Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/9A1824E0E81211ECA60E099FF1222468.roa
File: 9A1824E0E81211ECA60E099FF1222468.roa (raw, json)
Hash identifier: 4UhfPtRGkkNppYKpKrhsfkzZ87W6KqwXcYk4GmfpYIg=
Subject key identifier: 09:78:BD:A8:A9:48:E9:86:A6:93:0C:BD:45:0A:65:A1:F7:1B:7A:35
Certificate issuer: /CN=F369C94EAF/serialNumber=8272C2B8B3B389EE2B7BBD4FBD5509676F3279BB
Certificate serial: 10
Authority key identifier: 82:72:C2:B8:B3:B3:89:EE:2B:7B:BD:4F:BD:55:09:67:6F:32:79:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/9A1824E0E81211ECA60E099FF1222468.roa
Signing time: Thu 09 Jun 2022 16:38:33 +0000
ROA not before: Thu 09 Jun 2022 16:38:30 +0000
ROA not after: Wed 09 Jun 2032 16:38:30 +0000
asID: 37280
IP address blocks: 41.76.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.crl
rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.mft
rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369C94EAF/serialNumber=8272C2B8B3B389EE2B7BBD4FBD5509676F3279BB
Validity
Not Before: Jun 9 16:38:30 2022 GMT
Not After : Jun 9 16:38:30 2032 GMT
Subject: CN=62a22209-4234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cc:98:70:24:66:cc:5c:bd:60:8b:b4:65:42:
27:40:17:43:46:3a:6e:0f:14:db:01:4d:27:4e:e5:
36:8a:93:21:85:23:91:fa:f6:81:84:cb:f0:cd:ab:
8c:c3:09:b8:ec:45:59:50:2e:90:16:f8:50:75:a2:
ab:2a:bf:f5:44:53:10:b2:69:c6:2b:fa:5c:75:41:
eb:12:bd:23:c1:ed:09:e5:d5:a2:ef:50:b9:9b:b4:
16:88:09:eb:63:18:de:8f:5e:4f:91:49:9f:17:9a:
6f:a6:bc:ea:0a:d1:bd:27:92:4a:54:53:da:d9:3b:
e6:dd:ce:fd:f2:f0:79:b8:a4:18:ad:d9:47:7e:1a:
b1:d7:09:f2:e8:67:0d:3c:dc:d2:d0:68:37:51:74:
8c:59:b7:c1:55:c4:46:fd:e9:e7:86:63:85:54:14:
28:0c:bf:85:2e:85:46:b8:4e:68:d2:31:0e:4e:22:
1b:f3:10:36:da:c7:21:79:4f:b3:18:e7:3a:d5:cb:
28:14:12:ad:e5:1e:94:c2:b5:46:ac:a6:40:6b:88:
ea:1d:33:18:40:5b:88:e2:1d:05:69:96:78:e0:89:
e6:ab:b8:35:3c:ea:1e:eb:b2:02:ca:03:d4:7e:a7:
12:15:60:45:9c:d1:b8:e6:95:91:ef:23:a8:d3:51:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:BD:A8:A9:48:E9:86:A6:93:0C:BD:45:0A:65:A1:F7:1B:7A:35
X509v3 Authority Key Identifier:
keyid:82:72:C2:B8:B3:B3:89:EE:2B:7B:BD:4F:BD:55:09:67:6F:32:79:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/gnLCuLOzie4re71PvVUJZ28yebs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gnLCuLOzie4re71PvVUJZ28yebs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369C94E/E9D7D8AEE80D11EC977C9690F1222468/9A1824E0E81211ECA60E099FF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.76.198.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:97:5e:30:c5:70:0d:1b:de:a3:1a:6a:52:75:ad:ab:68:46:
