Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/8C7C3AB86D9211EEB4CCDD0F4AD9E6FC.roa
File: 8C7C3AB86D9211EEB4CCDD0F4AD9E6FC.roa (raw, json)
Hash identifier: vU4qKT4ZJgwPSDJvavO57DLsU6/IQrqIZE5rVUeyTMs=
Subject key identifier: A3:6D:39:B9:3E:47:B5:C6:F1:B3:0C:BA:8C:B6:3A:39:6D:EC:71:68
Certificate issuer: /CN=F369591CRI/serialNumber=DCFEA3847722D2FEC7A039E99038F7538259D031
Certificate serial: EB
Authority key identifier: DC:FE:A3:84:77:22:D2:FE:C7:A0:39:E9:90:38:F7:53:82:59:D0:31
Authority info access: rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/8C7C3AB86D9211EEB4CCDD0F4AD9E6FC.roa
Signing time: Wed 18 Oct 2023 08:44:28 +0000
ROA not before: Wed 18 Oct 2023 08:44:25 +0000
ROA not after: Sat 18 Oct 2025 08:44:25 +0000
asID: 15964
IP address blocks: 195.24.192.0/20 maxlen: 20
195.24.192.0/21 maxlen: 21
195.24.192.0/22 maxlen: 22
195.24.196.0/22 maxlen: 22
195.24.200.0/22 maxlen: 22
195.24.204.0/22 maxlen: 22
195.24.208.0/20 maxlen: 20
195.24.216.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.mft
rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 235 (0xeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CRI/serialNumber=DCFEA3847722D2FEC7A039E99038F7538259D031
Validity
Not Before: Oct 18 08:44:25 2023 GMT
Not After : Oct 18 08:44:25 2025 GMT
Subject: CN=652f9aec-54cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:de:05:34:83:59:e7:5f:be:ca:7e:c8:6b:34:
8f:c5:2d:fa:68:91:ef:18:e1:3d:0b:a1:41:13:25:
1d:87:13:cc:15:51:95:1e:6f:29:af:6a:ec:bd:42:
36:9f:38:4a:bf:e1:0b:22:60:a3:d8:14:b0:23:09:
cd:9a:17:23:63:b1:bb:78:b2:9e:30:4f:56:94:a7:
d8:d6:9a:85:1b:04:a7:88:11:7f:c6:5d:7d:9b:de:
3c:6a:c8:62:61:d4:0f:e3:e1:e6:e7:2b:ee:32:3b:
ac:09:62:17:a9:e3:f7:43:db:4a:c7:db:ab:7f:b8:
18:16:6d:b9:33:3d:12:47:af:cb:44:df:d2:bf:31:
00:8f:a1:57:09:17:df:fd:57:df:93:c3:9f:d9:f4:
bb:cc:da:a0:26:27:c7:7e:83:15:1b:73:3a:6c:55:
d7:88:0b:fe:c2:78:5c:83:b4:b0:e3:a0:8c:14:5b:
c9:ad:9c:73:9e:8b:ec:1a:70:52:a5:c5:5a:9e:c1:
48:fe:d6:41:ac:d6:40:c1:05:f7:f8:d9:af:a5:a0:
63:48:54:bb:fd:3b:26:ee:a1:1e:ae:e7:39:48:58:
67:3a:51:81:39:ad:02:5a:02:83:c1:6c:f3:44:2e:
67:01:89:d8:60:b9:e4:7c:3f:4c:ff:ba:31:fe:ff:
09:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6D:39:B9:3E:47:B5:C6:F1:B3:0C:BA:8C:B6:3A:39:6D:EC:71:68
X509v3 Authority Key Identifier:
keyid:DC:FE:A3:84:77:22:D2:FE:C7:A0:39:E9:90:38:F7:53:82:59:D0:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/3P6jhHci0v7HoDnpkDj3U4JZ0DE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/3P6jhHci0v7HoDnpkDj3U4JZ0DE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/672357D4C24711ED959790A0F1222468/8C7C3AB86D9211EEB4CCDD0F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
