Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/5C15170E7C3F11ED8559019DF1222468.roa
File: 5C15170E7C3F11ED8559019DF1222468.roa (raw, json)
Hash identifier: Fnw4e2Z6mQxfu98S+Kvx8lPub/zYdBqQ2Qpl3ytsjPY=
Subject key identifier: F5:A8:09:AD:F9:DF:C3:50:FF:50:EA:21:6E:F1:0B:EF:45:52:EF:55
Certificate issuer: /CN=F369D48AAF/serialNumber=BBFF25240B207F9BACC5CB954A62309ABBA5365D
Certificate serial: 01A9
Authority key identifier: BB:FF:25:24:0B:20:7F:9B:AC:C5:CB:95:4A:62:30:9A:BB:A5:36:5D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/u_8lJAsgf5usxcuVSmIwmrulNl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/5C15170E7C3F11ED8559019DF1222468.roa
Signing time: Thu 15 Dec 2022 06:11:49 +0000
ROA not before: Thu 15 Dec 2022 06:11:45 +0000
ROA not after: Tue 31 Dec 2030 06:11:45 +0000
asID: 328961
IP address blocks: 102.213.132.0/22 maxlen: 24
102.217.240.0/22 maxlen: 24
2c0f:4f00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/u_8lJAsgf5usxcuVSmIwmrulNl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/u_8lJAsgf5usxcuVSmIwmrulNl0.mft
rsync://rpki.afrinic.net/repository/afrinic/u_8lJAsgf5usxcuVSmIwmrulNl0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425 (0x1a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369D48AAF/serialNumber=BBFF25240B207F9BACC5CB954A62309ABBA5365D
Validity
Not Before: Dec 15 06:11:45 2022 GMT
Not After : Dec 31 06:11:45 2030 GMT
Subject: CN=639abaa5-9c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4b:f5:fc:4c:27:43:23:1a:ee:11:b1:bd:1a:
91:e9:d4:41:bf:ad:9c:47:31:c7:2c:3e:77:93:42:
19:ea:6c:a3:a5:0b:55:76:82:df:83:d7:e2:f7:ae:
8c:5f:d7:ab:d6:d9:05:7e:fa:50:75:85:18:c3:53:
fc:7c:e2:44:3f:9d:e3:2d:09:5f:b0:fe:7e:69:42:
8a:bf:a8:74:65:90:60:42:d6:fb:85:21:5c:1b:1b:
43:9b:13:c5:40:ea:3d:54:09:2d:e7:72:30:74:f7:
22:ab:09:13:de:cc:89:7f:51:23:46:dc:1e:f6:c3:
7f:4b:2c:ba:8d:24:ae:5c:a8:49:bc:7d:a4:84:1c:
20:19:e5:6c:39:c7:11:42:0d:25:e5:b6:00:13:32:
6d:d7:71:63:a5:28:85:3c:ad:da:47:41:fc:8b:08:
99:d9:63:92:1c:ff:4a:18:70:2f:c0:4d:5f:9e:d0:
03:cd:5b:13:eb:ed:b8:72:a8:8e:2a:cf:74:50:0a:
ea:04:6e:00:ac:74:35:87:7f:86:ce:e2:de:98:52:
e2:b6:ca:4a:17:b7:d5:10:4a:2a:d6:7c:3f:f0:2d:
f8:44:9b:47:b1:f5:09:46:8d:45:6b:2f:96:bf:71:
e3:ad:ad:32:f1:c6:af:6a:f1:ab:25:6c:79:46:f3:
18:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A8:09:AD:F9:DF:C3:50:FF:50:EA:21:6E:F1:0B:EF:45:52:EF:55
X509v3 Authority Key Identifier:
keyid:BB:FF:25:24:0B:20:7F:9B:AC:C5:CB:95:4A:62:30:9A:BB:A5:36:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/u_8lJAsgf5usxcuVSmIwmrulNl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/u_8lJAsgf5usxcuVSmIwmrulNl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369D48A/C4097DD038D611ECA501247DD8A014CE/5C15170E7C3F11ED8559019DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.132.0/22
