Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/A5829FB8FAFD11EEB4C6D20D017001B1.roa
File: A5829FB8FAFD11EEB4C6D20D017001B1.roa (raw, json)
Hash identifier: 1gu4Qu8rsgArGS1Y9Jq2u1pp9GqrVEYfqnEUTV3m1CI=
Subject key identifier: 7F:0C:F2:2E:17:C8:EB:54:31:FF:C5:5B:A5:79:79:2B:E2:10:64:79
Certificate issuer: /CN=F36AC63AAP/serialNumber=53F78D80CAC0EB2EACD77B0175DF319E8F752796
Certificate serial: 0122
Authority key identifier: 53:F7:8D:80:CA:C0:EB:2E:AC:D7:7B:01:75:DF:31:9E:8F:75:27:96
Authority info access: rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/A5829FB8FAFD11EEB4C6D20D017001B1.roa
Signing time: Mon 15 Apr 2024 07:56:21 +0000
ROA not before: Mon 15 Apr 2024 07:56:17 +0000
ROA not after: Tue 11 Apr 2034 07:56:17 +0000
asID: 16509
IP address blocks: 163.201.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.mft
rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
rsync://rpki.afrinic.net/repository/apnic/bxoQPhQn_wNIOr_Z402svhUk_4s.crl
rsync://rpki.afrinic.net/repository/apnic/bxoQPhQn_wNIOr_Z402svhUk_4s.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/apnic-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:15:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AC63AAP/serialNumber=53F78D80CAC0EB2EACD77B0175DF319E8F752796
Validity
Not Before: Apr 15 07:56:17 2024 GMT
Not After : Apr 11 07:56:17 2034 GMT
Subject: CN=661cdda4-a1b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:36:b5:b4:0e:6a:da:20:1b:fc:48:40:8c:62:
b1:a9:21:e8:bf:a5:9c:22:3d:af:7b:30:64:de:37:
3c:f3:c9:65:eb:f6:6d:7e:de:eb:c8:7a:51:ca:4d:
77:b4:13:96:d4:fa:ab:f1:e5:66:6f:c3:a2:f9:f5:
92:3b:e1:bb:65:d3:63:dc:75:b1:e2:5c:28:7e:05:
22:91:20:c2:37:38:52:cb:39:0e:ce:d5:e0:a1:70:
eb:dc:7b:ae:46:56:b7:a8:69:fb:de:c2:db:4b:de:
a3:c6:a8:f8:d2:ed:a5:13:52:9c:e0:eb:62:a9:37:
47:3a:10:f8:87:7a:17:3f:d6:9e:a2:f2:f8:89:70:
0b:78:97:12:99:4b:fb:3a:71:e2:1c:9f:6c:54:20:
6c:18:78:da:28:16:f8:4c:dc:c7:4f:ad:d2:68:45:
97:04:2b:7a:ac:bb:f3:68:d4:1a:d3:bd:aa:4e:e2:
9d:0b:ef:c5:21:de:36:af:97:05:c2:25:36:e8:39:
8e:dd:7f:14:f1:bb:c7:d0:e3:08:34:4e:6c:39:36:
72:16:e2:fb:1f:f2:fc:98:6e:25:14:93:f7:59:d3:
7d:69:02:0b:f1:b0:ce:01:b4:80:57:c6:73:ff:f7:
d7:b9:16:33:4f:5e:6f:e9:fa:a5:e5:76:a0:55:cc:
58:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0C:F2:2E:17:C8:EB:54:31:FF:C5:5B:A5:79:79:2B:E2:10:64:79
X509v3 Authority Key Identifier:
keyid:53:F7:8D:80:CA:C0:EB:2E:AC:D7:7B:01:75:DF:31:9E:8F:75:27:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/U_eNgMrA6y6s13sBdd8xno91J5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/apnic/U_eNgMrA6y6s13sBdd8xno91J5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/3017B30240C311EEA7230C444AD9E6FC/A5829FB8FAFD11EEB4C6D20D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.201.84.0/23
