Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/325E4A4E864B11EF9931C05B762E951A.roa
File: 325E4A4E864B11EF9931C05B762E951A.roa (raw, json)
Hash identifier: uilxINn6WdcvcjXq+Nwl5lpnynygHnR6cPspfvXc/m0=
Subject key identifier: 4F:AE:B4:CA:5C:02:7B:24:7B:CE:62:D6:BB:E6:C7:03:EF:AD:BC:87
Certificate issuer: /CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Certificate serial: 07FF
Authority key identifier: 19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/325E4A4E864B11EF9931C05B762E951A.roa
Signing time: Wed 09 Oct 2024 14:31:40 +0000
ROA not before: Wed 09 Oct 2024 14:31:36 +0000
ROA not after: Mon 30 Oct 2034 14:31:36 +0000
asID: 8346
IP address blocks: 41.214.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2047 (0x7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Validity
Not Before: Oct 9 14:31:36 2024 GMT
Not After : Oct 30 14:31:36 2034 GMT
Subject: CN=670693cc-9023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dd:6c:e2:f8:dd:71:6b:cb:18:bb:f8:e0:9e:
d8:50:bf:fb:81:49:4d:27:89:e0:90:4a:9f:98:56:
5b:98:6b:d2:e8:e9:db:1c:0c:41:08:41:4b:5e:61:
75:24:ed:49:d7:df:55:20:2d:85:6e:45:92:7f:43:
cb:6a:d0:a5:e2:68:17:ae:ce:95:6c:b9:a2:5f:11:
76:c6:97:e0:12:d6:6e:89:7c:11:fa:7c:5f:dc:da:
af:d3:55:28:5c:5e:c1:94:8d:e0:a6:3e:2b:5a:37:
55:10:f4:c8:b0:6c:da:fe:31:4e:81:db:35:17:e4:
58:d1:03:66:6e:96:60:1d:cd:d2:f8:65:f2:8d:5c:
fe:d4:86:3b:d6:4f:82:a0:d2:ca:51:50:5c:8f:bd:
8f:3d:d3:65:37:06:d5:a6:39:68:36:30:2e:34:05:
80:6a:24:c7:c7:78:02:7a:30:ff:56:9b:66:3c:27:
7f:fa:bc:12:e4:15:99:43:16:aa:84:76:4e:46:72:
33:d9:ef:a1:e3:8f:4b:4d:d7:10:89:8c:fa:7d:c6:
ee:00:af:03:c0:01:11:a0:09:fb:93:94:9c:a8:cb:
d3:4c:70:3e:c0:17:30:d3:c3:e1:a8:b4:f3:41:4d:
1c:26:21:2e:c3:83:e8:45:a9:a2:94:53:14:3f:69:
00:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AE:B4:CA:5C:02:7B:24:7B:CE:62:D6:BB:E6:C7:03:EF:AD:BC:87
X509v3 Authority Key Identifier:
keyid:19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/325E4A4E864B11EF9931C05B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.214.0.0/17
Signature Algorithm: sha256WithRSAEncryption
90:1f:d5:28:a1:fa:13:3b:06:3e:ff:99:ac:92:d5:be:05:9d:
c0:0d:27:34:d7:5f:90:ee:fd:3c:13:ff:6a:69:15:38:bb:14:
b6:2a:13:7e:30:a8:67:e6:87:a5:3b:e6:24:f1:9e:84:ec:6a:
2f:92:73:0e:77:85:a0:06:e1:83:bd:48:12:30:d6:74:50:c9:
4f:b8:8f:86:de:02:47:43:a9:5a:87:7e:08:18:7b:54:09:30:
d7:46:67:32:90:cc:0d:d4:52:10:35:45:b2:86:dc:0c:ca:56:
be:4d:2a:d3:45:c1:96:31:1a:a5:dd:93:a7:04:37:dd:6d:7c:
7f:50:1c:b8:fd:9a:77:68:df:8f:00:64:d0:61:bc:6e:60:0f:
55:e0:a3:57:c8:8a:41:6a:7d:b0:64:07:29:36:5e:6f:6e:df:
a2:85:48:65:24:c9:95:9d:b0:b2:57:a9:0c:38:9a:cf:48:9b:
fd:c9:bd:62:e7:8f:af:8d:60:f4:4f:d7:ad:04:1d:66:2f:83:
c6:1f:e2:e4:77:17:97:a2:6d:9c:1c:51:25:ce:14:45:4a:c5:
b3:ac:47:b8:a2:db:78:34:5e:e6:03:88:f5:04:79:af:3d:07:
44:b2:4b:0a:6c:9e:7e:c4:fd:cd:3a:95:8a:90:ff:d6:c3:c1:
78:65:dd:f6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjUyQTZBRjExMC8GA1UEBRMoMTlBREFDQzhGRkEzOTMxMzE4QTZDNzUzQTBBQzFC
MkFFOTI5NUUwMzAeFw0yNDEwMDkxNDMxMzZaFw0zNDEwMzAxNDMxMzZaMBgxFjAU
BgNVBAMTDTY3MDY5M2NjLTkwMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCu3Wzi+N1xa8sYu/jgnthQv/uBSU0nieCQSp+YVluYa9Lo6dscDEEIQUte
YXUk7UnX31UgLYVuRZJ/Q8tq0KXiaBeuzpVsuaJfEXbGl+AS1m6JfBH6fF/c2q/T
VShcXsGUjeCmPitaN1UQ9MiwbNr+MU6B2zUX5FjRA2ZulmAdzdL4ZfKNXP7UhjvW
T4Kg0spRUFyPvY8902U3BtWmOWg2MC40BYBqJMfHeAJ6MP9Wm2Y8J3/6vBLkFZlD
FqqEdk5GcjPZ76Hjj0tN1xCJjPp9xu4ArwPAARGgCfuTlJyoy9NMcD7AFzDTw+Go
tPNBTRwmIS7Dg+hFqaKUUxQ/aQCnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUT660
ylwCeyR7zmLWu+bHA++tvIcwHwYDVR0jBBgwFoAUGa2syP+jkxMYpsdToKwbKukp
XgMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4QUVBMjI4L0dhMnN5
UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0dhMnN5UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4
QUVBMjI4LzMyNUU0QTRFODY0QjExRUY5OTMxQzA1Qjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAcp1gAwDQYJKoZIhvcNAQEL
BQADggEBAJAf1Sih+hM7Bj7/mayS1b4FncANJzTXX5Du/TwT/2ppFTi7FLYqE34w
qGfmh6U75iTxnoTsai+Scw53haAG4YO9SBIw1nRQyU+4j4beAkdDqVqHfggYe1QJ
MNdGZzKQzA3UUhA1RbKG3AzKVr5NKtNFwZYxGqXdk6cEN91tfH9QHLj9mndo348A
ZNBhvG5gD1Xgo1fIikFqfbBkByk2Xm9u36KFSGUkyZWdsLJXqQw4ms9Im/3JvWLn
j6+NYPRP160EHWYvg8Yf4uR3F5eibZwcUSXOFEVKxbOsR7ii23g0XuYDiPUEea89
B0SySwpsnn7E/c06lYqQ/9bDwXhl3fY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org