102.217.240.0/22
IPv6:
2c0f:4f00::/32
Signature Algorithm: sha256WithRSAEncryption
07:0d:c8:b2:a8:c7:c2:33:3a:57:b6:07:37:af:dd:1f:fd:e3:
df:e3:56:f4:a6:ba:a9:e4:bc:8b:5f:b1:df:45:0e:e2:eb:8f:
60:99:b2:66:61:a9:3f:70:4e:c8:66:95:d3:e1:09:dc:3f:01:
ee:42:48:d7:af:a8:e7:d5:9d:76:26:60:d9:a9:19:2a:c3:4e:
b5:c2:41:32:0f:89:ff:53:d3:c7:7b:4b:ea:13:dd:d0:c1:b8:
e4:fc:42:45:91:ae:12:01:a4:b9:6d:f4:4c:e8:72:69:6d:a6:
d8:e8:4f:ec:af:cf:c7:84:9d:2a:30:98:d3:f2:45:25:76:9c:
0c:51:02:65:0d:81:2d:4b:ad:c8:ba:d6:8a:be:b5:4b:b4:7c:
61:5b:d9:2a:a7:4d:de:92:28:75:cb:02:96:49:67:58:1b:60:
ae:c3:e1:f4:5f:08:9e:32:56:50:c0:b0:c0:13:53:7c:33:af:
a6:80:a6:04:ec:af:8f:e2:3a:9d:99:fc:d3:3b:0f:1f:49:2b:
21:69:96:ed:79:ae:3e:b4:ff:4e:fb:98:77:3a:bb:3a:27:bb:
dc:bd:27:32:d4:47:41:45:0e:ca:a6:cb:ef:bf:07:6f:b0:85:
d4:41:4e:d7:28:7b:1c:1d:8c:a7:e4:b4:f1:7f:1f:93:98:29:
74:3c:de:45
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgICAakwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OUQ0OEFBRjExMC8GA1UEBRMoQkJGRjI1MjQwQjIwN0Y5QkFDQzVDQjk1NEE2MjMw
OUFCQkE1MzY1RDAeFw0yMjEyMTUwNjExNDVaFw0zMDEyMzEwNjExNDVaMBgxFjAU
BgNVBAMMDTYzOWFiYWE1LTljMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC4S/X8TCdDIxruEbG9GpHp1EG/rZxHMccsPneTQhnqbKOlC1V2gt+D1+L3
roxf16vW2QV++lB1hRjDU/x84kQ/neMtCV+w/n5pQoq/qHRlkGBC1vuFIVwbG0Ob
E8VA6j1UCS3ncjB09yKrCRPezIl/USNG3B72w39LLLqNJK5cqEm8faSEHCAZ5Ww5
xxFCDSXltgATMm3XcWOlKIU8rdpHQfyLCJnZY5Ic/0oYcC/ATV+e0APNWxPr7bhy
qI4qz3RQCuoEbgCsdDWHf4bO4t6YUuK2ykoXt9UQSirWfD/wLfhEm0ex9QlGjUVr
L5a/ceOtrTLxxq9q8aslbHlG8xjzAgMBAAGjggK6MIICtjAdBgNVHQ4EFgQU9agJ
rfnfw1D/UOohbvEL70VS71UwHwYDVR0jBBgwFoAUu/8lJAsgf5usxcuVSmIwmrul
Nl0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlENDhBL0M0MDk3REQwMzhENjExRUNBNTAxMjQ3REQ4QTAxNENFL3VfOGxK
QXNnZjV1c3hjdVZTbUl3bXJ1bE5sMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3VfOGxKQXNnZjV1c3hjdVZTbUl3bXJ1bE5sMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlENDhBL0M0MDk3REQwMzhENjExRUNBNTAxMjQ3REQ4
QTAxNENFLzVDMTUxNzBFN0MzRjExRUQ4NTU5MDE5REYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAJm1YQDBAJm2fAwDQQCAAIw
BwMFACwPTwAwDQYJKoZIhvcNAQELBQADggEBAAcNyLKox8IzOle2Bzev3R/949/j
VvSmuqnkvItfsd9FDuLrj2CZsmZhqT9wTshmldPhCdw/Ae5CSNevqOfVnXYmYNmp
GSrDTrXCQTIPif9T08d7S+oT3dDBuOT8QkWRrhIBpLlt9EzocmltptjoT+yvz8eE
nSowmNPyRSV2nAxRAmUNgS1Lrci61oq+tUu0fGFb2SqnTd6SKHXLApZJZ1gbYK7D
4fRfCJ4yVlDAsMATU3wzr6aApgTsr4/iOp2Z/NM7Dx9JKyFplu15rj60/077mHc6
uzonu9y9JzLUR0FFDsqmy++/B2+whdRBTtcoexwdjKfktPF/H5OYKXQ83kU=
-----END CERTIFICATE-----
Generated at Sun May 5 02:33:28 2024 by rpki-client on console-fra.rpki-client.org