Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/EC86E2C80AB411EE83CA7E784AD9E6FC.roa
File: EC86E2C80AB411EE83CA7E784AD9E6FC.roa (raw, json)
Hash identifier: wH/7A7dlWwR/4353hB6DOXIsm5oZQVgjpzlsGj1Gyy8=
Subject key identifier: 07:DB:0B:6F:F6:EF:C9:0E:AC:5A:B4:8C:B3:1F:2B:4F:A0:AB:07:D8
Certificate issuer: /CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Certificate serial: 06
Authority key identifier: C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/EC86E2C80AB411EE83CA7E784AD9E6FC.roa
Signing time: Wed 14 Jun 2023 13:11:08 +0000
ROA not before: Wed 14 Jun 2023 13:11:04 +0000
ROA not after: Tue 14 Jun 2033 13:11:04 +0000
asID: 328829
IP address blocks: 102.220.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.mft
rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AF2CBAF/serialNumber=C38CDE3697B9E924341A10650FB593A3E88B4FED
Validity
Not Before: Jun 14 13:11:04 2023 GMT
Not After : Jun 14 13:11:04 2033 GMT
Subject: CN=6489bc6b-a3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:96:26:1a:78:cc:13:e9:df:8e:f5:79:80:ee:
14:c6:cf:23:6d:bc:9d:4d:fa:ca:ca:32:03:0f:d4:
a5:44:06:2e:8e:13:b8:b0:58:78:4e:35:36:3d:88:
c3:e3:bf:55:e6:30:ed:13:49:bc:e7:f3:fa:03:3d:
cb:59:aa:72:3a:4a:0e:95:86:99:90:c3:d4:f7:1b:
50:ad:c2:0d:c2:a0:2b:53:ff:bd:98:ad:ae:32:dc:
3c:09:ba:43:bb:61:b2:3b:d9:f8:cb:5f:83:3f:15:
57:bd:fc:ba:27:4a:2d:26:52:13:cd:f1:5d:fe:af:
2b:1b:d2:e1:f9:15:f6:b6:37:4a:6e:00:5b:37:b9:
70:e3:4b:8d:e7:00:c6:65:d8:7e:fd:a6:3b:f8:0e:
2b:5f:82:81:47:a9:c1:69:cc:ed:b5:3e:94:1d:61:
67:2b:56:8a:e7:9e:f4:9a:13:03:b0:de:ee:e3:a0:
a8:4b:67:c4:93:2a:31:ee:ac:88:62:ce:cd:42:cb:
72:04:79:0f:93:2e:28:8f:d3:3e:91:b0:4c:98:29:
d4:e8:eb:64:be:9d:80:45:64:cf:15:f8:7b:91:c1:
24:bb:be:f9:25:1e:ea:a6:04:b5:fb:f5:49:55:77:
2e:b5:e6:75:a2:a9:21:e7:a4:ad:5e:04:6d:f7:74:
bf:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DB:0B:6F:F6:EF:C9:0E:AC:5A:B4:8C:B3:1F:2B:4F:A0:AB:07:D8
X509v3 Authority Key Identifier:
keyid:C3:8C:DE:36:97:B9:E9:24:34:1A:10:65:0F:B5:93:A3:E8:8B:4F:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/w4zeNpe56SQ0GhBlD7WTo-iLT-0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/w4zeNpe56SQ0GhBlD7WTo-iLT-0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AF2CB/E4ACE12C0A8E11EE909468874AD9E6FC/EC86E2C80AB411EE83CA7E784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.220.178.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:50:52:00:86:d7:fe:d2:90:53:da:81:fc:30:8c:24:e0:95:
