Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/BE11892264E511E88A76232FF8AEA228.roa
File: BE11892264E511E88A76232FF8AEA228.roa (raw, json)
Hash identifier: dOR90EcGn41sg/4MsNNizB3oHEFvm4Z1e3qb8Nhf7Q0=
Subject key identifier: 23:3D:A8:08:2A:3E:DF:95:D5:59:4E:19:48:C4:FC:C8:29:56:40:C0
Certificate issuer: /CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Certificate serial: 02
Authority key identifier: 33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/BE11892264E511E88A76232FF8AEA228.roa
Signing time: Thu 31 May 2018 15:17:33 +0000
ROA not before: Thu 31 May 2018 15:17:28 +0000
ROA not after: Wed 31 May 2028 15:17:28 +0000
asID: 327817
IP address blocks: 154.73.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.mft
rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 May 2024 00:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A2CD2AF/serialNumber=335A53C1132E540C3AB5DF42F14887B3324DEB44
Validity
Not Before: May 31 15:17:28 2018 GMT
Not After : May 31 15:17:28 2028 GMT
Subject: CN=5b10120d-78ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:df:e4:52:3e:69:54:32:88:01:91:e8:00:41:
4e:46:a7:c1:30:37:98:dc:8b:4a:84:2a:8a:70:91:
31:98:64:7e:ce:72:d9:81:06:d8:e2:eb:0b:59:47:
b3:80:31:91:19:12:9f:3a:62:4b:86:4d:f3:f5:bf:
aa:67:b8:94:b9:3b:cc:fd:a1:91:6e:ca:bb:65:c3:
25:6c:f0:a2:1c:94:20:b1:20:fa:07:bb:20:06:2d:
24:3a:2b:d4:44:a3:e4:b5:5b:13:92:30:3c:7d:1b:
b5:ab:6b:23:98:2b:68:14:7a:e3:ce:c5:a1:96:a1:
20:15:58:31:b4:5a:40:75:23:fa:d0:e0:db:d9:20:
5b:41:4b:87:96:6b:e2:57:4f:d4:e0:94:d3:85:18:
c4:59:84:24:56:1a:d2:1d:1d:f0:fa:ca:7e:4e:d5:
04:e1:f3:33:d7:5a:e4:47:3b:6c:4c:0f:0e:d0:c0:
9e:1a:f7:ee:e0:8a:3d:c8:fa:95:32:53:08:a3:d0:
9b:b0:c8:05:fc:63:5f:7f:8a:9f:e5:5b:c4:72:c5:
f1:c0:8f:ed:3e:06:13:55:ba:ef:42:e4:cd:6a:68:
a8:16:13:d7:a8:60:6a:3a:7a:9a:e0:e5:b7:4f:08:
7b:68:52:b6:45:22:ae:12:af:91:7d:4a:4c:09:a6:
44:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3D:A8:08:2A:3E:DF:95:D5:59:4E:19:48:C4:FC:C8:29:56:40:C0
X509v3 Authority Key Identifier:
keyid:33:5A:53:C1:13:2E:54:0C:3A:B5:DF:42:F1:48:87:B3:32:4D:EB:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/M1pTwRMuVAw6td9C8UiHszJN60Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M1pTwRMuVAw6td9C8UiHszJN60Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A2CD2/553F50F064E511E8968FEF2EF8AEA228/BE11892264E511E88A76232FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.73.216.0/22
Signature Algorithm: sha256WithRSAEncryption
