Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/81387E54007811EF99B9F139017001B1.roa
File: 81387E54007811EF99B9F139017001B1.roa (raw, json)
Hash identifier: 5WAmHZAoZlINNKx4PNswtykKpm0E6nuOZQfU//JL8dM=
Subject key identifier: 8F:AE:B6:6F:7E:A7:4D:72:43:E8:28:E4:42:89:F2:0C:ED:56:20:38
Certificate issuer: /CN=F36C10D8AF/serialNumber=C0D3AAFB63D33F0F6735DC99FF4D901A8E2250EB
Certificate serial: 01CE
Authority key identifier: C0:D3:AA:FB:63:D3:3F:0F:67:35:DC:99:FF:4D:90:1A:8E:22:50:EB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wNOq-2PTPw9nNdyZ_02QGo4iUOs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/81387E54007811EF99B9F139017001B1.roa
Signing time: Mon 22 Apr 2024 07:18:24 +0000
ROA not before: Mon 22 Apr 2024 07:18:20 +0000
ROA not after: Sat 22 Apr 2034 07:18:20 +0000
asID: 198381
IP address blocks: 197.148.88.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/wNOq-2PTPw9nNdyZ_02QGo4iUOs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/wNOq-2PTPw9nNdyZ_02QGo4iUOs.mft
rsync://rpki.afrinic.net/repository/afrinic/wNOq-2PTPw9nNdyZ_02QGo4iUOs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 462 (0x1ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C10D8AF/serialNumber=C0D3AAFB63D33F0F6735DC99FF4D901A8E2250EB
Validity
Not Before: Apr 22 07:18:20 2024 GMT
Not After : Apr 22 07:18:20 2034 GMT
Subject: CN=66260f3f-53c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:e4:c7:d6:8f:8d:10:86:a8:9a:18:43:00:
61:27:dc:6c:10:9a:60:96:08:7e:bd:32:54:52:4c:
54:68:a3:f4:2f:cc:45:17:83:a0:f9:52:77:d6:bc:
d3:73:64:38:ea:7a:31:8b:97:8b:b1:a5:87:ff:f8:
27:4e:b1:fb:f7:d1:78:45:a7:94:aa:ac:a0:0c:9e:
e3:ff:d5:4a:76:e6:f8:54:a0:1d:68:f6:c3:9f:45:
ce:3b:44:78:31:1f:90:17:bc:97:da:7d:e1:47:a8:
2b:4d:52:f0:d4:1f:2c:d2:81:70:bb:04:68:ce:86:
1a:d0:b3:1d:29:07:58:82:df:c0:1f:67:70:f8:57:
a2:37:61:3e:0f:de:b2:33:c4:2e:ff:37:fd:eb:83:
89:0c:e1:75:9e:c0:23:8c:77:ba:24:9c:c4:28:1a:
77:5e:8e:b1:33:a7:da:cc:19:81:41:72:c7:db:ae:
03:8b:a5:c6:41:57:19:f5:d8:c2:f4:8b:a2:3a:d5:
00:34:dc:17:49:46:5b:e1:35:61:db:f7:c4:e5:56:
b4:1e:ab:3f:e4:3e:8a:d5:76:a5:fe:1a:00:34:02:
10:ce:a2:b7:21:cf:eb:55:d1:b2:c0:ad:e9:9b:16:
37:42:b3:5e:2a:d7:ac:e9:a2:05:50:86:25:a3:bd:
b2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AE:B6:6F:7E:A7:4D:72:43:E8:28:E4:42:89:F2:0C:ED:56:20:38
X509v3 Authority Key Identifier:
keyid:C0:D3:AA:FB:63:D3:3F:0F:67:35:DC:99:FF:4D:90:1A:8E:22:50:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/wNOq-2PTPw9nNdyZ_02QGo4iUOs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wNOq-2PTPw9nNdyZ_02QGo4iUOs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C10D8/8720E3EAA61211ED8D3EBED2F1222468/81387E54007811EF99B9F139017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.148.88.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:b8:78:a3:f1:01:4c:7a:cd:60:46:70:6f:a0:84:81:23:6d:
