Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/641B15C8F61811ECA46BC9AEF1222468.roa
File: 641B15C8F61811ECA46BC9AEF1222468.roa (raw, json)
Hash identifier: lmyyvzmxJhC+JbEIN1Aywg0+Vb+IK8y5pQ85m8/YB3s=
Subject key identifier: 42:6F:D6:C8:8F:E5:1B:62:C5:D8:94:5D:AD:3A:E0:18:5D:3C:A8:40
Certificate issuer: /CN=F36A9104AF/serialNumber=18FDC8AF53877802589BEEDEE813F6B626EF82FE
Certificate serial: 02
Authority key identifier: 18:FD:C8:AF:53:87:78:02:58:9B:EE:DE:E8:13:F6:B6:26:EF:82:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/641B15C8F61811ECA46BC9AEF1222468.roa
Signing time: Mon 27 Jun 2022 12:55:16 +0000
ROA not before: Mon 27 Jun 2022 12:55:12 +0000
ROA not after: Sun 27 Jun 2032 12:55:12 +0000
asID: 329039
IP address blocks: 102.216.16.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.mft
rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A9104AF/serialNumber=18FDC8AF53877802589BEEDEE813F6B626EF82FE
Validity
Not Before: Jun 27 12:55:12 2022 GMT
Not After : Jun 27 12:55:12 2032 GMT
Subject: CN=62b9a8b4-87a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:90:e1:4c:85:89:0a:a1:46:a3:9a:8d:1b:87:
53:1a:3a:fb:00:4b:34:2f:dc:f1:8f:dd:3c:56:f4:
75:ba:40:89:b8:f7:28:c5:46:88:c1:20:f2:d7:60:
c0:d1:9f:69:0e:1b:ab:9f:56:40:cf:23:05:7b:84:
d1:46:26:dd:62:95:5b:52:73:b8:96:85:21:13:60:
7a:58:a3:73:89:f2:e7:18:a7:f7:27:e8:b8:38:20:
25:b7:ca:27:76:1d:a0:d6:16:36:c2:24:a2:a7:ef:
3c:8e:4b:af:9d:9b:39:93:76:7c:43:a6:3b:96:3b:
dd:d3:47:e8:ff:e8:19:9d:6d:af:a9:63:e1:bb:97:
c3:04:fb:80:79:95:f9:d5:d3:de:ec:f8:81:0b:36:
d5:03:af:0b:85:cc:50:3d:9f:d1:14:37:5a:0a:df:
19:b2:02:27:ff:3e:b4:33:0c:1e:62:6a:e9:03:7b:
7f:4a:0f:d2:e6:45:84:6c:1e:b2:11:d5:0c:2f:16:
04:6b:a1:3a:14:62:94:14:85:28:0d:2a:85:67:76:
2d:aa:d4:5c:70:c2:49:34:dd:40:3e:60:fd:62:2f:
c0:b7:30:1b:60:86:d0:a7:89:63:79:67:64:b4:e2:
e3:41:d7:85:b9:88:ff:8b:9c:47:fb:a4:68:3e:cc:
5c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6F:D6:C8:8F:E5:1B:62:C5:D8:94:5D:AD:3A:E0:18:5D:3C:A8:40
X509v3 Authority Key Identifier:
keyid:18:FD:C8:AF:53:87:78:02:58:9B:EE:DE:E8:13:F6:B6:26:EF:82:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/GP3Ir1OHeAJYm-7e6BP2tibvgv4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/GP3Ir1OHeAJYm-7e6BP2tibvgv4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A9104/41D036ECF61811ECA84F46AEF1222468/641B15C8F61811ECA46BC9AEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.16.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:09:b8:15:cf:68:7d:99:48:b9:eb:e2:32:cd:5c:22:b4:8e:
