Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/EBABDFC0F61511ECA6D8D2A6F1222468.roa
File: EBABDFC0F61511ECA6D8D2A6F1222468.roa (raw, json)
Hash identifier: +w3GhW+G1ceqVePvkDmbwEPcqcRRKwBS3GxP2vD4dHk=
Subject key identifier: 18:9F:7C:C9:34:B9:96:4B:E1:AA:C5:7D:51:C6:AB:AE:DB:98:CE:89
Certificate issuer: /CN=F36997F0AF/serialNumber=8CB8ABA0ECE947739B95EADB881EA1D0D2FFD3D0
Certificate serial: 01B8
Authority key identifier: 8C:B8:AB:A0:EC:E9:47:73:9B:95:EA:DB:88:1E:A1:D0:D2:FF:D3:D0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/EBABDFC0F61511ECA6D8D2A6F1222468.roa
Signing time: Mon 27 Jun 2022 12:37:35 +0000
ROA not before: Mon 27 Jun 2022 12:37:31 +0000
ROA not after: Sun 27 Jun 2032 12:37:31 +0000
asID: 328843
IP address blocks: 102.220.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.mft
rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 440 (0x1b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36997F0AF/serialNumber=8CB8ABA0ECE947739B95EADB881EA1D0D2FFD3D0
Validity
Not Before: Jun 27 12:37:31 2022 GMT
Not After : Jun 27 12:37:31 2032 GMT
Subject: CN=62b9a48f-2fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0d:71:49:75:c9:2e:cd:60:07:e6:d5:70:ef:
41:d7:1e:a6:3b:7e:42:28:a5:bc:de:d1:60:f6:5f:
e6:cd:02:01:77:83:84:db:02:e6:b4:ad:83:a6:4b:
72:55:8d:08:5d:e5:59:74:9b:84:06:9a:ba:44:46:
7b:2b:7e:c3:4c:0c:88:fb:8e:cf:be:77:32:83:24:
3d:66:88:13:c3:9b:16:ef:54:9e:1e:4d:68:a2:23:
47:fb:6a:6c:1e:85:15:0e:6b:9c:61:ea:03:55:01:
50:67:06:ed:d2:ef:d1:d6:58:fd:bd:19:74:63:4c:
ff:c7:6b:e3:a2:91:cc:c9:1d:0e:2a:02:47:04:40:
80:9a:4f:f7:52:b6:0a:6a:a5:eb:ab:22:21:47:2f:
bd:3f:e0:ff:83:d6:45:93:4d:f7:8b:b3:a9:ad:c3:
17:13:94:7e:7e:f3:b9:b3:81:25:04:3e:a3:3f:b6:
ff:85:80:47:c5:ec:7d:08:fa:13:3c:fd:53:1d:c4:
1f:ad:9c:42:8e:d6:aa:7a:cb:82:be:32:6d:ef:8e:
29:2e:80:47:af:77:27:92:d6:fa:f8:29:73:30:12:
71:53:2d:67:11:e6:21:36:16:20:3f:72:11:59:f5:
8e:89:17:7f:80:e2:92:18:86:58:2d:e8:b9:e7:71:
eb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:7C:C9:34:B9:96:4B:E1:AA:C5:7D:51:C6:AB:AE:DB:98:CE:89
X509v3 Authority Key Identifier:
keyid:8C:B8:AB:A0:EC:E9:47:73:9B:95:EA:DB:88:1E:A1:D0:D2:FF:D3:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/jLiroOzpR3OblerbiB6h0NL_09A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jLiroOzpR3OblerbiB6h0NL_09A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36997F0/42857F08A8CA11EB877FD07CF8AEA228/EBABDFC0F61511ECA6D8D2A6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:25:45:d9:a9:df:b1:96:48:83:53:a1:d3:4f:40:27:af:ba:
