Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/AA5E7D162EEE11EFB786B466762E951A.roa
File: AA5E7D162EEE11EFB786B466762E951A.roa (raw, json)
Hash identifier: 7ctEzn08E4DJ3uFce48dpoQ1eMqIiYfX70Em/++n2wI=
Subject key identifier: C1:A6:63:93:E1:34:39:C8:47:C9:AC:C9:96:B9:4B:9D:A4:59:6A:E3
Certificate issuer: /CN=F368BC41AF/serialNumber=CE147CA405945ACF5CDFE15E4FA5D2BDEA48D90A
Certificate serial: 06
Authority key identifier: CE:14:7C:A4:05:94:5A:CF:5C:DF:E1:5E:4F:A5:D2:BD:EA:48:D9:0A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/zhR8pAWUWs9c3-FeT6XSvepI2Qo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/AA5E7D162EEE11EFB786B466762E951A.roa
Signing time: Thu 20 Jun 2024 10:20:08 +0000
ROA not before: Thu 20 Jun 2024 10:20:03 +0000
ROA not after: Tue 23 Jun 2026 10:20:03 +0000
asID: 198381
IP address blocks: 41.188.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/zhR8pAWUWs9c3-FeT6XSvepI2Qo.crl
rsync://rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/zhR8pAWUWs9c3-FeT6XSvepI2Qo.mft
rsync://rpki.afrinic.net/repository/afrinic/zhR8pAWUWs9c3-FeT6XSvepI2Qo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368BC41AF/serialNumber=CE147CA405945ACF5CDFE15E4FA5D2BDEA48D90A
Validity
Not Before: Jun 20 10:20:03 2024 GMT
Not After : Jun 23 10:20:03 2026 GMT
Subject: CN=66740258-4cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:ed:17:f2:b0:fb:63:f0:64:b1:e4:de:35:
5c:2e:4a:db:72:cf:2f:6a:da:0e:5f:77:e9:a8:97:
72:b1:09:2b:99:ed:c1:91:18:c6:79:0d:a2:f1:bf:
24:c6:33:ea:b8:cc:15:3f:7c:3a:26:a1:ed:5a:0e:
40:64:4d:0f:fa:1b:44:57:68:0b:78:9a:b8:f4:b4:
78:ff:f1:5c:e8:43:0a:68:70:5e:81:23:87:11:67:
86:e5:1a:f6:13:61:2f:e7:f2:57:78:f9:48:fa:a4:
7e:93:d5:07:01:0a:d2:e1:16:68:74:7e:35:f6:52:
82:a6:30:8b:b9:46:ad:35:f5:37:ef:da:c3:a9:dc:
93:cd:85:dd:03:ea:82:e0:cb:51:0f:8b:ce:60:26:
57:a3:85:73:7a:73:a0:ae:55:d6:2a:86:4c:f2:66:
0c:a0:7c:16:b5:68:cb:35:47:a4:9a:c5:bf:96:e8:
bc:9c:d7:cb:97:74:8b:80:9f:5e:d8:97:69:5b:cb:
44:0b:60:83:35:06:27:06:82:fc:e1:71:b8:b4:51:
e0:47:a8:d3:c3:7e:4f:86:9a:67:9e:03:0b:a7:b4:
fd:de:a3:be:1d:71:01:95:13:8a:be:df:3e:12:a9:
c8:c5:62:21:cc:38:76:9a:e8:20:eb:88:43:df:0a:
ff:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A6:63:93:E1:34:39:C8:47:C9:AC:C9:96:B9:4B:9D:A4:59:6A:E3
X509v3 Authority Key Identifier:
keyid:CE:14:7C:A4:05:94:5A:CF:5C:DF:E1:5E:4F:A5:D2:BD:EA:48:D9:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/zhR8pAWUWs9c3-FeT6XSvepI2Qo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/zhR8pAWUWs9c3-FeT6XSvepI2Qo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368BC41/C230B48C2EE811EF8028E5BA762E951A/AA5E7D162EEE11EFB786B466762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.188.168.0/24
