Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/1BBD15F05A6711EA9B33194CF8AEA228.roa
File: 1BBD15F05A6711EA9B33194CF8AEA228.roa (raw, json)
Hash identifier: 60FP7Xp6LdQXkJBiXGYYWOcK5OJjg1Z5omL1TTkOPXc=
Subject key identifier: 14:6C:47:CD:FB:0E:A2:21:60:5A:8A:E5:36:1C:57:F2:E7:5D:AA:83
Certificate issuer: /CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Certificate serial: 06
Authority key identifier: D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/1BBD15F05A6711EA9B33194CF8AEA228.roa
Signing time: Fri 28 Feb 2020 20:15:48 +0000
ROA not before: Fri 28 Feb 2020 20:15:43 +0000
ROA not after: Thu 28 Feb 2030 20:15:43 +0000
asID: 328337
IP address blocks: 102.134.64.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.mft
rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Validity
Not Before: Feb 28 20:15:43 2020 GMT
Not After : Feb 28 20:15:43 2030 GMT
Subject: CN=5e5974f4-d7e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:fb:81:c0:a4:aa:4a:c2:1a:27:d6:ca:91:
1a:5c:a8:a2:ce:c2:fa:ac:0e:de:b9:01:73:db:c3:
e4:a0:51:36:c7:aa:d7:76:18:1a:e9:37:6b:64:fa:
3d:f2:dc:36:18:7b:ea:71:ed:4f:13:be:8e:8b:6a:
94:06:32:e9:35:23:92:83:2d:ad:fd:07:de:c2:64:
c1:a1:1c:e3:c4:aa:c7:63:b0:a0:ff:97:77:1a:e2:
ce:d2:bd:3a:70:03:6f:68:c9:19:3b:1c:a5:72:56:
cf:96:81:f7:00:15:60:6e:32:b7:d0:fc:18:52:ec:
31:78:f9:ef:e2:65:91:70:a0:c9:b2:f7:80:a7:cb:
02:81:da:ff:31:65:4e:97:7e:a0:5e:ad:22:b9:9c:
74:c9:4e:4e:91:04:41:1a:2f:08:cc:1a:a4:af:df:
32:c5:7a:e7:e0:6e:0a:54:85:81:0b:9c:a4:9f:69:
1d:36:97:df:04:08:97:2b:2b:a6:af:35:31:5e:62:
f7:fd:c7:7c:40:7b:60:cb:68:58:20:09:ea:59:67:
e3:a5:54:3f:0f:99:82:87:11:9d:77:c7:98:07:f7:
c5:28:17:a6:0f:74:ab:6a:8b:f1:1f:3c:23:cc:7d:
c3:b2:8b:68:e6:9f:9b:88:40:b9:fb:2a:91:8f:b0:
2b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6C:47:CD:FB:0E:A2:21:60:5A:8A:E5:36:1C:57:F2:E7:5D:AA:83
X509v3 Authority Key Identifier:
keyid:D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/1BBD15F05A6711EA9B33194CF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.134.64.0/22
Signature Algorithm: sha256WithRSAEncryption
64:0a:90:d2:07:b6:f5:53:ea:63:0e:d4:ee:5a:8b:56:2f:2f:
fd:9f:2c:86:e3:dd:75:a5:47:3f:28:fd:f3:bc:3d:fe:35:ab:
4e:59:97:66:4d:38:37:90:b4:d9:c2:2d:2f:e1:3c:99:9c:a9:
