Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/C1CD793ADCA911EEA16851C1775412E6.roa
File: C1CD793ADCA911EEA16851C1775412E6.roa (raw, json)
Hash identifier: kXp9RVNOYWnHm1NxTwD8L+mI7pYc0hf1M6fRaN+SwGo=
Subject key identifier: 52:DD:6D:71:19:88:D4:2D:D0:2A:5F:9A:48:F6:D9:F0:FC:C8:28:57
Certificate issuer: /CN=F36A41A0AF/serialNumber=5F228C46BEF2B4CBA94CB29F10C3680EE2883DB3
Certificate serial: 012B
Authority key identifier: 5F:22:8C:46:BE:F2:B4:CB:A9:4C:B2:9F:10:C3:68:0E:E2:88:3D:B3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/C1CD793ADCA911EEA16851C1775412E6.roa
Signing time: Thu 07 Mar 2024 17:40:15 +0000
ROA not before: Thu 07 Mar 2024 17:40:12 +0000
ROA not after: Fri 07 Mar 2025 17:40:12 +0000
asID: 37613
IP address blocks: 41.242.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.mft
rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299 (0x12b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A41A0AF/serialNumber=5F228C46BEF2B4CBA94CB29F10C3680EE2883DB3
Validity
Not Before: Mar 7 17:40:12 2024 GMT
Not After : Mar 7 17:40:12 2025 GMT
Subject: CN=65e9fbff-c65b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:7c:70:b9:05:ee:1a:14:56:b2:f6:dc:54:
50:0e:c5:67:25:fe:1c:87:49:c3:94:06:af:5c:0f:
66:15:da:d6:7d:71:b6:ef:a7:56:c1:9d:3e:f5:78:
89:52:0d:b6:57:27:52:e0:d8:92:43:08:30:c5:40:
26:b2:09:96:3c:31:41:9e:49:98:04:8f:0d:2d:f0:
cc:b3:4b:7b:81:be:69:eb:75:9e:28:ef:7a:0a:56:
37:72:0c:f3:a5:58:31:34:f3:e4:ab:3c:42:f7:73:
7c:a9:74:77:e8:5b:f2:41:ad:b0:6a:4b:e7:1f:8b:
a9:41:2a:e5:02:05:eb:14:f9:74:cd:cd:c2:30:64:
ac:51:30:6e:f6:4c:3a:4b:a1:15:6e:1f:76:e9:0f:
7c:cc:49:46:a9:72:7f:80:8f:05:68:8f:06:a4:09:
e5:44:d4:10:40:67:f8:2b:ce:0d:07:4e:d6:1e:01:
0f:66:77:27:71:f6:10:6b:08:0b:c2:4f:d8:d1:3e:
1a:ec:04:86:0a:d3:b7:8f:1d:8c:82:8e:5a:ea:9a:
e4:64:8d:a2:e5:cc:a2:97:4c:87:c2:79:4d:66:2e:
07:40:60:37:d1:b0:fe:83:f9:8e:6a:73:ca:87:16:
65:8e:84:83:14:88:43:91:33:44:b4:35:9a:32:c4:
54:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DD:6D:71:19:88:D4:2D:D0:2A:5F:9A:48:F6:D9:F0:FC:C8:28:57
X509v3 Authority Key Identifier:
keyid:5F:22:8C:46:BE:F2:B4:CB:A9:4C:B2:9F:10:C3:68:0E:E2:88:3D:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/XyKMRr7ytMupTLKfEMNoDuKIPbM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/XyKMRr7ytMupTLKfEMNoDuKIPbM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A41A0/F063CE320A9711EEB9B425234AD9E6FC/C1CD793ADCA911EEA16851C1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.115.0/24