Signature Algorithm: sha256WithRSAEncryption
27:c1:a2:80:01:52:a4:80:8c:54:19:ef:38:99:60:f9:01:e9:
0c:82:38:e3:c2:b0:e1:8b:99:40:5b:88:ab:04:d6:6f:6d:cf:
7c:7c:19:a8:dd:3c:d5:32:ec:94:3e:17:5a:7b:7b:ae:95:2b:
4f:e3:1f:ae:95:23:22:02:22:c5:3f:51:0f:5b:47:bc:b4:91:
b4:2a:20:4c:7b:34:56:a5:28:3b:34:ed:b1:cf:46:ba:a7:29:
2d:69:a5:ea:73:c6:53:33:f6:27:aa:b3:43:49:77:03:14:8a:
45:51:af:ef:34:23:33:3a:9f:0e:e1:fa:90:62:c1:1f:85:f4:
2e:12:ad:67:d0:39:0a:b5:b5:06:ee:18:3e:71:93:e9:40:df:
cf:bd:b3:49:94:87:17:61:d5:90:fa:a6:7b:bd:d6:4c:41:6c:
fc:e7:ef:ed:63:bc:db:66:a8:08:0e:29:ec:d5:ab:c8:bf:83:
c5:ad:fb:f3:85:a5:54:71:92:10:fa:9c:2c:d3:f5:19:0a:45:
e4:09:ed:9d:aa:f9:b1:db:42:97:54:87:27:18:88:f3:14:53:
40:03:10:01:7d:28:91:43:5c:4b:f2:4b:77:68:89:75:3b:97:
67:8b:ff:57:f7:31:bc:29:f4:e4:11:29:b5:40:12:a0:1d:88:
1d:8b:ef:be
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY4
QkM0MUFGMTEwLwYDVQQFEyhDRTE0N0NBNDA1OTQ1QUNGNUNERkUxNUU0RkE1RDJC
REVBNDhEOTBBMB4XDTI0MDYyMDEwMjAwM1oXDTI2MDYyMzEwMjAwM1owGDEWMBQG
A1UEAxMNNjY3NDAyNTgtNGNmNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALcV7RfysPtj8GSx5N41XC5K23LPL2raDl936aiXcrEJK5ntwZEYxnkNovG/
JMYz6rjMFT98Oiah7VoOQGRND/obRFdoC3iauPS0eP/xXOhDCmhwXoEjhxFnhuUa
9hNhL+fyV3j5SPqkfpPVBwEK0uEWaHR+NfZSgqYwi7lGrTX1N+/aw6nck82F3QPq
guDLUQ+LzmAmV6OFc3pzoK5V1iqGTPJmDKB8FrVoyzVHpJrFv5bovJzXy5d0i4Cf
XtiXaVvLRAtggzUGJwaC/OFxuLRR4Eeo08N+T4aaZ54DC6e0/d6jvh1xAZUTir7f
PhKpyMViIcw4dproIOuIQ98K/8MCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTBpmOT
4TQ5yEfJrMmWuUudpFlq4zAfBgNVHSMEGDAWgBTOFHykBZRaz1zf4V5PpdK96kjZ
CjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OEJDNDEvQzIzMEI0OEMyRUU4MTFFRjgwMjhFNUJBNzYyRTk1MUEvemhSOHBB
V1VXczljMy1GZVQ2WFN2ZXBJMlFvLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvemhSOHBBV1VXczljMy1GZVQ2WFN2ZXBJMlFvLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OEJDNDEvQzIzMEI0OEMyRUU4MTFFRjgwMjhFNUJBNzYy
RTk1MUEvQUE1RTdEMTYyRUVFMTFFRkI3ODZCNDY2NzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACm8qDANBgkqhkiG9w0BAQsF
AAOCAQEAJ8GigAFSpICMVBnvOJlg+QHpDII448Kw4YuZQFuIqwTWb23PfHwZqN08
1TLslD4XWnt7rpUrT+MfrpUjIgIixT9RD1tHvLSRtCogTHs0VqUoOzTtsc9Guqcp
LWml6nPGUzP2J6qzQ0l3AxSKRVGv7zQjMzqfDuH6kGLBH4X0LhKtZ9A5CrW1Bu4Y
PnGT6UDfz72zSZSHF2HVkPqme73WTEFs/Ofv7WO822aoCA4p7NWryL+Dxa3784Wl
VHGSEPqcLNP1GQpF5Antnar5sdtCl1SHJxiI8xRTQAMQAX0okUNcS/JLd2iJdTuX
Z4v/V/cxvCn05BEptUASoB2IHYvvvg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org