Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/159B14621A5611EEA42BA5604AD9E6FC.roa
File: 159B14621A5611EEA42BA5604AD9E6FC.roa (raw, json)
Hash identifier: uPPtiEHjrpzvIEfc0Px5BugdDkhhVVVvUF4wxJyNcH8=
Subject key identifier: 9B:43:54:2D:05:80:E1:D4:66:A5:FD:27:FA:B6:E8:B5:E7:BB:F2:8A
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0C4A
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/159B14621A5611EEA42BA5604AD9E6FC.roa
Signing time: Tue 04 Jul 2023 10:32:33 +0000
ROA not before: Tue 04 Jul 2023 10:32:27 +0000
ROA not after: Wed 16 Jul 2025 10:32:27 +0000
asID: 62390
IP address blocks: 102.129.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 06 May 2024 00:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3146 (0xc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jul 4 10:32:27 2023 GMT
Not After : Jul 16 10:32:27 2025 GMT
Subject: CN=64a3f541-5970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:35:d0:19:e1:ef:28:63:f4:11:d6:d5:c7:69:
e1:fb:ab:cf:ff:b4:d6:28:62:1d:42:8d:01:45:2b:
44:49:b4:6b:fb:f8:46:71:ed:01:ae:4e:86:70:82:
52:b0:bc:52:05:55:90:9a:f7:9b:ed:02:e7:6c:23:
52:d9:0c:09:9c:26:f6:61:ca:29:30:c7:1f:a0:f1:
53:49:d0:22:39:5f:16:93:03:5d:00:80:61:0f:6a:
76:80:c5:ea:48:4a:89:c3:a9:93:73:07:1b:ef:dc:
1d:df:a4:95:3a:79:0f:70:b4:ab:2d:84:8f:dd:db:
6c:4b:ad:0f:1f:3a:c5:f1:a5:c8:5c:11:35:80:99:
e6:f2:01:59:d6:1f:db:bc:f8:6c:6f:5e:63:cc:d9:
6b:8b:63:9a:f4:18:c5:df:c3:b4:31:bc:99:a5:b6:
bf:9f:e7:c9:dc:41:f8:86:24:32:ba:d8:70:ee:a0:
00:ef:56:b3:c3:75:13:67:be:e4:50:17:b7:b5:4c:
11:41:91:2f:5c:be:5e:bd:6f:b0:a8:5f:7f:cd:a5:
7c:fc:ad:f2:62:7c:3b:f8:2c:a5:b6:88:b8:c2:4d:
e7:70:08:8b:ff:82:a6:58:68:f5:30:bb:5b:a9:18:
44:f8:3c:e9:a5:4c:db:27:4f:7a:ad:a0:10:d4:90:
79:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:43:54:2D:05:80:E1:D4:66:A5:FD:27:FA:B6:E8:B5:E7:BB:F2:8A
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/159B14621A5611EEA42BA5604AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.186.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:82:30:5a:7c:32:ef:e7:c7:12:37:37:d2:9f:54:aa:28:13:
53:97:18:d5:08:3a:ca:c4:3b:78:9d:fd:88:ab:74:30:fe:c9:
d7:d8:55:83:08:d4:88:d1:24:e0:77:4f:81:d2:75:46:7a:14:
68:b5:4a:f0:7e:07:45:02:0a:52:20:ea:98:bc:70:03:e3:23:
40:88:ce:5e:91:38:9c:a4:27:d9:6f:4b:3a:d2:69:05:cb:e6:
3e:b8:63:c2:78:a2:38:82:ab:16:36:10:04:e9:e0:e8:bf:63:
e8:8f:81:9d:ae:bf:d1:7c:d9:4a:fc:17:ee:95:b5:c1:ea:20:
ed:5e:d4:90:55:6a:9c:23:0f:76:e7:1d:49:ee:4e:6f:5d:3e:
e1:9f:0c:bc:3f:6a:09:ae:3d:9c:32:b4:0a:a6:97:e0:02:16:
e5:0f:9b:4b:fd:ed:8a:d1:72:3d:62:43:e5:38:d8:72:b5:3d:
ae:fe:ef:81:5c:27:f0:7f:c3:28:42:78:99:da:87:46:05:d3:
35:3e:c6:92:14:a9:d7:57:ce:81:8a:13:47:5d:d9:5f:c8:95:
7c:76:b3:ac:36:5e:c6:f8:17:f7:83:7d:86:c6:63:2f:99:0b:
08:d3:d1:05:24:10:51:24:37:9a:61:78:10:23:d8:6c:40:54:
d9:06:b8:9d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDEowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yMzA3MDQxMDMyMjdaFw0yNTA3MTYxMDMyMjdaMBgxFjAU
BgNVBAMTDTY0YTNmNTQxLTU5NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCsNdAZ4e8oY/QR1tXHaeH7q8//tNYoYh1CjQFFK0RJtGv7+EZx7QGuToZw
glKwvFIFVZCa95vtAudsI1LZDAmcJvZhyikwxx+g8VNJ0CI5XxaTA10AgGEPanaA
xepISonDqZNzBxvv3B3fpJU6eQ9wtKsthI/d22xLrQ8fOsXxpchcETWAmebyAVnW
H9u8+GxvXmPM2WuLY5r0GMXfw7QxvJmltr+f58ncQfiGJDK62HDuoADvVrPDdRNn
vuRQF7e1TBFBkS9cvl69b7CoX3/NpXz8rfJifDv4LKW2iLjCTedwCIv/gqZYaPUw
u1upGET4POmlTNsnT3qtoBDUkHkLAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUm0NU
LQWA4dRmpf0n+rbotee78oowHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzE1OUIxNDYyMUE1NjExRUVBNDJCQTU2MDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgbowDQYJKoZIhvcNAQEL
BQADggEBAIuCMFp8Mu/nxxI3N9KfVKooE1OXGNUIOsrEO3id/YirdDD+ydfYVYMI
1IjRJOB3T4HSdUZ6FGi1SvB+B0UCClIg6pi8cAPjI0CIzl6ROJykJ9lvSzrSaQXL
5j64Y8J4ojiCqxY2EATp4Oi/Y+iPgZ2uv9F82Ur8F+6VtcHqIO1e1JBVapwjD3bn
HUnuTm9dPuGfDLw/agmuPZwytAqml+ACFuUPm0v97YrRcj1iQ+U42HK1Pa7+74Fc
J/B/wyhCeJnah0YF0zU+xpIUqddXzoGKE0dd2V/IlXx2s6w2Xsb4F/eDfYbGYy+Z
CwjT0QUkEFEkN5pheBAj2GxAVNkGuJ0=
-----END CERTIFICATE-----
Generated at Sat May 4 02:37:58 2024 by rpki-client on console-fra.rpki-client.org