Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/170B3782695211EEA18D28734AD9E6FC.roa
File: 170B3782695211EEA18D28734AD9E6FC.roa (raw, json)
Hash identifier: SAlr6R26INjndGn3mYtHQ4fynlkYM6sWpDli6VJl/0c=
Subject key identifier: 5A:19:0F:91:61:62:EA:D4:75:DC:77:E7:B6:BE:CE:8D:37:7D:3A:54
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01D9
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/170B3782695211EEA18D28734AD9E6FC.roa
Signing time: Thu 12 Oct 2023 22:52:59 +0000
ROA not before: Fri 13 Oct 2023 22:52:54 +0000
ROA not after: Sun 13 Oct 2030 22:52:54 +0000
asID: 25818
IP address blocks: 102.177.113.0/24 maxlen: 24
2001:4210:5100::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473 (0x1d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 22:52:54 2023 GMT
Not After : Oct 13 22:52:54 2030 GMT
Subject: CN=652878cb-1784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:9f:62:14:04:93:96:66:2b:c5:0a:3c:56:
da:28:b0:ca:d3:05:b9:c4:8c:95:ee:81:f2:d4:2f:
f3:14:a4:ee:2a:70:70:8e:fe:cb:da:b4:2e:e3:21:
26:48:5f:88:69:11:81:a0:e3:e0:11:01:7e:8a:ba:
46:8a:c2:1a:d7:fb:5d:61:3f:62:26:cc:9c:89:fc:
82:2a:d8:b9:4b:b8:f6:63:5e:c0:e9:2d:27:77:a0:
80:1c:e5:d2:eb:50:ac:51:1c:e0:29:0f:e9:9f:bc:
fd:a0:e8:40:60:b4:07:ef:c2:36:1f:6e:1a:30:97:
cc:1c:9e:6e:d2:c7:47:a8:a9:69:e3:c8:fc:85:22:
ae:10:80:ff:e2:44:35:83:64:73:da:4f:81:b4:cd:
c2:ea:f6:13:85:1a:32:d0:5e:84:b5:d3:f8:ca:8f:
67:7c:c5:87:1f:9a:52:52:05:e0:c6:97:46:3d:c7:
92:c1:36:15:dc:ad:4d:be:2f:6f:5b:68:a5:31:62:
0b:8c:ce:a5:a1:f9:8f:38:86:4c:b8:e3:13:fa:f0:
10:76:be:0a:bf:8f:15:25:55:02:0a:27:d1:d1:07:
57:07:73:0a:d5:c1:cb:86:23:24:fe:be:75:8e:5b:
de:ff:8c:f8:3f:0e:62:5a:6a:ce:c7:08:ac:97:34:
f3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:19:0F:91:61:62:EA:D4:75:DC:77:E7:B6:BE:CE:8D:37:7D:3A:54
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/170B3782695211EEA18D28734AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.113.0/24
IPv6:
2001:4210:5100::/40
Signature Algorithm: sha256WithRSAEncryption
24:d3:98:19:18:6b:7d:d6:4f:fa:21:16:ee:3d:3b:20:0a:64:
6a:8c:09:74:dd:bb:5c:92:d6:4f:02:fe:eb:8f:87:96:d5:71:
06:0c:39:ea:85:03:3a:3a:fa:84:a8:54:57:8e:9d:b2:cc:f7:
14:79:6b:1e:b8:6d:57:26:d6:8c:ad:ea:70:6b:91:af:6c:2b:
9f:7a:00:ab:03:29:3a:4d:44:ab:90:2a:a8:a5:ee:4e:6a:c0:
8a:f2:9c:80:b7:fb:57:bf:61:9e:65:55:8e:48:ae:35:59:3a:
7a:9e:01:56:db:74:86:b8:1c:92:28:cd:b0:42:84:b7:a8:14:
41:b3:95:70:75:db:56:ec:6d:21:ea:7c:d5:ab:6b:2d:27:f2:
b2:f2:f1:1c:5b:fb:68:ed:90:a8:a3:3f:e2:96:8c:12:89:5d:
6f:ed:f3:bf:90:d5:5f:f6:ec:ee:2e:a3:2b:7f:de:2c:5e:79:
8f:02:7e:f9:40:05:38:1d:7b:d6:ca:1a:40:96:7e:8b:26:97:
6a:a1:b9:27:ca:8e:51:b0:69:ef:62:50:13:e8:00:69:76:04:
73:20:e2:23:38:2f:d3:fd:63:2a:6f:87:e6:e4:77:38:0a:30:
dc:0c:bf:6b:28:7f:2a:96:a9:f6:dd:16:1c:0a:78:c7:0c:88:
9e:2a:9f:77
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTZFNUZBRjExMC8GA1UEBRMoNTM3NUNGNENBMTY0M0IwOEMzNDFCREE3OUQ4QkUx
MDVCREMzQzQ4QjAeFw0yMzEwMTMyMjUyNTRaFw0zMDEwMTMyMjUyNTRaMBgxFjAU
BgNVBAMTDTY1Mjg3OGNiLTE3ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCs4J9iFASTlmYrxQo8VtoosMrTBbnEjJXugfLUL/MUpO4qcHCO/svatC7j
ISZIX4hpEYGg4+ARAX6KukaKwhrX+11hP2ImzJyJ/IIq2LlLuPZjXsDpLSd3oIAc
5dLrUKxRHOApD+mfvP2g6EBgtAfvwjYfbhowl8wcnm7Sx0eoqWnjyPyFIq4QgP/i
RDWDZHPaT4G0zcLq9hOFGjLQXoS10/jKj2d8xYcfmlJSBeDGl0Y9x5LBNhXcrU2+
L29baKUxYguMzqWh+Y84hky44xP68BB2vgq/jxUlVQIKJ9HRB1cHcwrVwcuGIyT+
vnWOW97/jPg/DmJaas7HCKyXNPOJAgMBAAGjggK1MIICsTAdBgNVHQ4EFgQUWhkP
kWFi6tR13Hfntr7OjTd9OlQwHwYDVR0jBBgwFoAUU3XPTKFkOwjDQb2nnYvhBb3D
xIswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYxMjIyNDY4L1UzWFBU
S0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1UzWFBUS0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYx
MjIyNDY4LzE3MEIzNzgyNjk1MjExRUVBMThEMjg3MzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLwYIKwYBBQUHAQcBAf8EIDAeMAwEAgABMAYDBABmsXEwDgQCAAIwCAMGACAB
QhBRMA0GCSqGSIb3DQEBCwUAA4IBAQAk05gZGGt91k/6IRbuPTsgCmRqjAl03btc
ktZPAv7rj4eW1XEGDDnqhQM6OvqEqFRXjp2yzPcUeWseuG1XJtaMrepwa5GvbCuf
egCrAyk6TUSrkCqope5OasCK8pyAt/tXv2GeZVWOSK41WTp6ngFW23SGuBySKM2w
QoS3qBRBs5VwddtW7G0h6nzVq2stJ/Ky8vEcW/to7ZCooz/ilowSiV1v7fO/kNVf
9uzuLqMrf94sXnmPAn75QAU4HXvWyhpAln6LJpdqobknyo5RsGnvYlAT6ABpdgRz
IOIjOC/T/WMqb4fm5Hc4CjDcDL9rKH8qlqn23RYcCnjHDIieKp93
-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:08 2024 by rpki-client on console-fra.rpki-client.org