Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/8C5A2D9EA56811ED8D8B78EDF1222468.roa
File: 8C5A2D9EA56811ED8D8B78EDF1222468.roa (raw, json)
Hash identifier: XrnwQycPKUqBh3tyU/CIOjBuLRqllBrRE2AbPedyk5E=
Subject key identifier: 1C:F1:64:4C:5B:B9:B8:27:67:16:3E:CC:65:1A:A5:0F:A1:31:F3:1C
Certificate issuer: /CN=F36A991DRI/serialNumber=F48ABED3ECA308EB22E1B5A24284CFE1E032CFD2
Certificate serial: 0356
Authority key identifier: F4:8A:BE:D3:EC:A3:08:EB:22:E1:B5:A2:42:84:CF:E1:E0:32:CF:D2
Authority info access: rsync://rpki.afrinic.net/repository/ripe/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/8C5A2D9EA56811ED8D8B78EDF1222468.roa
Signing time: Sun 05 Feb 2023 15:19:57 +0000
ROA not before: Sun 05 Feb 2023 15:19:53 +0000
ROA not after: Wed 05 Feb 2025 15:19:53 +0000
asID: 21003
IP address blocks: 62.68.32.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.mft
rsync://rpki.afrinic.net/repository/ripe/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:25:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 854 (0x356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A991DRI/serialNumber=F48ABED3ECA308EB22E1B5A24284CFE1E032CFD2
Validity
Not Before: Feb 5 15:19:53 2023 GMT
Not After : Feb 5 15:19:53 2025 GMT
Subject: CN=63dfc91d-8ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:86:37:d8:c8:14:46:e0:8a:69:2e:7d:a0:43:
5d:c7:05:e9:a4:5b:f6:44:82:b6:01:fc:c2:6a:98:
87:ba:77:80:11:bd:8a:10:a7:c1:5a:04:12:4c:f2:
3c:9f:3f:d6:26:16:8f:97:5e:01:6e:95:25:42:5b:
21:46:0a:73:55:51:65:71:86:b3:20:fa:3e:da:2a:
a0:77:24:fb:49:a5:de:2b:c2:6a:be:dc:8c:1b:51:
8b:b4:57:6f:51:a3:21:19:53:76:d7:24:2d:aa:5d:
32:8a:2f:5b:14:b2:5d:84:63:b8:f8:03:af:77:da:
a8:8e:36:7f:29:2f:06:26:24:c9:bf:70:71:25:3d:
7b:4d:df:dd:ee:84:59:6b:30:06:01:c8:c8:cc:e3:
d8:91:c4:b5:3f:64:7b:bf:5e:dd:3c:3e:7c:40:67:
3c:c7:49:25:34:77:34:5b:f9:1d:e6:ba:65:02:b9:
37:93:1a:a3:a7:ee:39:80:e1:ef:e6:28:61:3f:c5:
94:be:a8:7a:97:2a:1d:2d:7f:d5:3f:e5:6c:17:f3:
36:32:df:31:c7:f6:a3:57:34:26:17:47:ca:e3:5d:
ae:f0:0e:af:1b:08:62:78:9e:cf:42:d4:fa:42:9d:
c7:f6:09:df:13:27:78:a6:92:83:50:79:7d:91:23:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F1:64:4C:5B:B9:B8:27:67:16:3E:CC:65:1A:A5:0F:A1:31:F3:1C
X509v3 Authority Key Identifier:
keyid:F4:8A:BE:D3:EC:A3:08:EB:22:E1:B5:A2:42:84:CF:E1:E0:32:CF:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/9Iq-0-yjCOsi4bWiQoTP4eAyz9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A991D/666DF45619F311EBA0396308F8AEA228/8C5A2D9EA56811ED8D8B78EDF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
