjB3O
dZSXa6wZ0zV5YTrKojCrA7lp/a+IutEF+h4sFdcYOKOG6eKRV1XNl2yFI1wQ30BS
aTfXhglZut3kNJYtL+2NaSOICl/x8wTk1L3Hl0pPxs1laL9hAI4zzMUH1J4CUEPz
W65/VwV4CFXxRPIvKSSgC7TYPhWnNi0xIGpX3aAMl4OY+kAnjR++E9HEzQ6Fbitp
IL/7nxtpi+QNfnPHxterjTDctmv7AgMBAAGjggKzMIICrzAdBgNVHQ4EFgQU8GQ6
fBnQlHNkCouT5+yJuG7pUwUwHwYDVR0jBBgwFoAUixAmlT7PfEzhOf6aWb3XIooV
NUQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4QUVBMjI4L2l4QW1s
VDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2l4QW1sVDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4
QUVBMjI4LzUzNjdGM0QwNjJGODExRUNBNUNFQUFBQzVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLQYIKwYBBQUHAQcBAf8EHjAcMAsEAgABMAUDAwDF+DANBAIAAjAHAwUAIAFD
0DANBgkqhkiG9w0BAQsFAAOCAQEAGkgN8yYdAxtj8z7NIrSOivdO/+WEnJQSbZeT
ei1GMo0HFj/M5zT3uYAUgcU+C3BP9RfmNk0g2KYUuZi7TXh3SZMJeXE9zcDDPDhW
vh9I8gekS8vxKu5r7dDduAkezAVxe2HHTfQNpaVWyvIrCchwLlJf3WEcO2TVM94f
z/vai6HiLHxeGputmLN3KOyHm1W2CaJOuSX/3NR0nIBB6zeqq4ejfEYtcXUMn91s
MGaesaL/wFfyHynGkcbPCLrhWOnXEjxpXn54EBt1PEbBZQv5jx2RqcDpUmxex1c3
Ku86NFfoz+tyRZo5TS59jF61u5m74BUK3M19AQwEJac+8bO2/w==
-----END CERTIFICATE-----
Generated at Thu May 2 04:03:43 2024 by rpki-client on console-fra.rpki-client.org