Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/B0B575D0A38811EE99CDD37FD25BE465.roa
File: B0B575D0A38811EE99CDD37FD25BE465.roa (raw, json)
Hash identifier: y9HbwEBl+NGNAhofS3ZJW3Gt7+cXF+yZ56e2tyCUsYg=
Subject key identifier: 11:1D:1C:BC:59:6C:29:69:3B:E4:80:33:ED:A0:21:0C:6A:55:51:80
Certificate issuer: /CN=F36C3E3DAF/serialNumber=8B229E847C23325D4CC26F408F1D33E557A79D6D
Certificate serial: 01DE
Authority key identifier: 8B:22:9E:84:7C:23:32:5D:4C:C2:6F:40:8F:1D:33:E5:57:A7:9D:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/iyKehHwjMl1Mwm9Ajx0z5VennW0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/B0B575D0A38811EE99CDD37FD25BE465.roa
Signing time: Tue 26 Dec 2023 00:49:57 +0000
ROA not before: Tue 26 Dec 2023 00:00:54 +0000
ROA not after: Tue 31 Dec 2024 00:00:54 +0000
asID: 328549
IP address blocks: 102.36.184.0/22 maxlen: 22
102.36.184.0/24 maxlen: 24
102.36.185.0/24 maxlen: 24
102.36.186.0/24 maxlen: 24
102.36.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/iyKehHwjMl1Mwm9Ajx0z5VennW0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/iyKehHwjMl1Mwm9Ajx0z5VennW0.mft
rsync://rpki.afrinic.net/repository/afrinic/iyKehHwjMl1Mwm9Ajx0z5VennW0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478 (0x1de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C3E3DAF/serialNumber=8B229E847C23325D4CC26F408F1D33E557A79D6D
Validity
Not Before: Dec 26 00:00:54 2023 GMT
Not After : Dec 31 00:00:54 2024 GMT
Subject: CN=658a2335-e848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:5f:43:16:2c:0d:f8:20:eb:6b:71:f8:db:8e:
81:70:bc:c9:c6:68:7f:0b:15:47:f2:a1:63:96:67:
8b:81:77:71:43:16:58:80:ca:68:a5:ad:a6:59:5f:
0b:40:ff:11:36:6c:03:72:b5:b1:82:c5:ec:11:5c:
20:53:c0:88:dd:cb:33:68:e1:5a:f2:e8:a2:78:3f:
7c:d0:cb:29:e5:ee:f1:71:3b:bd:9a:08:12:a5:bb:
48:50:35:31:b8:13:fb:48:fe:a4:fc:56:29:91:87:
7f:df:4c:8f:9b:da:d4:44:e3:c5:1d:ea:d8:a1:fd:
df:89:b0:80:d4:24:4d:e9:d4:dc:44:e1:4e:9a:00:
62:d1:f9:34:ed:24:00:7b:f2:89:95:e0:b9:5c:a8:
6b:13:c4:54:b1:cf:fb:e9:19:f2:6b:c9:d7:94:d0:
b5:f6:5d:1e:7b:22:de:bd:b1:7d:e4:a3:b3:f8:ca:
7d:c5:f3:c3:15:47:58:2b:a6:2c:67:1c:0d:98:cc:
4c:7f:7f:b9:4e:74:35:8e:4c:0e:54:04:d9:27:b7:
73:22:1f:d0:90:a5:8b:d7:9c:60:2c:ec:3c:1e:dd:
ff:bd:9d:4c:61:1d:fc:3a:83:de:94:db:94:14:44:
45:40:ef:b2:3f:33:00:28:56:ae:fb:dc:de:da:95:
05:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1D:1C:BC:59:6C:29:69:3B:E4:80:33:ED:A0:21:0C:6A:55:51:80
X509v3 Authority Key Identifier:
