Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/601ACCFA62F411EC97052CA15A40D577.roa
File: 601ACCFA62F411EC97052CA15A40D577.roa (raw, json)
Hash identifier: xbz8hO7rX3V8mkjVKhlGAUtlR5Ek1yLEQIBaUKU/2dA=
Subject key identifier: 31:2A:3B:07:16:34:BA:FD:97:F9:00:AB:BC:F6:A8:AE:5A:96:67:E7
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 0269
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/601ACCFA62F411EC97052CA15A40D577.roa
Signing time: Wed 22 Dec 2021 06:57:07 +0000
ROA not before: Wed 22 Dec 2021 06:57:02 +0000
ROA not after: Wed 31 Dec 2031 06:57:02 +0000
asID: 19905
IP address blocks: 196.201.208.0/20 maxlen: 24
2c0f:fe38::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 617 (0x269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Dec 22 06:57:02 2021 GMT
Not After : Dec 31 06:57:02 2031 GMT
Subject: CN=61c2cc42-2f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:37:ad:8b:5e:15:64:32:8e:7a:00:58:ff:82:
cb:52:7b:d5:f4:79:07:cb:ea:2a:e2:af:3b:c4:03:
79:8c:bb:bc:60:08:14:08:95:2b:8c:65:0f:5f:31:
6a:87:ab:52:c8:37:13:23:c2:1a:c4:d3:39:cc:b7:
0e:66:13:9e:fa:ba:b0:59:69:2a:7a:3f:67:b0:ef:
09:d7:cd:3c:a8:cb:73:ca:35:b7:ce:2d:ca:ab:86:
96:ca:2f:4a:0f:92:e0:ec:9d:2a:93:68:d5:1a:55:
e3:20:94:86:53:e4:78:01:9b:35:6b:8d:9a:46:4a:
6d:3d:97:af:c5:99:6d:27:61:fe:b2:40:85:87:0c:
5a:c9:0a:cb:a6:da:85:57:42:67:8b:91:ab:9a:2e:
4d:ea:f1:4a:90:3b:23:bc:63:f8:ac:67:92:07:78:
6b:da:6e:47:86:29:7d:91:fd:9b:6e:13:ec:9b:3b:
4d:76:1b:08:a6:21:c5:43:de:9b:1a:6e:76:7f:5e:
ae:eb:75:0c:05:54:33:59:c2:e7:b7:b7:d0:2e:97:
b7:c8:18:21:e0:02:41:ea:75:c8:5b:80:6a:6f:29:
7b:14:18:ba:a5:5c:cb:40:db:07:21:ba:4c:fa:76:
c0:e3:23:28:db:18:39:3b:1c:14:f4:5a:44:af:a4:
3c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2A:3B:07:16:34:BA:FD:97:F9:00:AB:BC:F6:A8:AE:5A:96:67:E7
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/601ACCFA62F411EC97052CA15A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.201.208.0/20
IPv6:
2c0f:fe38::/32
Signature Algorithm: sha256WithRSAEncryption
00:77:1d:f2:39:8d:b9:06:46:7c:0b:63:da:a8:b7:c5:a7:08:
ef:3d:7e:f7:f8:b0:6d:6c:2b:22:d2:b1:05:78:b3:0d:ef:07:
42:b1:7d:5a:81:60:dd:d8:bd:7b:da:28:cb:ef:b6:3d:39:8b:
6c:65:e9:97:7f:ee:ca:e6:e5:69:5c:48:bf:1d:01:df:af:e5:
6d:1f:69:cc:57:42:0d:95:d0:c1:c8:ee:62:42:b0:7f:8c:24:
35:28:69:fb:49:96:c8:fc:b2:20:f8:14:0d:fe:1e:88:77:52:
aa:b7:89:f5:2c:24:9d:08:7a:d0:96:0a:6e:b7:58:da:c5:38:
90:1d:b5:a4:45:75:4d:f3:44:33:b4:78:b9:9d:8b:31:e6:6e:
1a:21:bd:c9:c5:cf:00:2b:67:9d:0d:56:41:88:d2:0e:66:84:
6d:d4:76:c6:c7:6c:64:6b:ec:bc:f1:64:32:3b:75:69:14:54:
1e:4c:07:ce:5e:cd:8f:76:40:7b:d8:97:9c:31:ad:c3:23:48:
f5:6c:37:c7:66:0a:0a:f7:c0:24:fb:a6:c8:ae:9c:81:ba:cd:
47:8f:dd:6a:ac:6e:df:93:d0:b3:11:57:38:47:e2:ba:88:de:
9a:6e:e4:f5:79:b9:bf:aa:de:65:15:c9:c8:e6:96:59:89:91:
82:9f:d1:0a
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODIxMDRBRjExMC8GA1UEBRMoOEIxMDI2OTUzRUNGN0M0Q0UxMzlGRTlBNTlCREQ3
MjI4QTE1MzU0NDAeFw0yMTEyMjIwNjU3MDJaFw0zMTEyMzEwNjU3MDJaMBgxFjAU
BgNVBAMMDTYxYzJjYzQyLTJmNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCbN62LXhVkMo56AFj/gstSe9X0eQfL6irirzvEA3mMu7xgCBQIlSuMZQ9f
MWqHq1LINxMjwhrE0znMtw5mE576urBZaSp6P2ew7wnXzTyoy3PKNbfOLcqrhpbK
L0oPkuDsnSqTaNUaVeMglIZT5HgBmzVrjZpGSm09l6/FmW0nYf6yQIWHDFrJCsum
2oVXQmeLkauaLk3q8UqQOyO8Y/isZ5IHeGvabkeGKX2R/ZtuE+ybO012GwimIcVD
3psabnZ/Xq7rdQwFVDNZwue3t9Aul7fIGCHgAkHqdchbgGpvKXsUGLqlXMtA2wch
ukz6dsDjIyjbGDk7HBT0WkSvpDwxAgMBAAGjggK0MIICsDAdBgNVHQ4EFgQUMSo7
BxY0uv2X+QCrvPaorlqWZ+cwHwYDVR0jBBgwFoAUixAmlT7PfEzhOf6aWb3XIooV
NUQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4QUVBMjI4L2l4QW1s
VDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2l4QW1sVDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4
QUVBMjI4LzYwMUFDQ0ZBNjJGNDExRUM5NzA1MkNBMTVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBATEydAwDQQCAAIwBwMFACwP
/jgwDQYJKoZIhvcNAQELBQADggEBAAB3HfI5jbkGRnwLY9qot8WnCO89fvf4sG1s
KyLSsQV4sw3vB0KxfVqBYN3YvXvaKMvvtj05i2xl6Zd/7srm5WlcSL8dAd+v5W0f
acxXQg2V0MHI7mJCsH+MJDUoaftJlsj8siD4FA3+Hoh3Uqq3ifUsJJ0IetCWCm63
WNrFOJAdtaRFdU3zRDO0eLmdizHmbhohvcnFzwArZ50NVkGI0g5mhG3UdsbHbGRr
7LzxZDI7dWkUVB5MB85ezY92QHvYl5wxrcMjSPVsN8dmCgr3wCT7psiunIG6zUeP
3Wqsbt+T0LMRVzhH4rqI3ppu5PV5ub+q3mUVycjmllmJkYKf0Qo=
-----END CERTIFICATE-----
Generated at Thu May 2 03:12:16 2024 by rpki-client on console-ams.rpki-client.org