Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/54E05F6869C111EABE457C6CF8AEA228.roa
File: 54E05F6869C111EABE457C6CF8AEA228.roa (raw, json)
Hash identifier: FQCv9MFC3cBXgPGabKqrwO+VZdaQ7E3MbCbMcFLNH9E=
Subject key identifier: 77:E4:FD:DF:4B:45:B1:5C:C1:B0:12:E3:AF:1A:E6:1A:0F:A1:D1:29
Certificate issuer: /CN=F36B8FB6AF/serialNumber=574B1C00D23C512116AD35AC00F3E262BB46EBB3
Certificate serial: 02
Authority key identifier: 57:4B:1C:00:D2:3C:51:21:16:AD:35:AC:00:F3:E2:62:BB:46:EB:B3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/V0scANI8USEWrTWsAPPiYrtG67M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/54E05F6869C111EABE457C6CF8AEA228.roa
Signing time: Thu 19 Mar 2020 09:09:27 +0000
ROA not before: Thu 19 Mar 2020 09:09:22 +0000
ROA not after: Tue 31 Dec 2030 09:09:22 +0000
asID: 328624
IP address blocks: 102.223.140.0/22 maxlen: 24
2c0f:e810::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/V0scANI8USEWrTWsAPPiYrtG67M.crl
rsync://rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/V0scANI8USEWrTWsAPPiYrtG67M.mft
rsync://rpki.afrinic.net/repository/afrinic/V0scANI8USEWrTWsAPPiYrtG67M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B8FB6AF/serialNumber=574B1C00D23C512116AD35AC00F3E262BB46EBB3
Validity
Not Before: Mar 19 09:09:22 2020 GMT
Not After : Dec 31 09:09:22 2030 GMT
Subject: CN=5e7336c6-a223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2b:4d:10:d4:48:c0:03:1c:7b:37:9d:83:8a:
96:84:08:6c:38:e2:e7:1f:fd:e5:29:f3:de:54:dc:
88:25:8b:71:d0:b8:72:8e:78:19:d6:4c:15:68:e8:
ca:b4:4e:23:b8:bc:97:04:60:39:c7:29:fe:68:3c:
23:1c:5e:2b:f3:07:97:fe:0a:10:9d:76:a2:7e:b6:
b0:0a:4e:1b:68:1f:56:d1:9e:9d:22:06:c1:45:c1:
fe:e6:cb:7c:66:45:14:01:89:9e:ea:e5:df:43:b3:
0d:94:1b:82:e2:f1:61:3f:5d:06:35:7e:d4:54:9e:
9b:7c:b4:f1:0f:4d:ec:1a:38:0d:93:11:d4:28:af:
f0:d7:8e:c6:01:a6:1c:ba:ce:cb:2c:19:d1:f4:58:
3e:72:5d:7b:f4:84:a8:f6:97:a5:83:fe:d6:9b:10:
a8:b9:2e:c2:d5:5e:5c:f5:76:43:4a:87:bc:03:ae:
98:68:d5:e0:49:b3:88:a7:81:43:ec:21:e0:0f:db:
4f:b1:88:0a:4f:1e:c9:db:cd:17:30:c1:ee:dc:3c:
12:af:bb:21:2b:39:7c:06:b5:04:39:50:d9:d4:47:
fd:e1:01:1e:41:19:9a:96:b8:2c:03:cd:70:29:03:
ef:cc:59:2c:5c:6e:0c:49:fc:1e:cc:cb:f5:33:1a:
9e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E4:FD:DF:4B:45:B1:5C:C1:B0:12:E3:AF:1A:E6:1A:0F:A1:D1:29
X509v3 Authority Key Identifier:
keyid:57:4B:1C:00:D2:3C:51:21:16:AD:35:AC:00:F3:E2:62:BB:46:EB:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/V0scANI8USEWrTWsAPPiYrtG67M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/V0scANI8USEWrTWsAPPiYrtG67M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B8FB6/FC33DE1269C011EA884FF46BF8AEA228/54E05F6869C111EABE457C6CF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.223.140.0/22
