Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/C8047534695311EE9A1867794AD9E6FC.roa
File: C8047534695311EE9A1867794AD9E6FC.roa (raw, json)
Hash identifier: 3Lf+PtwSVLbtRykdAjgoQEOCQEsNIbgoj+2JSnVr1pk=
Subject key identifier: 23:15:04:56:75:56:E2:8C:00:C3:62:56:A5:A8:54:70:4F:C0:BC:29
Certificate issuer: /CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Certificate serial: 01DF
Authority key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/C8047534695311EE9A1867794AD9E6FC.roa
Signing time: Thu 12 Oct 2023 23:05:05 +0000
ROA not before: Fri 13 Oct 2023 23:05:02 +0000
ROA not after: Sun 13 Oct 2030 23:05:02 +0000
asID: 25818
IP address blocks: 102.177.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479 (0x1df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Validity
Not Before: Oct 13 23:05:02 2023 GMT
Not After : Oct 13 23:05:02 2030 GMT
Subject: CN=65287ba1-7877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:9e:7a:67:93:51:1d:a3:40:3f:0d:20:3b:
c5:7b:ad:56:a3:8b:48:a7:a5:cf:05:c6:ae:74:a0:
a5:9d:fa:c5:2a:40:a2:70:c7:c4:c7:ba:9f:6a:c8:
8f:92:67:84:15:b8:f6:16:94:f4:4a:d4:3c:a8:85:
6f:33:b8:e7:ca:88:72:01:26:ce:80:c0:36:ea:30:
c5:2e:51:c8:c4:58:90:6b:b8:c2:ef:77:af:70:d8:
55:57:00:ad:bf:cd:46:dc:0b:43:48:b2:70:64:ac:
8b:5d:ac:af:65:0e:8d:4c:01:5d:01:52:d6:4e:c8:
5c:85:ed:60:f7:98:3d:5e:a2:b5:98:e0:4c:e1:31:
97:2e:82:0d:cc:4c:2f:f4:60:27:65:74:ed:fd:50:
ae:3e:8b:77:50:45:7b:bb:8b:0d:40:cf:0a:8e:69:
68:b9:6c:e8:09:3a:40:cc:e6:1f:7d:f5:a8:ae:96:
62:b0:92:71:ff:45:a8:2f:cb:82:bc:59:6c:c1:ce:
46:93:dc:69:47:c5:fa:e4:2a:6e:a5:52:1b:24:b6:
26:5e:12:45:12:10:66:f0:3b:72:cb:4c:ea:18:80:
77:61:38:b1:9a:1f:e9:8f:5f:00:92:64:47:1b:5a:
b5:b8:ac:42:d7:ee:cc:d5:00:93:54:b5:89:fe:d0:
dc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:15:04:56:75:56:E2:8C:00:C3:62:56:A5:A8:54:70:4F:C0:BC:29
X509v3 Authority Key Identifier:
keyid:53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/C8047534695311EE9A1867794AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.115.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:86:77:09:65:1c:43:e1:d1:ff:2b:dc:5f:aa:c2:56:84:01:
ed:9b:ba:a0:8b:99:99:fb:77:be:d3:cf:f4:fd:18:2e:0e:50:
82:9e:8c:bc:d7:7e:74:fe:1b:33:4d:e5:d2:ba:72:98:d3:b4:
3d:d5:09:08:04:b5:cc:d6:9b:1b:2f:6b:36:13:d3:7e:f4:c5:
63:ef:3f:3a:7a:5b:45:8d:9b:ec:80:23:de:01:82:dd:fd:0c:
42:c6:3c:1b:4b:48:40:98:13:ca:1f:94:db:46:62:eb:c8:42:
74:a4:99:26:b7:39:b4:09:85:2b:f0:42:25:30:dd:04:63:52:
9b:7b:a8:01:f8:b4:88:8b:e5:45:fa:c4:7c:e8:49:b6:e8:6e:
d0:c0:fc:99:50:c8:58:00:bf:22:17:8e:f5:62:56:84:56:73:
a2:c6:55:48:92:2d:71:45:06:cf:9a:0c:d3:53:c5:64:da:4d:
9d:ac:27:21:c8:4f:37:57:d3:ad:33:f1:e5:30:38:f4:cb:58:
df:6d:b8:6f:72:b1:29:06:12:dc:8d:e0:c2:29:83:c2:b0:d7:
2c:3a:2a:97:55:8c:25:89:98:12:31:a6:87:10:8c:96:83:f4:
4d:8d:49:07:a7:93:de:27:44:44:4b:06:81:d0:ab:07:53:67:
b5:9a:27:3b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTZFNUZBRjExMC8GA1UEBRMoNTM3NUNGNENBMTY0M0IwOEMzNDFCREE3OUQ4QkUx
MDVCREMzQzQ4QjAeFw0yMzEwMTMyMzA1MDJaFw0zMDEwMTMyMzA1MDJaMBgxFjAU
BgNVBAMTDTY1Mjg3YmExLTc4NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC3FJ56Z5NRHaNAPw0gO8V7rVaji0inpc8Fxq50oKWd+sUqQKJwx8THup9q
yI+SZ4QVuPYWlPRK1DyohW8zuOfKiHIBJs6AwDbqMMUuUcjEWJBruMLvd69w2FVX
AK2/zUbcC0NIsnBkrItdrK9lDo1MAV0BUtZOyFyF7WD3mD1eorWY4EzhMZcugg3M
TC/0YCdldO39UK4+i3dQRXu7iw1AzwqOaWi5bOgJOkDM5h999aiulmKwknH/Ragv
y4K8WWzBzkaT3GlHxfrkKm6lUhsktiZeEkUSEGbwO3LLTOoYgHdhOLGaH+mPXwCS
ZEcbWrW4rELX7szVAJNUtYn+0NzRAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUIxUE
VnVW4owAw2JWpahUcE/AvCkwHwYDVR0jBBgwFoAUU3XPTKFkOwjDQb2nnYvhBb3D
xIswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYxMjIyNDY4L1UzWFBU
S0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1UzWFBUS0ZrT3dqRFFiMm5uWXZoQmIzRHhJcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk2RTVGLzNEQTNEMzIwMTg5NzExRUQ4QzkzNkJEMkYx
MjIyNDY4L0M4MDQ3NTM0Njk1MzExRUU5QTE4Njc3OTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsXMwDQYJKoZIhvcNAQEL
BQADggEBAK6GdwllHEPh0f8r3F+qwlaEAe2buqCLmZn7d77Tz/T9GC4OUIKejLzX
fnT+GzNN5dK6cpjTtD3VCQgEtczWmxsvazYT0370xWPvPzp6W0WNm+yAI94Bgt39
DELGPBtLSECYE8oflNtGYuvIQnSkmSa3ObQJhSvwQiUw3QRjUpt7qAH4tIiL5UX6
xHzoSbbobtDA/JlQyFgAvyIXjvViVoRWc6LGVUiSLXFFBs+aDNNTxWTaTZ2sJyHI
TzdX060z8eUwOPTLWN9tuG9ysSkGEtyN4MIpg8Kw1yw6KpdVjCWJmBIxpocQjJaD
9E2NSQenk94nRERLBoHQqwdTZ7WaJzs=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org