Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/196C56B606D511EFB8B04F18017001B1.roa
File: 196C56B606D511EFB8B04F18017001B1.roa (raw, json)
Hash identifier: cdtJdkwMCIGH76kDrxhwnowPOkKNoBd5Daeo+xt4P3c=
Subject key identifier: 24:0E:67:93:6B:B0:93:0B:24:33:88:51:25:08:91:72:EC:8F:3E:E0
Certificate issuer: /CN=F36C588DAF/serialNumber=5969DCFB1154C14E0DD37D540ABE399070C059A1
Certificate serial: 14
Authority key identifier: 59:69:DC:FB:11:54:C1:4E:0D:D3:7D:54:0A:BE:39:90:70:C0:59:A1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/196C56B606D511EFB8B04F18017001B1.roa
Signing time: Tue 30 Apr 2024 09:36:20 +0000
ROA not before: Tue 30 Apr 2024 09:36:16 +0000
ROA not after: Mon 31 Mar 2025 09:36:16 +0000
asID: 206283
IP address blocks: 102.223.124.0/22 maxlen: 22
102.223.124.0/24 maxlen: 24
102.223.125.0/24 maxlen: 24
102.223.126.0/24 maxlen: 24
102.223.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.mft
rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C588DAF/serialNumber=5969DCFB1154C14E0DD37D540ABE399070C059A1
Validity
Not Before: Apr 30 09:36:16 2024 GMT
Not After : Mar 31 09:36:16 2025 GMT
Subject: CN=6630bb94-8418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:63:fe:c4:9a:dd:28:bd:64:85:48:cd:72:3c:
8b:03:be:75:ff:0e:8d:26:bf:3b:d4:ac:a8:6d:1d:
cd:72:12:05:7a:82:17:8c:93:aa:d2:fd:b2:e6:71:
b7:d4:10:ad:8e:e6:f6:39:44:3a:e5:95:cc:b4:c3:
4e:87:ee:54:39:48:b2:b6:d9:28:7b:6e:3d:7e:1f:
34:f4:d6:e1:5a:a0:77:32:31:47:9f:f2:97:6d:0a:
ae:5c:ee:3b:00:00:b0:a9:15:76:c1:ae:0a:11:61:
06:c9:f4:c4:5c:7e:35:f2:59:69:5d:01:9d:02:b5:
c9:7c:5c:5d:57:2c:2e:67:68:36:4c:2c:95:cb:c5:
ac:7f:7b:d0:c1:21:80:ec:83:92:68:2d:dc:15:e4:
90:77:82:da:0f:76:84:7c:d0:02:d6:01:e2:05:d2:
cd:30:1d:21:bb:c4:a6:be:1b:26:bc:ce:c3:b8:d3:
11:b8:f9:58:1a:c2:fe:cc:41:02:23:bc:63:44:53:
5c:af:6c:fb:3f:c7:01:61:a2:91:e5:d8:d0:46:6d:
ef:ac:c6:8c:84:57:2a:14:03:24:14:b1:cf:e5:f7:
50:93:22:85:ee:4a:fe:0f:2f:11:3c:24:7f:d2:76:
9b:f2:93:0d:56:1c:29:61:5d:2c:50:06:6a:6f:63:
8e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0E:67:93:6B:B0:93:0B:24:33:88:51:25:08:91:72:EC:8F:3E:E0
X509v3 Authority Key Identifier:
keyid:59:69:DC:FB:11:54:C1:4E:0D:D3:7D:54:0A:BE:39:90:70:C0:59:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/WWnc-xFUwU4N031UCr45kHDAWaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WWnc-xFUwU4N031UCr45kHDAWaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C588D/F2684ACA060C11EFAC45D53B017001B1/196C56B606D511EFB8B04F18017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.124.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:c8:12:6d:88:41:3f:0b:06:31:c3:76:ee:92:f3:fd:e9:9b:
