Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/711A48CEB8FB11ED80320780F1222468.roa
File: 711A48CEB8FB11ED80320780F1222468.roa (raw, json)
Hash identifier: l8HzTE9xYY6CkYjfjEPtdKMHYaHEDLqCXTSMkXGcrWM=
Subject key identifier: FA:0C:7F:3E:57:3E:D3:05:73:71:8C:32:5B:7B:8E:DC:CC:1D:2C:A7
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0CDB
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/711A48CEB8FB11ED80320780F1222468.roa
Signing time: Thu 02 Mar 2023 13:09:19 +0000
ROA not before: Thu 02 Mar 2023 13:09:16 +0000
ROA not after: Sat 01 Mar 2025 13:09:16 +0000
asID: 61317
IP address blocks: 154.127.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:51:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3291 (0xcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 2 13:09:16 2023 GMT
Not After : Mar 1 13:09:16 2025 GMT
Subject: CN=64009fff-e758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:ee:e7:a5:6a:3b:cf:ca:e5:4b:a4:94:78:
6d:3b:45:04:df:ad:ba:18:19:c4:b9:36:83:70:55:
15:86:5f:f7:d8:6f:fe:01:ef:da:21:f1:43:87:af:
1d:17:08:e5:db:cc:2d:c3:f5:d2:4d:4d:ce:f4:ed:
a0:77:7f:8c:08:7e:19:8d:86:cf:7c:03:25:d3:3f:
e1:b9:0b:86:33:25:3f:ee:64:83:57:84:8a:2f:6e:
4f:54:f9:9e:19:d9:96:e8:51:1f:f1:bb:87:53:4c:
98:4d:0b:f8:53:75:78:62:ac:9c:a6:ef:63:58:66:
d5:f8:d1:5f:33:62:a6:52:f8:ea:0e:62:ad:09:1c:
57:3c:b6:c2:4b:34:7b:66:10:0e:08:58:b7:40:79:
9e:63:85:4f:b6:42:10:15:87:bb:01:a7:e2:d2:ea:
67:0f:88:9f:3a:2c:5b:e5:ca:ce:3b:c3:7d:fe:27:
58:51:ed:7f:99:0f:d2:3b:ba:7f:be:dd:fc:65:05:
cd:f3:3e:62:3a:2a:4f:21:6d:4b:c6:95:d3:ca:2a:
48:55:74:38:66:be:74:1d:46:f6:92:42:bd:3e:3f:
ae:63:99:ae:6e:c3:3e:12:62:78:8d:38:64:0f:54:
7e:b4:71:81:06:ab:5e:1d:b5:5e:ee:58:38:cb:58:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0C:7F:3E:57:3E:D3:05:73:71:8C:32:5B:7B:8E:DC:CC:1D:2C:A7
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/711A48CEB8FB11ED80320780F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.58.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f7:f5:3c:63:b8:c4:ce:8b:c0:d0:b8:60:19:11:c0:15:a9:
9b:14:56:6a:da:0c:0e:72:77:4a:54:44:30:d1:30:e9:61:6e:
16:1c:06:83:88:74:5b:e4:01:c5:06:61:9b:be:16:24:c4:d8:
80:2f:c7:c0:3e:fb:4c:db:ff:61:17:7f:ac:25:99:11:f9:f8:
8c:0f:eb:b2:b5:49:2c:ee:bb:04:1a:ec:c8:41:b3:1f:8e:21:
45:6f:04:e8:d2:55:3a:dd:cb:c8:de:f4:e8:0e:6d:d8:11:af:
55:86:2a:11:37:58:31:ff:7f:8c:34:38:05:ea:71:c2:c2:a5:
ea:33:b2:e5:25:d0:95:18:a7:d0:8a:3e:01:0c:76:95:41:9c:
ae:27:96:ce:61:2d:ea:9c:ea:15:5b:ca:d6:fb:09:80:b8:fe:
e2:13:4e:b5:8a:f7:8a:72:db:d1:67:e2:7e:82:e5:f9:e1:23:
18:bc:a3:31:46:6c:3e:cd:e7:2f:87:5f:9c:34:0a:67:a3:8a:
1b:b9:f7:2a:e0:de:83:34:d7:e0:77:9d:74:15:c7:03:bb:6e:
fa:d9:24:24:c2:81:41:00:9e:6a:2a:87:0e:44:83:a7:5e:9a:
fb:be:a8:56:ac:1e:ad:5c:e5:ee:60:1a:81:58:9c:98:bc:27:
8d:2f:04:93
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDNswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzAzMDIxMzA5MTZaFw0yNTAzMDExMzA5MTZaMBgxFjAU
BgNVBAMMDTY0MDA5ZmZmLWU3NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDx+7npWo7z8rlS6SUeG07RQTfrboYGcS5NoNwVRWGX/fYb/4B79oh8UOH
rx0XCOXbzC3D9dJNTc707aB3f4wIfhmNhs98AyXTP+G5C4YzJT/uZINXhIovbk9U
+Z4Z2ZboUR/xu4dTTJhNC/hTdXhirJym72NYZtX40V8zYqZS+OoOYq0JHFc8tsJL
NHtmEA4IWLdAeZ5jhU+2QhAVh7sBp+LS6mcPiJ86LFvlys47w33+J1hR7X+ZD9I7
un++3fxlBc3zPmI6Kk8hbUvGldPKKkhVdDhmvnQdRvaSQr0+P65jma5uwz4SYniN
OGQPVH60cYEGq14dtV7uWDjLWN0hAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+gx/
Plc+0wVzcYwyW3uO3MwdLKcwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzcxMUE0OENFQjhGQjExRUQ4MDMyMDc4MEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACafzowDQYJKoZIhvcNAQEL
BQADggEBACD39TxjuMTOi8DQuGAZEcAVqZsUVmraDA5yd0pURDDRMOlhbhYcBoOI
dFvkAcUGYZu+FiTE2IAvx8A++0zb/2EXf6wlmRH5+IwP67K1SSzuuwQa7MhBsx+O
IUVvBOjSVTrdy8je9OgObdgRr1WGKhE3WDH/f4w0OAXqccLCpeozsuUl0JUYp9CK
PgEMdpVBnK4nls5hLeqc6hVbytb7CYC4/uITTrWK94py29Fn4n6C5fnhIxi8ozFG
bD7N5y+HX5w0Cmejihu59yrg3oM01+B3nXQVxwO7bvrZJCTCgUEAnmoqhw5Eg6de
mvu+qFasHq1c5e5gGoFYnJi8J40vBJM=
-----END CERTIFICATE-----
Generated at Fri Apr 26 13:36:12 2024 by rpki-client on console-ams.rpki-client.org