195.24.192.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:b9:05:19:49:2d:71:20:08:14:22:cc:64:0d:c7:18:4a:37:
95:e3:39:08:36:c0:76:cd:66:5d:50:4b:67:df:cc:c8:21:05:
53:14:f7:c7:20:d2:77:85:ea:21:2c:06:bb:40:0f:83:6d:c9:
51:2a:86:f2:18:42:3b:48:fc:3d:f0:ad:06:88:6a:88:9b:22:
83:18:2a:a3:b5:2b:87:01:26:7d:5f:3d:3a:55:df:92:8d:fa:
ff:6c:7c:1b:57:e3:43:9d:a6:c2:ba:30:b3:97:97:68:d6:81:
9e:db:24:fe:97:35:d4:4b:44:31:47:a7:43:43:ce:06:fa:83:
44:72:c5:ae:f6:f0:e4:3b:35:56:f4:66:b3:c9:77:41:f7:3e:
97:d0:d1:d0:f2:4a:ae:77:a6:84:e9:a4:4d:cf:7f:67:fa:ed:
f7:1a:45:e8:7b:87:e2:a4:15:79:07:c4:f0:41:83:8e:0c:90:
b8:fb:c6:4d:1b:e9:7c:6e:b9:af:d2:ec:68:a3:fa:cc:17:c9:
fa:c7:cc:27:78:3a:bb:c2:ca:2c:bf:e8:5b:df:03:2a:ad:83:
50:f9:02:85:0f:9e:49:6e:54:50:42:dc:e4:70:c2:d6:48:cb:
f0:cc:b5:4d:77:9f:7a:e0:37:52:0c:6a:95:29:41:06:d0:ee:
58:39:9a:87
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAOswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTU5MUNSSTExMC8GA1UEBRMoRENGRUEzODQ3NzIyRDJGRUM3QTAzOUU5OTAzOEY3
NTM4MjU5RDAzMTAeFw0yMzEwMTgwODQ0MjVaFw0yNTEwMTgwODQ0MjVaMBgxFjAU
BgNVBAMTDTY1MmY5YWVjLTU0Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDX3gU0g1nnX77KfshrNI/FLfpoke8Y4T0LoUETJR2HE8wVUZUebymvauy9
QjafOEq/4QsiYKPYFLAjCc2aFyNjsbt4sp4wT1aUp9jWmoUbBKeIEX/GXX2b3jxq
yGJh1A/j4ebnK+4yO6wJYhep4/dD20rH26t/uBgWbbkzPRJHr8tE39K/MQCPoVcJ
F9/9V9+Tw5/Z9LvM2qAmJ8d+gxUbczpsVdeIC/7CeFyDtLDjoIwUW8mtnHOei+wa
cFKlxVqewUj+1kGs1kDBBff42a+loGNIVLv9OybuoR6u5zlIWGc6UYE5rQJaAoPB
bPNELmcBidhgueR8P0z/ujH+/wlVAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUo205
uT5Htcbxswy6jLY6OW3scWgwHwYDVR0jBBgwFoAU3P6jhHci0v7HoDnpkDj3U4JZ
0DEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk1OTFDLzY3MjM1N0Q0QzI0NzExRUQ5NTk3OTBBMEYxMjIyNDY4LzNQNmpo
SGNpMHY3SG9EbnBrRGozVTRKWjBERS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9yaXBl
LzNQNmpoSGNpMHY3SG9EbnBrRGozVTRKWjBERS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjk1OTFDLzY3MjM1N0Q0QzI0NzExRUQ5NTk3OTBBMEYxMjIy
NDY4LzhDN0MzQUI4NkQ5MjExRUVCNENDREQwRjRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXDGMAwDQYJKoZIhvcNAQELBQAD
ggEBAC25BRlJLXEgCBQizGQNxxhKN5XjOQg2wHbNZl1QS2ffzMghBVMU98cg0neF
6iEsBrtAD4NtyVEqhvIYQjtI/D3wrQaIaoibIoMYKqO1K4cBJn1fPTpV35KN+v9s
fBtX40OdpsK6MLOXl2jWgZ7bJP6XNdRLRDFHp0NDzgb6g0Ryxa728OQ7NVb0ZrPJ
d0H3PpfQ0dDySq53poTppE3Pf2f67fcaReh7h+KkFXkHxPBBg44MkLj7xk0b6Xxu
ua/S7Gij+swXyfrHzCd4OrvCyiy/6FvfAyqtg1D5AoUPnkluVFBC3ORwwtZIy/DM
tU13n3rgN1IMapUpQQbQ7lg5moc=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org