Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/9E5D6708928111ED9F33B1E9F1222468.roa
File: 9E5D6708928111ED9F33B1E9F1222468.roa (raw, json)
Hash identifier: IFudCUkdHq1Zpz3PyDrq/xUDpQ0MHKE8CA1etAVXR0g=
Subject key identifier: 34:9F:C8:1B:73:F6:03:FB:A0:A3:0A:95:C3:52:EC:F4:EA:89:91:07
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 0258
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/9E5D6708928111ED9F33B1E9F1222468.roa
Signing time: Thu 12 Jan 2023 14:01:32 +0000
ROA not before: Thu 12 Jan 2023 14:01:28 +0000
ROA not after: Wed 12 Jan 2033 14:01:28 +0000
asID: 37645
IP address blocks: 102.213.100.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 600 (0x258)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Jan 12 14:01:28 2023 GMT
Not After : Jan 12 14:01:28 2033 GMT
Subject: CN=63c012bc-a06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2d:44:cb:20:4e:b0:db:32:c3:d9:ac:00:51:
42:da:f9:cd:97:ef:62:a8:0e:c1:df:ba:9b:bb:dc:
7a:3b:21:f8:e3:da:65:e3:16:f3:eb:f5:ec:49:12:
7f:5b:7d:d1:37:ee:d4:35:d0:82:19:d7:ef:f0:fc:
a0:23:5f:4f:2e:d2:d4:d5:81:32:ab:1e:d9:1c:b0:
e1:d3:16:27:f8:a4:1a:ce:b3:4d:01:26:79:36:c8:
bc:ae:ec:8f:d3:db:f6:98:4a:a4:72:46:34:e8:9d:
be:17:18:c8:7d:d4:cb:54:5b:5d:6a:cb:0a:c9:d1:
9b:b2:4a:7c:d2:26:67:83:fc:5d:e5:62:d0:11:c1:
0c:7b:64:70:be:8e:0e:b7:9c:16:c9:50:c1:0e:34:
a7:a4:c9:1f:72:97:31:ff:97:ff:b6:28:f1:11:af:
37:b5:12:46:59:80:66:e2:9a:7e:8e:4d:49:39:42:
cd:1a:44:9c:1d:be:c0:62:d7:85:a5:bf:5c:de:fa:
4d:30:7d:11:fa:5d:4c:b6:d9:38:96:17:91:42:fb:
0d:2a:a3:4b:43:24:ce:4a:d6:e7:22:fa:8b:2c:41:
aa:f9:53:cd:89:3f:41:23:1d:cb:17:ec:e1:31:36:
7f:45:bb:c9:22:57:c6:81:34:0b:03:b2:66:df:80:
c2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9F:C8:1B:73:F6:03:FB:A0:A3:0A:95:C3:52:EC:F4:EA:89:91:07
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/9E5D6708928111ED9F33B1E9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.100.0/22
Signature Algorithm: sha256WithRSAEncryption
37:2b:e8:19:a3:ea:b2:cc:d8:34:59:4d:be:82:a4:0b:b4:27:
bc:27:0d:a1:48:b9:7d:46:67:83:4c:d5:c7:10:a6:ec:52:50:
03:89:1e:29:16:df:f8:05:9b:c4:00:bd:c7:ab:62:89:96:f9:
02:60:7c:c5:6a:44:e7:f6:d8:f9:1c:f7:73:a9:69:81:ad:aa:
3a:6a:6f:89:90:e6:d9:62:fc:3a:15:c8:af:e0:7b:b4:06:6d:
57:16:5a:ff:5d:48:b6:a9:fe:45:a6:2e:a8:fe:a6:cf:56:57:
18:c1:bd:1f:43:ef:22:78:33:e1:b0:7c:12:c4:7d:cb:ae:c2:
fb:e3:ea:65:1b:3d:77:8d:8e:18:ba:56:e6:ed:40:e9:81:7d:
fe:05:28:96:59:c0:60:2f:da:a2:c0:f6:a6:9a:19:87:e9:4f:
1a:f3:db:61:5e:b6:27:9b:37:5b:d2:42:7d:00:ea:28:fc:5b:
38:43:f0:c7:8b:c5:e6:08:0e:37:47:cd:95:d1:87:05:89:7c:
56:66:69:8d:60:0e:83:7c:97:5e:14:dc:d3:4c:0d:32:d7:28:
b2:4f:b4:fa:5e:b8:95:c8:88:37:f9:1a:1f:4f:b3:d1:69:f9:
ad:f4:e4:49:0f:52:5b:e8:53:13:c0:13:b7:5d:b0:a4:0c:31:
c4:1c:fb:5a
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yMzAxMTIxNDAxMjhaFw0zMzAxMTIxNDAxMjhaMBgxFjAU
BgNVBAMMDTYzYzAxMmJjLWEwNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDeLUTLIE6w2zLD2awAUULa+c2X72KoDsHfupu73Ho7Ifjj2mXjFvPr9exJ
En9bfdE37tQ10IIZ1+/w/KAjX08u0tTVgTKrHtkcsOHTFif4pBrOs00BJnk2yLyu
7I/T2/aYSqRyRjTonb4XGMh91MtUW11qywrJ0ZuySnzSJmeD/F3lYtARwQx7ZHC+
jg63nBbJUMEONKekyR9ylzH/l/+2KPERrze1EkZZgGbimn6OTUk5Qs0aRJwdvsBi
14Wlv1ze+k0wfRH6XUy22TiWF5FC+w0qo0tDJM5K1uci+ossQar5U82JP0EjHcsX
7OExNn9Fu8kiV8aBNAsDsmbfgML5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUNJ/I
G3P2A/ugowqVw1Ls9OqJkQcwHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFLzlFNUQ2NzA4OTI4MTExRUQ5RjMzQjFFOUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1WQwDQYJKoZIhvcNAQEL
BQADggEBADcr6Bmj6rLM2DRZTb6CpAu0J7wnDaFIuX1GZ4NM1ccQpuxSUAOJHikW
3/gFm8QAvcerYomW+QJgfMVqROf22Pkc93OpaYGtqjpqb4mQ5tli/DoVyK/ge7QG
bVcWWv9dSLap/kWmLqj+ps9WVxjBvR9D7yJ4M+GwfBLEfcuuwvvj6mUbPXeNjhi6
VubtQOmBff4FKJZZwGAv2qLA9qaaGYfpTxrz22FetiebN1vSQn0A6ij8WzhD8MeL
xeYIDjdHzZXRhwWJfFZmaY1gDoN8l14U3NNMDTLXKLJPtPpeuJXIiDf5Gh9Ps9Fp
+a305EkPUlvoUxPAE7ddsKQMMcQc+1o=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org