Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C3901116387411EF9F0A6753762E951A.roa
File: C3901116387411EF9F0A6753762E951A.roa (raw, json)
Hash identifier: qdBvOaIzW2ROmvZO0TJkM8Fru7b3r82SzgASgXYo2aY=
Subject key identifier: 10:34:A2:FF:10:63:A1:E5:90:58:F4:84:F7:A4:00:34:28:8C:A6:36
Certificate issuer: /CN=F36A4459AF/serialNumber=84BC22A14BB5F889BC10A22CF17C9C19B519B288
Certificate serial: 02C0
Authority key identifier: 84:BC:22:A1:4B:B5:F8:89:BC:10:A2:2C:F1:7C:9C:19:B5:19:B2:88
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C3901116387411EF9F0A6753762E951A.roa
Signing time: Tue 02 Jul 2024 13:12:42 +0000
ROA not before: Tue 02 Jul 2024 13:12:39 +0000
ROA not after: Sun 31 Jul 2044 13:12:39 +0000
asID: 37638
IP address blocks: 102.213.196.0/24 maxlen: 24
102.213.197.0/24 maxlen: 24
102.213.198.0/24 maxlen: 24
102.213.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.mft
rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 704 (0x2c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A4459AF/serialNumber=84BC22A14BB5F889BC10A22CF17C9C19B519B288
Validity
Not Before: Jul 2 13:12:39 2024 GMT
Not After : Jul 31 13:12:39 2044 GMT
Subject: CN=6683fcca-86b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4c:b2:63:9b:9f:cd:f2:e2:ed:31:26:42:0e:
05:dc:6f:e1:46:c4:4b:f4:ca:6c:72:c5:c7:35:d6:
1e:c2:70:82:a1:be:e4:27:af:39:07:82:4e:16:2e:
b7:04:21:80:e6:04:8d:c2:b9:2d:37:5a:47:74:18:
4d:3b:40:5e:0f:70:1b:ac:b4:30:fe:dc:16:cc:49:
45:71:61:1c:70:b1:4d:89:6b:3d:46:60:bc:77:2a:
63:41:d1:b4:5a:1d:92:0c:78:1e:bb:ef:92:84:53:
0b:bc:d5:c7:d8:0f:e4:da:72:43:df:2a:d2:9c:35:
da:c6:8a:42:0c:99:5b:d8:48:5c:5c:45:87:85:2c:
fa:5b:ab:09:28:22:11:db:13:52:3d:6d:b3:d6:38:
92:e2:61:63:5b:0a:a3:e2:13:1a:b8:70:b5:19:6a:
79:67:f6:38:d1:a5:b1:ee:9d:5b:06:2e:71:1e:b5:
0d:8f:7a:5a:9a:93:10:47:ee:2e:c3:26:71:64:9c:
b8:2d:ef:8e:6a:9f:89:65:2f:dc:af:78:60:da:5e:
19:e3:92:8a:cb:31:d7:92:b9:a1:cf:0c:41:b2:e9:
fe:55:9c:cc:35:ca:eb:7d:d3:d6:fe:1e:ee:80:f0:
ae:52:6b:97:28:b7:b9:fc:49:36:85:7d:b3:c8:8a:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:34:A2:FF:10:63:A1:E5:90:58:F4:84:F7:A4:00:34:28:8C:A6:36
X509v3 Authority Key Identifier:
keyid:84:BC:22:A1:4B:B5:F8:89:BC:10:A2:2C:F1:7C:9C:19:B5:19:B2:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/hLwioUu1-Im8EKIs8XycGbUZsog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hLwioUu1-Im8EKIs8XycGbUZsog.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/CDD74D762D1B11EDBE00888BF1222468/C3901116387411EF9F0A6753762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.196.0/22