keyid:8B:22:9E:84:7C:23:32:5D:4C:C2:6F:40:8F:1D:33:E5:57:A7:9D:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/iyKehHwjMl1Mwm9Ajx0z5VennW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/iyKehHwjMl1Mwm9Ajx0z5VennW0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3E3D/3F373BF2444111ED8B3DCCADF1222468/B0B575D0A38811EE99CDD37FD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:d0:b0:7a:4c:cb:ca:38:c7:c9:49:5a:ba:2d:80:f0:6b:35:
4d:fd:a5:29:d7:fa:26:74:32:d6:49:1e:7d:ef:c6:f4:b8:b9:
a3:95:79:85:e5:d9:b2:17:84:0c:39:3b:35:14:1a:b5:b1:c9:
9a:34:91:58:d4:87:5b:19:60:9e:48:94:f3:0d:c2:f3:a9:ea:
8a:57:f1:c1:9d:ee:f9:ec:36:80:28:27:3b:3b:3b:5c:69:89:
b2:d9:cf:73:14:a3:5b:4d:d5:7e:99:76:ed:5d:14:36:0f:6b:
36:87:bb:13:e2:00:e5:ef:ff:24:94:36:1c:3c:1b:65:5c:8b:
21:3a:42:0f:58:ae:db:11:09:b1:2f:99:c7:41:bb:d2:a1:2e:
dd:bf:f6:07:ce:e1:3a:c3:5a:c1:3c:67:38:34:82:fb:c3:80:
69:76:40:fe:28:c2:8c:72:ff:5a:4f:2f:67:4c:45:43:44:86:
eb:e7:7a:68:5a:7a:53:63:7c:9a:2e:a9:49:89:68:6a:c5:6c:
2d:b8:45:14:81:e6:b3:94:a2:e8:9b:33:41:62:d8:ff:d9:dc:
f4:b3:63:12:f3:f0:6f:3b:db:f5:22:d8:ac:d9:a7:fc:3a:49:
45:ae:7f:8a:e1:c2:92:0e:c3:45:20:87:02:5a:c0:9c:40:3f:
ce:c7:63:23
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QzNFM0RBRjExMC8GA1UEBRMoOEIyMjlFODQ3QzIzMzI1RDRDQzI2RjQwOEYxRDMz
RTU1N0E3OUQ2RDAeFw0yMzEyMjYwMDAwNTRaFw0yNDEyMzEwMDAwNTRaMBgxFjAU
BgNVBAMTDTY1OGEyMzM1LWU4NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDzX0MWLA34IOtrcfjbjoFwvMnGaH8LFUfyoWOWZ4uBd3FDFliAymilraZZ
XwtA/xE2bANytbGCxewRXCBTwIjdyzNo4Vry6KJ4P3zQyynl7vFxO72aCBKlu0hQ
NTG4E/tI/qT8VimRh3/fTI+b2tRE48Ud6tih/d+JsIDUJE3p1NxE4U6aAGLR+TTt
JAB78omV4LlcqGsTxFSxz/vpGfJrydeU0LX2XR57It69sX3ko7P4yn3F88MVR1gr
pixnHA2YzEx/f7lOdDWOTA5UBNknt3MiH9CQpYvXnGAs7Dwe3f+9nUxhHfw6g96U
25QUREVA77I/MwAoVq773N7alQW9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUER0c
vFlsKWk75IAz7aAhDGpVUYAwHwYDVR0jBBgwFoAUiyKehHwjMl1Mwm9Ajx0z5Ven
nW0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkMzRTNELzNGMzczQkYyNDQ0MTExRUQ4QjNEQ0NBREYxMjIyNDY4L2l5S2Vo
SHdqTWwxTXdtOUFqeDB6NVZlbm5XMC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2l5S2VoSHdqTWwxTXdtOUFqeDB6NVZlbm5XMC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkMzRTNELzNGMzczQkYyNDQ0MTExRUQ4QjNEQ0NBREYx
MjIyNDY4L0IwQjU3NUQwQTM4ODExRUU5OUNERDM3RkQyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmJLgwDQYJKoZIhvcNAQEL
BQADggEBALLQsHpMy8o4x8lJWrotgPBrNU39pSnX+iZ0MtZJHn3vxvS4uaOVeYXl
2bIXhAw5OzUUGrWxyZo0kVjUh1sZYJ5IlPMNwvOp6opX8cGd7vnsNoAoJzs7O1xp
ibLZz3MUo1tN1X6Zdu1dFDYPazaHuxPiAOXv/ySUNhw8G2VciyE6Qg9YrtsRCbEv
mcdBu9KhLt2/9gfO4TrDWsE8Zzg0gvvDgGl2QP4owoxy/1pPL2dMRUNEhuvnemha
elNjfJouqUmJaGrFbC24RRSB5rOUouibM0Fi2P/Z3PSzYxLz8G872/Ui2KzZp/w6
SUWuf4rhwpIOw0UghwJawJxAP87HYyM=
-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:12 2024 by rpki-client on console-fra.rpki-client.org