dd:2a:8d:84:7b:e5:ce:96:b5:a2:f2:c3:fd:a7:94:4f:84:55:
06:70:1a:09:c9:cf:db:b3:6b:de:d1:a3:f5:0e:69:de:fd:a8:
91:7d:f1:b5:9b:3e:c5:e5:8b:d6:45:52:c0:5a:5e:47:66:0c:
54:f6:65:98:74:4a:d1:59:7f:5d:ec:5f:c3:b0:f3:96:0d:04:
90:a1:e1:cf:ea:fd:45:9d:13:73:05:27:4d:8a:14:77:a7:33:
8b:ba:25:da:22:37:ef:04:28:8b:6e:db:9e:ca:40:cf:97:d8:
24:a8:d4:99:2a:ab:ec:1f:37:ea:79:f1:bb:cb:07:af:0d:74:
94:8c:f8:ce:05:28:e7:96:e8:fb:2d:a3:74:69:1e:68:d8:1f:
e4:49:f4:1d:3d:b6:61:e1:b9:0b:0e:24:2f:6a:f3:ea:77:52:
66:f1:40:1d:e5:c9:a3:c6:49:4e:19:6c:da:82:8f:84:6c:9e:
24:a4:b4:84:43:83:34:03:06:df:c3:4d:f8:2b:05:37:fa:6c:
f4:f8:b9:c7:42:35:28:52:b4:1f:64:52:f6:3f:7f:87:73:8e:
b0:ca:93:13:57:d1:76:76:ca:f8:6f:04:ae:b6:ea:df:89:85:
a9:c0:f6:ea
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZB
RjJDQkFGMTEwLwYDVQQFEyhDMzhDREUzNjk3QjlFOTI0MzQxQTEwNjUwRkI1OTNB
M0U4OEI0RkVEMB4XDTIzMDYxNDEzMTEwNFoXDTMzMDYxNDEzMTEwNFowGDEWMBQG
A1UEAxMNNjQ4OWJjNmItYTNlZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOGWJhp4zBPp3471eYDuFMbPI228nU36ysoyAw/UpUQGLo4TuLBYeE41Nj2I
w+O/VeYw7RNJvOfz+gM9y1mqcjpKDpWGmZDD1PcbUK3CDcKgK1P/vZitrjLcPAm6
Q7thsjvZ+Mtfgz8VV738uidKLSZSE83xXf6vKxvS4fkV9rY3Sm4AWze5cONLjecA
xmXYfv2mO/gOK1+CgUepwWnM7bU+lB1hZytWiuee9JoTA7De7uOgqEtnxJMqMe6s
iGLOzULLcgR5D5MuKI/TPpGwTJgp1OjrZL6dgEVkzxX4e5HBJLu++SUe6qYEtfv1
SVV3LrXmdaKpIeekrV4Ebfd0v2cCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQH2wtv
9u/JDqxatIyzHytPoKsH2DAfBgNVHSMEGDAWgBTDjN42l7npJDQaEGUPtZOj6ItP
7TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QUYyQ0IvRTRBQ0UxMkMwQThFMTFFRTkwOTQ2ODg3NEFEOUU2RkMvdzR6ZU5w
ZTU2U1EwR2hCbEQ3V1RvLWlMVC0wLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvdzR6ZU5wZTU2U1EwR2hCbEQ3V1RvLWlMVC0wLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QUYyQ0IvRTRBQ0UxMkMwQThFMTFFRTkwOTQ2ODg3NEFE
OUU2RkMvRUM4NkUyQzgwQUI0MTFFRTgzQ0E3RTc4NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbcsjANBgkqhkiG9w0BAQsF
AAOCAQEA2VBSAIbX/tKQU9qB/DCMJOCV3SqNhHvlzpa1ovLD/aeUT4RVBnAaCcnP
27Nr3tGj9Q5p3v2okX3xtZs+xeWL1kVSwFpeR2YMVPZlmHRK0Vl/Xexfw7Dzlg0E
kKHhz+r9RZ0TcwUnTYoUd6czi7ol2iI37wQoi27bnspAz5fYJKjUmSqr7B836nnx
u8sHrw10lIz4zgUo55bo+y2jdGkeaNgf5En0HT22YeG5Cw4kL2rz6ndSZvFAHeXJ
o8ZJThls2oKPhGyeJKS0hEODNAMG38NN+CsFN/ps9Pi5x0I1KFK0H2RS9j9/h3OO
sMqTE1fRdnbK+G8Errbq34mFqcD26g==
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:35 2024 by rpki-client on console-fra.rpki-client.org