Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/871392D83F7411EF836859A0762E951A.roa
File: 871392D83F7411EF836859A0762E951A.roa (raw, json)
Hash identifier: hi0YOEOfxJB3Wn8921vw/adUeYkIg4DM9XPKucSzOOA=
Subject key identifier: 27:9A:C3:62:18:D0:55:B6:4A:53:EF:54:9C:34:0C:9F:19:E8:79:DC
Certificate issuer: /CN=F36C1FBFAF/serialNumber=7DEAB771D66B17B0EE872E91F18D3C5A16C22FB0
Certificate serial: 07
Authority key identifier: 7D:EA:B7:71:D6:6B:17:B0:EE:87:2E:91:F1:8D:3C:5A:16:C2:2F:B0
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/871392D83F7411EF836859A0762E951A.roa
Signing time: Thu 11 Jul 2024 10:58:39 +0000
ROA not before: Thu 11 Jul 2024 10:58:35 +0000
ROA not after: Sun 31 Dec 2034 10:58:35 +0000
asID: 329197
IP address blocks: 102.213.164.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.mft
rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C1FBFAF/serialNumber=7DEAB771D66B17B0EE872E91F18D3C5A16C22FB0
Validity
Not Before: Jul 11 10:58:35 2024 GMT
Not After : Dec 31 10:58:35 2034 GMT
Subject: CN=668fbadf-ae7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ac:ae:0e:90:bd:52:7a:2c:a7:3b:99:cf:08:
eb:e0:45:79:08:6d:54:66:9d:ac:ed:e0:63:38:b8:
8c:b4:78:0e:ef:f6:90:d9:c7:42:19:3b:67:7b:61:
11:87:55:ff:bf:40:ab:5c:f4:a0:5b:5d:49:af:c2:
09:8c:7f:9f:c6:c0:e1:d9:79:c5:28:75:4e:87:42:
59:c3:fc:56:72:11:96:d0:fd:a4:94:98:e2:b8:cb:
3a:74:44:b2:f3:e7:43:5a:f3:ea:57:f7:25:aa:a5:
af:c0:9f:7a:03:18:6d:4a:0a:d4:bc:d7:71:05:11:
cf:74:ca:cd:4a:e2:39:c5:c5:df:65:b5:f4:f6:45:
fc:5b:a3:ce:0d:fb:b8:a1:0d:92:7c:49:3d:c5:55:
5c:5d:4d:b1:6e:dc:60:89:f9:30:10:96:38:f6:fd:
e1:de:4f:00:f7:fb:03:ad:93:30:2f:21:4d:6d:46:
90:cf:8c:c9:c4:ad:7f:7b:f5:df:1a:a7:a9:d8:8d:
20:cf:04:d8:41:51:72:e0:ca:9a:63:ae:3a:63:f4:
f8:fe:28:e0:13:97:1d:f3:19:a7:44:99:da:1d:10:
80:70:22:b1:71:ad:8d:e4:3e:8b:bd:ce:31:f8:0c:
c1:84:2d:98:48:f9:c9:a1:d9:9e:96:68:45:88:9f:
a0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9A:C3:62:18:D0:55:B6:4A:53:EF:54:9C:34:0C:9F:19:E8:79:DC
X509v3 Authority Key Identifier:
keyid:7D:EA:B7:71:D6:6B:17:B0:EE:87:2E:91:F1:8D:3C:5A:16:C2:2F:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/feq3cdZrF7Duhy6R8Y08WhbCL7A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/feq3cdZrF7Duhy6R8Y08WhbCL7A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1FBF/156436D23E7B11EF81CBC680762E951A/871392D83F7411EF836859A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.164.0/22
Signature Algorithm: sha256WithRSAEncryption
