Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/8A36DFD403B411EFBCF69916017001B1.roa
File: 8A36DFD403B411EFBCF69916017001B1.roa (raw, json)
Hash identifier: xKMBf2rSSOixjAS2vNdhJv84bn3oPMKHm8mgP2NWS3A=
Subject key identifier: 2E:9C:22:CE:92:35:50:CF:DB:E8:4E:6A:0E:8C:ED:FF:1C:60:2C:C2
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01D3
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/8A36DFD403B411EFBCF69916017001B1.roa
Signing time: Fri 26 Apr 2024 10:05:42 +0000
ROA not before: Fri 26 Apr 2024 10:05:38 +0000
ROA not after: Thu 30 Apr 2043 10:05:38 +0000
asID: 30988
IP address blocks: 196.200.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 May 2024 00:05:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467 (0x1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:05:38 2024 GMT
Not After : Apr 30 10:05:38 2043 GMT
Subject: CN=662b7c76-81e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:62:8d:07:42:76:23:10:64:a5:dc:fc:5d:22:
88:67:40:30:a9:3a:9b:ef:de:27:44:81:4c:6d:fd:
97:c0:0e:6c:dd:b8:1e:96:90:9e:98:d8:50:d9:1c:
da:ed:d6:ec:60:8e:ff:55:8f:6f:05:dd:76:ee:87:
5a:e5:e9:8d:bd:4c:7e:03:80:ce:4a:1d:97:29:4b:
fd:0c:5a:c7:6d:34:36:38:e9:b5:8d:74:d2:a5:33:
c8:ff:99:c7:91:e3:e1:be:33:1b:83:41:1e:b9:bd:
63:da:8b:08:8c:50:68:db:3e:d4:8b:51:b6:02:5c:
86:4e:0b:e5:6f:d6:ca:12:d5:fb:8e:88:b2:fe:61:
ec:37:9e:1b:20:45:a7:75:ac:75:c1:16:20:82:67:
ec:58:e1:48:18:5b:32:aa:68:28:36:bb:d5:15:d6:
0e:48:28:2a:e8:34:69:01:6e:ec:b6:75:c7:79:2c:
19:57:3c:01:2d:5a:a3:97:0b:d8:4c:c3:cb:55:5c:
c9:0a:bd:33:1f:73:c1:67:a8:75:60:8c:c2:cb:47:
c5:72:fb:f2:33:32:2a:aa:8b:bd:86:bc:7e:76:65:
1d:94:b4:72:a8:60:62:e9:0d:9d:5c:47:b8:bf:ed:
ba:fb:e5:dc:25:ff:5b:96:8f:15:b7:ab:37:87:6c:
30:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9C:22:CE:92:35:50:CF:DB:E8:4E:6A:0E:8C:ED:FF:1C:60:2C:C2
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/8A36DFD403B411EFBCF69916017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.123.0/24
Signature Algorithm: sha256WithRSAEncryption
82:71:80:a3:84:b2:be:71:3a:f6:08:a1:03:cb:0f:b8:2f:53:
32:96:22:00:d3:74:d4:d9:07:f2:f2:74:6d:b3:f6:47:f2:0c:
2a:3e:09:cf:7b:93:72:a3:80:dd:c0:81:ea:d4:07:d7:c0:4a:
38:e9:2f:8f:95:16:53:d4:3d:37:0e:5b:f6:82:15:75:04:67:
9d:a3:23:d4:8d:ed:a9:b1:33:d9:e4:47:98:6d:f9:91:ca:7d:
6d:c0:7b:09:2d:81:b9:51:c2:0d:6a:d6:13:26:ed:b6:55:2f:
55:07:56:74:ad:b9:f0:40:03:98:94:c6:82:0a:ba:e4:d9:e2:
32:38:e6:17:e0:40:ad:3f:0c:9f:6f:45:d0:b5:60:8b:a6:d7:
16:22:89:02:13:b2:da:be:dd:b1:17:86:35:18:78:02:05:9a:
b9:4d:a7:50:23:a0:43:38:7b:39:9c:47:a1:29:7d:30:df:d0:
63:75:f9:45:e0:34:27:34:28:c9:55:3a:f6:28:a8:5a:4d:3c:
90:9e:07:a0:fd:08:1d:7c:a4:a8:3f:ef:6e:ab:08:8c:52:b0:
ad:a7:4c:e8:0f:64:ca:3c:7e:7d:91:58:3e:af:44:84:c6:cf:
f5:a4:be:4d:43:4f:d2:c5:95:2d:c2:1f:b5:f6:69:9b:a9:89:
db:62:12:91
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OURCNUVBRjExMC8GA1UEBRMoRDNFMkUwQkNFQjYxRkI5QzQ1Mjc4MjZFNjEwRDQ2
NzY5OUQ2M0UxNDAeFw0yNDA0MjYxMDA1MzhaFw00MzA0MzAxMDA1MzhaMBgxFjAU
BgNVBAMTDTY2MmI3Yzc2LTgxZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCZYo0HQnYjEGSl3PxdIohnQDCpOpvv3idEgUxt/ZfADmzduB6WkJ6Y2FDZ
HNrt1uxgjv9Vj28F3Xbuh1rl6Y29TH4DgM5KHZcpS/0MWsdtNDY46bWNdNKlM8j/
mceR4+G+MxuDQR65vWPaiwiMUGjbPtSLUbYCXIZOC+Vv1soS1fuOiLL+Yew3nhsg
Rad1rHXBFiCCZ+xY4UgYWzKqaCg2u9UV1g5IKCroNGkBbuy2dcd5LBlXPAEtWqOX
C9hMw8tVXMkKvTMfc8FnqHVgjMLLR8Vy+/IzMiqqi72GvH52ZR2UtHKoYGLpDZ1c
R7i/7br75dwl/1uWjxW3qzeHbDD1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQULpwi
zpI1UM/b6E5qDozt/xxgLMIwHwYDVR0jBBgwFoAU0+LgvOth+5xFJ4JuYQ1GdpnW
PhQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYxMjIyNDY4LzAtTGd2
T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzAtTGd2T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYx
MjIyNDY4LzhBMzZERkQ0MDNCNDExRUZCQ0Y2OTkxNjAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEyHswDQYJKoZIhvcNAQEL
BQADggEBAIJxgKOEsr5xOvYIoQPLD7gvUzKWIgDTdNTZB/LydG2z9kfyDCo+Cc97
k3KjgN3AgerUB9fASjjpL4+VFlPUPTcOW/aCFXUEZ52jI9SN7amxM9nkR5ht+ZHK
fW3AewktgblRwg1q1hMm7bZVL1UHVnStufBAA5iUxoIKuuTZ4jI45hfgQK0/DJ9v
RdC1YIum1xYiiQITstq+3bEXhjUYeAIFmrlNp1AjoEM4ezmcR6EpfTDf0GN1+UXg
NCc0KMlVOvYoqFpNPJCeB6D9CB18pKg/726rCIxSsK2nTOgPZMo8fn2RWD6vRITG
z/Wkvk1DT9LFlS3CH7X2aZupidtiEpE=
-----END CERTIFICATE-----
Generated at Wed May 22 02:56:15 2024 by rpki-client on console-ams.rpki-client.org