b4:99:38:28:ac:35:65:d9:2e:1a:58:46:6c:dd:d4:22:0e:1d:
d9:28:4d:42:bf:61:9a:5e:04:47:11:42:2c:3b:54:ae:d4:eb:
bf:a9:a3:d5:ca:b1:d2:72:9c:a1:57:73:e2:87:77:92:53:8d:
45:2c:1f:90:4b:e2:b3:38:a6:1e:06:6b:5d:eb:aa:5a:89:28:
86:40:da:58:01:fc:d5:78:e5:3e:b8:1a:bd:f6:6e:d2:b6:ba:
a9:3d:2c:87:62:c6:01:b5:79:43:ec:99:d0:4e:d0:d1:31:40:
85:1b:a9:a2:be:0e:d2:08:62:68:16:c5:90:43:93:ca:c2:16:
b8:d1:c6:24:3f:d9:55:5a:ff:21:94:0a:6a:93:d8:d3:31:f8:
59:fe:38:07:2e:bb:5b:77:c9:03:fc:2b:b4:9c:bb:f2:68:8d:
75:48:05:c8:d7:8e:86:18:1f:0c:58:00:5d:f6:9e:c4:7c:6e:
72:1f:73:7d:f3:0a:96:30:71:0b:e8:63:c8:a0:a8:50:33:8c:
d0:aa:bc:23:29:58:21:48:6c:47:0a:ab:eb:f8:3f:62:9d:70:
70:63:0e:8c:fe:63:cf:65:53:65:5b:97:d4:10:3c:cc:14:7f:
e6:74:9b:82
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OTk3RjBBRjExMC8GA1UEBRMoOENCOEFCQTBFQ0U5NDc3MzlCOTVFQURCODgxRUEx
RDBEMkZGRDNEMDAeFw0yMjA2MjcxMjM3MzFaFw0zMjA2MjcxMjM3MzFaMBgxFjAU
BgNVBAMMDTYyYjlhNDhmLTJmYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC8DXFJdckuzWAH5tVw70HXHqY7fkIopbze0WD2X+bNAgF3g4TbAua0rYOm
S3JVjQhd5Vl0m4QGmrpERnsrfsNMDIj7js++dzKDJD1miBPDmxbvVJ4eTWiiI0f7
amwehRUOa5xh6gNVAVBnBu3S79HWWP29GXRjTP/Ha+OikczJHQ4qAkcEQICaT/dS
tgpqpeurIiFHL70/4P+D1kWTTfeLs6mtwxcTlH5+87mzgSUEPqM/tv+FgEfF7H0I
+hM8/VMdxB+tnEKO1qp6y4K+Mm3vjikugEevdyeS1vr4KXMwEnFTLWcR5iE2FiA/
chFZ9Y6JF3+A4pIYhlgt6Lnncev7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUGJ98
yTS5lkvhqsV9UcarrtuYzokwHwYDVR0jBBgwFoAUjLiroOzpR3OblerbiB6h0NL/
09AwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjk5N0YwLzQyODU3RjA4QThDQTExRUI4NzdGRDA3Q0Y4QUVBMjI4L2pMaXJv
T3pwUjNPYmxlcmJpQjZoME5MXzA5QS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pMaXJvT3pwUjNPYmxlcmJpQjZoME5MXzA5QS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjk5N0YwLzQyODU3RjA4QThDQTExRUI4NzdGRDA3Q0Y4
QUVBMjI4L0VCQUJERkMwRjYxNTExRUNBNkQ4RDJBNkYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm3DAwDQYJKoZIhvcNAQEL
BQADggEBAKElRdmp37GWSINTodNPQCevurSZOCisNWXZLhpYRmzd1CIOHdkoTUK/
YZpeBEcRQiw7VK7U67+po9XKsdJynKFXc+KHd5JTjUUsH5BL4rM4ph4Ga13rqlqJ
KIZA2lgB/NV45T64Gr32btK2uqk9LIdixgG1eUPsmdBO0NExQIUbqaK+DtIIYmgW
xZBDk8rCFrjRxiQ/2VVa/yGUCmqT2NMx+Fn+OAcuu1t3yQP8K7Scu/JojXVIBcjX
joYYHwxYAF32nsR8bnIfc33zCpYwcQvoY8igqFAzjNCqvCMpWCFIbEcKq+v4P2Kd
cHBjDoz+Y89lU2Vbl9QQPMwUf+Z0m4I=
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:07 2024 by rpki-client on console-ams.rpki-client.org