Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10BCE078B8FA11EDAD9224FAF1222468.roa
File: 10BCE078B8FA11EDAD9224FAF1222468.roa (raw, json)
Hash identifier: PM2+Bd3l6jnG2glNQ82DUEhQO38xU8x9pz+Be4T9mdM=
Subject key identifier: AE:C6:CA:61:8C:5F:1E:19:FF:F2:84:E4:6A:73:CF:C7:A7:29:68:00
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0CC5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10BCE078B8FA11EDAD9224FAF1222468.roa
Signing time: Thu 02 Mar 2023 12:59:28 +0000
ROA not before: Thu 02 Mar 2023 12:59:24 +0000
ROA not after: Sat 01 Mar 2025 12:59:24 +0000
asID: 61317
IP address blocks: 154.16.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Apr 2024 00:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3269 (0xcc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 2 12:59:24 2023 GMT
Not After : Mar 1 12:59:24 2025 GMT
Subject: CN=64009db0-f7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a2:ca:8c:cd:e5:86:a3:38:ca:0e:c5:f2:0d:
9a:95:7a:02:7b:59:58:65:1b:ab:6c:33:28:92:ab:
db:88:22:23:0f:59:b7:e4:6f:df:cb:64:9b:88:c2:
8e:41:05:98:e0:8a:aa:1c:96:0f:dc:2a:5f:80:fb:
3c:99:5c:d4:1d:17:09:b3:83:59:3f:88:12:6f:30:
15:7a:d5:0a:bc:51:e1:f6:8c:3e:99:a0:e1:0b:56:
a7:2b:cd:2a:b7:10:78:34:1e:ca:5c:4f:d7:81:69:
44:2d:31:24:30:32:b7:a1:c5:47:fe:17:19:8a:bf:
8f:5a:aa:1b:bd:c3:aa:49:11:69:58:ff:d9:6b:c2:
17:f4:c9:7b:4e:fa:aa:fb:fa:ff:12:0b:b3:45:b5:
99:21:52:6e:25:09:59:dc:92:1f:99:e7:45:b6:92:
81:46:66:09:33:4a:90:77:57:b2:0d:04:a3:dc:1a:
bd:68:73:ee:0b:f4:69:7b:3c:a2:89:46:08:cb:09:
77:ef:70:e8:c0:54:55:e2:8b:dd:cc:2f:97:31:aa:
93:78:e3:af:9a:d1:21:02:0a:9c:5e:c2:2a:c6:61:
6b:b6:3f:78:dd:f0:87:ec:a3:f1:25:c4:b7:1a:64:
22:c5:c2:d0:b1:91:38:e3:f0:a1:59:c0:e7:d5:91:
a2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C6:CA:61:8C:5F:1E:19:FF:F2:84:E4:6A:73:CF:C7:A7:29:68:00
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10BCE078B8FA11EDAD9224FAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.246.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d6:aa:01:7a:93:f5:71:bc:24:78:20:ae:60:38:40:87:ca:
63:a4:83:f9:6b:f9:27:90:b6:09:05:a5:f1:43:5e:8f:5e:05:
1a:32:c0:00:e1:09:7b:e5:42:12:58:39:25:83:ae:43:ff:00:
be:a5:dd:ef:a0:a4:49:2c:03:d1:1b:b7:00:56:05:c4:96:bb:
85:f2:a7:32:32:3f:24:88:66:94:1c:4d:d8:3b:92:d7:9a:25:
73:3c:4b:93:37:8f:4c:2a:1c:ae:f5:fa:e5:2d:b0:6d:7a:ab:
77:c6:0f:ca:e3:a7:e0:2c:57:f8:dc:db:d2:f8:88:d4:d1:72:
72:39:b3:7a:cf:f8:1b:75:33:d9:d5:9f:40:ac:d1:1f:d8:6b:
6d:41:82:78:da:a7:c4:bc:d6:5c:41:15:14:c2:0e:8f:4e:1d:
f1:d5:52:bd:04:68:8e:46:26:2e:a3:5e:17:c3:33:92:06:54:
82:42:0a:fe:23:af:03:08:2b:e8:5a:58:e9:90:80:91:d5:96:
59:f4:51:ef:00:15:d0:c0:77:3d:ea:6c:a3:1c:09:b6:33:64:
bb:a8:fb:d6:a1:5d:99:02:a5:1e:69:3d:ff:2d:dd:df:bf:43:
72:8e:f1:40:33:ef:23:b6:f8:cb:1e:4b:7a:d6:2e:e2:d7:f0:
c2:d4:49:42
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDMUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzAzMDIxMjU5MjRaFw0yNTAzMDExMjU5MjRaMBgxFjAU
BgNVBAMMDTY0MDA5ZGIwLWY3YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDposqMzeWGozjKDsXyDZqVegJ7WVhlG6tsMyiSq9uIIiMPWbfkb9/LZJuI
wo5BBZjgiqoclg/cKl+A+zyZXNQdFwmzg1k/iBJvMBV61Qq8UeH2jD6ZoOELVqcr
zSq3EHg0HspcT9eBaUQtMSQwMrehxUf+FxmKv49aqhu9w6pJEWlY/9lrwhf0yXtO
+qr7+v8SC7NFtZkhUm4lCVnckh+Z50W2koFGZgkzSpB3V7INBKPcGr1oc+4L9Gl7
PKKJRgjLCXfvcOjAVFXii93ML5cxqpN446+a0SECCpxewirGYWu2P3jd8Ifso/El
xLcaZCLFwtCxkTjj8KFZwOfVkaJPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUrsbK
YYxfHhn/8oTkanPPx6cpaAAwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzEwQkNFMDc4QjhGQTExRURBRDkyMjRGQUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEPYwDQYJKoZIhvcNAQEL
BQADggEBAA3WqgF6k/VxvCR4IK5gOECHymOkg/lr+SeQtgkFpfFDXo9eBRoywADh
CXvlQhJYOSWDrkP/AL6l3e+gpEksA9EbtwBWBcSWu4XypzIyPySIZpQcTdg7ktea
JXM8S5M3j0wqHK71+uUtsG16q3fGD8rjp+AsV/jc29L4iNTRcnI5s3rP+Bt1M9nV
n0Cs0R/Ya21Bgnjap8S81lxBFRTCDo9OHfHVUr0EaI5GJi6jXhfDM5IGVIJCCv4j
rwMIK+haWOmQgJHVlln0Ue8AFdDAdz3qbKMcCbYzZLuo+9ahXZkCpR5pPf8t3d+/
Q3KO8UAz7yO2+MseS3rWLuLX8MLUSUI=
-----END CERTIFICATE-----
Generated at Fri Apr 19 11:25:22 2024 by rpki-client on console-fra.rpki-client.org