Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/B899A25662F511ECA7B516A55A40D577.roa
File: B899A25662F511ECA7B516A55A40D577.roa (raw, json)
Hash identifier: HwbsPbhz+M21fABdBFfmtrd+HotSbt7lP6VB0p8VgCw=
Subject key identifier: EB:6E:42:D1:E5:60:C1:BC:55:48:F7:8C:43:47:11:4A:50:F2:0E:D8
Certificate issuer: /CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Certificate serial: 0278
Authority key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/B899A25662F511ECA7B516A55A40D577.roa
Signing time: Wed 22 Dec 2021 07:06:45 +0000
ROA not before: Wed 22 Dec 2021 07:06:41 +0000
ROA not after: Wed 31 Dec 2031 07:06:41 +0000
asID: 19905
IP address blocks: 41.90.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 632 (0x278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Validity
Not Before: Dec 22 07:06:41 2021 GMT
Not After : Dec 31 07:06:41 2031 GMT
Subject: CN=61c2ce84-2978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:40:17:41:de:5a:5e:7a:c0:97:c9:70:55:de:
ac:e2:c5:61:65:33:c6:91:c5:7a:5c:e4:f2:49:b8:
ff:49:ae:b5:46:0f:a4:ce:a7:ca:c6:69:9c:74:f7:
8c:25:7d:5c:01:3f:94:5c:da:7f:f1:90:1a:60:75:
f1:8d:dc:b5:95:ab:da:c0:07:db:45:7a:6c:eb:38:
b2:c3:7e:33:db:e7:00:13:b4:da:df:51:ce:ca:c3:
1f:64:d0:4a:f8:0e:1f:aa:f1:60:4b:7c:b6:d1:fe:
89:ec:ed:1e:3f:fb:1b:36:50:10:a5:9b:6a:f5:b3:
44:bb:2a:97:15:a3:18:5a:d8:f4:d9:17:75:79:e2:
04:60:7c:13:c7:33:6e:4f:51:e6:cf:7e:98:88:ca:
d7:f3:67:67:41:24:fc:df:90:93:4a:b1:2f:95:5d:
9d:f9:94:d2:77:a3:ba:8b:fb:ac:a9:da:07:f3:68:
48:ab:8f:06:9f:13:fb:7b:19:6d:d8:fe:cd:73:15:
74:f7:e6:57:e5:dd:42:08:19:db:ed:6b:fa:6a:d7:
e8:0e:5b:3e:e1:34:a5:ef:9a:e2:96:31:42:c2:cf:
2b:93:18:69:12:06:f2:23:a2:4c:9e:3b:fc:5d:22:
3c:0f:59:82:11:25:ee:f1:3c:89:0c:5e:1b:b8:7e:
04:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6E:42:D1:E5:60:C1:BC:55:48:F7:8C:43:47:11:4A:50:F2:0E:D8
X509v3 Authority Key Identifier:
keyid:8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/B899A25662F511ECA7B516A55A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.90.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:8f:83:fb:06:91:2f:db:fa:06:de:f4:5c:3a:88:ef:9a:39:
24:a1:e8:fa:35:7c:68:fa:0b:48:05:1a:f7:11:b8:d8:c9:a4:
73:90:19:74:7c:30:28:fb:06:a5:9d:0a:5f:36:c8:23:72:85:
d6:00:89:ee:00:f4:ed:c1:03:9e:47:17:8d:5b:17:6b:11:66:
f8:cf:37:49:f4:05:35:bd:00:40:63:ea:c9:13:b8:d9:6e:7b:
01:f3:b4:74:50:27:ed:f4:46:06:d5:4d:67:28:15:32:a7:69:
32:06:7c:41:40:ae:3f:a6:10:64:f7:d9:7f:47:65:6e:0a:d0:
58:b4:d4:36:6b:0e:1c:19:a3:a4:92:8f:46:fc:ff:cf:11:18:
f4:19:81:fa:39:2d:3d:74:41:71:7b:95:d5:b7:57:4c:38:4c:
4b:37:bb:2b:d8:b7:e4:2e:87:a5:4f:b6:8f:78:42:73:86:6d:
11:61:04:c0:e8:84:a5:4c:53:aa:de:7b:2e:3e:e2:e7:40:7e:
c5:83:3b:2e:2f:bb:b5:c0:a3:49:48:ad:70:b8:05:fd:ec:0e:
30:8d:f9:5b:76:77:f7:17:e8:85:72:78:95:7e:ef:58:eb:dc:
a6:51:cb:17:b8:cb:05:55:c6:1e:87:7d:e1:0d:00:38:16:ec:
73:2e:1d:da
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAngwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODIxMDRBRjExMC8GA1UEBRMoOEIxMDI2OTUzRUNGN0M0Q0UxMzlGRTlBNTlCREQ3
MjI4QTE1MzU0NDAeFw0yMTEyMjIwNzA2NDFaFw0zMTEyMzEwNzA2NDFaMBgxFjAU
BgNVBAMMDTYxYzJjZTg0LTI5NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDIQBdB3lpeesCXyXBV3qzixWFlM8aRxXpc5PJJuP9JrrVGD6TOp8rGaZx0
94wlfVwBP5Rc2n/xkBpgdfGN3LWVq9rAB9tFemzrOLLDfjPb5wATtNrfUc7Kwx9k
0Er4Dh+q8WBLfLbR/ons7R4/+xs2UBClm2r1s0S7KpcVoxha2PTZF3V54gRgfBPH
M25PUebPfpiIytfzZ2dBJPzfkJNKsS+VXZ35lNJ3o7qL+6yp2gfzaEirjwafE/t7
GW3Y/s1zFXT35lfl3UIIGdvta/pq1+gOWz7hNKXvmuKWMULCzyuTGGkSBvIjokye
O/xdIjwPWYIRJe7xPIkMXhu4fgTdAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU625C
0eVgwbxVSPeMQ0cRSlDyDtgwHwYDVR0jBBgwFoAUixAmlT7PfEzhOf6aWb3XIooV
NUQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4QUVBMjI4L2l4QW1s
VDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2l4QW1sVDdQZkV6aE9mNmFXYjNYSW9vVk5VUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyMTA0LzA5Q0NCOTRDQTc2MzExRUFCQkMxOTExQ0Y4
QUVBMjI4L0I4OTlBMjU2NjJGNTExRUNBN0I1MTZBNTVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwApWjANBgkqhkiG9w0BAQsF
AAOCAQEAfI+D+waRL9v6Bt70XDqI75o5JKHo+jV8aPoLSAUa9xG42Mmkc5AZdHww
KPsGpZ0KXzbII3KF1gCJ7gD07cEDnkcXjVsXaxFm+M83SfQFNb0AQGPqyRO42W57
AfO0dFAn7fRGBtVNZygVMqdpMgZ8QUCuP6YQZPfZf0dlbgrQWLTUNmsOHBmjpJKP
Rvz/zxEY9BmB+jktPXRBcXuV1bdXTDhMSze7K9i35C6HpU+2j3hCc4ZtEWEEwOiE
pUxTqt57Lj7i50B+xYM7Li+7tcCjSUitcLgF/ewOMI35W3Z39xfohXJ4lX7vWOvc
plHLF7jLBVXGHod94Q0AOBbscy4d2g==
-----END CERTIFICATE-----
Generated at Thu May 2 04:03:43 2024 by rpki-client on console-fra.rpki-client.org