Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/74F314B2C67911EEB6CAC8AE775412E6.roa
File: 74F314B2C67911EEB6CAC8AE775412E6.roa (raw, json)
Hash identifier: yQ5Y5mos3jGJ876UZawgqxeARaqaofzDLCBHBUrxZE4=
Subject key identifier: DE:79:F6:D0:31:46:7B:77:68:80:96:A1:8B:8E:EA:16:5D:70:47:5F
Certificate issuer: /CN=F3690793AF/serialNumber=5FE33172A6082C54ABC911F19F579D49FD809814
Certificate serial: 0424
Authority key identifier: 5F:E3:31:72:A6:08:2C:54:AB:C9:11:F1:9F:57:9D:49:FD:80:98:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/74F314B2C67911EEB6CAC8AE775412E6.roa
Signing time: Thu 08 Feb 2024 11:59:05 +0000
ROA not before: Thu 08 Feb 2024 11:59:02 +0000
ROA not after: Tue 31 Jan 2034 11:59:02 +0000
asID: 328839
IP address blocks: 102.220.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.mft
rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1060 (0x424)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3690793AF/serialNumber=5FE33172A6082C54ABC911F19F579D49FD809814
Validity
Not Before: Feb 8 11:59:02 2024 GMT
Not After : Jan 31 11:59:02 2034 GMT
Subject: CN=65c4c209-0117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:70:65:64:50:2e:16:48:96:70:bc:5c:4f:
ed:db:de:ff:33:58:fe:b6:0f:47:7d:df:af:07:40:
cd:9a:06:94:ab:91:5b:58:b3:16:0d:25:25:2a:8e:
c1:13:b3:f3:ce:1c:b6:64:22:46:a3:af:ac:9e:1b:
5e:ee:31:a0:e5:10:b8:84:d5:70:01:6f:76:a4:d2:
c9:2e:37:ee:94:75:7c:86:08:d0:23:d6:49:b6:25:
b1:ae:e6:c4:6a:f1:fe:ca:05:12:39:b2:14:b6:13:
8b:c9:4c:f3:0e:9e:37:81:3e:2f:8a:2f:14:78:65:
47:e7:b4:72:74:18:f9:e0:0c:04:f9:ec:ea:6d:5e:
85:1d:35:f4:a9:86:c8:a8:8c:68:01:69:62:b8:fc:
8f:f4:cd:26:83:7e:cd:9a:41:8b:51:27:ab:45:07:
ad:ea:d1:88:c2:83:fc:29:c1:0b:26:04:54:37:74:
85:15:a4:90:44:8d:85:d0:5d:b6:80:71:18:dc:58:
2d:3d:70:a8:62:08:bf:0f:8f:d5:af:29:cb:39:47:
f0:96:eb:71:ad:1a:7c:fb:bc:85:6b:05:18:11:50:
2b:80:5b:91:10:e3:38:6f:47:e8:7f:75:bd:d1:01:
a8:7e:09:e7:63:ce:8d:99:b3:57:7b:7d:66:f7:37:
0e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:79:F6:D0:31:46:7B:77:68:80:96:A1:8B:8E:EA:16:5D:70:47:5F
X509v3 Authority Key Identifier:
keyid:5F:E3:31:72:A6:08:2C:54:AB:C9:11:F1:9F:57:9D:49:FD:80:98:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/X-MxcqYILFSryRHxn1edSf2AmBQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/X-MxcqYILFSryRHxn1edSf2AmBQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3690793/A252AAC8A42411EBA135D26EF8AEA228/74F314B2C67911EEB6CAC8AE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.68.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:81:49:fa:d7:1f:5f:f2:1d:1b:b9:49:a6:e4:c7:67:a8:17:
