Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/C38CBD7203B811EF86521F38017001B1.roa
File: C38CBD7203B811EF86521F38017001B1.roa (raw, json)
Hash identifier: 2WcQX+9AjIfrNmsdsiKQyVMoPWChqItR+h5OqUTMfRk=
Subject key identifier: 65:5C:37:18:2A:1A:AD:75:4C:FF:8B:EA:75:E3:B3:56:4F:DE:FE:01
Certificate issuer: /CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Certificate serial: 01FF
Authority key identifier: D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/C38CBD7203B811EF86521F38017001B1.roa
Signing time: Fri 26 Apr 2024 10:35:56 +0000
ROA not before: Fri 26 Apr 2024 10:35:53 +0000
ROA not after: Thu 30 Apr 2043 10:35:53 +0000
asID: 30988
IP address blocks: 41.73.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.mft
rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 511 (0x1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369DB5EAF/serialNumber=D3E2E0BCEB61FB9C4527826E610D467699D63E14
Validity
Not Before: Apr 26 10:35:53 2024 GMT
Not After : Apr 30 10:35:53 2043 GMT
Subject: CN=662b838c-463e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:60:63:77:39:ea:d3:d4:0a:25:4e:0d:6d:
e6:be:05:e8:42:10:38:e0:45:02:49:87:ab:d5:39:
42:1f:9b:7f:9f:8d:81:c5:fb:d2:75:cc:61:1b:16:
40:a3:0f:53:18:bc:ed:a3:01:fd:0a:4f:a8:a7:3d:
47:e0:fc:45:f4:1a:1e:c3:75:d6:5b:b0:0b:3a:91:
90:d4:01:c0:db:4b:45:e8:bb:ba:ac:71:50:1f:e1:
3a:86:a3:d0:08:a4:16:b8:96:08:6c:f0:36:55:93:
68:fb:ca:d7:63:ed:fb:ee:f6:3e:48:c1:27:de:a2:
e0:3a:0a:53:50:47:0a:29:ef:6b:23:96:3e:da:1f:
2a:ae:49:74:e2:65:e6:c3:14:c8:98:07:b2:6d:3b:
df:45:31:5b:58:02:3e:1c:59:82:23:32:7e:21:f5:
7d:91:e3:84:43:e2:c7:a5:08:f0:42:9e:1b:3c:91:
41:87:0e:37:54:e9:d4:5c:bb:21:34:bc:10:2a:d1:
8a:0b:53:e7:12:a8:45:02:39:6a:b2:10:e1:13:9f:
a3:91:00:d2:50:8a:2c:32:be:fc:42:66:80:27:4e:
80:6b:9f:58:88:88:6a:94:b9:81:02:24:18:5c:a9:
43:60:42:26:a9:12:0c:6f:13:c5:c1:a8:fa:0c:87:
7c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:5C:37:18:2A:1A:AD:75:4C:FF:8B:EA:75:E3:B3:56:4F:DE:FE:01
X509v3 Authority Key Identifier:
keyid:D3:E2:E0:BC:EB:61:FB:9C:45:27:82:6E:61:0D:46:76:99:D6:3E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0-LgvOth-5xFJ4JuYQ1GdpnWPhQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369DB5E/D1EA5914BF3111EDA7E717D0F1222468/C38CBD7203B811EF86521F38017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.73.146.0/24
Signature Algorithm: sha256WithRSAEncryption