Signature Algorithm: sha256WithRSAEncryption
40:42:34:6a:e3:8e:9e:54:db:3d:7a:f7:8f:c8:1f:ba:27:70:
c4:ec:f9:ec:c4:fb:82:5b:57:6c:76:60:69:0b:50:6e:8e:5f:
3a:8f:11:91:5e:5a:c0:01:55:7c:c0:12:8f:9b:13:20:90:fd:
a2:c4:db:42:4f:b0:42:a3:c0:39:23:31:c8:52:5e:d3:d7:ff:
dc:f4:d0:6e:5c:20:92:cb:e4:38:a0:6b:4b:90:d1:e7:55:37:
b3:12:71:05:7a:b0:39:58:5e:6b:6b:d0:27:3d:fe:00:1d:a0:
cd:1a:93:c6:b7:56:90:c6:9d:b1:02:e5:cd:ba:28:20:ec:ae:
d9:46:e6:27:b0:2b:b4:f3:e5:28:7c:f0:9e:b0:24:d9:95:e1:
a8:4e:35:3e:e2:40:75:ec:27:0e:58:05:e7:b8:75:9b:3b:76:
e5:96:6d:7c:89:6b:80:7a:e7:06:18:0e:a1:a5:22:0a:ac:93:
e4:a7:70:61:e0:02:f3:bc:eb:c7:51:f0:74:f0:5c:e1:96:6c:
49:01:f5:a3:e7:a1:3f:db:9e:43:09:d6:ad:f2:9c:a8:49:dc:
c5:92:d2:c2:c9:c9:17:a1:84:ee:85:64:28:7f:82:bc:f1:4f:
26:a1:84:77:be:a8:4d:ca:6e:b5:8a:d2:ea:49:b5:f5:6a:87:
29:50:84:dc
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QTQ0NTlBRjExMC8GA1UEBRMoODRCQzIyQTE0QkI1Rjg4OUJDMTBBMjJDRjE3QzlD
MTlCNTE5QjI4ODAeFw0yNDA3MDIxMzEyMzlaFw00NDA3MzExMzEyMzlaMBgxFjAU
BgNVBAMTDTY2ODNmY2NhLTg2YjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC0TLJjm5/N8uLtMSZCDgXcb+FGxEv0ymxyxcc11h7CcIKhvuQnrzkHgk4W
LrcEIYDmBI3CuS03Wkd0GE07QF4PcBustDD+3BbMSUVxYRxwsU2Jaz1GYLx3KmNB
0bRaHZIMeB6775KEUwu81cfYD+TackPfKtKcNdrGikIMmVvYSFxcRYeFLPpbqwko
IhHbE1I9bbPWOJLiYWNbCqPiExq4cLUZanln9jjRpbHunVsGLnEetQ2PelqakxBH
7i7DJnFknLgt745qn4llL9yveGDaXhnjkorLMdeSuaHPDEGy6f5VnMw1yut909b+
Hu6A8K5Sa5cot7n8STaFfbPIiqstAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUEDSi
/xBjoeWQWPSE96QANCiMpjYwHwYDVR0jBBgwFoAUhLwioUu1+Im8EKIs8XycGbUZ
sogwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE0NDU5L0NERDc0RDc2MkQxQjExRURCRTAwODg4QkYxMjIyNDY4L2hMd2lv
VXUxLUltOEVLSXM4WHljR2JVWnNvZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2hMd2lvVXUxLUltOEVLSXM4WHljR2JVWnNvZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkE0NDU5L0NERDc0RDc2MkQxQjExRURCRTAwODg4QkYx
MjIyNDY4L0MzOTAxMTE2Mzg3NDExRUY5RjBBNjc1Mzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1cQwDQYJKoZIhvcNAQEL
BQADggEBAEBCNGrjjp5U2z1694/IH7oncMTs+ezE+4JbV2x2YGkLUG6OXzqPEZFe
WsABVXzAEo+bEyCQ/aLE20JPsEKjwDkjMchSXtPX/9z00G5cIJLL5Diga0uQ0edV
N7MScQV6sDlYXmtr0Cc9/gAdoM0ak8a3VpDGnbEC5c26KCDsrtlG5iewK7Tz5Sh8
8J6wJNmV4ahONT7iQHXsJw5YBee4dZs7duWWbXyJa4B65wYYDqGlIgqsk+SncGHg
AvO868dR8HTwXOGWbEkB9aPnoT/bnkMJ1q3ynKhJ3MWS0sLJyRehhO6FZCh/grzx
TyahhHe+qE3KbrWK0upJtfVqhylQhNw=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org