Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0344CAFCD0AD11EEA916C270775412E6.roa
File: 0344CAFCD0AD11EEA916C270775412E6.roa (raw, json)
Hash identifier: PYvH5LHNKVw+bMHUi6WTCg5x5U6dLLYZc2EO4BCOHnQ=
Subject key identifier: C2:3C:3B:93:89:FB:4E:03:89:56:05:27:B5:A8:84:12:64:B5:39:66
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F61
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0344CAFCD0AD11EEA916C270775412E6.roa
Signing time: Wed 21 Feb 2024 11:33:20 +0000
ROA not before: Wed 21 Feb 2024 11:33:16 +0000
ROA not after: Sat 21 Feb 2026 11:33:16 +0000
asID: 61317
IP address blocks: 102.165.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3937 (0xf61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 21 11:33:16 2024 GMT
Not After : Feb 21 11:33:16 2026 GMT
Subject: CN=65d5df80-c712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a6:36:5c:83:26:66:b4:f1:6e:36:28:f7:07:
1e:ee:58:b7:c4:8c:6e:86:62:b7:8e:7c:3e:72:fe:
88:24:e1:7c:d9:47:fe:cf:e4:b0:66:13:6d:6c:bf:
13:2c:58:b6:a7:a7:3b:6b:c1:29:79:b1:e8:9a:b0:
b5:a8:49:d2:74:9b:b9:ab:f5:d3:01:f0:eb:6e:1d:
e0:d5:e9:15:5c:8a:27:84:6c:76:1a:f1:81:d1:10:
2a:73:89:f9:77:e8:43:e2:fd:31:bc:74:83:e0:d4:
f8:fe:8e:88:1e:0d:cc:3f:ca:df:7a:ea:37:15:04:
6d:a0:20:6d:64:f7:5d:44:20:fc:b0:b5:c6:20:b5:
26:4b:5d:f6:e2:1b:fd:1d:e4:5f:1f:5d:c1:2b:4f:
a9:17:bb:ab:6c:03:04:9b:43:53:71:c7:f4:e0:78:
bf:5a:47:08:24:8a:ce:d1:38:ef:60:a4:ba:67:74:
02:c3:bb:cd:db:2d:29:a0:0e:2a:e4:35:ce:f7:d3:
bc:fe:84:af:0c:de:36:e7:09:bb:43:0d:8c:bc:f5:
ff:38:24:57:e5:9e:94:d8:32:67:0c:4e:c7:cd:7f:
35:83:cb:8b:c7:be:1e:eb:83:16:af:ea:07:9d:f5:
4c:70:7d:bb:74:64:31:cc:41:9e:f0:ab:c3:36:c1:
f3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3C:3B:93:89:FB:4E:03:89:56:05:27:B5:A8:84:12:64:B5:39:66
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/0344CAFCD0AD11EEA916C270775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.1.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:66:fb:8a:b8:b9:b0:8f:fa:7f:61:96:73:4a:b9:4a:55:d8:
2c:bb:35:8b:0b:98:b5:2f:63:58:2d:81:69:f2:bf:a0:77:74:
ea:ee:94:85:f7:c7:63:fd:75:e3:1c:97:09:77:e0:7b:a4:b5:
45:87:8c:38:03:1f:25:c3:4b:cc:57:10:e3:df:6a:f2:16:27:
df:a6:0f:4f:2a:c2:8b:a3:99:6e:09:0e:d6:34:c4:21:11:3a:
ba:11:39:84:aa:47:dd:69:36:6a:e1:1c:14:38:61:c6:02:38:
e2:4e:e9:0c:48:2b:62:32:91:7a:09:05:e1:f8:4f:7e:2b:e0:
3a:f0:4c:80:27:3b:2d:5c:f2:a1:4a:f4:cf:d2:f7:c0:b6:78:
d2:28:03:c6:28:e0:bf:60:ee:63:27:da:a5:f7:ba:35:e2:31:
34:90:4f:80:71:17:13:31:8e:9d:66:57:6d:ce:22:22:40:c0:
81:0f:ae:85:2e:05:30:ac:4d:50:a3:6e:c6:70:07:91:41:e5:
83:ac:c4:0c:33:f7:62:f3:81:cb:a0:2e:02:29:57:8c:f7:63:
e9:01:40:fa:8c:e2:1c:f6:05:de:7f:ea:c7:46:c2:05:73:05:
c2:bf:93:4b:f6:fd:0d:3f:7a:b9:60:e4:82:35:8f:6b:8d:bc:
87:16:22:ca
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDAyMjExMTMzMTZaFw0yNjAyMjExMTMzMTZaMBgxFjAU
BgNVBAMTDTY1ZDVkZjgwLWM3MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDRpjZcgyZmtPFuNij3Bx7uWLfEjG6GYreOfD5y/ogk4XzZR/7P5LBmE21s
vxMsWLanpztrwSl5seiasLWoSdJ0m7mr9dMB8OtuHeDV6RVciieEbHYa8YHRECpz
ifl36EPi/TG8dIPg1Pj+jogeDcw/yt966jcVBG2gIG1k911EIPywtcYgtSZLXfbi
G/0d5F8fXcErT6kXu6tsAwSbQ1Nxx/TgeL9aRwgkis7ROO9gpLpndALDu83bLSmg
DirkNc7307z+hK8M3jbnCbtDDYy89f84JFflnpTYMmcMTsfNfzWDy4vHvh7rgxav
6ged9Uxwfbt0ZDHMQZ7wq8M2wfN5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUwjw7
k4n7TgOJVgUntaiEEmS1OWYwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzAzNDRDQUZDRDBBRDExRUVBOTE2QzI3MDc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpQEwDQYJKoZIhvcNAQEL
BQADggEBAKxm+4q4ubCP+n9hlnNKuUpV2Cy7NYsLmLUvY1gtgWnyv6B3dOrulIX3
x2P9deMclwl34HuktUWHjDgDHyXDS8xXEOPfavIWJ9+mD08qwoujmW4JDtY0xCER
OroROYSqR91pNmrhHBQ4YcYCOOJO6QxIK2IykXoJBeH4T34r4DrwTIAnOy1c8qFK
9M/S98C2eNIoA8Yo4L9g7mMn2qX3ujXiMTSQT4BxFxMxjp1mV23OIiJAwIEProUu
BTCsTVCjbsZwB5FB5YOsxAwz92LzgcugLgIpV4z3Y+kBQPqM4hz2Bd5/6sdGwgVz
BcK/k0v2/Q0/erlg5II1j2uNvIcWIso=
-----END CERTIFICATE-----
Generated at Fri May 3 03:10:41 2024 by rpki-client on console-ams.rpki-client.org