fe:7e:eb:25:25:54:fa:de:76:49:9f:58:ea:06:81:0b:0d:36:
53:eb:a3:a5:3e:3a:ad:9d:e7:3f:40:ff:85:fe:67:89:9a:b5:
fd:29:d1:7f:e5:3e:4e:32:36:db:20:cf:78:b8:3e:d4:a8:f6:
f6:df:db:e8:93:67:c5:41:0a:2c:b6:f3:d1:62:78:5a:cd:85:
6e:b4:00:ee:b7:42:62:f6:55:14:c7:9f:9f:d9:26:2b:ad:d2:
ba:29:01:04:82:28:16:c0:6e:5b:36:2b:74:6e:72:8d:bd:d8:
dd:84:88:1c:9a:7e:88:a3:6d:71:11:ad:56:16:d4:f4:c8:d8:
ad:b7:ee:c5:ad:8d:6c:5f:ee:0b:40:9b:72:1d:34:8f:13:c1:
b8:67:04:67:1e:9a:de:2c:c7:6e:4c:8e:46:b0:5a:03:a6:fd:
e6:ec:c7:dc:2f:13:fc:50:8f:32:37:44:7c:88:2a:e7:be:80:
0e:98:70:d0:4c:ea:f7:66:3c:00:4e:4c:0a:29:48:65:92:16:
75:13:7e:95
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZC
NzBFRkFGMTEwLwYDVQQFEyhEMEJFNjdEMDQ1QjMzRjA1QTU4NzE1MTAzOTlFNzA5
Qzk4RjZENzdEMB4XDTIwMDIyODIwMTU0M1oXDTMwMDIyODIwMTU0M1owGDEWMBQG
A1UEAxMNNWU1OTc0ZjQtZDdlNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALRs+4HApKpKwhon1sqRGlyoos7C+qwO3rkBc9vD5KBRNseq13YYGuk3a2T6
PfLcNhh76nHtTxO+jotqlAYy6TUjkoMtrf0H3sJkwaEc48Sqx2OwoP+XdxriztK9
OnADb2jJGTscpXJWz5aB9wAVYG4yt9D8GFLsMXj57+JlkXCgybL3gKfLAoHa/zFl
Tpd+oF6tIrmcdMlOTpEEQRovCMwapK/fMsV65+BuClSFgQucpJ9pHTaX3wQIlysr
pq81MV5i9/3HfEB7YMtoWCAJ6lln46VUPw+ZgocRnXfHmAf3xSgXpg90q2qL8R88
I8x9w7KLaOafm4hAufsqkY+wK4UCAwEAAaOCAm4wggJqMB0GA1UdDgQWBBQUbEfN
+w6iIWBaiuU2HFfy512qgzAfBgNVHSMEGDAWgBTQvmfQRbM/BaWHFRA5nnCcmPbX
fTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QjcwRUYvOEY3OThCMzI1QTY2MTFFQUJCMjE2RjRCRjhBRUEyMjgvMEw1bjBF
V3pQd1dsaHhVUU9aNXduSmoyMTMwLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMEw1bjBFV3pQd1dsaHhVUU9aNXduSmoyMTMwLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QjcwRUYvOEY3OThCMzI1QTY2MTFFQUJCMjE2RjRCRjhB
RUEyMjgvMUJCRDE1RjA1QTY3MTFFQTlCMzMxOTRDRjhBRUEyMjgucm9hMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZoZAMA0GCSqGSIb3DQEBCwUAA4IBAQBk
CpDSB7b1U+pjDtTuWotWLy/9nyyG4911pUc/KP3zvD3+NatOWZdmTTg3kLTZwi0v
4TyZnKn+fuslJVT63nZJn1jqBoELDTZT66OlPjqtnec/QP+F/meJmrX9KdF/5T5O
MjbbIM94uD7UqPb239vok2fFQQostvPRYnhazYVutADut0Ji9lUUx5+f2SYrrdK6
KQEEgigWwG5bNit0bnKNvdjdhIgcmn6Io21xEa1WFtT0yNitt+7FrY1sX+4LQJty
HTSPE8G4ZwRnHpreLMduTI5GsFoDpv3m7MfcLxP8UI8yN0R8iCrnvoAOmHDQTOr3
ZjwATkwKKUhlkhZ1E36V
-----END CERTIFICATE-----
Generated at Wed Apr 24 01:56:22 2024 by rpki-client on console-ams.rpki-client.org