87:c8:f5:8d:37:50:6e:41:b1:3b:66:4c:28:09:74:d9:95:b5:
35:58:c1:9e:b1:6c:df:96:6e:c1:20:d5:1e:7e:dc:34:15:66:
3d:78:c1:e5:02:f9:8f:db:e6:2c:00:82:a8:de:49:10:66:ba:
84:52:80:38:f3:75:a1:8b:43:ae:dd:fc:2b:1a:13:f3:af:e3:
72:df:8f:70:b4:af:00:41:72:67:69:1f:03:ea:df:71:4e:20:
8f:47:39:3d:03:20:4b:07:fb:b4:01:6a:09:76:59:44:4c:cb:
7b:32:3f:5e:fe:16:c0:6b:98:78:3a:32:5b:43:ef:b4:1f:e3:
e5:9e:2a:e8:4d:40:ed:eb:0c:76:ac:65:b1:2b:c7:51:07:cf:
d4:55:eb:ca:59:42:da:e1:ff:39:a7:74:a4:86:d2:89:fd:27:
bb:65:78:ff:fa:21:5d:b4:06:25:fb:14:c3:20:f7:95:61:f9:
02:f5:c7:fe:c0:45:f8:b4:c0:72:36:cc:6b:99:ed:f2:4b:6e:
76:bc:62:65:77:77:47:88:47:8d:eb:ad:23:db:49:bc:d7:b3:
d8:fd:aa:e6:80:31:05:df:78:22:71:29:df:95:19:03:3a:a0:
b0:a5:ba:91:a6:a5:95:f0:ba:89:7e:28:12:8d:e6:e2:60:07:
5c:e2:5a:d4
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OURCNUVBRjExMC8GA1UEBRMoRDNFMkUwQkNFQjYxRkI5QzQ1Mjc4MjZFNjEwRDQ2
NzY5OUQ2M0UxNDAeFw0yNDA0MjYxMDM1NTNaFw00MzA0MzAxMDM1NTNaMBgxFjAU
BgNVBAMTDTY2MmI4MzhjLTQ2M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQu2Bjdznq09QKJU4Nbea+BehCEDjgRQJJh6vVOUIfm3+fjYHF+9J1zGEb
FkCjD1MYvO2jAf0KT6inPUfg/EX0Gh7DddZbsAs6kZDUAcDbS0Xou7qscVAf4TqG
o9AIpBa4lghs8DZVk2j7ytdj7fvu9j5IwSfeouA6ClNQRwop72sjlj7aHyquSXTi
ZebDFMiYB7JtO99FMVtYAj4cWYIjMn4h9X2R44RD4selCPBCnhs8kUGHDjdU6dRc
uyE0vBAq0YoLU+cSqEUCOWqyEOETn6ORANJQiiwyvvxCZoAnToBrn1iIiGqUuYEC
JBhcqUNgQiapEgxvE8XBqPoMh3wPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUZVw3
GCoarXVM/4vqdeOzVk/e/gEwHwYDVR0jBBgwFoAU0+LgvOth+5xFJ4JuYQ1GdpnW
PhQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYxMjIyNDY4LzAtTGd2
T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzAtTGd2T3RoLTV4Rko0SnVZUTFHZHBuV1BoUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjlEQjVFL0QxRUE1OTE0QkYzMTExRURBN0U3MTdEMEYx
MjIyNDY4L0MzOENCRDcyMDNCODExRUY4NjUyMUYzODAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAApSZIwDQYJKoZIhvcNAQEL
BQADggEBAIfI9Y03UG5BsTtmTCgJdNmVtTVYwZ6xbN+WbsEg1R5+3DQVZj14weUC
+Y/b5iwAgqjeSRBmuoRSgDjzdaGLQ67d/CsaE/Ov43Lfj3C0rwBBcmdpHwPq33FO
II9HOT0DIEsH+7QBagl2WURMy3syP17+FsBrmHg6MltD77Qf4+WeKuhNQO3rDHas
ZbErx1EHz9RV68pZQtrh/zmndKSG0on9J7tleP/6IV20BiX7FMMg95Vh+QL1x/7A
Rfi0wHI2zGuZ7fJLbna8YmV3d0eIR43rrSPbSbzXs9j9quaAMQXfeCJxKd+VGQM6
oLClupGmpZXwuol+KBKN5uJgB1ziWtQ=
-----END CERTIFICATE-----
Generated at Tue May 21 02:53:20 2024 by rpki-client on console-fra.rpki-client.org