46:2e:59:26:07:07:a3:fb:45:b6:54:a7:ad:a7:8e:a8:50:99:
30:c8:70:38:f3:2c:f0:d4:aa:fa:30:55:e0:0e:8d:da:5a:bb:
82:f3:7f:07:70:bc:29:94:0f:c5:10:58:4b:f5:c6:8a:8d:cd:
57:73:34:bf:f4:cc:6d:7d:28:9f:36:56:93:1c:99:75:6b:67:
62:29:f5:a7:6f:2a:51:d1:bf:53:70:26:5f:76:31:18:fa:6b:
72:2d:5c:7a:8c:61:53:99:6e:fe:79:15:f3:f2:d0:0c:7d:b0:
cf:46:08:99:51:42:41:69:a1:29:0d:9e:a9:32:09:9b:ca:79:
5c:58:17:2c:84:9e:10:ea:48:9f:0a:00:c1:0b:c5:b6:c9:b4:
4d:5f:0d:c3:9c:9d:06:ff:c9:83:0c:24:a4:64:02:ca:eb:e1:
d6:42:54:df:fd:d8:77:b6:45:8b:7c:8b:61:3d:0a:ea:13:12:
08:d5:93:7c:7b:2f:e8:81:a4:5c:ac:be:76:12:1a:ab:34:6c:
16:da:a8:a6:6e:18:6f:91:f7:f9:96:43:53:ae:57:9a:cd:e8:
09:b8:75:2e:c8:d7:ab:c5:dd:ca:85:4c:fa:c1:e7:77:a0:ec:
d3:67:82:78
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OTA3OTNBRjExMC8GA1UEBRMoNUZFMzMxNzJBNjA4MkM1NEFCQzkxMUYxOUY1NzlE
NDlGRDgwOTgxNDAeFw0yNDAyMDgxMTU5MDJaFw0zNDAxMzExMTU5MDJaMBgxFjAU
BgNVBAMTDTY1YzRjMjA5LTAxMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCyzXBlZFAuFkiWcLxcT+3b3v8zWP62D0d9368HQM2aBpSrkVtYsxYNJSUq
jsETs/POHLZkIkajr6yeG17uMaDlELiE1XABb3ak0skuN+6UdXyGCNAj1km2JbGu
5sRq8f7KBRI5shS2E4vJTPMOnjeBPi+KLxR4ZUfntHJ0GPngDAT57OptXoUdNfSp
hsiojGgBaWK4/I/0zSaDfs2aQYtRJ6tFB63q0YjCg/wpwQsmBFQ3dIUVpJBEjYXQ
XbaAcRjcWC09cKhiCL8Pj9WvKcs5R/CW63GtGnz7vIVrBRgRUCuAW5EQ4zhvR+h/
db3RAah+Cedjzo2Zs1d7fWb3Nw4zAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU3nn2
0DFGe3dogJahi47qFl1wR18wHwYDVR0jBBgwFoAUX+MxcqYILFSryRHxn1edSf2A
mBQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjkwNzkzL0EyNTJBQUM4QTQyNDExRUJBMTM1RDI2RUY4QUVBMjI4L1gtTXhj
cVlJTEZTcnlSSHhuMWVkU2YyQW1CUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1gtTXhjcVlJTEZTcnlSSHhuMWVkU2YyQW1CUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjkwNzkzL0EyNTJBQUM4QTQyNDExRUJBMTM1RDI2RUY4
QUVBMjI4Lzc0RjMxNEIyQzY3OTExRUVCNkNBQzhBRTc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm3EQwDQYJKoZIhvcNAQEL
BQADggEBAJ2BSfrXH1/yHRu5Sabkx2eoF0YuWSYHB6P7RbZUp62njqhQmTDIcDjz
LPDUqvowVeAOjdpau4LzfwdwvCmUD8UQWEv1xoqNzVdzNL/0zG19KJ82VpMcmXVr
Z2Ip9advKlHRv1NwJl92MRj6a3ItXHqMYVOZbv55FfPy0Ax9sM9GCJlRQkFpoSkN
nqkyCZvKeVxYFyyEnhDqSJ8KAMELxbbJtE1fDcOcnQb/yYMMJKRkAsrr4dZCVN/9
2He2RYt8i2E9CuoTEgjVk3x7L+iBpFysvnYSGqs0bBbaqKZuGG+R9/mWQ1OuV5rN
6Am4dS7I16vF3cqFTPrB53eg7NNngng=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org