Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/57D99C84A70B11EFAB610873762E951A.roa
File: 57D99C84A70B11EFAB610873762E951A.roa (raw, json)
Hash identifier: VESGhOcQ1eFdhjYgqNLQ5y+9WwlZ95aNn2gOWKom4PM=
Subject key identifier: 6F:A3:9B:AF:F4:A8:BA:DC:C7:2E:6D:39:58:56:05:B2:82:3C:2C:E5
Certificate issuer: /CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Certificate serial: 06FB
Authority key identifier: D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/57D99C84A70B11EFAB610873762E951A.roa
Signing time: Wed 20 Nov 2024 06:47:43 +0000
ROA not before: Wed 20 Nov 2024 06:47:39 +0000
ROA not after: Wed 01 Nov 2034 06:47:39 +0000
asID: 328337
IP address blocks: 102.134.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.mft
rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1787 (0x6fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B70EFAF/serialNumber=D0BE67D045B33F05A5871510399E709C98F6D77D
Validity
Not Before: Nov 20 06:47:39 2024 GMT
Not After : Nov 1 06:47:39 2034 GMT
Subject: CN=673d860f-f7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0e:39:3a:66:8b:f7:40:a4:d2:d2:47:09:8f:
5a:1a:96:e2:cb:7f:3d:d5:e3:99:f9:d5:61:b4:f1:
e4:27:75:20:bd:35:f4:f2:5d:cb:b8:75:9d:44:dc:
34:1c:f0:9e:a5:c3:fa:f1:b8:46:ac:a4:f7:bb:63:
76:b4:02:27:a1:e2:2b:6a:c0:d3:28:c2:bd:5e:4d:
bc:fa:fc:2b:08:10:b0:33:8f:9a:9b:11:dd:dc:1a:
ff:68:63:d6:61:e2:20:9e:4f:43:13:b1:19:ff:44:
6c:74:59:45:de:5e:dd:e5:32:d1:46:84:74:58:ee:
cc:22:ea:37:91:72:27:c0:67:12:29:d6:6c:6b:c9:
5f:1f:9c:80:dc:ae:26:dc:ef:ec:67:e8:44:8f:a8:
a8:76:2b:06:30:04:1e:46:e9:c1:1d:b6:74:a7:61:
ad:77:ca:2c:b8:08:3c:b8:1e:ef:74:dc:17:99:31:
e0:c2:7e:b1:d7:29:bc:4d:18:35:d9:41:47:e3:aa:
b0:be:bf:1c:69:93:d6:0f:bd:b9:92:47:38:89:27:
a1:99:9d:57:14:88:c6:42:05:87:53:6d:e7:71:26:
b4:24:97:e1:3a:08:1e:8b:21:5b:a2:9f:19:ed:49:
66:b2:8a:b0:6c:23:bd:3e:1f:13:2f:c6:e0:37:b0:
83:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A3:9B:AF:F4:A8:BA:DC:C7:2E:6D:39:58:56:05:B2:82:3C:2C:E5
X509v3 Authority Key Identifier:
keyid:D0:BE:67:D0:45:B3:3F:05:A5:87:15:10:39:9E:70:9C:98:F6:D7:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/0L5n0EWzPwWlhxUQOZ5wnJj2130.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0L5n0EWzPwWlhxUQOZ5wnJj2130.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B70EF/8F798B325A6611EABB216F4BF8AEA228/57D99C84A70B11EFAB610873762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.134.64.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f7:09:46:6b:e5:86:dc:76:9e:7e:5f:a2:e6:bb:76:c7:76:
f1:dd:5e:f9:20:83:3f:33:41:53:b6:e9:d6:5b:81:b3:2e:c6:
ba:53:62:6f:3f:6f:ba:73:bf:ec:ba:c4:49:52:ab:6c:eb:a6:
09:04:65:3c:ff:a1:66:2a:21:76:c3:44:a3:81:a9:ec:de:ba:
bb:f4:31:48:49:57:cb:13:1f:68:44:b5:a8:e3:c4:7c:f0:0c:
d9:2e:98:04:0d:7d:f8:d1:3d:ed:57:38:33:ea:8d:a1:ac:dc:
2e:97:a6:b5:04:d6:55:aa:0c:80:be:c1:17:96:8c:29:e0:5a:
e2:cc:15:c7:b8:42:dc:7f:c9:65:cc:ae:f5:1c:c7:65:ce:e3:
91:07:00:8c:3f:b2:4b:2f:98:6b:2c:e8:9b:90:55:d3:1b:57:
30:dd:f8:60:39:62:e1:77:57:fb:fe:ef:1e:4d:4a:66:4c:1e:
ec:ce:8b:16:33:ec:b7:42:2b:b8:35:9a:04:e6:9a:40:cd:75:
1b:bf:0f:a1:7f:aa:d0:99:68:22:ed:62:69:70:c2:1f:14:e8:
28:ed:85:f5:31:cb:04:0a:68:47:a5:30:cb:70:d5:3d:49:5f:
cc:29:7d:84:70:3f:e0:dc:36:5b:02:d4:6f:82:f0:9e:56:bd:
6b:33:a1:88
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBvswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QjcwRUZBRjExMC8GA1UEBRMoRDBCRTY3RDA0NUIzM0YwNUE1ODcxNTEwMzk5RTcw
OUM5OEY2RDc3RDAeFw0yNDExMjAwNjQ3MzlaFw0zNDExMDEwNjQ3MzlaMBgxFjAU
BgNVBAMTDTY3M2Q4NjBmLWY3YmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDlDjk6Zov3QKTS0kcJj1oaluLLfz3V45n51WG08eQndSC9NfTyXcu4dZ1E
3DQc8J6lw/rxuEaspPe7Y3a0Aieh4itqwNMowr1eTbz6/CsIELAzj5qbEd3cGv9o
Y9Zh4iCeT0MTsRn/RGx0WUXeXt3lMtFGhHRY7swi6jeRcifAZxIp1mxryV8fnIDc
ribc7+xn6ESPqKh2KwYwBB5G6cEdtnSnYa13yiy4CDy4Hu903BeZMeDCfrHXKbxN
GDXZQUfjqrC+vxxpk9YPvbmSRziJJ6GZnVcUiMZCBYdTbedxJrQkl+E6CB6LIVui
nxntSWayirBsI70+HxMvxuA3sIPvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUb6Ob
r/SoutzHLm05WFYFsoI8LOUwHwYDVR0jBBgwFoAU0L5n0EWzPwWlhxUQOZ5wnJj2
130wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkI3MEVGLzhGNzk4QjMyNUE2NjExRUFCQjIxNkY0QkY4QUVBMjI4LzBMNW4w
RVd6UHdXbGh4VVFPWjV3bkpqMjEzMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzBMNW4wRVd6UHdXbGh4VVFPWjV3bkpqMjEzMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkI3MEVGLzhGNzk4QjMyNUE2NjExRUFCQjIxNkY0QkY4
QUVBMjI4LzU3RDk5Qzg0QTcwQjExRUZBQjYxMDg3Mzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmhkAwDQYJKoZIhvcNAQEL
BQADggEBAGP3CUZr5Ybcdp5+X6Lmu3bHdvHdXvkggz8zQVO26dZbgbMuxrpTYm8/
b7pzv+y6xElSq2zrpgkEZTz/oWYqIXbDRKOBqezeurv0MUhJV8sTH2hEtajjxHzw
DNkumAQNffjRPe1XODPqjaGs3C6XprUE1lWqDIC+wReWjCngWuLMFce4Qtx/yWXM
rvUcx2XO45EHAIw/sksvmGss6JuQVdMbVzDd+GA5YuF3V/v+7x5NSmZMHuzOixYz
7LdCK7g1mgTmmkDNdRu/D6F/qtCZaCLtYmlwwh8U6CjthfUxywQKaEelMMtw1T1J
X8wpfYRwP+DcNlsC1G+C8J5WvWszoYg=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:14 2024 by rpki-client on console-fra.rpki-client.org