06:ac:d4:0f:96:7b:df:8e:ca:fb:2d:81:05:00:23:a6:b1:a2:
60:f7:9a:ea:f3:0e:2b:4e:3d:2d:d6:48:dc:7c:e1:2c:b0:e4:
7c:20:f8:8d:11:14:c0:39:0e:08:6b:3a:26:59:c8:bc:0b:88:
9a:3e:a9:1a:d1:7e:50:8a:fe:7c:44:b4:bf:98:bf:37:7d:82:
01:2c:79:19:46:a5:62:fd:7c:c8:a4:d9:44:80:6e:0f:ae:df:
61:fa:d9:b8:f3:7c:fc:4d:f7:7e:8f:63:84:c4:fc:c3:08:e4:
6f:06:a7:74:25:96:63:01:50:eb:11:2d:e5:f6:85:5d:43:78:
e6:ab:83:11:be:f4:70:3a:6b:f4:ab:85:61:d6:1b:ba:66:f7:
ec:99:df:93:80:77:5f:00:20:75:66:48:93:89:5f:f8:4f:76:
3f:e5:88:08:76:1e:99:23:1d:a8:50:ac:ce:10:18:ff:eb:9a:
62:14:78:c1:82:71:68:b9:7e:7b:41:c8:01:02:8b:8b:76:5b:
03:11:09:54:37:40:d1:48:7d:2c:de:03:ce:15:bb:a7:5e:25:
7b:4a:50:19:d6:31:24:1c:a8:2c:83:33:84:bd:a2:5c:61:11:
b4:08:64:59:da:f0:1e:1a:b0:b3:26:3f:16:10:cd:42:b7:48:
37:15:52:d4
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZB
MkNEMkFGMTEwLwYDVQQFEygzMzVBNTNDMTEzMkU1NDBDM0FCNURGNDJGMTQ4ODdC
MzMyNERFQjQ0MB4XDTE4MDUzMTE1MTcyOFoXDTI4MDUzMTE1MTcyOFowGDEWMBQG
A1UEAxMNNWIxMDEyMGQtNzhlYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKjf5FI+aVQyiAGR6ABBTkanwTA3mNyLSoQqinCRMZhkfs5y2YEG2OLrC1lH
s4AxkRkSnzpiS4ZN8/W/qme4lLk7zP2hkW7Ku2XDJWzwohyUILEg+ge7IAYtJDor
1ESj5LVbE5IwPH0btatrI5graBR6487FoZahIBVYMbRaQHUj+tDg29kgW0FLh5Zr
4ldP1OCU04UYxFmEJFYa0h0d8PrKfk7VBOHzM9da5Ec7bEwPDtDAnhr37uCKPcj6
lTJTCKPQm7DIBfxjX3+Kn+VbxHLF8cCP7T4GE1W670LkzWpoqBYT16hgajp6muDl
t08Ie2hStkUirhKvkX1KTAmmRAECAwEAAaOCAm4wggJqMB0GA1UdDgQWBBQjPagI
Kj7fldVZThlIxPzIKVZAwDAfBgNVHSMEGDAWgBQzWlPBEy5UDDq130LxSIezMk3r
RDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QTJDRDIvNTUzRjUwRjA2NEU1MTFFODk2OEZFRjJFRjhBRUEyMjgvTTFwVHdS
TXVWQXc2dGQ5QzhVaUhzekpONjBRLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTTFwVHdSTXVWQXc2dGQ5QzhVaUhzekpONjBRLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QTJDRDIvNTUzRjUwRjA2NEU1MTFFODk2OEZFRjJFRjhB
RUEyMjgvQkUxMTg5MjI2NEU1MTFFODhBNzYyMzJGRjhBRUEyMjgucm9hMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmknYMA0GCSqGSIb3DQEBCwUAA4IBAQAG
rNQPlnvfjsr7LYEFACOmsaJg95rq8w4rTj0t1kjcfOEssOR8IPiNERTAOQ4Iazom
Wci8C4iaPqka0X5Qiv58RLS/mL83fYIBLHkZRqVi/XzIpNlEgG4Prt9h+tm483z8
Tfd+j2OExPzDCORvBqd0JZZjAVDrES3l9oVdQ3jmq4MRvvRwOmv0q4Vh1hu6Zvfs
md+TgHdfACB1ZkiTiV/4T3Y/5YgIdh6ZIx2oUKzOEBj/65piFHjBgnFouX57QcgB
AouLdlsDEQlUN0DRSH0s3gPOFbunXiV7SlAZ1jEkHKgsgzOEvaJcYRG0CGRZ2vAe
GrCzJj8WEM1Ct0g3FVLU
-----END CERTIFICATE-----
Generated at Sun May 19 01:47:09 2024 by rpki-client on console-fra.rpki-client.org