Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/8F04BF5C864C11EF8F687464762E951A.roa
File: 8F04BF5C864C11EF8F687464762E951A.roa (raw, json)
Hash identifier: MFVB+4npBxn/Yh83eigumhh31Iuk3EG7QH/ll1Qzce0=
Subject key identifier: 74:BD:81:DA:63:58:DD:3F:B5:E4:9C:DA:49:4D:77:86:31:97:23:C9
Certificate issuer: /CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Certificate serial: 0809
Authority key identifier: 19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/8F04BF5C864C11EF8F687464762E951A.roa
Signing time: Wed 09 Oct 2024 14:41:25 +0000
ROA not before: Wed 09 Oct 2024 14:41:21 +0000
ROA not after: Mon 30 Oct 2034 14:41:21 +0000
asID: 8346
IP address blocks: 154.124.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2057 (0x809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Validity
Not Before: Oct 9 14:41:21 2024 GMT
Not After : Oct 30 14:41:21 2034 GMT
Subject: CN=67069615-ae70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:8c:4d:4a:fa:fe:18:c1:ed:ba:d9:29:05:
5d:26:1a:75:2f:7d:6a:ce:9a:8a:75:bf:54:15:68:
e0:cf:38:9a:4a:70:e6:84:4a:e8:1d:84:b5:54:1a:
58:bd:ce:5a:c6:f6:72:fb:ad:2a:5c:d3:fa:9f:bd:
40:d4:f8:1d:af:26:94:c0:d2:03:b7:41:9f:4c:26:
d5:fa:f8:cb:8b:bd:77:ac:e8:3f:8e:43:6b:68:80:
e2:97:c9:91:7b:8d:f2:48:9a:15:f9:80:de:be:8a:
38:84:96:03:5e:53:cf:f8:b8:9e:60:36:2e:5e:a5:
38:93:dc:33:8d:35:2d:bb:11:92:d3:84:64:3e:8c:
23:7b:43:59:5a:33:e0:27:7d:5e:5a:88:45:5a:a4:
0b:48:44:03:3a:26:33:7b:51:51:e1:9c:46:0c:1b:
7a:14:7b:a3:7f:4b:fa:b0:cf:5d:1c:e2:3b:60:03:
14:74:fa:2c:2b:b4:86:19:b7:e5:c4:cd:a4:c9:e9:
fb:cc:cc:74:64:e6:85:99:93:03:72:d4:1a:f6:e9:
1e:91:2b:dc:13:c8:94:d1:32:ee:08:ec:5c:45:24:
fd:b9:c7:14:5d:e8:6b:18:6b:c6:50:7c:9f:79:c3:
22:96:8c:2d:da:22:96:52:20:cc:0c:c8:6c:61:c1:
2b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BD:81:DA:63:58:DD:3F:B5:E4:9C:DA:49:4D:77:86:31:97:23:C9
X509v3 Authority Key Identifier:
keyid:19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/8F04BF5C864C11EF8F687464762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.124.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9d:09:20:42:f3:f8:18:d9:9a:71:14:4a:fa:32:8e:3e:76:a0:
60:0b:de:8b:83:6f:a9:e9:42:c6:19:db:bc:13:70:a9:ae:92:
d7:c0:08:c8:8a:6e:d5:3b:ab:cf:e1:d2:58:81:0a:c7:82:b1:
19:fc:80:6a:cd:ab:f4:e9:fa:2b:10:e0:af:62:9f:08:dc:1e:
1e:1f:43:2b:c4:3e:c6:f1:bd:10:16:93:54:0a:56:f4:ae:eb:
1c:4d:0a:83:51:d9:df:0c:66:02:83:f1:fb:08:53:fc:ec:e1:
36:72:73:db:6e:8c:3c:6e:b5:27:d1:3f:3c:83:b1:57:1c:60:
a6:f4:d5:a8:3a:b8:11:a8:8a:a7:43:df:44:8e:2f:02:b4:f8:
b0:8c:86:b3:c9:10:5d:85:a2:f9:c6:62:b1:28:03:52:70:d2:
0b:85:c1:72:a5:3d:ad:24:43:62:43:62:e6:32:59:19:7f:3a:
b2:08:0b:25:7c:ae:3e:08:30:83:e0:d9:21:c8:37:5e:eb:59:
9d:dd:2b:d4:c3:34:7c:d6:a8:ae:3a:2b:40:ad:3a:bc:88:5e:
ac:0b:44:09:ed:10:81:38:24:82:e8:7b:83:2a:bd:ad:df:f3:
17:61:df:9a:0c:20:26:10:a8:37:ab:31:0b:61:be:d3:d8:e1:
d4:83:60:f7
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjUyQTZBRjExMC8GA1UEBRMoMTlBREFDQzhGRkEzOTMxMzE4QTZDNzUzQTBBQzFC
MkFFOTI5NUUwMzAeFw0yNDEwMDkxNDQxMjFaFw0zNDEwMzAxNDQxMjFaMBgxFjAU
BgNVBAMTDTY3MDY5NjE1LWFlNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/AIxNSvr+GMHtutkpBV0mGnUvfWrOmop1v1QVaODPOJpKcOaESugdhLVU
Gli9zlrG9nL7rSpc0/qfvUDU+B2vJpTA0gO3QZ9MJtX6+MuLvXes6D+OQ2togOKX
yZF7jfJImhX5gN6+ijiElgNeU8/4uJ5gNi5epTiT3DONNS27EZLThGQ+jCN7Q1la
M+AnfV5aiEVapAtIRAM6JjN7UVHhnEYMG3oUe6N/S/qwz10c4jtgAxR0+iwrtIYZ
t+XEzaTJ6fvMzHRk5oWZkwNy1Br26R6RK9wTyJTRMu4I7FxFJP25xxRd6GsYa8ZQ
fJ95wyKWjC3aIpZSIMwMyGxhwSv9AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUdL2B
2mNY3T+15JzaSU13hjGXI8kwHwYDVR0jBBgwFoAUGa2syP+jkxMYpsdToKwbKukp
XgMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4QUVBMjI4L0dhMnN5
UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0dhMnN5UC1qa3hNWXBzZFRvS3diS3VrcFhnTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkI1MkE2LzZBRTMwN0I2NkZGRDExRTlBNjlDQzEzNEY4
QUVBMjI4LzhGMDRCRjVDODY0QzExRUY4RjY4NzQ2NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwGafDANBgkqhkiG9w0BAQsF
AAOCAQEAnQkgQvP4GNmacRRK+jKOPnagYAvei4NvqelCxhnbvBNwqa6S18AIyIpu
1Turz+HSWIEKx4KxGfyAas2r9On6KxDgr2KfCNweHh9DK8Q+xvG9EBaTVApW9K7r
HE0Kg1HZ3wxmAoPx+whT/OzhNnJz226MPG61J9E/PIOxVxxgpvTVqDq4EaiKp0Pf
RI4vArT4sIyGs8kQXYWi+cZisSgDUnDSC4XBcqU9rSRDYkNi5jJZGX86sggLJXyu
Pggwg+DZIcg3XutZnd0r1MM0fNaorjorQK06vIherAtECe0QgTgkguh7gyq9rd/z
F2HfmgwgJhCoN6sxC2G+09jh1INg9w==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:21 2024 by rpki-client on console-ams.rpki-client.org