Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53ECAA7A904111EF82668144762E951A.roa
File: 53ECAA7A904111EF82668144762E951A.roa (raw, json)
Hash identifier: OBbMRcYfGC32P/U63JCigKGaChxdgndP1VZiPPu2LZ8=
Subject key identifier: 07:EA:8D:39:2E:25:D5:87:90:9F:60:51:94:5A:49:90:22:B8:DD:3D
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1277
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53ECAA7A904111EF82668144762E951A.roa
Signing time: Tue 22 Oct 2024 06:46:13 +0000
ROA not before: Tue 22 Oct 2024 06:46:09 +0000
ROA not after: Thu 22 Oct 2026 06:46:09 +0000
asID: 210531
IP address blocks: 102.129.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4727 (0x1277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 22 06:46:09 2024 GMT
Not After : Oct 22 06:46:09 2026 GMT
Subject: CN=67174a35-0269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:df:dc:a0:51:16:5a:30:4b:bc:ef:ad:10:
ba:8d:8c:c8:6a:68:3d:de:3f:86:3a:36:b0:c0:1f:
d3:4f:81:a8:af:b7:4b:d0:37:44:44:3e:aa:2c:c3:
b0:a6:f9:07:34:26:2f:ab:c4:e0:38:4c:0e:d7:e9:
47:a6:85:2b:51:2c:81:8d:cc:d5:24:76:98:8c:10:
c0:25:74:f5:d4:c9:17:14:3b:e0:9d:58:26:f8:06:
e6:7b:58:f7:81:f6:72:89:41:59:3d:c8:cf:de:a3:
52:a0:1c:6f:d0:f5:a2:8b:ed:53:48:ef:2d:1d:5e:
a7:c8:e2:57:3e:50:4c:8b:98:c2:b9:29:74:f1:bb:
b8:27:5b:58:e6:ab:74:d9:0b:c0:7d:17:ef:ed:05:
fc:f1:1c:66:d1:0f:44:67:8a:06:af:12:52:2c:53:
3e:da:29:b3:76:a6:04:2c:36:7d:b1:76:f1:a3:08:
6d:56:cc:41:27:0c:17:b2:8c:73:c5:97:43:3e:ee:
82:6f:af:03:8e:02:f3:a4:5f:49:7f:a1:56:f7:59:
c7:eb:66:46:e1:e5:56:68:49:9f:1c:29:07:ec:72:
80:c9:05:80:be:69:65:3f:06:f5:4f:21:fd:9e:0c:
31:69:76:ba:26:3c:88:5d:47:25:b1:98:f2:a3:79:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EA:8D:39:2E:25:D5:87:90:9F:60:51:94:5A:49:90:22:B8:DD:3D
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/53ECAA7A904111EF82668144762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.200.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:84:65:90:1a:7f:57:d2:d9:26:9a:83:fa:7d:f5:91:bc:1a:
7f:47:e4:df:bf:b1:4c:4b:86:93:70:86:08:85:7d:75:ba:57:
a9:e9:c2:d5:2e:49:40:c0:8d:9f:ad:90:85:1b:0b:0f:a4:75:
ea:75:c1:54:71:7a:bd:3b:63:bb:b3:08:41:5c:da:7f:98:3d:
06:d3:ed:49:3f:2b:0b:22:b2:36:60:39:bc:97:36:19:16:fe:
8e:a4:69:a5:bc:3f:1e:8e:ad:d3:e4:0d:a8:4f:e7:55:96:ff:
10:5a:db:d5:4e:cc:48:e2:25:f1:5c:57:6d:08:2c:a0:88:62:
51:85:93:1e:a3:8f:61:10:28:60:20:64:52:14:e8:9d:91:0d:
d8:a0:77:a0:66:5e:d2:16:a0:33:38:96:99:19:d5:ec:0a:61:
b7:df:71:72:d7:56:44:ec:c4:f7:07:fd:bb:d2:b6:35:fe:c8:
e7:bb:a1:fc:ab:79:8b:c3:8c:6e:1a:02:1f:69:12:b6:aa:51:
0b:76:2b:ec:a9:9d:96:dd:d1:b5:e4:ac:4b:fe:4d:ea:13:7d:
a5:c8:3c:95:7a:96:c1:2c:6d:48:7f:3f:d5:da:d9:37:b5:fe:
f3:2d:15:ad:63:5a:05:9b:2d:ea:48:ec:77:d1:d9:95:19:b6:
e1:98:0a:2d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEncwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDEwMjIwNjQ2MDlaFw0yNjEwMjIwNjQ2MDlaMBgxFjAU
BgNVBAMTDTY3MTc0YTM1LTAyNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCrod/coFEWWjBLvO+tELqNjMhqaD3eP4Y6NrDAH9NPgaivt0vQN0REPqos
w7Cm+Qc0Ji+rxOA4TA7X6UemhStRLIGNzNUkdpiMEMAldPXUyRcUO+CdWCb4BuZ7
WPeB9nKJQVk9yM/eo1KgHG/Q9aKL7VNI7y0dXqfI4lc+UEyLmMK5KXTxu7gnW1jm
q3TZC8B9F+/tBfzxHGbRD0RnigavElIsUz7aKbN2pgQsNn2xdvGjCG1WzEEnDBey
jHPFl0M+7oJvrwOOAvOkX0l/oVb3WcfrZkbh5VZoSZ8cKQfscoDJBYC+aWU/BvVP
If2eDDFpdromPIhdRyWxmPKjeW8ZAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUB+qN
OS4l1YeQn2BRlFpJkCK43T0wHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4LzUzRUNBQTdBOTA0MTExRUY4MjY2ODE0NDc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgcgwDQYJKoZIhvcNAQEL
BQADggEBALeEZZAaf1fS2Saag/p99ZG8Gn9H5N+/sUxLhpNwhgiFfXW6V6npwtUu
SUDAjZ+tkIUbCw+kdep1wVRxer07Y7uzCEFc2n+YPQbT7Uk/KwsisjZgObyXNhkW
/o6kaaW8Px6OrdPkDahP51WW/xBa29VOzEjiJfFcV20ILKCIYlGFkx6jj2EQKGAg
ZFIU6J2RDdigd6BmXtIWoDM4lpkZ1ewKYbffcXLXVkTsxPcH/bvStjX+yOe7ofyr
eYvDjG4aAh9pEraqUQt2K+ypnZbd0bXkrEv+TeoTfaXIPJV6lsEsbUh/P9Xa2Te1
/vMtFa1jWgWbLepI7HfR2ZUZtuGYCi0=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:16 2024 by rpki-client on console-fra.rpki-client.org