Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/40F0EA0C864C11EF8B0D4162762E951A.roa
File: 40F0EA0C864C11EF8B0D4162762E951A.roa (raw, json)
Hash identifier: 5nZTReAvtcbgPm+oRDhQ83p7XciRK3gVMtmCqG06N7Q=
Subject key identifier: 77:1E:C3:E2:ED:06:2C:64:13:EA:E1:C6:47:3C:3C:BB:B2:F3:19:FD
Certificate issuer: /CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Certificate serial: 0807
Authority key identifier: 19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/40F0EA0C864C11EF8B0D4162762E951A.roa
Signing time: Wed 09 Oct 2024 14:39:14 +0000
ROA not before: Wed 09 Oct 2024 14:39:08 +0000
ROA not after: Mon 30 Oct 2034 14:39:08 +0000
asID: 8346
IP address blocks: 41.82.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2055 (0x807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Validity
Not Before: Oct 9 14:39:08 2024 GMT
Not After : Oct 30 14:39:08 2034 GMT
Subject: CN=67069592-20ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5c:7d:5f:a2:c2:a5:75:ab:d3:3a:52:48:7b:
8c:35:f3:8c:e3:91:62:ed:d1:9b:10:ae:15:26:dc:
ed:cd:f8:32:39:3b:c5:b9:af:29:bf:7d:47:4e:b2:
72:f4:10:cc:98:ad:c4:31:50:57:19:e7:43:68:d6:
97:0f:96:eb:4d:23:8c:14:a6:a5:ef:37:c6:91:ff:
45:60:53:89:dc:68:cd:01:95:9a:e3:48:70:67:51:
b5:4e:0c:32:ef:45:3e:00:8c:79:1f:89:44:83:d9:
60:ea:1f:f4:d2:6f:a3:e6:ce:3e:b0:b0:5c:14:73:
9e:8f:e4:67:c3:2b:2a:2d:2d:d7:fb:20:e4:4f:ec:
0f:59:c1:5f:68:e4:d2:d9:0d:3f:2c:15:71:3a:c6:
15:09:ad:ca:a4:f1:68:97:20:7f:c3:23:88:57:a8:
6f:58:3b:12:fd:6d:06:96:78:ef:f1:db:8d:a9:2c:
93:62:79:10:47:2e:45:2d:34:da:db:be:dc:05:84:
31:1f:e0:2c:d9:23:3e:81:18:04:54:da:b9:b4:9a:
ee:83:63:a2:3a:0f:ae:59:eb:e3:fe:46:0e:e9:f5:
24:2a:d4:3b:5c:ab:92:5d:76:51:7d:f9:06:0e:6c:
5f:35:ba:c0:64:b6:84:bf:57:f3:ec:4f:0f:e7:80:
65:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1E:C3:E2:ED:06:2C:64:13:EA:E1:C6:47:3C:3C:BB:B2:F3:19:FD
X509v3 Authority Key Identifier:
keyid:19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/40F0EA0C864C11EF8B0D4162762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.82.0.0/15
Signature Algorithm: sha256WithRSAEncryption
5d:af:3f:52:84:50:26:be:44:24:3b:d4:03:1e:5a:e4:13:5f:
7b:b6:2d:f8:d7:b3:59:95:8e:e4:a4:cc:2e:67:16:2e:60:44:
01:20:39:50:31:c4:01:35:01:5e:13:50:d5:20:28:7f:1c:f3:
1e:9c:ad:57:53:a5:38:a5:70:8a:6d:16:4b:6d:c2:47:d8:d5:
2e:9c:b7:ac:46:3a:4d:c8:26:94:a2:53:1e:2f:98:a1:aa:15:
66:2f:80:8f:96:b7:b7:b2:e1:db:6d:6e:1a:db:38:c1:b2:db:
8d:ab:5d:93:8f:32:4d:8a:d1:13:94:e3:82:f9:c2:f7:78:4a:
8f:dd:56:0f:dd:c9:0c:19:dd:e5:d7:c7:2f:bc:ae:36:b5:f7:
33:ca:47:b6:5e:15:be:72:58:f7:c0:2e:df:b7:54:5e:9d:01:
df:15:04:aa:79:42:c1:bf:5a:24:4f:57:74:63:19:c0:e6:87:
79:24:b6:14:7e:71:3c:1d:4f:32:f8:ca:4d:10:38:fe:00:c3:
85:d0:91:f8:78:57:97:7d:a9:8b:8e:3f:d9:2d:a0:34:1a:8d:
0c:cd:74:c9:00:c1:02:0f:1e:3f:e5:66:bd:0b:89:86:3f:4f:
37:0c:65:ee:95:b3:ee:d0:a4:9a:54:de:a4:eb:4b:82:63:89:
8b:fb:b7:9b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICCAcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjUyQTZBRjExMC8GA1UEBRMoMTlBREFDQzhGRkEzOTMxMzE4QTZDNzUzQTBBQzFC
MkFFOTI5NUUwMzAeFw0yNDEwMDkxNDM5MDhaFw0zNDEwMzAxNDM5MDhaMBgxFjAU
BgNVBAMTDTY3MDY5NTkyLTIwYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwXH1fosKldavTOlJIe4w184zjkWLt0ZsQrhUm3O3N+DI5O8W5rym/fUdO
snL0EMyYrcQxUFcZ50No1pcPlutNI4wUpqXvN8aR/0VgU4ncaM0BlZrjSHBnUbVO
DDLvRT4AjHkfiUSD2WDqH/TSb6Pmzj6wsFwUc56P5GfDKyotLdf7IORP7A9ZwV9o
5NLZDT8sFXE6xhUJrcqk8WiXIH/DI4hXqG9YOxL9bQaWeO/x242pLJNieRBHLkUt
NNrbvtwFhDEf4CzZIz6BGARU2rm0mu6DY6I6D65Z6+P+Rg7p9SQq1Dtcq5JddlF9
+QYObF81usBktoS/V/PsTw/ngGWrAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUdx7D
4u0GLGQT6uHGRzw8u7LzGf0wHwYDVR0jBBgwFoAUGa2syP+jkxMYpsdToKwbKukp
XgMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4QUVBMjI4L0dhMnN5
UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0dhMnN5UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4
QUVBMjI4LzQwRjBFQTBDODY0QzExRUY4QjBENDE2Mjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwEpUjANBgkqhkiG9w0BAQsF
AAOCAQEAXa8/UoRQJr5EJDvUAx5a5BNfe7Yt+NezWZWO5KTMLmcWLmBEASA5UDHE
ATUBXhNQ1SAofxzzHpytV1OlOKVwim0WS23CR9jVLpy3rEY6TcgmlKJTHi+YoaoV
Zi+Aj5a3t7Lh221uGts4wbLbjatdk48yTYrRE5TjgvnC93hKj91WD93JDBnd5dfH
L7yuNrX3M8pHtl4VvnJY98Au37dUXp0B3xUEqnlCwb9aJE9XdGMZwOaHeSS2FH5x
PB1PMvjKTRA4/gDDhdCR+HhXl32pi44/2S2gNBqNDM10yQDBAg8eP+VmvQuJhj9P
Nwxl7pWz7tCkmlTepOtLgmOJi/u3mw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org