Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCD12405F3711EDB083FFCEF1222468.roa
File: 7DCD12405F3711EDB083FFCEF1222468.roa (raw, json)
Hash identifier: 0/9ovbdMkFXP1Be6o9KzFG/AJEtLJPpFyUJl89yoICg=
Subject key identifier: D8:36:AF:48:21:DE:59:DC:2B:0B:45:7C:6E:B5:C5:2F:03:E8:32:DF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0AA6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCD12405F3711EDB083FFCEF1222468.roa
Signing time: Tue 08 Nov 2022 07:32:26 +0000
ROA not before: Tue 08 Nov 2022 07:32:22 +0000
ROA not after: Fri 08 Nov 2024 07:32:22 +0000
asID: 53340
IP address blocks: 154.16.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2726 (0xaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 8 07:32:22 2022 GMT
Not After : Nov 8 07:32:22 2024 GMT
Subject: CN=636a060a-1563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bb:65:57:b8:a8:bb:86:9f:5c:2b:f0:1b:41:
d8:e4:e4:42:7c:56:6f:e3:27:53:5e:cd:81:a1:dd:
bb:0b:d6:8f:3f:d3:4a:3a:c4:7f:22:64:fa:39:54:
c0:16:25:73:ab:d1:71:1a:b9:f8:e3:2e:a1:54:e3:
4b:05:c2:be:a1:3b:99:ab:c0:9b:6f:73:cb:00:2d:
df:34:a8:41:fd:83:05:6d:0e:81:69:27:44:4a:93:
f5:a0:77:ff:c8:0a:5e:e4:06:78:83:e4:5d:d5:3e:
03:4d:c5:0a:bb:dc:78:3e:da:a7:c2:12:ef:e0:76:
c4:28:ee:f2:6b:ef:e3:b1:30:27:3c:d9:a5:f9:bb:
69:e0:d0:87:da:fc:9e:51:39:73:65:9d:c0:e8:7e:
c2:20:56:38:5f:33:f3:17:62:85:b6:d1:a8:97:a5:
96:90:5a:d5:fd:e0:49:dd:bc:82:e0:8b:16:b3:23:
3a:a8:16:37:6d:0d:26:17:27:6d:a6:d2:13:b2:44:
a8:34:82:59:e2:29:a5:64:6a:a6:50:d8:41:05:47:
c7:4d:be:b8:c9:43:7e:41:69:e9:d0:13:ba:73:31:
33:72:f9:0a:6e:4d:bf:19:3d:ac:ca:77:53:12:72:
2e:0a:05:47:a8:dc:86:fc:53:4b:b9:83:be:3a:1f:
2f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:36:AF:48:21:DE:59:DC:2B:0B:45:7C:6E:B5:C5:2F:03:E8:32:DF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7DCD12405F3711EDB083FFCEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:cf:a9:cb:2b:bf:2b:c1:cf:78:d5:d2:e2:1f:e6:5d:9d:9f:
93:cd:0e:99:de:63:54:af:ea:8f:48:58:be:0c:f4:67:bb:ec:
61:56:dd:0e:f3:14:d5:01:12:54:74:ee:ba:00:be:38:e8:79:
c6:c5:b9:a8:05:d6:0a:34:a1:25:47:75:6c:26:57:db:4b:bc:
29:00:80:fa:bf:be:aa:fe:1b:e8:ec:66:91:6a:cb:33:ab:db:
34:c1:76:d1:5b:f7:db:6b:28:98:a3:ef:b1:ee:5a:71:f4:12:
91:76:8c:10:cb:0b:5d:89:e5:a9:4f:ac:8a:84:64:29:83:ca:
3f:be:94:57:12:0a:f9:44:24:0a:48:36:69:81:7f:03:da:fc:
9d:29:f7:0c:ab:40:fb:94:07:2e:1a:20:5f:77:34:7c:58:72:
50:8a:96:5e:3d:e8:5b:7b:d9:15:92:49:ae:3c:02:81:0b:fa:
23:85:62:5d:6e:1c:aa:1c:57:d6:93:fc:70:a2:77:2e:67:20:
9e:34:26:b7:88:3f:ba:4c:bc:dd:11:06:bd:a5:1e:19:2c:ef:
55:cb:78:b4:8f:80:f7:c9:50:ca:ae:f0:19:35:7e:d5:0b:ef:
69:99:77:6a:64:60:f0:0d:e0:fa:57:b4:4a:5a:e6:0e:ea:23:
93:93:33:50
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCqYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjExMDgwNzMyMjJaFw0yNDExMDgwNzMyMjJaMBgxFjAU
BgNVBAMMDTYzNmEwNjBhLTE1NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2u2VXuKi7hp9cK/AbQdjk5EJ8Vm/jJ1NezYGh3bsL1o8/00o6xH8iZPo5
VMAWJXOr0XEaufjjLqFU40sFwr6hO5mrwJtvc8sALd80qEH9gwVtDoFpJ0RKk/Wg
d//ICl7kBniD5F3VPgNNxQq73Hg+2qfCEu/gdsQo7vJr7+OxMCc82aX5u2ng0Ifa
/J5ROXNlncDofsIgVjhfM/MXYoW20aiXpZaQWtX94EndvILgixazIzqoFjdtDSYX
J22m0hOyRKg0glniKaVkaqZQ2EEFR8dNvrjJQ35BaenQE7pzMTNy+QpuTb8ZPazK
d1MSci4KBUeo3Ib8U0u5g746Hy+nAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU2Dav
SCHeWdwrC0V8brXFLwPoMt8wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzdEQ0QxMjQwNUYzNzExRURCMDgzRkZDRUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaELAwDQYJKoZIhvcNAQEL
BQADggEBALbPqcsrvyvBz3jV0uIf5l2dn5PNDpneY1Sv6o9IWL4M9Ge77GFW3Q7z
FNUBElR07roAvjjoecbFuagF1go0oSVHdWwmV9tLvCkAgPq/vqr+G+jsZpFqyzOr
2zTBdtFb99trKJij77HuWnH0EpF2jBDLC12J5alPrIqEZCmDyj++lFcSCvlEJApI
NmmBfwPa/J0p9wyrQPuUBy4aIF93NHxYclCKll496Ft72RWSSa48AoEL+iOFYl1u
HKocV9aT/HCidy5nIJ40JreIP7pMvN0RBr2lHhks71XLeLSPgPfJUMqu8Bk1ftUL
72mZd2pkYPAN4PpXtEpa5g7qI5OTM1A=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:20:58 2024 by rpki-client on console-ams.rpki-client.org