Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/18DBB0029BB011EDB3B1D3E3F1222468.roa
File: 18DBB0029BB011EDB3B1D3E3F1222468.roa (raw, json)
Hash identifier: y6T5QrNiBFE0Y9/1KUKFDLVD4S3WdtmmEEg8hWLjEb0=
Subject key identifier: 5D:0E:15:60:E0:DC:60:8F:98:4F:CA:46:25:86:DD:38:89:94:F1:02
Certificate issuer: /CN=F36A9104AF/serialNumber=18FDC8AF53877802589BEEDEE813F6B626EF82FE
Certificate serial: E2
Authority key identifier: 18:FD:C8:AF:53:87:78:02:58:9B:EE:DE:E8:13:F6:B6:26:EF:82:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/18DBB0029BB011EDB3B1D3E3F1222468.roa
Signing time: Tue 24 Jan 2023 06:26:55 +0000
ROA not before: Tue 24 Jan 2023 06:26:52 +0000
ROA not after: Mon 24 Jan 2033 06:26:52 +0000
asID: 329039
IP address blocks: 102.216.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.mft
rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 00:05:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226 (0xe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A9104AF/serialNumber=18FDC8AF53877802589BEEDEE813F6B626EF82FE
Validity
Not Before: Jan 24 06:26:52 2023 GMT
Not After : Jan 24 06:26:52 2033 GMT
Subject: CN=63cf7a2f-e090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:57:59:1f:45:7c:7a:87:ff:fe:d7:2a:75:35:
7c:a6:7c:60:71:33:45:8a:b3:ee:b7:00:aa:34:a4:
f1:4e:d6:2d:80:4e:48:65:9d:3a:07:3f:0f:6c:b5:
f4:e7:12:12:a3:3a:33:dc:03:f0:51:d5:68:56:7e:
dd:f7:d9:f3:f4:86:55:5f:91:c1:ae:aa:70:52:f8:
be:67:1d:2d:46:9f:8f:b8:6f:16:86:d7:5a:1a:a7:
6a:02:55:15:a2:0f:ad:47:7b:15:9a:ae:c8:bc:7b:
f0:30:84:e9:3b:8a:43:e7:2f:96:f1:79:80:eb:ce:
4d:c0:fe:db:5b:9a:d4:0f:ae:50:8a:20:97:28:0a:
e5:06:f0:90:72:3b:fc:64:a8:75:c0:9b:ba:47:32:
b2:3f:a3:63:cb:a4:d7:3d:01:57:25:92:8d:46:6c:
2a:ae:b6:0c:4f:54:b9:15:2c:40:67:5b:e0:64:e8:
d5:1b:7c:5b:3b:08:5a:8d:3d:b1:ba:8d:9e:a2:e9:
83:e0:da:53:91:e8:e7:02:b9:16:cf:51:56:3f:78:
a4:3d:0f:60:01:f0:99:d0:b2:74:7e:1d:22:e2:58:
16:55:19:6d:2f:eb:d8:c4:ec:30:fa:1f:88:22:39:
45:14:c3:a5:90:73:c1:01:ae:9c:34:3e:d4:7f:70:
75:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0E:15:60:E0:DC:60:8F:98:4F:CA:46:25:86:DD:38:89:94:F1:02
X509v3 Authority Key Identifier:
keyid:18:FD:C8:AF:53:87:78:02:58:9B:EE:DE:E8:13:F6:B6:26:EF:82:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/18DBB0029BB011EDB3B1D3E3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.18.0/24
Signature Algorithm: sha256WithRSAEncryption
