Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/38F20E1CF61611EC85A7D7A7F1222468.roa
File: 38F20E1CF61611EC85A7D7A7F1222468.roa (raw, json)
Hash identifier: J5ZwYpd8zpJJL+YkWJs1rcfStoOYvR7BeBiXX5uQj5U=
Subject key identifier: C9:C3:A6:B0:AA:EA:AA:DC:0A:F0:67:EA:A3:9C:97:97:35:2F:5A:6F
Certificate issuer: /CN=F36997F0AF/serialNumber=8CB8ABA0ECE947739B95EADB881EA1D0D2FFD3D0
Certificate serial: 01BE
Authority key identifier: 8C:B8:AB:A0:EC:E9:47:73:9B:95:EA:DB:88:1E:A1:D0:D2:FF:D3:D0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/38F20E1CF61611EC85A7D7A7F1222468.roa
Signing time: Mon 27 Jun 2022 12:39:45 +0000
ROA not before: Mon 27 Jun 2022 12:39:41 +0000
ROA not after: Sun 27 Jun 2032 12:39:41 +0000
asID: 328843
IP address blocks: 102.220.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.mft
rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446 (0x1be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36997F0AF/serialNumber=8CB8ABA0ECE947739B95EADB881EA1D0D2FFD3D0
Validity
Not Before: Jun 27 12:39:41 2022 GMT
Not After : Jun 27 12:39:41 2032 GMT
Subject: CN=62b9a511-e5fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b2:c7:60:31:9c:2d:84:84:5f:37:0b:ab:89:
0a:14:ea:40:16:62:1b:c4:57:0c:df:27:db:d9:e6:
22:13:3c:af:94:2f:d3:80:11:7f:b6:dc:be:02:9b:
75:35:19:8c:ea:10:ee:33:62:c0:6e:ca:9d:fc:d9:
20:cd:ed:1a:1e:39:92:a8:cc:1e:32:ca:ce:fd:93:
54:c0:75:34:54:76:ee:cd:10:8f:31:2f:7a:af:1f:
f9:03:3a:24:93:5e:9f:77:bc:00:e3:37:54:16:ba:
fb:bc:e6:17:a5:05:e1:3b:e2:99:ed:86:16:70:58:
b9:dd:28:e8:22:3b:8d:11:4e:43:96:36:38:12:54:
4a:56:e5:15:88:c8:a7:f4:ba:d7:bb:90:8a:60:c6:
e3:f8:a9:dd:f8:27:d7:b6:9b:a5:e0:a9:c8:63:02:
63:19:84:b9:20:b9:fb:fa:4d:6d:0f:24:6c:a7:51:
ab:4a:7c:85:9b:a4:1a:c9:77:1c:80:49:a7:21:f8:
c7:06:6b:c9:f8:4a:cb:ec:ae:47:0a:13:d5:ad:3c:
87:95:b0:ff:ed:c6:45:99:dc:9e:ea:83:96:fb:ed:
0e:c0:da:33:c9:8d:93:df:c6:d5:88:65:d5:12:eb:
e7:2c:b4:29:b1:5d:48:5e:df:15:92:fc:ee:34:18:
b2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C3:A6:B0:AA:EA:AA:DC:0A:F0:67:EA:A3:9C:97:97:35:2F:5A:6F
X509v3 Authority Key Identifier:
keyid:8C:B8:AB:A0:EC:E9:47:73:9B:95:EA:DB:88:1E:A1:D0:D2:FF:D3:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/38F20E1CF61611EC85A7D7A7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.51.0/24
Signature Algorithm: sha256WithRSAEncryption