cc:db:50:c3:16:2a:a6:99:84:74:87:80:36:32:af:fb:b5:ac:
f9:3e:73:bd:5c:5c:01:b1:31:1e:ed:f1:6c:b9:8b:34:1b:82:
2b:c2:1d:b5:89:40:0a:3c:14:ae:8c:f6:c0:fa:ee:05:d7:7a:
89:44:4d:28:de:ce:a7:ba:0c:18:88:46:3d:3e:d6:00:f3:35:
7b:b9:0a:e2:db:23:0e:30:c7:22:29:6d:a1:2c:a8:58:25:42:
8e:ec:ec:24:0c:8b:a6:dd:14:86:e9:e5:34:40:e9:76:c6:45:
ce:95:e1:49:5b:cd:0d:27:93:4d:19:13:54:3d:3b:92:9b:42:
b7:41:c8:c9:25:70:d9:87:3a:1f:f2:57:f5:62:b8:e9:12:b5:
41:e4:04:55:8b:c1:f3:d7:a8:07:39:c9:ed:c2:3a:1e:b4:2a:
7a:5c:65:f5:b1:13:e0:66:bc:cf:38:0e:92:5b:54:1a:9e:9f:
fd:17:9d:b2:b1:55:2a:e6:cc:6c:d0:34:0b:9f:a3:ff:0b:20:
12:47:76:e6:af:2d:6a:46:7a:22:1f:97:bf:22:5a:fc:24:92:
82:82:84:1c:31:a0:b8:50:d2:bc:07:42:ee:d7:5e:89:a9:d6:
c8:cd:70:5d
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzY5
Qzk0RUFGMTEwLwYDVQQFEyg4MjcyQzJCOEIzQjM4OUVFMkI3QkJENEZCRDU1MDk2
NzZGMzI3OUJCMB4XDTIyMDYwOTE2MzgzMFoXDTMyMDYwOTE2MzgzMFowGDEWMBQG
A1UEAwwNNjJhMjIyMDktNDIzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOrMmHAkZsxcvWCLtGVCJ0AXQ0Y6bg8U2wFNJ07lNoqTIYUjkfr2gYTL8M2r
jMMJuOxFWVAukBb4UHWiqyq/9URTELJpxiv6XHVB6xK9I8HtCeXVou9QuZu0FogJ
62MY3o9eT5FJnxeab6a86grRvSeSSlRT2tk75t3O/fLwebikGK3ZR34asdcJ8uhn
DTzc0tBoN1F0jFm3wVXERv3p54ZjhVQUKAy/hS6FRrhOaNIxDk4iG/MQNtrHIXlP
sxjnOtXLKBQSreUelMK1RqymQGuI6h0zGEBbiOIdBWmWeOCJ5qu4NTzqHuuyAsoD
1H6nEhVgRZzRuOaVke8jqNNRhI8CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQJeL2o
qUjphqaTDL1FCmWh9xt6NTAfBgNVHSMEGDAWgBSCcsK4s7OJ7it7vU+9VQlnbzJ5
uzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2OUM5NEUvRTlEN0Q4QUVFODBEMTFFQzk3N0M5NjkwRjEyMjI0NjgvZ25MQ3VM
T3ppZTRyZTcxUHZWVUpaMjh5ZWJzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvZ25MQ3VMT3ppZTRyZTcxUHZWVUpaMjh5ZWJzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2OUM5NEUvRTlEN0Q4QUVFODBEMTFFQzk3N0M5NjkwRjEy
MjI0NjgvOUExODI0RTBFODEyMTFFQ0E2MEUwOTlGRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAClMxjANBgkqhkiG9w0BAQsF
AAOCAQEATZdeMMVwDRveoxpqUnWtq2hGzNtQwxYqppmEdIeANjKv+7Ws+T5zvVxc
AbExHu3xbLmLNBuCK8IdtYlACjwUroz2wPruBdd6iURNKN7Op7oMGIhGPT7WAPM1
e7kK4tsjDjDHIiltoSyoWCVCjuzsJAyLpt0UhunlNEDpdsZFzpXhSVvNDSeTTRkT
VD07kptCt0HIySVw2Yc6H/JX9WK46RK1QeQEVYvB89eoBznJ7cI6HrQqelxl9bET
4Ga8zzgOkltUGp6f/RedsrFVKubMbNA0C5+j/wsgEkd25q8takZ6Ih+XvyJa/CSS
goKEHDGguFDSvAdC7tdeianWyM1wXQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:17 2024 by rpki-client on console-ams.rpki-client.org