Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/43501FBAE8A711EC8C7A6F7CF1222468.roa
File: 43501FBAE8A711EC8C7A6F7CF1222468.roa (raw, json)
Hash identifier: pmf9iadVEq9Xd7tUK+UVEKXTVEUvEAAd43Ocd7osxBg=
Subject key identifier: 14:A0:F3:6B:E4:E3:3C:E9:37:EC:5E:C8:23:5F:F9:DC:54:AE:2C:C4
Certificate issuer: /CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Certificate serial: 015C
Authority key identifier: 1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/43501FBAE8A711EC8C7A6F7CF1222468.roa
Signing time: Fri 10 Jun 2022 10:22:43 +0000
ROA not before: Fri 10 Jun 2022 10:22:39 +0000
ROA not after: Tue 10 Jun 2025 10:22:39 +0000
asID: 328840
IP address blocks: 2c0f:4e00:8000::/35 maxlen: 35
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.mft
rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348 (0x15c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36960E7AF/serialNumber=1F4DB9AC6B63108A19BDCDBEECFF449842C8D6A0
Validity
Not Before: Jun 10 10:22:39 2022 GMT
Not After : Jun 10 10:22:39 2025 GMT
Subject: CN=62a31b73-9c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:15:e1:72:ce:fa:0d:e8:83:82:0a:44:54:4a:
92:f3:7f:11:6e:4a:4c:d5:08:d0:69:10:99:48:a9:
22:bd:4b:ff:79:95:9e:e7:84:3c:8f:52:d1:99:6d:
c0:32:5b:d9:57:4b:f2:99:58:90:54:2f:19:da:74:
27:a5:6c:51:c8:81:78:ed:4a:6b:4a:21:ce:28:ac:
ff:93:79:a9:10:44:4d:ed:78:10:d4:56:f4:9f:f1:
30:c1:e2:f0:6a:91:1d:78:21:82:bc:39:e4:3a:86:
38:f9:2f:3e:b8:09:81:b7:83:53:1b:65:18:9a:d3:
33:fa:79:3e:3a:a1:f8:44:e2:03:e3:70:f4:cf:7c:
86:a3:07:fc:16:37:7e:17:e4:d2:6b:5f:d8:0e:45:
51:43:72:d5:1c:c5:5b:27:bc:f0:d3:6a:29:bf:b2:
a8:11:f9:60:6f:c6:b7:94:e6:1e:f6:53:49:1e:7c:
9f:bc:b6:78:28:dd:e8:1d:c5:9b:8b:41:c7:13:c0:
f2:ed:c7:fa:c1:3d:80:36:0c:aa:31:10:13:89:aa:
be:21:cf:ab:8a:b2:d0:14:9e:d5:69:97:d0:d0:1d:
8c:9b:da:bc:27:cc:4f:0f:5a:89:1b:af:2c:35:44:
30:87:2e:64:a0:2a:1b:14:3d:e5:b4:89:c6:85:9c:
4a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A0:F3:6B:E4:E3:3C:E9:37:EC:5E:C8:23:5F:F9:DC:54:AE:2C:C4
X509v3 Authority Key Identifier:
keyid:1F:4D:B9:AC:6B:63:10:8A:19:BD:CD:BE:EC:FF:44:98:42:C8:D6:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/H025rGtjEIoZvc2-7P9EmELI1qA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/H025rGtjEIoZvc2-7P9EmELI1qA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36960E7/1C0AE63EEB7711EB80DE7C1ED8A014CE/43501FBAE8A711EC8C7A6F7CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:4e00:8000::/35
