Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4EDFBB4A9DE211EFB99606A7762E951A.roa
File: 4EDFBB4A9DE211EFB99606A7762E951A.roa (raw, json)
Hash identifier: P71pCcDCT5H0V2Gv1wTEHLThttXCoLPP5yp4B8KOXyo=
Subject key identifier: 75:27:0D:C9:EB:E4:9C:29:0B:70:69:63:70:50:EF:60:91:B2:90:28
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 129B
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4EDFBB4A9DE211EFB99606A7762E951A.roa
Signing time: Fri 08 Nov 2024 15:01:18 +0000
ROA not before: Fri 08 Nov 2024 15:01:15 +0000
ROA not after: Sat 07 Nov 2026 15:01:15 +0000
asID: 147176
IP address blocks: 102.129.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4763 (0x129b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Nov 8 15:01:15 2024 GMT
Not After : Nov 7 15:01:15 2026 GMT
Subject: CN=672e27be-3af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:77:27:94:e3:c8:52:ab:4a:a1:34:85:a4:
c9:3c:88:9c:ad:42:1e:16:15:e7:74:56:f7:d1:fc:
26:fe:ce:5e:15:e5:85:b0:ad:db:85:9e:ab:d0:1c:
25:14:ee:b8:d0:f4:ce:5f:48:c2:3e:b9:38:ad:09:
da:a5:fd:14:5d:d2:9e:13:ad:82:f7:d0:91:a1:93:
10:87:d4:e6:94:8d:91:0e:31:6b:75:0e:8a:6f:f6:
41:ed:ab:63:45:a1:0b:8c:3d:ce:7d:5f:84:76:e4:
25:e0:15:b9:3e:30:3e:19:a3:58:a5:68:c5:ac:e4:
4c:c1:7d:6f:43:7e:95:9a:b1:df:42:e7:d2:fb:f8:
fc:69:45:4c:b2:36:72:4f:e3:36:5f:35:30:59:e6:
5c:c3:5d:bf:8c:04:15:cd:a8:75:92:8e:23:59:c5:
f9:06:17:5b:7b:4d:b3:17:7d:6c:cc:78:9b:30:73:
ec:d7:9c:ab:60:81:e7:43:6d:06:33:e8:93:f7:f6:
d0:12:f6:27:9e:16:cb:da:35:46:94:a5:ad:fd:3b:
bf:9a:fe:a9:00:12:7b:77:ed:0c:e0:74:30:8f:77:
02:25:1c:21:69:c0:03:af:96:b6:8d:9b:f8:eb:bc:
0a:9c:23:1e:81:19:7f:e8:46:af:e4:ba:b4:26:b8:
2a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:27:0D:C9:EB:E4:9C:29:0B:70:69:63:70:50:EF:60:91:B2:90:28
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4EDFBB4A9DE211EFB99606A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.138.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f0:e3:10:a9:98:57:0a:f3:b0:2a:a4:bf:1e:3c:bb:5e:76:
68:a6:51:f0:09:d7:93:6d:c6:62:fb:a2:9e:af:09:b6:dd:36:
65:ee:5f:e2:f0:ad:b7:55:2e:a7:ac:ec:5a:18:67:11:cf:e8:
09:e6:e1:60:9f:e6:ce:90:ae:09:e5:82:1b:1c:e8:88:80:fe:
ef:b1:68:14:cd:9d:10:5f:a2:e9:ae:6b:f0:f9:1d:eb:20:90:
22:ed:ee:3f:99:6c:26:1a:81:5d:d3:75:0d:b6:45:2c:2e:f3:
62:e9:fb:51:76:58:9e:48:0d:8a:38:8e:18:35:7c:db:8d:99:
37:25:c6:6f:26:95:82:60:2f:4c:95:43:03:fc:a1:6b:1b:b8:
af:26:f5:1b:0b:b5:29:4d:ef:c6:e1:f0:7e:d1:39:7d:a4:e0:
fe:be:e1:17:a9:d5:42:31:aa:9c:10:f1:db:54:ca:5e:e1:96:
50:cd:1b:6a:84:07:91:84:a9:22:87:57:8b:6f:fb:bf:f4:e6:
38:fb:96:e7:a1:fb:fc:30:a4:cc:fa:3e:85:16:74:fa:7d:ab:
89:9e:ae:63:a9:8c:91:87:bb:51:15:82:28:08:48:5b:5b:58:
93:c7:14:06:ae:c0:b7:2b:db:1c:e2:83:81:70:0e:49:21:2a:
8d:d6:82:c5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEpswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDExMDgxNTAxMTVaFw0yNjExMDcxNTAxMTVaMBgxFjAU
BgNVBAMTDTY3MmUyN2JlLTNhZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCmQHcnlOPIUqtKoTSFpMk8iJytQh4WFed0VvfR/Cb+zl4V5YWwrduFnqvQ
HCUU7rjQ9M5fSMI+uTitCdql/RRd0p4TrYL30JGhkxCH1OaUjZEOMWt1Dopv9kHt
q2NFoQuMPc59X4R25CXgFbk+MD4Zo1ilaMWs5EzBfW9DfpWasd9C59L7+PxpRUyy
NnJP4zZfNTBZ5lzDXb+MBBXNqHWSjiNZxfkGF1t7TbMXfWzMeJswc+zXnKtggedD
bQYz6JP39tAS9ieeFsvaNUaUpa39O7+a/qkAEnt37QzgdDCPdwIlHCFpwAOvlraN
m/jrvAqcIx6BGX/oRq/kurQmuCovAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUdScN
yevknCkLcGljcFDvYJGykCgwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzRFREZCQjRBOURFMjExRUZCOTk2MDZBNzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgYowDQYJKoZIhvcNAQEL
BQADggEBAEfw4xCpmFcK87AqpL8ePLtedmimUfAJ15NtxmL7op6vCbbdNmXuX+Lw
rbdVLqes7FoYZxHP6Anm4WCf5s6Qrgnlghsc6IiA/u+xaBTNnRBfoumua/D5Hesg
kCLt7j+ZbCYagV3TdQ22RSwu82Lp+1F2WJ5IDYo4jhg1fNuNmTclxm8mlYJgL0yV
QwP8oWsbuK8m9RsLtSlN78bh8H7ROX2k4P6+4Rep1UIxqpwQ8dtUyl7hllDNG2qE
B5GEqSKHV4tv+7/05jj7lueh+/wwpMz6PoUWdPp9q4mermOpjJGHu1EVgigISFtb
WJPHFAauwLcr2xzig4FwDkkhKo3WgsU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:16 2024 by rpki-client on console-fra.rpki-client.org