Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/699C84E4935C11EFA3130153762E951A.roa
File: 699C84E4935C11EFA3130153762E951A.roa (raw, json)
Hash identifier: 7/tUS0aTNWqBrnsSmbXe0X38EUC66NWfQdZub79Nb/4=
Subject key identifier: F6:FE:6E:F6:E8:27:21:E7:5B:3B:38:A4:88:6B:68:A6:40:18:1C:98
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18C2
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/699C84E4935C11EFA3130153762E951A.roa
Signing time: Sat 26 Oct 2024 05:37:39 +0000
ROA not before: Sat 26 Oct 2024 05:37:35 +0000
ROA not after: Mon 26 Oct 2026 05:37:35 +0000
asID: 834
IP address blocks: 154.16.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6338 (0x18c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 26 05:37:35 2024 GMT
Not After : Oct 26 05:37:35 2026 GMT
Subject: CN=671c8023-95c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e9:b3:c8:5d:27:43:40:f2:50:da:66:7b:01:
e2:e2:d8:91:e6:46:e3:7b:ae:35:6d:82:17:e0:d6:
4b:d4:c0:ab:3f:0b:99:f3:90:ee:40:d9:ff:c8:f9:
ca:31:d9:17:9e:d3:53:69:2f:54:25:8e:3a:98:21:
3c:5c:dd:a3:7e:e7:1f:f6:85:93:ac:8f:c8:2f:94:
47:b8:1b:ab:7f:65:49:9f:dd:2b:d7:43:4d:f8:4d:
86:9d:72:33:42:d4:28:b2:b9:26:72:a1:28:a2:06:
8d:e4:12:1e:22:a9:41:f0:0f:e7:e3:33:7e:33:65:
9d:6b:93:58:75:4a:4d:d9:59:31:86:31:0b:0c:fd:
bd:a3:fa:2f:3b:d7:8b:ca:75:6a:4e:c1:3a:4e:cf:
54:85:c3:9a:83:ad:75:1f:c5:ce:33:db:ee:29:21:
2c:25:54:2f:1b:4e:a3:33:54:cd:98:0a:5c:77:31:
83:6a:fe:30:31:c2:14:1c:59:e8:ba:03:24:53:b1:
3d:fe:7f:ba:e1:5a:b3:83:f8:94:47:21:cc:01:57:
1b:c3:10:df:bd:a0:0e:04:4b:e7:6f:9e:98:d1:ea:
1e:3e:ee:83:32:6e:c0:2b:14:fb:03:69:11:8e:fd:
b6:68:2c:f1:5c:fc:0d:db:cf:9f:fb:59:6c:f8:7e:
d5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FE:6E:F6:E8:27:21:E7:5B:3B:38:A4:88:6B:68:A6:40:18:1C:98
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/699C84E4935C11EFA3130153762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:38:ea:fd:2e:f6:74:c8:1c:bc:d8:29:69:06:00:89:03:9d:
74:2b:c1:79:fa:dd:eb:bd:c5:91:43:d7:d1:36:67:54:0c:73:
11:77:3d:08:18:4c:3c:88:59:0a:78:10:82:9d:71:1a:c1:60:
e6:c9:2b:d9:2e:d2:a1:86:01:11:69:63:57:7f:f4:38:38:f4:
51:7b:09:a3:95:ce:50:63:e4:d3:a5:de:21:dd:68:82:4f:e4:
01:c6:f3:aa:28:c1:a3:19:c8:3d:e4:6c:9f:c5:ce:dd:cf:78:
e1:0f:b3:90:80:42:d2:04:6f:09:15:a3:e2:bb:f0:94:a7:95:
78:98:76:f9:19:8f:92:1c:d4:5a:5a:56:23:a1:b4:4c:04:b8:
f1:49:9b:53:3a:8c:2b:57:e4:2c:52:09:d4:70:4d:22:2d:7e:
19:b8:5f:56:34:6b:51:71:0b:a6:41:30:1f:4a:df:9f:2d:e9:
db:97:b7:a0:93:43:f7:d3:1f:90:77:24:ef:9f:db:b3:d4:2c:
1d:c7:ef:fc:10:ac:ee:15:a3:7b:e2:7b:67:db:41:d1:43:08:
11:86:c1:93:f1:89:a0:ee:b1:bc:63:9b:32:f3:04:f3:2d:93:
d7:c2:76:6f:13:f9:d7:4a:b5:8d:ff:6b:30:21:e7:dd:f4:e7:
5c:01:fe:a6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGMIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDEwMjYwNTM3MzVaFw0yNjEwMjYwNTM3MzVaMBgxFjAU
BgNVBAMTDTY3MWM4MDIzLTk1YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJ6bPIXSdDQPJQ2mZ7AeLi2JHmRuN7rjVtghfg1kvUwKs/C5nzkO5A2f/I
+cox2Ree01NpL1QljjqYITxc3aN+5x/2hZOsj8gvlEe4G6t/ZUmf3SvXQ034TYad
cjNC1CiyuSZyoSiiBo3kEh4iqUHwD+fjM34zZZ1rk1h1Sk3ZWTGGMQsM/b2j+i87
14vKdWpOwTpOz1SFw5qDrXUfxc4z2+4pISwlVC8bTqMzVM2YClx3MYNq/jAxwhQc
Wei6AyRTsT3+f7rhWrOD+JRHIcwBVxvDEN+9oA4ES+dvnpjR6h4+7oMybsArFPsD
aRGO/bZoLPFc/A3bz5/7WWz4ftU5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU9v5u
9ugnIedbOzikiGtopkAYHJgwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzY5OUM4NEU0OTM1QzExRUZBMzEzMDE1Mzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEDAwDQYJKoZIhvcNAQEL
BQADggEBAKY46v0u9nTIHLzYKWkGAIkDnXQrwXn63eu9xZFD19E2Z1QMcxF3PQgY
TDyIWQp4EIKdcRrBYObJK9ku0qGGARFpY1d/9Dg49FF7CaOVzlBj5NOl3iHdaIJP
5AHG86oowaMZyD3kbJ/Fzt3PeOEPs5CAQtIEbwkVo+K78JSnlXiYdvkZj5Ic1Fpa
ViOhtEwEuPFJm1M6jCtX5CxSCdRwTSItfhm4X1Y0a1FxC6ZBMB9K358t6duXt6CT
Q/fTH5B3JO+f27PULB3H7/wQrO4Vo3vie2fbQdFDCBGGwZPxiaDusbxjmzLzBPMt
k9fCdm8T+ddKtY3/azAh593051wB/qY=
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:17 2024 by rpki-client on console-fra.rpki-client.org