Signature Algorithm: sha256WithRSAEncryption
27:81:03:e9:c1:78:ed:03:ec:b3:d4:20:85:76:6c:ca:06:3e:
93:f2:e9:a9:87:e7:69:d2:ae:22:d6:fe:9f:b6:ea:63:24:37:
46:26:89:b7:9a:14:3a:3d:fa:c0:07:ea:de:a8:aa:67:7b:f9:
cc:38:99:48:c6:91:b7:7b:77:0a:bf:9e:66:75:18:62:5e:76:
d8:ca:c1:6e:c7:e7:78:04:9b:50:ee:61:a2:d4:b9:89:eb:f5:
46:16:73:2a:36:26:d7:76:9f:79:45:8e:a3:c0:4b:35:f1:93:
07:bd:15:a5:39:ff:ac:9e:98:4d:c6:56:68:f2:d9:ca:5a:54:
5a:d9:5b:a0:9c:43:e9:19:3d:b7:90:fd:c7:91:fd:fa:9a:1c:
4c:18:46:a2:08:a9:13:28:3e:6f:c3:a9:c1:1b:17:1c:b2:36:
3d:4d:a9:9d:b4:1f:71:90:05:e5:f1:dc:79:69:c2:03:da:a0:
46:ff:5c:1d:40:17:7d:09:14:f8:83:0a:95:f0:f5:8e:55:27:
6d:47:87:bb:ef:96:83:6d:5d:9c:30:a3:fa:c2:b0:ce:b2:e4:
f4:97:a4:ec:00:6e:30:bb:ae:8a:e7:28:48:9d:11:34:99:f6:
31:ae:88:f5:90:03:a2:f6:f9:8c:ed:72:55:dc:1d:3c:d0:94:
92:3d:89:04
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QUM2M0FBUDExMC8GA1UEBRMoNTNGNzhEODBDQUMwRUIyRUFDRDc3QjAxNzVERjMx
OUU4Rjc1Mjc5NjAeFw0yNDA0MTUwNzU2MTdaFw0zNDA0MTEwNzU2MTdaMBgxFjAU
BgNVBAMTDTY2MWNkZGE0LWExYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNNrW0DmraIBv8SECMYrGpIei/pZwiPa97MGTeNzzzyWXr9m1+3uvIelHK
TXe0E5bU+qvx5WZvw6L59ZI74btl02PcdbHiXCh+BSKRIMI3OFLLOQ7O1eChcOvc
e65GVreoafvewttL3qPGqPjS7aUTUpzg62KpN0c6EPiHehc/1p6i8viJcAt4lxKZ
S/s6ceIcn2xUIGwYeNooFvhM3MdPrdJoRZcEK3qsu/No1BrTvapO4p0L78Uh3jav
lwXCJTboOY7dfxTxu8fQ4wg0Tmw5NnIW4vsf8vyYbiUUk/dZ031pAgvxsM4BtIBX
xnP/99e5FjNPXm/p+qXldqBVzFh1AgMBAAGjggKjMIICnzAdBgNVHQ4EFgQUfwzy
LhfI61Qx/8VbpXl5K+IQZHkwHwYDVR0jBBgwFoAUU/eNgMrA6y6s13sBdd8xno91
J5YwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkFDNjNBLzMwMTdCMzAyNDBDMzExRUVBNzIzMEM0NDRBRDlFNkZDL1VfZU5n
TXJBNnk2czEzc0JkZDh4bm85MUo1WS5jcmwwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcG5p
Yy9VX2VOZ01yQTZ5NnMxM3NCZGQ4eG5vOTFKNVkuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzZBQzYzQS8zMDE3QjMwMjQwQzMxMUVFQTcyMzBDNDQ0QUQ5
RTZGQy9BNTgyOUZCOEZBRkQxMUVFQjRDNkQyMEQwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBo8lUMA0GCSqGSIb3DQEBCwUA
A4IBAQAngQPpwXjtA+yz1CCFdmzKBj6T8umph+dp0q4i1v6ftupjJDdGJom3mhQ6
PfrAB+reqKpne/nMOJlIxpG3e3cKv55mdRhiXnbYysFux+d4BJtQ7mGi1LmJ6/VG
FnMqNibXdp95RY6jwEs18ZMHvRWlOf+snphNxlZo8tnKWlRa2VugnEPpGT23kP3H
kf36mhxMGEaiCKkTKD5vw6nBGxccsjY9TamdtB9xkAXl8dx5acID2qBG/1wdQBd9
CRT4gwqV8PWOVSdtR4e775aDbV2cMKP6wrDOsuT0l6TsAG4wu66K5yhInRE0mfYx
roj1kAOi9vmM7XJV3B080JSSPYkE
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org