22:bd:be:cb:9c:03:f7:f9:46:5b:6a:91:bc:35:0b:94:24:65:
c3:3f:05:10:6c:f3:35:f4:21:ee:df:3b:c0:79:f6:a9:9c:c8:
49:3a:20:8f:10:af:c0:9e:fa:27:28:9d:87:df:ee:68:3c:a6:
c7:22:ba:27:a1:93:7d:c8:84:53:82:b0:29:24:b2:b8:15:89:
3c:36:b5:34:f2:b5:ec:4f:be:3f:00:d7:70:ba:ef:9d:71:7e:
df:0a:e5:cc:45:ea:1f:95:ab:73:41:c4:b3:9c:57:c9:02:25:
4e:dd:10:32:6f:ab:05:18:c5:5a:a5:91:76:79:da:70:2f:dc:
29:da:0a:f8:0d:f8:6a:aa:5a:20:41:59:71:bd:c7:44:ca:af:
35:b6:fa:67:62:3e:a0:3f:de:c5:a6:36:4e:b8:5b:77:08:d5:
b6:69:07:0e:6d:ab:0a:38:fd:8d:86:3f:0d:0b:6e:c9:ec:b0:
51:86:d1:9b:aa:a5:e7:d5:38:ee:82:22:f5:1c:7d:39:91:d9:
1e:33:cc:c5:90:aa:10:1e:f8:70:d0:cc:5d:28:53:95:28:17:
1c:1c:55:d0:bb:45:a5:67:c4:90:86:df:19:4b:ed:77:e8:a2:
24:90:80:a7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzEwRDhBRjExMC8GA1UEBRMoQzBEM0FBRkI2M0QzM0YwRjY3MzVEQzk5RkY0RDkw
MUE4RTIyNTBFQjAeFw0yNDA0MjIwNzE4MjBaFw0zNDA0MjIwNzE4MjBaMBgxFjAU
BgNVBAMTDTY2MjYwZjNmLTUzYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCtC+TH1o+NEIaomhhDAGEn3GwQmmCWCH69MlRSTFRoo/QvzEUXg6D5UnfW
vNNzZDjqejGLl4uxpYf/+CdOsfv30XhFp5SqrKAMnuP/1Up25vhUoB1o9sOfRc47
RHgxH5AXvJfafeFHqCtNUvDUHyzSgXC7BGjOhhrQsx0pB1iC38AfZ3D4V6I3YT4P
3rIzxC7/N/3rg4kM4XWewCOMd7oknMQoGndejrEzp9rMGYFBcsfbrgOLpcZBVxn1
2ML0i6I61QA03BdJRlvhNWHb98TlVrQeqz/kPorVdqX+GgA0AhDOorchz+tV0bLA
rembFjdCs14q16zpogVQhiWjvbIBAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUj662
b36nTXJD6CjkQonyDO1WIDgwHwYDVR0jBBgwFoAUwNOq+2PTPw9nNdyZ/02QGo4i
UOswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkMxMEQ4Lzg3MjBFM0VBQTYxMjExRUQ4RDNFQkVEMkYxMjIyNDY4L3dOT3Et
MlBUUHc5bk5keVpfMDJRR280aVVPcy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3dOT3EtMlBUUHc5bk5keVpfMDJRR280aVVPcy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkMxMEQ4Lzg3MjBFM0VBQTYxMjExRUQ4RDNFQkVEMkYx
MjIyNDY4LzgxMzg3RTU0MDA3ODExRUY5OUI5RjEzOTAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALFlFgwDQYJKoZIhvcNAQEL
BQADggEBAKi4eKPxAUx6zWBGcG+ghIEjbSK9vsucA/f5Rltqkbw1C5QkZcM/BRBs
8zX0Ie7fO8B59qmcyEk6II8Qr8Ce+iconYff7mg8psciuiehk33IhFOCsCkksrgV
iTw2tTTytexPvj8A13C6751xft8K5cxF6h+Vq3NBxLOcV8kCJU7dEDJvqwUYxVql
kXZ52nAv3CnaCvgN+GqqWiBBWXG9x0TKrzW2+mdiPqA/3sWmNk64W3cI1bZpBw5t
qwo4/Y2GPw0LbsnssFGG0ZuqpefVOO6CIvUcfTmR2R4zzMWQqhAe+HDQzF0oU5Uo
FxwcVdC7RaVnxJCG3xlL7XfooiSQgKc=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:58 2024 by rpki-client on console-fra.rpki-client.org