Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/6A19C8EE483611EFAD5FCF52762E951A.roa
File: 6A19C8EE483611EFAD5FCF52762E951A.roa (raw, json)
Hash identifier: AbdDYgkEYgqbjYwGWP0EypGH6HNzDya4qvuM0QR/uE8=
Subject key identifier: 27:0B:EB:C3:05:C0:5F:E3:90:D6:23:71:D1:10:5E:7F:C6:3C:B5:5A
Certificate issuer: /CN=F36C1FBFAF/serialNumber=7DEAB771D66B17B0EE872E91F18D3C5A16C22FB0
Certificate serial: 1A
Authority key identifier: 7D:EA:B7:71:D6:6B:17:B0:EE:87:2E:91:F1:8D:3C:5A:16:C2:2F:B0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/6A19C8EE483611EFAD5FCF52762E951A.roa
Signing time: Mon 22 Jul 2024 14:26:42 +0000
ROA not before: Mon 22 Jul 2024 14:26:38 +0000
ROA not after: Sun 31 Dec 2034 14:26:38 +0000
asID: 37314
IP address blocks: 102.213.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.mft
rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C1FBFAF/serialNumber=7DEAB771D66B17B0EE872E91F18D3C5A16C22FB0
Validity
Not Before: Jul 22 14:26:38 2024 GMT
Not After : Dec 31 14:26:38 2034 GMT
Subject: CN=669e6c22-216a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:37:c6:0f:7c:e1:07:6f:8f:9f:9c:a1:87:cc:
b2:b7:c0:47:b2:9a:5b:0f:9b:7f:b5:9e:cf:ca:84:
ca:90:29:96:64:09:cd:69:3d:37:30:b7:3a:13:ad:
bd:3d:e1:14:85:37:9d:26:f8:af:a9:ba:60:e0:73:
b4:91:f7:77:8b:cb:d8:a8:08:35:de:7f:01:c0:3f:
4f:87:99:20:6b:73:92:2a:e6:26:90:6f:ef:a8:ef:
40:5e:a6:68:ec:13:e0:21:ff:3a:58:5b:7d:85:1e:
5c:cb:5b:eb:92:90:99:bb:7b:54:95:13:c3:7e:d8:
47:a9:98:a4:30:00:51:0b:dc:96:b4:d8:a8:81:78:
ab:24:ad:49:af:20:14:f9:3b:7c:7b:c4:7a:9d:db:
db:81:ff:3e:bb:e6:a2:ab:b3:ab:2d:a4:3b:fc:3e:
ce:02:31:7e:c8:99:58:1a:12:0a:62:91:a1:50:41:
7f:74:ed:f7:a1:97:21:a8:2b:ca:4a:aa:cd:3a:04:
28:16:a3:91:38:55:83:53:00:80:08:e7:87:5a:09:
32:7f:e9:6f:3f:7d:93:87:79:ae:89:9f:a2:98:10:
73:64:60:a8:2e:88:da:e9:85:1d:3b:f2:2c:4d:1d:
9a:bd:2f:87:6c:e8:10:30:73:61:01:21:16:dd:98:
ab:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0B:EB:C3:05:C0:5F:E3:90:D6:23:71:D1:10:5E:7F:C6:3C:B5:5A
X509v3 Authority Key Identifier:
keyid:7D:EA:B7:71:D6:6B:17:B0:EE:87:2E:91:F1:8D:3C:5A:16:C2:2F:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/6A19C8EE483611EFAD5FCF52762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.164.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:d6:ac:44:98:3d:0c:6b:c9:b5:5a:f9:2e:aa:1d:63:0c:97:
38:11:28:4c:f8:5c:73:9b:4e:5f:06:01:9c:0b:71:33:d2:b7:
7d:36:db:5e:d3:79:7a:be:c5:0c:41:ff:ec:25:b8:e4:85:79:
e6:38:7d:66:9f:5f:c3:27:44:17:3a:50:ea:b9:f2:ea:88:70:
b1:26:5b:bb:b7:34:b3:fe:24:09:27:89:c3:ca:da:da:fd:54:
b4:11:11:62:7c:fd:f0:99:49:03:78:bf:5b:f6:c6:62:33:7b:
33:56:e7:e2:9d:23:d4:31:73:8e:b8:55:68:09:87:6b:5c:d4:
71:31:cc:0e:50:dc:1b:13:99:4b:c7:5c:0f:08:b1:24:34:42:
ec:58:ef:ad:3a:75:44:aa:fc:d5:f8:f2:88:0c:93:5c:ba:d0:
6a:cf:6a:be:be:39:7a:f9:09:99:19:2d:4e:b3:b9:59:bb:e1:
45:3b:cc:a7:ca:c7:67:37:87:5e:f9:5a:36:e2:59:e0:76:e1:
db:99:5a:e8:73:5b:ad:1a:37:5c:0f:71:1d:d4:4b:42:7b:8a:
c0:15:c7:39:1e:1c:de:0f:ab:62:f4:30:f0:ea:a9:99:d9:e2:
7a:ad:95:53:75:95:9c:65:e3:8b:6f:56:9e:c6:62:a9:a2:b8:
df:5a:a1:c4
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBGjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
MUZCRkFGMTEwLwYDVQQFEyg3REVBQjc3MUQ2NkIxN0IwRUU4NzJFOTFGMThEM0M1
QTE2QzIyRkIwMB4XDTI0MDcyMjE0MjYzOFoXDTM0MTIzMTE0MjYzOFowGDEWMBQG
A1UEAxMNNjY5ZTZjMjItMjE2YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAK43xg984Qdvj5+coYfMsrfAR7KaWw+bf7Wez8qEypAplmQJzWk9NzC3OhOt
vT3hFIU3nSb4r6m6YOBztJH3d4vL2KgINd5/AcA/T4eZIGtzkirmJpBv76jvQF6m
aOwT4CH/OlhbfYUeXMtb65KQmbt7VJUTw37YR6mYpDAAUQvclrTYqIF4qyStSa8g
FPk7fHvEep3b24H/Prvmoquzqy2kO/w+zgIxfsiZWBoSCmKRoVBBf3Tt96GXIagr
ykqqzToEKBajkThVg1MAgAjnh1oJMn/pbz99k4d5romfopgQc2RgqC6I2umFHTvy
LE0dmr0vh2zoEDBzYQEhFt2YqyMCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQnC+vD
BcBf45DWI3HREF5/xjy1WjAfBgNVHSMEGDAWgBR96rdx1msXsO6HLpHxjTxaFsIv
sDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzFGQkYvMTU2NDM2RDIzRTdCMTFFRjgxQ0JDNjgwNzYyRTk1MUEvZmVxM2Nk
WnJGN0R1aHk2UjhZMDhXaGJDTDdBLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvZmVxM2NkWnJGN0R1aHk2UjhZMDhXaGJDTDdBLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QzFGQkYvMTU2NDM2RDIzRTdCMTFFRjgxQ0JDNjgwNzYy
RTk1MUEvNkExOUM4RUU0ODM2MTFFRkFENUZDRjUyNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbVpDANBgkqhkiG9w0BAQsF
AAOCAQEAX9asRJg9DGvJtVr5LqodYwyXOBEoTPhcc5tOXwYBnAtxM9K3fTbbXtN5
er7FDEH/7CW45IV55jh9Zp9fwydEFzpQ6rny6ohwsSZbu7c0s/4kCSeJw8ra2v1U
tBERYnz98JlJA3i/W/bGYjN7M1bn4p0j1DFzjrhVaAmHa1zUcTHMDlDcGxOZS8dc
DwixJDRC7FjvrTp1RKr81fjyiAyTXLrQas9qvr45evkJmRktTrO5WbvhRTvMp8rH
ZzeHXvlaNuJZ4Hbh25la6HNbrRo3XA9xHdRLQnuKwBXHOR4c3g+rYvQw8Oqpmdni
eq2VU3WVnGXji29WnsZiqaK431qhxA==
-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:26 2024 by rpki-client on console-fra.rpki-client.org