Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/8CBFAAFA561711EFA32AB1BE762E951A.roa
File: 8CBFAAFA561711EFA32AB1BE762E951A.roa (raw, json)
Hash identifier: x13tTUmCqaneTmuylrncyIbgJsZvmJqEqrEdlvKnZD8=
Subject key identifier: 4C:72:FF:79:0A:C3:6A:A3:8F:FD:33:2C:CF:2A:14:02:7B:34:F0:36
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 01F3
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/8CBFAAFA561711EFA32AB1BE762E951A.roa
Signing time: Fri 09 Aug 2024 06:21:02 +0000
ROA not before: Fri 09 Aug 2024 06:20:58 +0000
ROA not after: Wed 09 Aug 2034 06:20:58 +0000
asID: 37105
IP address blocks: 41.208.192.0/18 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.mft
rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 499 (0x1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Aug 9 06:20:58 2024 GMT
Not After : Aug 9 06:20:58 2034 GMT
Subject: CN=66b5b54e-d2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:78:98:5c:a6:17:4b:66:77:ab:04:92:53:
6d:0a:e1:a4:09:e9:06:f9:b1:b1:c2:d8:ee:0a:7d:
9d:eb:37:b6:01:a4:97:3c:43:d4:65:fb:9b:ba:1a:
25:9e:db:37:af:38:b7:63:39:ae:a8:30:b7:f7:81:
3f:62:89:a8:76:b7:76:76:82:d8:cc:98:ce:e3:c9:
5f:29:21:e1:c6:0d:5d:09:b7:f6:0b:05:83:80:1d:
69:22:62:a0:c1:be:e4:7e:39:82:be:3f:fc:5d:b5:
8b:70:7e:36:a2:92:ca:85:f7:66:cf:8f:9b:01:8a:
4d:bd:43:df:0c:8e:7a:1f:8b:e1:a0:fb:a8:d2:ad:
19:f8:d5:1b:8e:cf:95:96:ef:44:eb:be:06:0f:ba:
ff:38:e4:93:31:7e:0c:96:ed:c4:96:f8:da:a3:f8:
7c:66:75:9c:51:fb:10:bd:41:be:07:b0:c0:f8:93:
9e:a0:0f:82:88:41:8d:9a:7c:80:d6:7b:f0:8d:e2:
c4:cb:e4:4a:2a:17:c5:c9:cc:23:60:68:64:a2:5f:
89:76:ac:29:d3:da:00:9b:e4:ec:ab:49:04:d1:e9:
9b:f8:bf:5c:ae:ac:f3:40:8f:9c:b9:19:8e:02:ac:
cd:cd:4c:94:d8:e2:ba:b5:a2:97:46:bf:48:b8:da:
ee:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:72:FF:79:0A:C3:6A:A3:8F:FD:33:2C:CF:2A:14:02:7B:34:F0:36
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/8CBFAAFA561711EFA32AB1BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.208.192.0/18
Signature Algorithm: sha256WithRSAEncryption
60:21:ed:03:20:77:ff:ae:f3:88:80:c6:80:52:b5:5e:79:bf:
66:c7:9b:9b:6e:2f:d2:f7:21:d5:b9:02:01:21:1b:bd:79:fa:
96:12:59:f9:26:54:f9:63:78:32:38:02:29:48:09:e0:97:8a:
91:8c:0a:eb:cc:45:4d:f4:8b:2f:49:66:d4:b3:8e:ed:05:d3:
96:75:1d:27:54:e0:1c:4b:76:14:c9:3a:fa:77:98:c6:ed:8a:
bc:9b:65:98:6a:6e:b7:4c:2f:a6:2d:48:bb:7d:e3:13:c1:86:
3f:85:36:5f:78:b7:18:04:d3:73:9f:e7:53:b4:9e:d5:74:8b:
6c:6d:21:a5:d5:46:bf:44:3d:fc:3b:a0:7d:e6:dd:e9:af:e3:
26:d0:7a:76:10:12:eb:f0:9f:cb:7e:e5:ee:77:7f:72:b3:04:
c6:4c:2f:ba:50:35:0d:a0:61:b3:b6:70:9b:5f:2a:f2:60:b9:
22:ec:66:77:ae:f2:c6:d4:59:bc:3c:06:ae:e9:f3:a3:47:57:
ba:a2:ba:a5:f6:fb:fd:4e:3f:bd:c3:cb:b8:98:8a:40:24:bd:
82:e9:03:72:05:7a:90:a4:c1:10:d8:ab:02:a6:14:04:18:03:
42:74:e5:89:ae:47:1d:67:35:48:b1:94:13:31:c0:63:3e:d0:
df:a9:1b:04
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkJGNDFBRjExMC8GA1UEBRMoM0Y2NzdGM0ExOEFDQUFFNkM5N0Y4MUY5OUFFODc5
NDY1NEUwNDEwQjAeFw0yNDA4MDkwNjIwNThaFw0zNDA4MDkwNjIwNThaMBgxFjAU
BgNVBAMTDTY2YjViNTRlLWQyYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC/UHiYXKYXS2Z3qwSSU20K4aQJ6Qb5sbHC2O4KfZ3rN7YBpJc8Q9Rl+5u6
GiWe2zevOLdjOa6oMLf3gT9iiah2t3Z2gtjMmM7jyV8pIeHGDV0Jt/YLBYOAHWki
YqDBvuR+OYK+P/xdtYtwfjaiksqF92bPj5sBik29Q98Mjnofi+Gg+6jSrRn41RuO
z5WW70TrvgYPuv845JMxfgyW7cSW+Nqj+HxmdZxR+xC9Qb4HsMD4k56gD4KIQY2a
fIDWe/CN4sTL5EoqF8XJzCNgaGSiX4l2rCnT2gCb5OyrSQTR6Zv4v1yurPNAj5y5
GY4CrM3NTJTY4rq1opdGv0i42u5vAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTHL/
eQrDaqOP/TMszyoUAns08DYwHwYDVR0jBBgwFoAUP2d/OhisqubJf4H5muh5RlTg
QQswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJCRjQxLzE0Q0RGOEIyMTBENjExRUU5NThDMEYxNTRBRDlFNkZDL1AyZF9P
aGlzcXViSmY0SDVtdWg1UmxUZ1FRcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1AyZF9PaGlzcXViSmY0SDVtdWg1UmxUZ1FRcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkJCRjQxLzE0Q0RGOEIyMTBENjExRUU5NThDMEYxNTRB
RDlFNkZDLzhDQkZBQUZBNTYxNzExRUZBMzJBQjFCRTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYp0MAwDQYJKoZIhvcNAQEL
BQADggEBAGAh7QMgd/+u84iAxoBStV55v2bHm5tuL9L3IdW5AgEhG715+pYSWfkm
VPljeDI4AilICeCXipGMCuvMRU30iy9JZtSzju0F05Z1HSdU4BxLdhTJOvp3mMbt
irybZZhqbrdML6YtSLt94xPBhj+FNl94txgE03Of51O0ntV0i2xtIaXVRr9EPfw7
oH3m3emv4ybQenYQEuvwn8t+5e53f3KzBMZML7pQNQ2gYbO2cJtfKvJguSLsZneu
8sbUWbw8Bq7p86NHV7qiuqX2+/1OP73Dy7iYikAkvYLpA3IFepCkwRDYqwKmFAQY
A0J05YmuRx1nNUixlBMxwGM+0N+pGwQ=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org