Signature Algorithm: sha256WithRSAEncryption
56:3e:89:b5:2e:45:57:1a:05:33:3e:3c:16:b2:b3:3b:21:32:
11:c2:c0:7a:4e:42:cf:c0:84:eb:b2:7a:1d:a8:30:a6:92:93:
fb:88:40:14:cf:9a:17:59:ce:ba:16:bc:da:0f:8c:3f:ed:87:
95:57:31:4e:eb:e4:da:41:53:c0:26:cc:aa:a7:9b:f0:e2:7e:
39:98:b4:f5:13:cc:d1:9e:88:01:fe:ab:63:58:00:0d:77:21:
43:0c:42:40:0e:35:52:9b:57:99:f2:9d:02:9e:b5:25:50:de:
82:ba:e2:56:8b:49:56:95:11:49:54:e1:29:ac:8e:49:bb:4c:
a1:18:59:b4:90:c4:d6:23:5f:3a:9b:67:88:ae:9c:bd:bb:e7:
74:07:43:21:00:a0:4c:f9:93:b8:29:fa:74:4f:94:29:fe:5c:
cb:71:8c:d4:24:46:4d:15:94:42:ce:3c:d3:4a:e7:80:a9:25:
fe:1f:09:45:d8:1c:0f:d6:62:e8:0f:4d:f5:6e:db:72:98:2d:
4e:63:19:b4:d5:b1:ba:a6:b0:8d:93:2e:33:00:0a:5d:29:2e:
c8:d2:71:67:cd:4e:00:56:10:4d:87:9f:18:2f:19:a9:ed:50:
b2:34:85:f2:84:60:98:d4:a7:2a:3a:e3:26:9f:a0:ab:84:78:
20:d2:42:5b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICASswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQxQTBBRjExMC8GA1UEBRMoNUYyMjhDNDZCRUYyQjRDQkE5NENCMjlGMTBDMzY4
MEVFMjg4M0RCMzAeFw0yNDAzMDcxNzQwMTJaFw0yNTAzMDcxNzQwMTJaMBgxFjAU
BgNVBAMTDTY1ZTlmYmZmLWM2NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDBCXxwuQXuGhRWsvbcVFAOxWcl/hyHScOUBq9cD2YV2tZ9cbbvp1bBnT71
eIlSDbZXJ1Lg2JJDCDDFQCayCZY8MUGeSZgEjw0t8MyzS3uBvmnrdZ4o73oKVjdy
DPOlWDE08+SrPEL3c3ypdHfoW/JBrbBqS+cfi6lBKuUCBesU+XTNzcIwZKxRMG72
TDpLoRVuH3bpD3zMSUapcn+AjwVojwakCeVE1BBAZ/grzg0HTtYeAQ9mdydx9hBr
CAvCT9jRPhrsBIYK07ePHYyCjlrqmuRkjaLlzKKXTIfCeU1mLgdAYDfRsP6D+Y5q
c8qHFmWOhIMUiEORM0S0NZoyxFS/AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUUt1t
cRmI1C3QKl+aSPbZ8PzIKFcwHwYDVR0jBBgwFoAUXyKMRr7ytMupTLKfEMNoDuKI
PbMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0MUEwL0YwNjNDRTMyMEE5NzExRUVCOUI0MjUyMzRBRDlFNkZDL1h5S01S
cjd5dE11cFRMS2ZFTU5vRHVLSVBiTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1h5S01Scjd5dE11cFRMS2ZFTU5vRHVLSVBiTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkE0MUEwL0YwNjNDRTMyMEE5NzExRUVCOUI0MjUyMzRB
RDlFNkZDL0MxQ0Q3OTNBRENBOTExRUVBMTY4NTFDMTc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAp8nMwDQYJKoZIhvcNAQEL
BQADggEBAFY+ibUuRVcaBTM+PBayszshMhHCwHpOQs/AhOuyeh2oMKaSk/uIQBTP
mhdZzroWvNoPjD/th5VXMU7r5NpBU8AmzKqnm/DifjmYtPUTzNGeiAH+q2NYAA13
IUMMQkAONVKbV5nynQKetSVQ3oK64laLSVaVEUlU4Smsjkm7TKEYWbSQxNYjXzqb
Z4iunL2753QHQyEAoEz5k7gp+nRPlCn+XMtxjNQkRk0VlELOPNNK54CpJf4fCUXY
HA/WYugPTfVu23KYLU5jGbTVsbqmsI2TLjMACl0pLsjScWfNTgBWEE2HnxgvGant
ULI0hfKEYJjUpyo64yafoKuEeCDSQls=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org