Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B91C6B803B811EFA4C9CE36017001B1.roa
File: 5B91C6B803B811EFA4C9CE36017001B1.roa (raw, json)
Hash identifier: JcVXEBKBXCdAnpNP9gkBki5xx1uU/257cotnySg0MZA=
Subject key identifier: 5D:D0:E1:1C:D1:FC:FC:9E:CB:FC:66:5D:3A:71:22:81:4C:26:4C:7B
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01FB
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B91C6B803B811EFA4C9CE36017001B1.roa
Signing time: Fri 26 Apr 2024 10:33:02 +0000
ROA not before: Fri 26 Apr 2024 10:32:58 +0000
ROA not after: Thu 30 Apr 2043 10:32:58 +0000
asID: 30988
IP address blocks: 41.73.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 507 (0x1fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:32:58 2024 GMT
Not After : Apr 30 10:32:58 2043 GMT
Subject: CN=662b82de-00cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:49:08:d8:ee:82:e4:15:f4:24:02:2c:60:bb:
d6:60:97:3c:b5:6d:be:07:f0:57:40:15:3f:31:66:
eb:1e:75:c9:f2:0c:6e:af:a7:42:6d:6c:01:3d:0c:
f6:a1:cf:0e:b3:4a:44:d6:d1:fa:d3:c7:dd:41:97:
0e:fb:c3:e2:95:c3:e5:c5:6e:6c:2f:3e:53:03:65:
38:26:bc:70:42:dc:60:52:f9:8a:2f:af:c2:ea:9e:
f1:d2:6a:1c:52:e4:8b:8d:b6:dc:9d:f9:69:98:31:
9b:cf:7d:2f:3f:9a:de:57:1f:4e:a2:4e:1d:57:92:
b6:ee:e1:e7:c7:ba:d2:3d:91:3f:b9:09:c7:39:db:
28:fd:0d:46:05:6c:7a:cc:94:21:34:37:2f:09:c8:
9f:6a:64:e1:30:0e:ad:ab:48:bf:71:45:ac:1a:4f:
c0:30:10:6e:5a:01:1c:6c:d2:8d:99:81:8e:e8:59:
31:ab:b1:6f:fb:3a:df:42:7c:2f:14:82:66:2d:5a:
54:fc:69:13:47:1a:e6:20:8e:aa:95:d7:10:a4:e3:
ba:d5:22:4a:18:eb:25:6c:e4:2d:76:e9:00:73:f4:
0d:5d:9c:34:c0:54:68:f0:5c:35:68:ed:85:12:c4:
a9:f9:1f:48:04:24:ca:52:13:ec:ac:f6:c6:d1:6e:
be:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D0:E1:1C:D1:FC:FC:9E:CB:FC:66:5D:3A:71:22:81:4C:26:4C:7B
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/5B91C6B803B811EFA4C9CE36017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.144.0/24
Signature Algorithm: sha256WithRSAEncryption
50:55:13:0d:2a:a2:55:f7:fc:82:40:07:23:65:7b:18:7f:65:
cd:f4:21:6f:1a:e6:40:bc:fc:28:09:e5:bf:c1:ae:9b:bd:7d:
30:52:49:d6:d4:db:58:54:03:9d:95:c1:9f:1e:82:d2:95:15:
39:64:91:32:23:75:dc:2d:a4:fe:b1:06:ca:5d:ef:59:5f:8a:
61:9c:6e:c7:2e:d2:47:bf:e7:59:f3:66:a7:c6:17:09:8d:ce:
b1:8c:52:ee:4b:90:e4:12:20:25:a9:f0:9b:a9:a3:4b:a6:3a:
63:54:a2:80:c2:04:8f:51:9f:da:dc:97:b4:96:a6:f8:a2:89:
4b:e5:f1:d6:8f:3d:ed:58:9d:04:23:a7:7b:fd:e7:11:ae:c4:
15:f4:d0:1c:ea:0a:13:5e:3a:cc:cc:f8:c7:62:b1:e0:b8:79:
b7:fd:03:9a:fe:97:ca:c0:0a:28:1e:9a:67:ce:00:70:25:1e:
57:02:25:2c:47:6a:68:84:8c:ee:18:63:8d:9c:85:7b:d3:01:
77:62:ab:aa:f0:44:59:b7:94:3f:fd:49:46:d0:b5:1c:57:79:
e9:98:eb:17:cc:db:77:a3:e7:89:b6:2e:82:9b:51:a5:da:a7:
26:6f:06:10:89:e0:e5:6c:f6:7f:97:76:2f:5a:ae:3d:9c:68:
0d:72:20:83
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAfswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OURCNUVBRjExMC8GA1UEBRMoRDNFMkUwQkNFQjYxRkI5QzQ1Mjc4MjZFNjEwRDQ2
NzY5OUQ2M0UxNDAeFw0yNDA0MjYxMDMyNThaFw00MzA0MzAxMDMyNThaMBgxFjAU
BgNVBAMTDTY2MmI4MmRlLTAwY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC4SQjY7oLkFfQkAixgu9Zglzy1bb4H8FdAFT8xZusedcnyDG6vp0JtbAE9
DPahzw6zSkTW0frTx91Blw77w+KVw+XFbmwvPlMDZTgmvHBC3GBS+Yovr8LqnvHS
ahxS5IuNttyd+WmYMZvPfS8/mt5XH06iTh1Xkrbu4efHutI9kT+5Ccc52yj9DUYF
bHrMlCE0Ny8JyJ9qZOEwDq2rSL9xRawaT8AwEG5aARxs0o2ZgY7oWTGrsW/7Ot9C
fC8UgmYtWlT8aRNHGuYgjqqV1xCk47rVIkoY6yVs5C126QBz9A1dnDTAVGjwXDVo
7YUSxKn5H0gEJMpSE+ys9sbRbr7LAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUXdDh
HNH8/J7L/GZdOnEigUwmTHswHwYDVR0jBBgwFoAU0+LgvOth+5xFJ4JuYQ1GdpnW
PhQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYxMjIyNDY4LzAtTGd2
T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzAtTGd2T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYx
MjIyNDY4LzVCOTFDNkI4MDNCODExRUZBNEM5Q0UzNjAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAApSZAwDQYJKoZIhvcNAQEL
BQADggEBAFBVEw0qolX3/IJAByNlexh/Zc30IW8a5kC8/CgJ5b/Brpu9fTBSSdbU
21hUA52VwZ8egtKVFTlkkTIjddwtpP6xBspd71lfimGcbscu0ke/51nzZqfGFwmN
zrGMUu5LkOQSICWp8Jupo0umOmNUooDCBI9Rn9rcl7SWpviiiUvl8daPPe1YnQQj
p3v95xGuxBX00BzqChNeOszM+MdiseC4ebf9A5r+l8rACigemmfOAHAlHlcCJSxH
amiEjO4YY42chXvTAXdiq6rwRFm3lD/9SUbQtRxXeemY6xfM23ej54m2LoKbUaXa
pyZvBhCJ4OVs9n+Xdi9arj2caA1yIIM=
-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org