IPv6:
2c0f:e810::/32
Signature Algorithm: sha256WithRSAEncryption
3d:d6:c7:24:f9:46:63:e0:9d:31:ee:19:67:06:e3:b2:31:99:
86:6b:0c:90:ad:41:a8:b2:ec:49:d8:bb:9a:45:fb:4f:51:7a:
dd:d3:8a:7b:25:04:73:26:fc:35:c8:60:bb:0d:17:f7:16:80:
a3:d5:b9:c8:cd:21:fd:6e:4f:0b:33:76:3e:d4:ab:6e:fc:5e:
4d:8f:55:fa:71:ae:36:00:0e:0a:2a:0b:10:fa:90:c5:80:01:
5f:5c:f6:3b:22:10:76:c2:4c:60:7f:0b:4a:2a:6d:00:85:37:
7a:bb:db:df:27:38:85:57:aa:be:6d:52:c7:1b:fa:e2:6c:1c:
f3:2b:a2:0a:f3:62:21:81:25:50:2a:31:93:7c:31:8c:3a:b5:
c5:18:42:f0:cd:8c:32:e5:bc:d0:94:9a:fe:96:ce:e5:92:e4:
0a:14:58:46:e9:ae:45:54:2d:9b:13:33:a5:4d:cf:68:e7:c2:
7b:91:1a:e4:5c:26:47:59:b0:b7:47:8c:8b:7b:12:cb:aa:cc:
90:89:df:2e:52:1d:0d:6b:b3:e4:8a:1e:08:65:e6:8d:6f:db:
46:ef:9e:bc:d2:d2:81:51:52:5e:d5:75:10:e4:7f:6f:dc:a5:
43:78:47:cd:a4:be:17:19:68:35:03:d7:c2:d4:18:7c:e3:1c:
2c:73:b7:ba
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZC
OEZCNkFGMTEwLwYDVQQFEyg1NzRCMUMwMEQyM0M1MTIxMTZBRDM1QUMwMEYzRTI2
MkJCNDZFQkIzMB4XDTIwMDMxOTA5MDkyMloXDTMwMTIzMTA5MDkyMlowGDEWMBQG
A1UEAxMNNWU3MzM2YzYtYTIyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKArTRDUSMADHHs3nYOKloQIbDji5x/95Snz3lTciCWLcdC4co54GdZMFWjo
yrROI7i8lwRgOccp/mg8IxxeK/MHl/4KEJ12on62sApOG2gfVtGenSIGwUXB/ubL
fGZFFAGJnurl30OzDZQbguLxYT9dBjV+1FSem3y08Q9N7Bo4DZMR1Civ8NeOxgGm
HLrOyywZ0fRYPnJde/SEqPaXpYP+1psQqLkuwtVeXPV2Q0qHvAOumGjV4EmziKeB
Q+wh4A/bT7GICk8eydvNFzDB7tw8Eq+7ISs5fAa1BDlQ2dRH/eEBHkEZmpa4LAPN
cCkD78xZLFxuDEn8HszL9TManoECAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBR35P3f
S0WxXMGwEuOvGuYaD6HRKTAfBgNVHSMEGDAWgBRXSxwA0jxRIRatNawA8+Jiu0br
szAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QjhGQjYvRkMzM0RFMTI2OUMwMTFFQTg4NEZGNDZCRjhBRUEyMjgvVjBzY0FO
SThVU0VXclRXc0FQUGlZcnRHNjdNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvVjBzY0FOSThVU0VXclRXc0FQUGlZcnRHNjdNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QjhGQjYvRkMzM0RFMTI2OUMwMTFFQTg4NEZGNDZCRjhB
RUEyMjgvNTRFMDVGNjg2OUMxMTFFQUJFNDU3QzZDRjhBRUEyMjgucm9hMC4GCCsG
AQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZt+MMA0EAgACMAcDBQAsD+gQMA0GCSqG
SIb3DQEBCwUAA4IBAQA91sck+UZj4J0x7hlnBuOyMZmGawyQrUGosuxJ2LuaRftP
UXrd04p7JQRzJvw1yGC7DRf3FoCj1bnIzSH9bk8LM3Y+1Ktu/F5Nj1X6ca42AA4K
KgsQ+pDFgAFfXPY7IhB2wkxgfwtKKm0AhTd6u9vfJziFV6q+bVLHG/ribBzzK6IK
82IhgSVQKjGTfDGMOrXFGELwzYwy5bzQlJr+ls7lkuQKFFhG6a5FVC2bEzOlTc9o
58J7kRrkXCZHWbC3R4yLexLLqsyQid8uUh0Na7Pkih4IZeaNb9tG75680tKBUVJe
1XUQ5H9v3KVDeEfNpL4XGWg1A9fC1Bh84xwsc7e6
-----END CERTIFICATE-----
Generated at Sat Jun 1 02:01:07 2024 by rpki-client on console-ams.rpki-client.org