0f:a1:fe:79:f9:80:8a:3a:c1:86:82:0d:5c:5d:ab:a5:a1:77:
64:b8:36:58:2f:2e:09:ca:65:5e:83:78:c6:13:7c:2f:b7:2b:
03:41:41:6f:e8:60:c2:19:a9:22:c8:36:04:bd:de:63:b3:b3:
66:52:e6:3a:21:e4:b4:0b:71:73:e4:7e:95:a8:cc:17:3e:1a:
88:e3:1d:5e:99:19:ff:50:ab:83:bc:45:93:34:dc:f4:d4:d5:
23:70:6a:69:4c:91:99:f0:80:6a:63:9c:79:d2:15:cb:0b:3c:
ba:bb:b2:60:2f:22:9d:8a:d3:cc:ce:02:4d:c0:72:69:12:3f:
7d:39:cc:a4:09:43:27:71:87:53:9d:dc:28:18:8c:a8:3c:de:
12:2d:60:e8:d5:c8:35:d4:4f:9d:9a:68:dd:b1:67:81:44:49:
c6:52:a5:5c:84:ca:2f:e4:c9:e1:3d:a4:51:ec:0f:69:00:39:
80:f6:49:89:59:d0:84:69:d5:bc:b4:05:a3:c4:cb:59:97:76:
03:79:83:d9:06:60:02:32:62:ed:8d:62:4d:4a:e7:8b:aa:44:
e0:84:9d:7e:f8:14:36:31:ef:68:3d:3b:86:ec:31:f2:69:ef:
e5:0c:5d:76
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
NTg4REFGMTEwLwYDVQQFEyg1OTY5RENGQjExNTRDMTRFMEREMzdENTQwQUJFMzk5
MDcwQzA1OUExMB4XDTI0MDQzMDA5MzYxNloXDTI1MDMzMTA5MzYxNlowGDEWMBQG
A1UEAxMNNjYzMGJiOTQtODQxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOhj/sSa3Si9ZIVIzXI8iwO+df8OjSa/O9SsqG0dzXISBXqCF4yTqtL9suZx
t9QQrY7m9jlEOuWVzLTDTofuVDlIsrbZKHtuPX4fNPTW4VqgdzIxR5/yl20Krlzu
OwAAsKkVdsGuChFhBsn0xFx+NfJZaV0BnQK1yXxcXVcsLmdoNkwslcvFrH970MEh
gOyDkmgt3BXkkHeC2g92hHzQAtYB4gXSzTAdIbvEpr4bJrzOw7jTEbj5WBrC/sxB
AiO8Y0RTXK9s+z/HAWGikeXY0EZt76zGjIRXKhQDJBSxz+X3UJMihe5K/g8vETwk
f9J2m/KTDVYcKWFdLFAGam9jjrUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQkDmeT
a7CTCyQziFElCJFy7I8+4DAfBgNVHSMEGDAWgBRZadz7EVTBTg3TfVQKvjmQcMBZ
oTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzU4OEQvRjI2ODRBQ0EwNjBDMTFFRkFDNDVENTNCMDE3MDAxQjEvV1duYy14
RlV3VTROMDMxVUNyNDVrSERBV2FFLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvV1duYy14RlV3VTROMDMxVUNyNDVrSERBV2FFLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QzU4OEQvRjI2ODRBQ0EwNjBDMTFFRkFDNDVENTNCMDE3
MDAxQjEvMTk2QzU2QjYwNkQ1MTFFRkI4QjA0RjE4MDE3MDAxQjEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbffDANBgkqhkiG9w0BAQsF
AAOCAQEAsMgSbYhBPwsGMcN27pLz/embD6H+efmAijrBhoINXF2rpaF3ZLg2WC8u
CcplXoN4xhN8L7crA0FBb+hgwhmpIsg2BL3eY7OzZlLmOiHktAtxc+R+lajMFz4a
iOMdXpkZ/1Crg7xFkzTc9NTVI3BqaUyRmfCAamOcedIVyws8uruyYC8inYrTzM4C
TcByaRI/fTnMpAlDJ3GHU53cKBiMqDzeEi1g6NXINdRPnZpo3bFngURJxlKlXITK
L+TJ4T2kUewPaQA5gPZJiVnQhGnVvLQFo8TLWZd2A3mD2QZgAjJi7Y1iTUrni6pE
4ISdfvgUNjHvaD07huwx8mnv5Qxddg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org