Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7EB3E7FA03BA11EF9888BB48017001B1.roa
File: 7EB3E7FA03BA11EF9888BB48017001B1.roa (raw, json)
Hash identifier: 8kFtpikZunY+lfUkg34+p4H/6y7KoFeGsFbV13OrRZM=
Subject key identifier: A8:E0:6F:98:6C:AD:41:54:CA:56:87:87:5A:6B:33:A7:B1:FC:BE:A3
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 0213
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7EB3E7FA03BA11EF9888BB48017001B1.roa
Signing time: Fri 26 Apr 2024 10:48:20 +0000
ROA not before: Fri 26 Apr 2024 10:48:16 +0000
ROA not after: Thu 30 Apr 2043 10:48:16 +0000
asID: 30988
IP address blocks: 41.73.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 531 (0x213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:48:16 2024 GMT
Not After : Apr 30 10:48:16 2043 GMT
Subject: CN=662b8674-1b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5c:0a:ec:c3:6d:ea:a6:ff:ae:b3:73:4a:b4:
e6:d9:7e:5a:97:32:68:89:c0:c4:2a:d5:46:eb:0e:
12:2c:ee:68:79:b2:1b:74:31:76:02:36:3b:98:db:
91:45:c7:26:43:90:4d:e9:6d:ec:1e:1a:88:fc:95:
cc:af:3d:05:d5:fd:12:0b:42:08:f9:30:6d:07:c3:
8e:94:88:68:8a:1e:75:5c:3a:49:b3:6d:74:c6:d2:
05:ff:66:27:b5:b2:ec:74:4f:e5:03:84:8d:3b:0a:
99:ef:d8:99:b1:81:24:94:25:16:03:14:8f:ce:72:
90:ef:35:16:b6:a8:9e:78:7f:b1:4c:f0:f6:78:1c:
de:f2:b7:4c:e5:b5:62:a5:46:15:a3:3b:45:36:52:
7b:17:a3:ef:5e:3b:3e:87:06:fb:fa:00:10:b2:83:
d3:8f:c3:67:c8:98:84:d9:82:c3:c4:a2:56:68:00:
00:4e:42:c0:61:b5:80:15:9f:7f:a3:16:ff:d8:bb:
d5:87:f0:97:f5:a9:cf:7a:df:17:bb:56:bf:c7:d2:
4b:01:4c:f4:7c:77:36:f8:4f:71:95:0a:39:24:23:
9e:d1:8b:97:dd:7b:22:f9:1d:d5:d7:6b:d1:e8:de:
97:68:82:2f:9c:42:9c:25:34:2f:d9:09:21:e6:e5:
94:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E0:6F:98:6C:AD:41:54:CA:56:87:87:5A:6B:33:A7:B1:FC:BE:A3
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/7EB3E7FA03BA11EF9888BB48017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.156.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:41:b5:8a:a8:d4:22:a0:48:38:90:04:96:f7:d0:24:90:7e:
fb:65:93:e1:aa:71:79:73:50:38:1b:f1:84:75:54:05:05:93:
2e:da:23:f3:7b:91:5c:41:06:0c:e9:28:f3:e2:2e:3a:b3:92:
14:9d:7e:7d:05:f3:dc:14:b4:19:35:fa:e4:4c:bb:db:3c:06:
10:7b:d8:05:89:4a:b9:53:ee:33:36:ee:81:1c:24:96:aa:96:
37:cb:c9:b1:a0:ea:a0:4b:91:8f:8f:e4:e6:b1:0f:04:ca:5d:
ac:df:f5:0f:05:93:03:51:5b:d9:ad:d6:3e:f6:53:f0:f9:5a:
3c:d9:2a:df:df:78:cb:92:57:ad:22:ea:c2:ba:ee:66:e7:d0:
ba:4a:1d:29:10:30:df:c2:52:e0:38:a6:5d:b1:76:d2:71:80:
7a:a8:d7:f4:9f:e2:11:49:42:2b:1c:66:87:71:5d:42:72:70:
e7:f7:42:c3:86:ee:42:c6:fa:fe:69:7c:7a:f4:ce:f5:4f:f9:
ab:67:bb:b4:e2:4a:33:a2:cf:c5:84:c2:70:56:fe:1d:a7:dc:
b8:7c:97:86:66:76:91:90:ea:9b:1c:b9:ec:48:a6:b7:4e:19:
79:15:9d:a0:4c:d7:54:d5:83:65:8f:bc:f6:2f:ce:d7:f8:2c:
f9:de:b5:0e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OURCNUVBRjExMC8GA1UEBRMoRDNFMkUwQkNFQjYxRkI5QzQ1Mjc4MjZFNjEwRDQ2
NzY5OUQ2M0UxNDAeFw0yNDA0MjYxMDQ4MTZaFw00MzA0MzAxMDQ4MTZaMBgxFjAU
BgNVBAMTDTY2MmI4Njc0LTFiMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfXArsw23qpv+us3NKtObZflqXMmiJwMQq1UbrDhIs7mh5sht0MXYCNjuY
25FFxyZDkE3pbeweGoj8lcyvPQXV/RILQgj5MG0Hw46UiGiKHnVcOkmzbXTG0gX/
Zie1sux0T+UDhI07Cpnv2JmxgSSUJRYDFI/OcpDvNRa2qJ54f7FM8PZ4HN7yt0zl
tWKlRhWjO0U2UnsXo+9eOz6HBvv6ABCyg9OPw2fImITZgsPEolZoAABOQsBhtYAV
n3+jFv/Yu9WH8Jf1qc963xe7Vr/H0ksBTPR8dzb4T3GVCjkkI57Ri5fdeyL5HdXX
a9Ho3pdogi+cQpwlNC/ZCSHm5ZSVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUqOBv
mGytQVTKVoeHWmszp7H8vqMwHwYDVR0jBBgwFoAU0+LgvOth+5xFJ4JuYQ1GdpnW
PhQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYxMjIyNDY4LzAtTGd2
T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzAtTGd2T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYx
MjIyNDY4LzdFQjNFN0ZBMDNCQTExRUY5ODg4QkI0ODAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAApSZwwDQYJKoZIhvcNAQEL
BQADggEBALJBtYqo1CKgSDiQBJb30CSQfvtlk+GqcXlzUDgb8YR1VAUFky7aI/N7
kVxBBgzpKPPiLjqzkhSdfn0F89wUtBk1+uRMu9s8BhB72AWJSrlT7jM27oEcJJaq
ljfLybGg6qBLkY+P5OaxDwTKXazf9Q8FkwNRW9mt1j72U/D5WjzZKt/feMuSV60i
6sK67mbn0LpKHSkQMN/CUuA4pl2xdtJxgHqo1/Sf4hFJQiscZodxXUJycOf3QsOG
7kLG+v5pfHr0zvVP+atnu7TiSjOiz8WEwnBW/h2n3Lh8l4ZmdpGQ6pscuexIprdO
GXkVnaBM11TVg2WPvPYvztf4LPnetQ4=
-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org