Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/ED324F4E166311EF80A74E60017001B1.roa
File: ED324F4E166311EF80A74E60017001B1.roa (raw, json)
Hash identifier: yLMrRx31o9f3857chkGq2HGPGPmxnmeZmw24iYDHkdE=
Subject key identifier: 53:50:B4:02:76:0A:42:23:05:31:6F:E6:40:11:C5:61:BC:D9:66:D1
Certificate issuer: /CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Certificate serial: 2A
Authority key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/ED324F4E166311EF80A74E60017001B1.roa
Signing time: Mon 20 May 2024 04:46:31 +0000
ROA not before: Mon 20 May 2024 04:46:28 +0000
ROA not after: Thu 20 May 2027 04:46:28 +0000
asID: 36867
IP address blocks: 196.1.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A7021AF/serialNumber=4B48662004089F5BB68194AB04B830CD433A2B70
Validity
Not Before: May 20 04:46:28 2024 GMT
Not After : May 20 04:46:28 2027 GMT
Subject: CN=664ad5a7-e28e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:81:fe:33:9c:eb:38:ba:d8:10:04:6c:ef:
1d:22:77:a4:22:0f:58:42:8b:e0:fe:cf:62:42:f9:
36:10:b5:05:c3:d9:55:1d:dc:fc:00:6e:2a:7a:bf:
25:86:a8:ab:f2:03:6a:23:5f:f9:81:fe:8c:68:8b:
22:e4:ef:07:da:72:f3:77:94:e6:e3:88:3a:78:1b:
de:08:60:98:61:48:99:74:9a:62:c5:78:b0:7b:2f:
6f:c2:19:55:7b:cb:5a:bf:6c:03:cb:76:c3:22:5c:
75:e6:4d:0c:f8:bf:28:55:30:5f:6a:45:30:c6:d4:
07:c0:59:49:16:01:d2:44:d9:37:da:ce:fc:91:42:
2b:32:f2:ac:9f:02:30:30:62:26:6a:61:8d:fd:ae:
e3:6e:0b:f6:4b:3e:5b:c5:2f:a6:68:1f:12:ab:12:
51:cf:d0:7f:aa:c4:0c:ed:b6:9e:14:bd:6d:91:8d:
f2:52:85:4a:97:e3:32:52:fc:40:03:bd:53:d4:fa:
c9:ee:10:51:8e:8a:a3:26:c9:90:18:ee:06:72:8b:
b5:e0:1f:ca:18:86:cf:85:86:4d:e3:85:eb:9a:84:
40:dc:b7:93:bb:ce:27:2b:12:f2:fa:c5:83:fd:e1:
35:d2:dd:35:33:89:95:d6:3c:4c:26:1c:65:79:57:
14:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:50:B4:02:76:0A:42:23:05:31:6F:E6:40:11:C5:61:BC:D9:66:D1
X509v3 Authority Key Identifier:
keyid:4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/ED324F4E166311EF80A74E60017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.1.126.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:7d:0f:c9:cd:87:24:10:09:31:81:3a:90:70:43:77:71:35:
c9:08:87:d7:c5:bf:a8:37:25:e0:70:11:cd:a5:b0:0c:cd:a9:
5d:b2:d9:22:71:06:b2:49:1c:73:ad:ee:94:e8:f4:d8:bd:00:
21:eb:c3:1d:6e:84:a0:d7:cf:9e:67:84:75:73:44:a3:b1:6d:
8b:b5:45:04:5f:29:14:11:21:a9:57:94:be:82:d6:9e:18:f0:
5d:14:14:87:72:d9:d6:2d:bb:6e:f8:c4:0f:7b:9a:0f:20:30:
8f:38:fe:a4:97:0a:29:67:d4:b9:77:db:5e:2d:4c:16:2c:94:
0a:13:45:55:ee:d4:28:56:a2:64:a3:f4:9c:e0:82:f5:bf:da:
0a:61:53:bf:60:aa:e0:f6:7c:04:85:90:06:d4:c5:34:d4:a6:
db:ce:71:d7:6d:72:6f:a2:3a:64:3b:86:a9:47:d1:09:90:05:
b5:72:af:ad:6a:c3:e3:d0:2b:87:31:9e:d3:ac:a3:52:73:25:
49:37:0d:a3:61:ec:99:36:59:b7:dc:48:25:3c:ec:07:38:fb:
8c:2e:73:93:88:1b:cb:ee:22:c2:6d:6e:01:f2:b4:7d:00:e0:
46:f0:97:de:b9:ef:e1:91:7d:40:a8:71:f8:b7:60:40:b1:b2:
21:3f:1c:10
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBKjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZB
NzAyMUFGMTEwLwYDVQQFEyg0QjQ4NjYyMDA0MDg5RjVCQjY4MTk0QUIwNEI4MzBD
RDQzM0EyQjcwMB4XDTI0MDUyMDA0NDYyOFoXDTI3MDUyMDA0NDYyOFowGDEWMBQG
A1UEAxMNNjY0YWQ1YTctZTI4ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM5Sgf4znOs4utgQBGzvHSJ3pCIPWEKL4P7PYkL5NhC1BcPZVR3c/ABuKnq/
JYaoq/IDaiNf+YH+jGiLIuTvB9py83eU5uOIOngb3ghgmGFImXSaYsV4sHsvb8IZ
VXvLWr9sA8t2wyJcdeZNDPi/KFUwX2pFMMbUB8BZSRYB0kTZN9rO/JFCKzLyrJ8C
MDBiJmphjf2u424L9ks+W8UvpmgfEqsSUc/Qf6rEDO22nhS9bZGN8lKFSpfjMlL8
QAO9U9T6ye4QUY6KoybJkBjuBnKLteAfyhiGz4WGTeOF65qEQNy3k7vOJysS8vrF
g/3hNdLdNTOJldY8TCYcZXlXFLkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRTULQC
dgpCIwUxb+ZAEcVhvNlm0TAfBgNVHSMEGDAWgBRLSGYgBAifW7aBlKsEuDDNQzor
cDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QTcwMjEvRTUwMzk5MUMwMkMzMTFFRkJEMTI3N0Y1MDA3MDAxQjEvUzBobUlB
UUluMXUyZ1pTckJMZ3d6VU02SzNBLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvUzBobUlBUUluMXUyZ1pTckJMZ3d6VU02SzNBLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QTcwMjEvRTUwMzk5MUMwMkMzMTFFRkJEMTI3N0Y1MDA3
MDAxQjEvRUQzMjRGNEUxNjYzMTFFRjgwQTc0RTYwMDE3MDAxQjEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMQBfjANBgkqhkiG9w0BAQsF
AAOCAQEAbX0Pyc2HJBAJMYE6kHBDd3E1yQiH18W/qDcl4HARzaWwDM2pXbLZInEG
skkcc63ulOj02L0AIevDHW6EoNfPnmeEdXNEo7Fti7VFBF8pFBEhqVeUvoLWnhjw
XRQUh3LZ1i27bvjED3uaDyAwjzj+pJcKKWfUuXfbXi1MFiyUChNFVe7UKFaiZKP0
nOCC9b/aCmFTv2Cq4PZ8BIWQBtTFNNSm285x121yb6I6ZDuGqUfRCZAFtXKvrWrD
49ArhzGe06yjUnMlSTcNo2HsmTZZt9xIJTzsBzj7jC5zk4gby+4iwm1uAfK0fQDg
RvCX3rnv4ZF9QKhx+LdgQLGyIT8cEA==
-----END CERTIFICATE-----
Generated at Sun Nov 24 04:29:38 2024 by rpki-client on console-fra.rpki-client.org