62.68.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a7:ee:e8:85:56:e6:5f:7b:ca:71:f5:9e:0a:d7:73:88:97:38:
64:f8:c4:cb:d3:42:2c:5f:00:31:ff:55:91:61:72:37:21:7a:
ed:9a:32:0a:f7:1c:b2:3b:53:7d:df:78:6f:46:bb:29:c1:4e:
95:2a:a5:35:a4:f5:41:45:1a:b0:25:b5:2e:16:34:5a:1c:65:
59:c0:a4:56:05:6d:54:46:86:3c:e5:72:cb:b1:ff:db:31:91:
0d:7a:58:cc:78:8f:54:f0:29:e5:d6:bc:41:8c:62:d4:7d:3e:
53:70:6b:36:b7:f3:c7:43:9d:5d:ce:aa:76:74:31:80:8c:9d:
9a:03:28:6f:7e:f1:ca:da:d7:8e:66:eb:5b:c3:af:d9:57:bc:
ad:13:cc:54:f8:2f:7b:6b:61:bb:33:dc:67:6d:04:d3:ca:e0:
a3:09:71:ea:36:7d:5a:aa:c5:98:bf:6f:e3:ef:3a:00:e9:99:
5e:e8:16:cd:16:d0:c0:8f:c2:f1:9c:9e:3a:98:44:bb:c2:7a:
dc:80:cd:a2:e4:2f:64:ca:e3:47:bf:de:7f:cf:17:f9:25:fd:
10:d7:dd:55:f3:6a:6f:c6:a4:98:fb:fd:5b:7e:7d:0e:55:b5:
a6:e3:cf:8d:42:a5:43:90:df:b1:65:18:59:77:90:2d:22:74:
5a:84:ea:dc
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QTk5MURSSTExMC8GA1UEBRMoRjQ4QUJFRDNFQ0EzMDhFQjIyRTFCNUEyNDI4NENG
RTFFMDMyQ0ZEMjAeFw0yMzAyMDUxNTE5NTNaFw0yNTAyMDUxNTE5NTNaMBgxFjAU
BgNVBAMMDTYzZGZjOTFkLThlYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDehjfYyBRG4IppLn2gQ13HBemkW/ZEgrYB/MJqmIe6d4ARvYoQp8FaBBJM
8jyfP9YmFo+XXgFulSVCWyFGCnNVUWVxhrMg+j7aKqB3JPtJpd4rwmq+3IwbUYu0
V29RoyEZU3bXJC2qXTKKL1sUsl2EY7j4A6932qiONn8pLwYmJMm/cHElPXtN393u
hFlrMAYByMjM49iRxLU/ZHu/Xt08PnxAZzzHSSU0dzRb+R3mumUCuTeTGqOn7jmA
4e/mKGE/xZS+qHqXKh0tf9U/5WwX8zYy3zHH9qNXNCYXR8rjXa7wDq8bCGJ4ns9C
1PpCncf2Cd8TJ3imkoNQeX2RIzetAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUHPFk
TFu5uCdnFj7MZRqlD6Ex8xwwHwYDVR0jBBgwFoAU9Iq+0+yjCOsi4bWiQoTP4eAy
z9IwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkE5OTFELzY2NkRGNDU2MTlGMzExRUJBMDM5NjMwOEY4QUVBMjI4LzlJcS0w
LXlqQ09zaTRiV2lRb1RQNGVBeXo5SS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9yaXBl
LzlJcS0wLXlqQ09zaTRiV2lRb1RQNGVBeXo5SS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkE5OTFELzY2NkRGNDU2MTlGMzExRUJBMDM5NjMwOEY4QUVB
MjI4LzhDNUEyRDlFQTU2ODExRUQ4RDhCNzhFREYxMjIyNDY4LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU+RCAwDQYJKoZIhvcNAQELBQAD
ggEBAKfu6IVW5l97ynH1ngrXc4iXOGT4xMvTQixfADH/VZFhcjcheu2aMgr3HLI7
U33feG9GuynBTpUqpTWk9UFFGrAltS4WNFocZVnApFYFbVRGhjzlcsux/9sxkQ16
WMx4j1TwKeXWvEGMYtR9PlNwaza388dDnV3OqnZ0MYCMnZoDKG9+8cra145m61vD
r9lXvK0TzFT4L3trYbsz3GdtBNPK4KMJceo2fVqqxZi/b+PvOgDpmV7oFs0W0MCP
wvGcnjqYRLvCetyAzaLkL2TK40e/3n/PF/kl/RDX3VXzam/GpJj7/Vt+fQ5Vtabj
z41CpUOQ37FlGFl3kC0idFqE6tw=
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:40:48 2024 by rpki-client on console-ams.rpki-client.org