Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A4E1241E5FD211EF867BDA77762E951A.roa
File: A4E1241E5FD211EF867BDA77762E951A.roa (raw, json)
Hash identifier: zKqkWjXQKLviduKuQs8CcF6kO9y5LGaxWQboRjofXP4=
Subject key identifier: E4:65:9C:0C:B3:B2:2B:00:F5:53:6F:BF:51:19:89:A5:90:4A:8B:89
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 04E0
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A4E1241E5FD211EF867BDA77762E951A.roa
Signing time: Wed 21 Aug 2024 15:32:59 +0000
ROA not before: Wed 21 Aug 2024 15:32:53 +0000
ROA not after: Mon 21 Aug 2034 15:32:53 +0000
asID: 37645
IP address blocks: 102.209.4.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1248 (0x4e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Aug 21 15:32:53 2024 GMT
Not After : Aug 21 15:32:53 2034 GMT
Subject: CN=66c608aa-2009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:69:1e:86:8a:dc:08:bf:59:9e:be:dd:09:66:
cb:95:b1:b0:8c:30:00:9c:5c:a5:aa:8e:bb:82:ce:
60:32:3f:8b:6c:f9:78:3b:b7:63:88:f6:75:8a:15:
75:64:3f:99:06:ac:aa:a3:79:25:0a:b1:6d:d5:ad:
12:15:e5:d8:3f:b3:75:3c:13:0d:7d:c0:0f:82:06:
1c:6b:15:49:85:3b:56:1b:52:ed:77:7a:66:74:d5:
2a:9d:e3:b5:6a:ac:21:9c:96:ab:25:68:c9:32:0a:
15:8f:3b:cf:82:2d:07:0c:0d:db:e8:3e:9b:8a:39:
3b:1b:e0:87:41:b8:52:ce:ed:63:9b:55:97:f8:a5:
e1:82:c6:7e:54:db:ae:9f:47:f4:42:a3:7f:4b:06:
4c:10:b2:92:85:47:69:e4:8e:e6:ad:72:bd:d1:93:
55:7f:fa:d5:f6:e1:2c:39:60:46:2f:06:dd:70:b8:
6f:8c:ea:83:8a:d3:25:ba:f5:28:fa:1d:73:84:2f:
91:ee:f3:7f:d1:b9:71:62:bc:90:53:37:21:66:ba:
ce:68:66:ba:51:e6:93:f4:8a:29:85:ac:58:f9:69:
c6:06:97:af:8e:cc:07:90:ad:cd:cc:af:fe:c1:97:
2a:48:59:c9:36:51:fe:4e:e9:b1:3b:e8:38:12:2b:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:65:9C:0C:B3:B2:2B:00:F5:53:6F:BF:51:19:89:A5:90:4A:8B:89
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/A4E1241E5FD211EF867BDA77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:a1:0d:45:41:12:14:c8:ac:76:80:1f:9d:47:02:bd:70:fe:
25:ca:e4:13:e1:34:94:a2:fb:b4:d2:89:b3:ee:d0:12:9b:32:
54:da:97:68:27:0c:d6:97:45:7e:bf:b5:5f:6f:95:81:c3:ba:
54:5f:8d:b1:dd:7f:e0:35:39:8e:2f:ff:fa:38:a0:28:8b:1a:
7c:82:f6:c4:b9:ba:42:04:7e:fc:90:dc:b5:32:c8:ea:5e:e2:
e8:71:58:5e:49:2d:22:9c:45:29:27:70:89:aa:f7:5c:3f:c3:
71:6f:bd:12:6c:6d:78:14:3b:f6:9a:72:b1:63:c9:ce:87:e6:
78:ff:b7:3c:01:1b:7b:a6:38:e0:bf:9a:8d:b2:0c:9c:81:c0:
71:5f:b6:eb:7c:b6:f5:85:8f:20:5a:98:b5:1a:48:50:20:3a:
fe:50:30:c1:c0:39:e3:f1:1a:b9:f8:ff:f7:f0:88:46:c5:06:
2f:08:34:97:0a:f0:98:5d:5c:d9:2f:2f:07:c3:b9:17:5b:54:
72:41:7a:61:15:e6:c2:ad:5f:db:8d:4f:7f:c9:2b:21:4e:65:
cc:9e:09:4c:1e:84:cf:c3:66:77:57:4b:15:4f:83:f9:82:e0:
05:2b:52:72:f5:22:f9:f5:48:69:07:99:4e:15:19:3d:8e:f6:
58:8b:01:90
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTFDRUZBRjExMC8GA1UEBRMoODJGMUM2NjExQTNBMTQ2N0RCM0Q3OEE0QTVGRUQ1
MEEwOEE1N0IxMzAeFw0yNDA4MjExNTMyNTNaFw0zNDA4MjExNTMyNTNaMBgxFjAU
BgNVBAMTDTY2YzYwOGFhLTIwMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDbaR6GitwIv1mevt0JZsuVsbCMMACcXKWqjruCzmAyP4ts+Xg7t2OI9nWK
FXVkP5kGrKqjeSUKsW3VrRIV5dg/s3U8Ew19wA+CBhxrFUmFO1YbUu13emZ01Sqd
47VqrCGclqslaMkyChWPO8+CLQcMDdvoPpuKOTsb4IdBuFLO7WObVZf4peGCxn5U
266fR/RCo39LBkwQspKFR2nkjuatcr3Rk1V/+tX24Sw5YEYvBt1wuG+M6oOK0yW6
9Sj6HXOEL5Hu83/RuXFivJBTNyFmus5oZrpR5pP0iimFrFj5acYGl6+OzAeQrc3M
r/7BlypIWck2Uf5O6bE76DgSKws5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5GWc
DLOyKwD1U2+/URmJpZBKi4kwHwYDVR0jBBgwFoAUgvHGYRo6FGfbPXikpf7VCgil
exMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4QTAxNENFL2d2SEdZ
Um82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d2SEdZUm82RkdmYlBYaWtwZjdWQ2dpbGV4TS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkExQ0VGLzdGMzg4REU0RjEzODExRUI5MTdGRDcxN0Q4
QTAxNENFL0E0RTEyNDFFNUZEMjExRUY4NjdCREE3Nzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm0QQwDQYJKoZIhvcNAQEL
BQADggEBAH6hDUVBEhTIrHaAH51HAr1w/iXK5BPhNJSi+7TSibPu0BKbMlTal2gn
DNaXRX6/tV9vlYHDulRfjbHdf+A1OY4v//o4oCiLGnyC9sS5ukIEfvyQ3LUyyOpe
4uhxWF5JLSKcRSkncImq91w/w3FvvRJsbXgUO/aacrFjyc6H5nj/tzwBG3umOOC/
mo2yDJyBwHFftut8tvWFjyBamLUaSFAgOv5QMMHAOePxGrn4//fwiEbFBi8INJcK
8JhdXNkvLwfDuRdbVHJBemEV5sKtX9uNT3/JKyFOZcyeCUwehM/DZndXSxVPg/mC
4AUrUnL1Ivn1SGkHmU4VGT2O9liLAZA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:18 2024 by rpki-client on console-ams.rpki-client.org