Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/980A722003B311EF86B63910017001B1.roa
File: 980A722003B311EF86B63910017001B1.roa (raw, json)
Hash identifier: wKMuoXYYXIiS/ZLS7PWLzLXdIFcknzJKp/rpFSrvhH8=
Subject key identifier: C6:49:39:A2:25:F0:0D:D9:A0:D9:41:3B:64:1A:20:64:6B:84:A1:A6
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01C7
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/980A722003B311EF86B63910017001B1.roa
Signing time: Fri 26 Apr 2024 09:58:56 +0000
ROA not before: Fri 26 Apr 2024 09:58:52 +0000
ROA not after: Thu 30 Apr 2043 09:58:52 +0000
asID: 30988
IP address blocks: 196.200.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455 (0x1c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF
Validity
Not Before: Apr 26 09:58:52 2024 GMT
Not After : Apr 30 09:58:52 2043 GMT
Subject: CN=662b7ae0-837d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e6:ea:2e:87:af:b8:14:4d:be:d8:b0:13:14:
6a:95:65:12:17:a7:9e:0b:97:0c:5b:79:10:75:2a:
0b:53:b1:f4:72:ec:8b:0e:46:e9:b0:00:aa:55:ae:
fd:83:a1:77:ac:e6:72:f1:c0:a6:85:a9:b0:0b:4f:
86:76:d2:97:00:06:5e:ac:79:77:41:fe:a8:25:6c:
a7:15:ff:12:a6:5d:92:5a:c4:d3:45:a4:0f:2f:a8:
d6:90:d5:86:7f:62:d9:92:c9:3b:7e:29:c6:35:7d:
44:0e:84:d2:16:3c:35:25:5a:c5:dd:f5:5f:db:92:
ab:76:f0:8f:04:b8:5d:2d:d5:1d:4a:1d:d4:dc:e7:
e0:9e:59:2c:04:99:d3:95:0c:81:3e:0b:17:96:f4:
68:0b:f2:6f:45:61:f8:87:4a:38:19:e1:61:f0:a5:
a1:5e:b1:3a:4b:3d:a4:a7:35:29:8d:c6:c2:38:5b:
18:88:88:92:6a:73:3a:eb:dc:38:c5:e9:24:e8:f7:
01:74:da:c5:50:b6:7d:de:d4:55:1b:6d:26:e9:64:
8d:ac:2e:54:78:23:68:9a:93:2b:98:d8:43:49:31:
94:12:da:8f:47:5b:4d:38:14:7b:fa:02:17:b5:3d:
f9:78:e9:4c:8a:9c:75:98:95:e6:0d:57:da:36:7c:
31:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:49:39:A2:25:F0:0D:D9:A0:D9:41:3B:64:1A:20:64:6B:84:A1:A6
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/980A722003B311EF86B63910017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.117.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e4:f5:92:04:9a:f1:67:1f:b5:59:25:0d:00:e7:10:18:bd:
25:82:d8:aa:e3:22:25:2d:90:59:4d:d6:0d:de:91:f4:03:cc:
f7:24:71:5d:76:2c:10:7d:63:40:50:82:db:e4:ff:9e:6a:53:
3a:6b:c4:cc:b3:cc:f7:61:2f:02:b9:32:ba:dc:7f:b5:42:98:
19:46:2e:fd:50:32:6d:7b:58:14:4c:e4:b6:03:09:26:e4:53:
a6:39:1d:fa:37:e1:c0:8a:f6:af:58:fe:99:c7:2f:66:06:72:
9b:52:7c:30:5a:24:fc:3e:14:6a:d8:b5:fa:42:6b:c3:42:7e:
23:72:a6:a3:c9:b8:8a:ee:23:ad:01:73:ab:97:53:9b:41:bb:
36:83:d3:5a:e5:1b:2d:d8:6f:a0:69:8d:a9:7f:5e:ba:aa:91:
24:7a:b7:13:72:bb:3a:b6:9c:8d:02:ba:d3:1c:f7:f8:59:40:
1f:a6:dd:7f:32:52:89:b5:1e:33:40:2e:a6:b0:7a:d1:c0:14:
2b:a7:63:6f:bd:94:4a:91:21:c1:a1:e7:82:f2:ea:44:84:5f:
f7:ae:c8:32:91:20:19:fe:7c:de:cc:bc:73:da:73:dc:90:ef:
01:cb:6c:1b:a3:fa:7f:54:8d:33:f4:58:17:6b:fe:91:89:70:
5e:ee:55:25
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAccwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OURCNUVBRjExMC8GA1UEBRMoRDNFMkUwQkNFQjYxRkI5QzQ1Mjc4MjZFNjEwRDQ2
NzY5OUQ2M0UxNDAeFw0yNDA0MjYwOTU4NTJaFw00MzA0MzAwOTU4NTJaMBgxFjAU
BgNVBAMTDTY2MmI3YWUwLTgzN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDk5uouh6+4FE2+2LATFGqVZRIXp54LlwxbeRB1KgtTsfRy7IsORumwAKpV
rv2DoXes5nLxwKaFqbALT4Z20pcABl6seXdB/qglbKcV/xKmXZJaxNNFpA8vqNaQ
1YZ/YtmSyTt+KcY1fUQOhNIWPDUlWsXd9V/bkqt28I8EuF0t1R1KHdTc5+CeWSwE
mdOVDIE+CxeW9GgL8m9FYfiHSjgZ4WHwpaFesTpLPaSnNSmNxsI4WxiIiJJqczrr
3DjF6STo9wF02sVQtn3e1FUbbSbpZI2sLlR4I2iakyuY2ENJMZQS2o9HW004FHv6
Ahe1Pfl46UyKnHWYleYNV9o2fDGpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUxkk5
oiXwDdmg2UE7ZBogZGuEoaYwHwYDVR0jBBgwFoAU0+LgvOth+5xFJ4JuYQ1GdpnW
PhQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYxMjIyNDY4LzAtTGd2
T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzAtTGd2T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYx
MjIyNDY4Lzk4MEE3MjIwMDNCMzExRUY4NkI2MzkxMDAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADEyHUwDQYJKoZIhvcNAQEL
BQADggEBAJDk9ZIEmvFnH7VZJQ0A5xAYvSWC2KrjIiUtkFlN1g3ekfQDzPckcV12
LBB9Y0BQgtvk/55qUzprxMyzzPdhLwK5Mrrcf7VCmBlGLv1QMm17WBRM5LYDCSbk
U6Y5Hfo34cCK9q9Y/pnHL2YGcptSfDBaJPw+FGrYtfpCa8NCfiNypqPJuIruI60B
c6uXU5tBuzaD01rlGy3Yb6Bpjal/XrqqkSR6txNyuzq2nI0CutMc9/hZQB+m3X8y
Uom1HjNALqawetHAFCunY2+9lEqRIcGh54Ly6kSEX/euyDKRIBn+fN7MvHPac9yQ
7wHLbBuj+n9UjTP0WBdr/pGJcF7uVSU=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:30 2025 by rpki-client