81:8f:e6:83:3e:f5:f1:6d:fa:18:e1:e0:b0:19:46:f8:4b:87:
79:af:d6:2e:6f:67:93:cf:2c:f5:a7:d7:a1:12:c5:ea:c1:cb:
50:6f:2d:11:6e:df:a4:c4:2b:27:93:56:91:ed:5a:18:4d:8d:
2c:34:7e:92:7b:88:4a:22:be:7f:14:31:7c:de:e0:96:2d:18:
96:f9:43:57:22:66:15:36:49:a2:ac:fd:fb:2c:81:11:c0:8f:
21:19:6c:80:b3:a9:5c:2c:1e:ee:89:f7:29:55:11:30:47:d0:
a3:e6:0f:da:71:10:2b:1d:d9:fc:82:ff:cf:c6:8d:ec:40:aa:
88:39:1d:b0:4a:b8:49:55:aa:37:04:ed:48:da:3d:ac:70:a7:
a8:f2:ab:0d:ba:e0:fd:73:7b:f6:90:85:11:a0:87:61:5c:98:
e9:1d:d3:a5:aa:6d:c4:59:bf:c9:31:71:e7:12:40:2c:92:9f:
8c:ac:b7:a4:a5:76:43:ed:eb:da:f3:a1:96:dd:f2:96:83:70:
4b:e4:cd:2a:e1:2f:9d:1e:38:29:37:1b:97:f6:9d:b4:11:f2:
a1:11:5d:aa:1c:68:41:5e:f0:9c:34:4d:65:0b:cc:24:da:5d:
12:f8:bb:0f
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzZB
OTEwNEFGMTEwLwYDVQQFEygxOEZEQzhBRjUzODc3ODAyNTg5QkVFREVFODEzRjZC
NjI2RUY4MkZFMB4XDTIyMDYyNzEyNTUxMloXDTMyMDYyNzEyNTUxMlowGDEWMBQG
A1UEAwwNNjJiOWE4YjQtODdhNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJKQ4UyFiQqhRqOajRuHUxo6+wBLNC/c8Y/dPFb0dbpAibj3KMVGiMEg8tdg
wNGfaQ4bq59WQM8jBXuE0UYm3WKVW1JzuJaFIRNgelijc4ny5xin9yfouDggJbfK
J3YdoNYWNsIkoqfvPI5Lr52bOZN2fEOmO5Y73dNH6P/oGZ1tr6lj4buXwwT7gHmV
+dXT3uz4gQs21QOvC4XMUD2f0RQ3WgrfGbICJ/8+tDMMHmJq6QN7f0oP0uZFhGwe
shHVDC8WBGuhOhRilBSFKA0qhWd2LarUXHDCSTTdQD5g/WIvwLcwG2CG0KeJY3ln
ZLTi40HXhbmI/4ucR/ukaD7MXFkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBRCb9bI
j+UbYsXYlF2tOuAYXTyoQDAfBgNVHSMEGDAWgBQY/civU4d4Alib7t7oE/a2Ju+C
/jAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QTkxMDQvNDFEMDM2RUNGNjE4MTFFQ0E4NEY0NkFFRjEyMjI0NjgvR1AzSXIx
T0hlQUpZbS03ZTZCUDJ0aWJ2Z3Y0LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvR1AzSXIxT0hlQUpZbS03ZTZCUDJ0aWJ2Z3Y0LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QTkxMDQvNDFEMDM2RUNGNjE4MTFFQ0E4NEY0NkFFRjEy
MjI0NjgvNjQxQjE1QzhGNjE4MTFFQ0E0NkJDOUFFRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbYEDANBgkqhkiG9w0BAQsF
AAOCAQEAKgm4Fc9ofZlIueviMs1cIrSOgY/mgz718W36GOHgsBlG+EuHea/WLm9n
k88s9afXoRLF6sHLUG8tEW7fpMQrJ5NWke1aGE2NLDR+knuISiK+fxQxfN7gli0Y
lvlDVyJmFTZJoqz9+yyBEcCPIRlsgLOpXCwe7on3KVURMEfQo+YP2nEQKx3Z/IL/
z8aN7ECqiDkdsEq4SVWqNwTtSNo9rHCnqPKrDbrg/XN79pCFEaCHYVyY6R3Tpapt
xFm/yTFx5xJALJKfjKy3pKV2Q+3r2vOhlt3yloNwS+TNKuEvnR44KTcbl/adtBHy
oRFdqhxoQV7wnDRNZQvMJNpdEvi7Dw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:20 2024 by rpki-client on console-ams.rpki-client.org