41:f9:68:d3:ab:da:ee:88:9b:3f:c5:2a:18:68:74:b7:94:6e:
a5:06:1f:6f:09:55:00:ba:63:8d:ad:ff:c1:8b:ae:b4:34:93:
be:1b:4d:1e:cc:5b:f3:f0:49:0f:51:0e:f5:43:5b:e6:9c:2e:
87:10:f7:59:32:df:66:37:79:db:cd:5d:e9:a6:96:71:54:36:
c9:32:04:66:de:bb:a4:bb:49:8c:0e:7b:e2:4d:f5:c2:df:68:
64:bd:ae:a6:a2:84:4c:93:9f:ee:1c:83:81:3b:c8:2f:48:58:
c8:76:fe:aa:06:43:e5:a4:0a:14:56:b0:f4:67:26:2f:12:00:
cb:a1:87:b0:2e:6f:70:5e:1c:23:fb:48:b9:8f:61:95:ad:cc:
5a:94:ee:8a:81:7d:f1:ca:4c:17:80:2d:0a:b3:5a:a2:f8:30:
2e:38:ff:92:e6:78:f0:4f:85:1d:d9:e0:12:35:ad:b5:df:ae:
7d:17:c6:9b:5d:6a:d9:28:9e:21:ca:41:35:e4:37:3d:5c:55:
91:44:61:02:d5:1a:37:87:fc:35:9e:48:b6:36:93:31:e7:db:
a8:73:d8:c6:13:84:8b:34:8d:85:cf:a9:a1:de:61:45:56:f0:
27:da:27:ef:5d:2f:76:61:a6:bc:81:f7:47:93:47:71:67:c3:
18:18:5c:a2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTk3RjBBRjExMC8GA1UEBRMoOENCOEFCQTBFQ0U5NDc3MzlCOTVFQURCODgxRUEx
RDBEMkZGRDNEMDAeFw0yMjA2MjcxMjM5NDFaFw0zMjA2MjcxMjM5NDFaMBgxFjAU
BgNVBAMMDTYyYjlhNTExLWU1ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWssdgMZwthIRfNwuriQoU6kAWYhvEVwzfJ9vZ5iITPK+UL9OAEX+23L4C
m3U1GYzqEO4zYsBuyp382SDN7RoeOZKozB4yys79k1TAdTRUdu7NEI8xL3qvH/kD
OiSTXp93vADjN1QWuvu85helBeE74pnthhZwWLndKOgiO40RTkOWNjgSVEpW5RWI
yKf0ute7kIpgxuP4qd34J9e2m6XgqchjAmMZhLkgufv6TW0PJGynUatKfIWbpBrJ
dxyASach+McGa8n4SsvsrkcKE9WtPIeVsP/txkWZ3J7qg5b77Q7A2jPJjZPfxtWI
ZdUS6+cstCmxXUhe3xWS/O40GLJHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUycOm
sKrqqtwK8Gfqo5yXlzUvWm8wHwYDVR0jBBgwFoAUjLiroOzpR3OblerbiB6h0NL/
09AwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk5N0YwLzQyODU3RjA4QThDQTExRUI4NzdGRDA3Q0Y4QUVBMjI4L2pMaXJv
T3pwUjNPYmxlcmJpQjZoME5MXzA5QS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pMaXJvT3pwUjNPYmxlcmJpQjZoME5MXzA5QS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk5N0YwLzQyODU3RjA4QThDQTExRUI4NzdGRDA3Q0Y4
QUVBMjI4LzM4RjIwRTFDRjYxNjExRUM4NUE3RDdBN0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm3DMwDQYJKoZIhvcNAQEL
BQADggEBAEH5aNOr2u6Imz/FKhhodLeUbqUGH28JVQC6Y42t/8GLrrQ0k74bTR7M
W/PwSQ9RDvVDW+acLocQ91ky32Y3edvNXemmlnFUNskyBGbeu6S7SYwOe+JN9cLf
aGS9rqaihEyTn+4cg4E7yC9IWMh2/qoGQ+WkChRWsPRnJi8SAMuhh7Aub3BeHCP7
SLmPYZWtzFqU7oqBffHKTBeALQqzWqL4MC44/5LmePBPhR3Z4BI1rbXfrn0Xxptd
atkoniHKQTXkNz1cVZFEYQLVGjeH/DWeSLY2kzHn26hz2MYThIs0jYXPqaHeYUVW
8CfaJ+9dL3ZhpryB90eTR3FnwxgYXKI=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org