84:18:9e:19:75:ce:67:0c:e4:86:56:77:ca:43:26:e9:13:18:
e5:89:73:ed:a4:da:cd:77:4d:db:30:92:64:1f:b5:5a:00:0f:
93:01:38:4a:83:71:43:79:2b:69:20:b8:54:a4:85:4e:99:31:
e3:06:a9:db:07:40:f7:0b:e0:d6:7f:96:17:57:df:3e:83:16:
7a:37:2c:96:ca:0d:c7:bf:6c:27:f1:80:b8:06:19:af:b0:ab:
e8:64:4a:23:c9:d3:30:66:ae:c7:b1:ef:41:23:c2:e3:af:0b:
78:68:4f:1a:49:9d:55:56:90:63:df:a4:da:19:ef:f9:8a:88:
f1:f1:01:fd:e6:12:12:9b:75:57:78:d5:1e:35:61:e0:32:bf:
26:3b:b8:87:06:d9:4a:84:59:0c:a5:fa:52:81:0f:39:77:37:
77:97:84:50:2b:34:09:14:7f:91:c5:50:93:d7:65:8d:94:a8:
d8:4f:be:fb:63:95:d6:78:0a:31:ba:3d:8a:b3:14:6a:32:f0:
9f:d2:ad:3e:2f:3a:d5:e7:f2:29:c7:0d:dc:bc:ed:98:6b:1d:
da:2e:ef:1a:d1:33:84:31:95:4d:36:f4:d9:05:a0:a1:08:95:
56:6e:b7:e3:de:ff:07:00:77:34:0b:ea:ae:42:66:0c:55:76:
38:45:73:b3
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QTkxMDRBRjExMC8GA1UEBRMoMThGREM4QUY1Mzg3NzgwMjU4OUJFRURFRTgxM0Y2
QjYyNkVGODJGRTAeFw0yMzAxMjQwNjI2NTJaFw0zMzAxMjQwNjI2NTJaMBgxFjAU
BgNVBAMMDTYzY2Y3YTJmLWUwOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfV1kfRXx6h//+1yp1NXymfGBxM0WKs+63AKo0pPFO1i2ATkhlnToHPw9s
tfTnEhKjOjPcA/BR1WhWft332fP0hlVfkcGuqnBS+L5nHS1Gn4+4bxaG11oap2oC
VRWiD61HexWarsi8e/AwhOk7ikPnL5bxeYDrzk3A/ttbmtQPrlCKIJcoCuUG8JBy
O/xkqHXAm7pHMrI/o2PLpNc9AVclko1GbCqutgxPVLkVLEBnW+Bk6NUbfFs7CFqN
PbG6jZ6i6YPg2lOR6OcCuRbPUVY/eKQ9D2AB8JnQsnR+HSLiWBZVGW0v69jE7DD6
H4giOUUUw6WQc8EBrpw0PtR/cHUnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUXQ4V
YODcYI+YT8pGJYbdOImU8QIwHwYDVR0jBBgwFoAUGP3Ir1OHeAJYm+7e6BP2tibv
gv4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE5MTA0LzQxRDAzNkVDRjYxODExRUNBODRGNDZBRUYxMjIyNDY4L0dQM0ly
MU9IZUFKWW0tN2U2QlAydGlidmd2NC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0dQM0lyMU9IZUFKWW0tN2U2QlAydGlidmd2NC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkE5MTA0LzQxRDAzNkVDRjYxODExRUNBODRGNDZBRUYx
MjIyNDY4LzE4REJCMDAyOUJCMDExRURCM0IxRDNFM0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm2BIwDQYJKoZIhvcNAQEL
BQADggEBAIQYnhl1zmcM5IZWd8pDJukTGOWJc+2k2s13TdswkmQftVoAD5MBOEqD
cUN5K2kguFSkhU6ZMeMGqdsHQPcL4NZ/lhdX3z6DFno3LJbKDce/bCfxgLgGGa+w
q+hkSiPJ0zBmrsex70EjwuOvC3hoTxpJnVVWkGPfpNoZ7/mKiPHxAf3mEhKbdVd4
1R41YeAyvyY7uIcG2UqEWQyl+lKBDzl3N3eXhFArNAkUf5HFUJPXZY2UqNhPvvtj
ldZ4CjG6PYqzFGoy8J/SrT4vOtXn8inHDdy87ZhrHdou7xrRM4QxlU029NkFoKEI
lVZut+Pe/wcAdzQL6q5CZgxVdjhFc7M=
-----END CERTIFICATE-----
Generated at Wed Jun 26 04:28:51 2024 by rpki-client on console-ams.rpki-client.org