Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/837E97941C2511EEAA26D4594AD9E6FC.roa
File: 837E97941C2511EEAA26D4594AD9E6FC.roa (raw, json)
Hash identifier: DmTBedmJtAZllDRXX8QYacyLifphZi9/9tYqy0qa/Z8=
Subject key identifier: 83:51:BA:28:C3:08:8A:11:71:6C:72:F3:2A:C4:F2:37:D8:8C:5A:7C
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 35
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/837E97941C2511EEAA26D4594AD9E6FC.roa
Signing time: Thu 06 Jul 2023 17:49:54 +0000
ROA not before: Thu 06 Jul 2023 17:49:50 +0000
ROA not after: Wed 06 Jul 2033 17:49:50 +0000
asID: 37105
IP address blocks: 196.46.64.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53 (0x35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 17:49:50 2023 GMT
Not After : Jul 6 17:49:50 2033 GMT
Subject: CN=64a6fec2-5d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:aa:80:34:a7:b2:80:60:e0:14:15:d6:a4:29:
f4:88:8c:68:c4:56:45:b7:b6:63:93:8c:21:76:98:
be:26:f1:76:03:63:4e:d2:40:98:14:54:ce:8f:d9:
e5:eb:ef:39:7a:20:9a:6a:72:15:85:b4:9a:b9:aa:
98:d8:f7:d3:b8:44:32:49:98:95:c0:49:2b:41:0a:
db:20:b3:81:f4:b6:53:42:fc:61:75:2a:da:c3:fd:
92:3d:57:27:09:16:0d:4d:85:44:40:7b:5a:b6:7d:
8b:21:0c:03:c7:20:e9:0a:f3:52:ef:19:bb:ed:60:
27:51:3b:e7:3b:24:be:58:8a:95:a8:89:43:6a:93:
2f:d5:24:e0:67:db:89:ee:43:db:f7:c4:79:9e:28:
b2:04:8b:8f:63:91:71:23:79:50:8e:3b:e9:ab:32:
be:f0:b3:32:9e:bd:a5:36:51:69:4b:44:4b:17:a5:
8b:98:1e:36:7b:3c:0f:1f:41:75:da:07:13:60:9f:
2b:91:c7:63:db:9f:a7:27:7a:b9:9d:4c:db:24:07:
ff:49:4e:53:78:fe:80:14:03:8e:ac:85:9b:29:ac:
a5:aa:8b:cc:a8:07:ae:a2:39:c7:77:ee:23:86:83:
e4:a6:76:60:6d:35:68:66:d1:92:55:b3:d5:d9:81:
d8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:51:BA:28:C3:08:8A:11:71:6C:72:F3:2A:C4:F2:37:D8:8C:5A:7C
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/837E97941C2511EEAA26D4594AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.46.64.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:de:96:a2:cc:05:37:f5:f8:a8:47:1c:8a:c4:be:91:d8:ba:
8d:a5:0a:a1:d2:03:4c:6a:02:d7:26:27:7d:af:97:fa:bd:db:
1a:6b:86:f8:1f:50:20:97:23:bd:c1:45:ac:6d:16:d2:eb:d2:
9b:10:6e:02:a9:09:a4:85:d9:4a:05:f0:5f:08:83:66:bc:f4:
f1:d4:f0:15:81:fc:60:07:91:4c:52:35:1c:9c:69:a9:57:62:
7e:2f:7c:ff:57:33:2b:18:51:b9:04:5f:31:fb:d2:39:b5:92:
12:7a:11:80:22:11:eb:78:4e:43:d0:98:52:de:e8:d0:2e:e3:
50:dd:47:f2:84:27:e5:45:80:df:8a:43:93:81:a4:aa:63:24:
80:29:e6:7d:9f:78:aa:0d:63:09:8f:e6:97:7f:f0:94:2b:ed:
ae:7c:d8:71:d7:d9:71:1d:74:f2:e0:57:2a:d3:1a:c9:09:51:
b4:a7:c2:81:12:4b:76:23:e3:46:1f:93:30:13:a3:db:85:9e:
02:e7:15:69:f1:2b:1a:7e:53:58:fe:21:f7:9d:4a:c9:24:2a:
52:25:d8:f5:3a:68:4d:45:59:f0:30:99:6d:6b:18:a8:b5:6a:
4c:2a:1f:0f:6b:27:17:9d:72:e4:62:28:8e:7f:6e:51:39:19:
28:f1:63:0a
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBNTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZC
QkY0MUFGMTEwLwYDVQQFEygzRjY3N0YzQTE4QUNBQUU2Qzk3RjgxRjk5QUU4Nzk0
NjU0RTA0MTBCMB4XDTIzMDcwNjE3NDk1MFoXDTMzMDcwNjE3NDk1MFowGDEWMBQG
A1UEAxMNNjRhNmZlYzItNWQ4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANmqgDSnsoBg4BQV1qQp9IiMaMRWRbe2Y5OMIXaYvibxdgNjTtJAmBRUzo/Z
5evvOXogmmpyFYW0mrmqmNj307hEMkmYlcBJK0EK2yCzgfS2U0L8YXUq2sP9kj1X
JwkWDU2FREB7WrZ9iyEMA8cg6QrzUu8Zu+1gJ1E75zskvliKlaiJQ2qTL9Uk4Gfb
ie5D2/fEeZ4osgSLj2ORcSN5UI476asyvvCzMp69pTZRaUtESxeli5geNns8Dx9B
ddoHE2CfK5HHY9ufpyd6uZ1M2yQH/0lOU3j+gBQDjqyFmymspaqLzKgHrqI5x3fu
I4aD5KZ2YG01aGbRklWz1dmB2H8CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBSDUboo
wwiKEXFscvMqxPI32IxafDAfBgNVHSMEGDAWgBQ/Z386GKyq5sl/gfma6HlGVOBB
CzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QkJGNDEvMTRDREY4QjIxMEQ2MTFFRTk1OEMwRjE1NEFEOUU2RkMvUDJkX09o
aXNxdWJKZjRINW11aDVSbFRnUVFzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvUDJkX09oaXNxdWJKZjRINW11aDVSbFRnUVFzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QkJGNDEvMTRDREY4QjIxMEQ2MTFFRTk1OEMwRjE1NEFE
OUU2RkMvODM3RTk3OTQxQzI1MTFFRUFBMjZENDU5NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8QuQDANBgkqhkiG9w0BAQsF
AAOCAQEAPd6WoswFN/X4qEccisS+kdi6jaUKodIDTGoC1yYnfa+X+r3bGmuG+B9Q
IJcjvcFFrG0W0uvSmxBuAqkJpIXZSgXwXwiDZrz08dTwFYH8YAeRTFI1HJxpqVdi
fi98/1czKxhRuQRfMfvSObWSEnoRgCIR63hOQ9CYUt7o0C7jUN1H8oQn5UWA34pD
k4GkqmMkgCnmfZ94qg1jCY/ml3/wlCvtrnzYcdfZcR108uBXKtMayQlRtKfCgRJL
diPjRh+TMBOj24WeAucVafErGn5TWP4h951KySQqUiXY9TpoTUVZ8DCZbWsYqLVq
TCofD2snF51y5GIojn9uUTkZKPFjCg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:22 2024 by rpki-client on console-ams.rpki-client.org