Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8AFBF64A95311EE92CFA466775412E6.roa
File: A8AFBF64A95311EE92CFA466775412E6.roa (raw, json)
Hash identifier: MUavb/1yYu+s+zeod6mkCTCu5C3BfwsWIbNsJcgAn0Q=
Subject key identifier: 45:5D:54:67:95:72:C7:5E:9E:82:A9:F3:7A:F9:15:90:68:91:CF:ED
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0EB5
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8AFBF64A95311EE92CFA466775412E6.roa
Signing time: Tue 02 Jan 2024 09:45:27 +0000
ROA not before: Tue 02 Jan 2024 09:45:24 +0000
ROA not after: Sat 03 Jan 2026 09:45:24 +0000
asID: 7018
IP address blocks: 102.129.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3765 (0xeb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 2 09:45:24 2024 GMT
Not After : Jan 3 09:45:24 2026 GMT
Subject: CN=6593db37-57e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:87:cc:6a:3e:95:b5:6f:93:3c:c0:be:7a:ae:
21:ad:14:58:9d:45:34:32:d1:97:18:bd:62:19:20:
40:68:e7:c0:fd:02:94:75:65:24:51:ea:11:17:75:
66:b8:f1:c6:2d:6b:8c:2d:13:73:31:18:aa:38:e3:
6b:c5:5c:71:c3:68:3c:da:59:4c:0e:1b:6c:89:c2:
d2:04:15:3a:bb:8b:05:9f:81:b5:78:23:3a:98:e3:
e7:32:06:54:c4:60:0c:6a:73:7b:5f:88:e6:86:e8:
6a:b7:56:8a:1c:50:b6:d3:d5:35:ee:ad:c7:57:47:
28:4d:bb:07:d8:5b:02:74:44:a8:bd:75:9f:d2:3b:
5a:2a:b9:c1:f9:9c:4d:d5:50:c0:1b:80:08:d0:e8:
d3:4e:f9:b3:22:f7:f2:2f:20:7d:27:44:e9:95:ef:
f8:86:0d:4d:f3:a0:5c:74:96:1d:68:69:88:8c:e9:
01:d9:ed:8c:a9:14:77:86:0a:be:67:52:9c:14:13:
c0:7a:3a:1e:4e:88:94:4e:b4:4b:2f:f4:06:91:20:
68:19:4c:7a:3b:64:09:71:03:b4:f9:b8:17:a8:54:
e9:6d:4a:f8:a7:8d:bc:76:67:d6:b4:42:2d:55:b5:
ba:0e:6a:b5:04:c9:9a:02:60:ca:dd:b3:9d:37:2e:
e0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5D:54:67:95:72:C7:5E:9E:82:A9:F3:7A:F9:15:90:68:91:CF:ED
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8AFBF64A95311EE92CFA466775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.176.0/24
Signature Algorithm: sha256WithRSAEncryption
93:d2:3e:25:50:4a:70:ca:57:b8:53:ef:86:46:2e:2d:45:c7:
35:ff:8f:d5:1d:f2:88:b7:27:10:c6:87:a9:98:37:25:cd:80:
09:8f:62:51:5a:ba:af:c1:89:1c:29:9a:72:69:be:8c:35:80:
e3:a4:ce:aa:99:5f:df:97:a8:f4:8a:c0:61:7a:c1:75:3b:1c:
b9:98:c4:69:f2:03:0b:59:10:f4:ce:37:dc:d8:7f:c7:99:2e:
a4:76:10:04:20:51:89:cb:cd:ed:f7:d3:8e:d6:67:db:96:ef:
41:51:7e:9c:d8:c6:dc:41:88:45:5c:01:b7:f6:e7:5d:fa:f6:
f0:93:f1:82:8f:b5:45:cf:88:5b:1c:c4:24:76:e2:35:5e:10:
32:31:ca:5b:b7:b6:2f:73:ad:ac:3d:94:c1:78:d8:92:a0:84:
84:38:1a:5d:4b:3d:ce:4b:3d:5d:e2:6c:1f:89:99:c3:9b:12:
8d:c9:f4:9f:3b:c3:f2:f0:61:f4:c6:03:ab:8d:db:c7:0c:2b:
c2:ba:f2:08:cb:d5:d7:da:6a:e6:39:f4:93:c0:d4:f3:1b:d2:
ef:94:55:57:34:32:6c:b5:aa:68:23:61:04:a0:67:1f:9e:5b:
3e:aa:79:74:7d:25:23:a8:74:d2:f2:b7:36:a1:39:28:48:f6:
b3:46:cb:b8
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDrUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDAxMDIwOTQ1MjRaFw0yNjAxMDMwOTQ1MjRaMBgxFjAU
BgNVBAMTDTY1OTNkYjM3LTU3ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6h8xqPpW1b5M8wL56riGtFFidRTQy0ZcYvWIZIEBo58D9ApR1ZSRR6hEX
dWa48cYta4wtE3MxGKo442vFXHHDaDzaWUwOG2yJwtIEFTq7iwWfgbV4IzqY4+cy
BlTEYAxqc3tfiOaG6Gq3VoocULbT1TXurcdXRyhNuwfYWwJ0RKi9dZ/SO1oqucH5
nE3VUMAbgAjQ6NNO+bMi9/IvIH0nROmV7/iGDU3zoFx0lh1oaYiM6QHZ7YypFHeG
Cr5nUpwUE8B6Oh5OiJROtEsv9AaRIGgZTHo7ZAlxA7T5uBeoVOltSvinjbx2Z9a0
Qi1VtboOarUEyZoCYMrds503LuCrAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQURV1U
Z5Vyx16egqnzevkVkGiRz+0wHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0E4QUZCRjY0QTk1MzExRUU5MkNGQTQ2Njc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgbAwDQYJKoZIhvcNAQEL
BQADggEBAJPSPiVQSnDKV7hT74ZGLi1FxzX/j9Ud8oi3JxDGh6mYNyXNgAmPYlFa
uq/BiRwpmnJpvow1gOOkzqqZX9+XqPSKwGF6wXU7HLmYxGnyAwtZEPTON9zYf8eZ
LqR2EAQgUYnLze33047WZ9uW70FRfpzYxtxBiEVcAbf251369vCT8YKPtUXPiFsc
xCR24jVeEDIxylu3ti9zraw9lMF42JKghIQ4Gl1LPc5LPV3ibB+JmcObEo3J9J87
w/LwYfTGA6uN28cMK8K68gjL1dfaauY59JPA1PMb0u+UVVc0Mmy1qmgjYQSgZx+e
Wz6qeXR9JSOodNLytzahOShI9rNGy7g=
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:37:46 2024 by rpki-client on console-fra.rpki-client.org