Signature Algorithm: sha256WithRSAEncryption
71:2f:38:69:23:e0:0b:38:36:08:34:ed:9a:4d:d9:c6:d8:6d:
7d:09:01:05:51:df:98:dc:15:7f:29:a8:fa:c9:97:a5:6e:2e:
c6:f5:69:f2:e0:16:ce:44:ee:0e:8c:5c:d5:26:1a:96:a2:f6:
06:60:10:50:00:e2:11:63:a3:e9:e1:a0:fc:e1:72:c7:ba:7d:
b8:fe:25:b5:8a:eb:39:12:ba:5f:55:dc:f5:5f:51:74:6e:a0:
e9:ba:64:74:74:a7:6d:e8:ba:23:53:02:79:8e:27:7b:0d:9f:
4c:17:d2:dc:ad:42:4f:0e:7c:0c:cf:d1:29:9a:27:be:19:1e:
cc:c1:cd:7c:6e:b0:e5:ed:6b:8e:68:82:cb:18:07:d2:ee:bb:
ce:e6:73:08:3e:cb:da:b9:b4:e1:39:53:1f:e8:ff:b2:10:0b:
c9:e5:2b:97:a3:4a:38:a8:85:c0:4a:0a:80:82:53:ec:a6:83:
38:20:b7:88:0e:27:db:f8:5f:dd:41:12:b7:26:82:be:5e:d0:
08:c1:c7:2c:99:f7:a8:aa:7e:99:70:54:70:ae:9c:d6:d7:16:
05:bf:d7:86:1b:1c:4a:04:89:8c:db:e8:87:f0:a4:83:83:d9:
5d:85:a8:54:57:d4:a4:d5:53:3c:0f:de:2a:ce:dd:a2:61:6c:
5e:b2:ef:3b
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTYwRTdBRjExMC8GA1UEBRMoMUY0REI5QUM2QjYzMTA4QTE5QkRDREJFRUNGRjQ0
OTg0MkM4RDZBMDAeFw0yMjA2MTAxMDIyMzlaFw0yNTA2MTAxMDIyMzlaMBgxFjAU
BgNVBAMMDTYyYTMxYjczLTljN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDZFeFyzvoN6IOCCkRUSpLzfxFuSkzVCNBpEJlIqSK9S/95lZ7nhDyPUtGZ
bcAyW9lXS/KZWJBULxnadCelbFHIgXjtSmtKIc4orP+TeakQRE3teBDUVvSf8TDB
4vBqkR14IYK8OeQ6hjj5Lz64CYG3g1MbZRia0zP6eT46ofhE4gPjcPTPfIajB/wW
N34X5NJrX9gORVFDctUcxVsnvPDTaim/sqgR+WBvxreU5h72U0kefJ+8tngo3egd
xZuLQccTwPLtx/rBPYA2DKoxEBOJqr4hz6uKstAUntVpl9DQHYyb2rwnzE8PWokb
ryw1RDCHLmSgKhsUPeW0icaFnEqvAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUFKDz
a+TjPOk37F7II1/53FSuLMQwHwYDVR0jBBgwFoAUH025rGtjEIoZvc2+7P9EmELI
1qAwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk2MEU3LzFDMEFFNjNFRUI3NzExRUI4MERFN0MxRUQ4QTAxNENFL0gwMjVy
R3RqRUlvWnZjMi03UDlFbUVMSTFxQS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0gwMjVyR3RqRUlvWnZjMi03UDlFbUVMSTFxQS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk2MEU3LzFDMEFFNjNFRUI3NzExRUI4MERFN0MxRUQ4
QTAxNENFLzQzNTAxRkJBRThBNzExRUM4QzdBNkY3Q0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUsD04AgDANBgkqhkiG9w0B
AQsFAAOCAQEAcS84aSPgCzg2CDTtmk3ZxthtfQkBBVHfmNwVfymo+smXpW4uxvVp
8uAWzkTuDoxc1SYalqL2BmAQUADiEWOj6eGg/OFyx7p9uP4ltYrrORK6X1Xc9V9R
dG6g6bpkdHSnbei6I1MCeY4new2fTBfS3K1CTw58DM/RKZonvhkezMHNfG6w5e1r
jmiCyxgH0u67zuZzCD7L2rm04TlTH+j/shALyeUrl6NKOKiFwEoKgIJT7KaDOCC3
iA4n2/hf3UEStyaCvl7QCMHHLJn3qKp+mXBUcK6c1tcWBb/XhhscSgSJjNvoh/Ck
g4PZXYWoVFfUpNVTPA/eKs7domFsXrLvOw==
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:39 2024 by rpki-client on console-ams.rpki-client.org