47:6c:e8:6d:6b:36:cf:9e:cb:d3:09:e6:20:94:3e:b8:01:16:
16:7e:9d:31:a3:49:31:19:d5:f2:35:51:ed:5c:be:37:dc:1d:
fa:86:ab:7a:94:42:89:1c:77:51:d1:94:b5:1d:08:6c:48:0b:
b1:7f:bc:4d:ba:30:23:66:ec:5c:22:87:98:d4:0b:8d:27:b5:
3b:e2:c1:ef:6f:83:c7:b4:f2:a0:67:a6:dd:c8:d2:24:0c:54:
0e:d7:48:b1:a5:db:c4:cb:94:30:47:d2:2a:af:04:5e:23:73:
7f:f6:42:9d:67:ea:65:f7:40:92:14:74:df:95:30:f9:c2:06:
4d:1c:2c:ab:10:50:dd:e2:ae:b7:a3:cd:6c:ab:df:4f:54:10:
d0:99:f9:25:b2:5a:3c:bf:6a:ae:36:8b:db:02:c5:d5:da:cf:
11:7b:29:bf:68:c4:3e:54:4e:94:5e:62:cd:15:17:02:97:5c:
16:5d:25:f1:9a:79:8a:eb:12:db:f9:cb:1e:49:a2:3c:75:96:
37:56:03:a4:f9:ac:14:2b:ae:e7:b3:79:24:e6:27:1a:9f:0a:
96:38:e5:83:11:b9:d3:03:54:a2:1d:66:46:7d:d0:5a:06:8c:
59:69:d0:b4:2f:2d:8a:22:94:46:53:90:21:96:eb:1e:db:f4:
c2:34:e1:be
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
MUZCRkFGMTEwLwYDVQQFEyg3REVBQjc3MUQ2NkIxN0IwRUU4NzJFOTFGMThEM0M1
QTE2QzIyRkIwMB4XDTI0MDcxMTEwNTgzNVoXDTM0MTIzMTEwNTgzNVowGDEWMBQG
A1UEAxMNNjY4ZmJhZGYtYWU3YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANOsrg6QvVJ6LKc7mc8I6+BFeQhtVGadrO3gYzi4jLR4Du/2kNnHQhk7Z3th
EYdV/79Aq1z0oFtdSa/CCYx/n8bA4dl5xSh1TodCWcP8VnIRltD9pJSY4rjLOnRE
svPnQ1rz6lf3Jaqlr8CfegMYbUoK1LzXcQURz3TKzUriOcXF32W19PZF/Fujzg37
uKENknxJPcVVXF1NsW7cYIn5MBCWOPb94d5PAPf7A62TMC8hTW1GkM+MycStf3v1
3xqnqdiNIM8E2EFRcuDKmmOuOmP0+P4o4BOXHfMZp0SZ2h0QgHAisXGtjeQ+i73O
MfgMwYQtmEj5yaHZnpZoRYifoMECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQnmsNi
GNBVtkpT71ScNAyfGeh53DAfBgNVHSMEGDAWgBR96rdx1msXsO6HLpHxjTxaFsIv
sDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzFGQkYvMTU2NDM2RDIzRTdCMTFFRjgxQ0JDNjgwNzYyRTk1MUEvZmVxM2Nk
WnJGN0R1aHk2UjhZMDhXaGJDTDdBLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvZmVxM2NkWnJGN0R1aHk2UjhZMDhXaGJDTDdBLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QzFGQkYvMTU2NDM2RDIzRTdCMTFFRjgxQ0JDNjgwNzYy
RTk1MUEvODcxMzkyRDgzRjc0MTFFRjgzNjg1OUEwNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbVpDANBgkqhkiG9w0BAQsF
AAOCAQEAR2zobWs2z57L0wnmIJQ+uAEWFn6dMaNJMRnV8jVR7Vy+N9wd+oarepRC
iRx3UdGUtR0IbEgLsX+8TbowI2bsXCKHmNQLjSe1O+LB72+Dx7TyoGem3cjSJAxU
DtdIsaXbxMuUMEfSKq8EXiNzf/ZCnWfqZfdAkhR035Uw+cIGTRwsqxBQ3eKut6PN
bKvfT1QQ0Jn5JbJaPL9qrjaL2wLF1drPEXspv2jEPlROlF5izRUXApdcFl0l8Zp5
iusS2/nLHkmiPHWWN1YDpPmsFCuu57N5JOYnGp8KljjlgxG50wNUoh1mRn3QWgaM
WWnQtC8tiiKURlOQIZbrHtv0wjThvg==
-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:50 2024 by rpki-client on console-fra.rpki-client.org