Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8CBE4CC1B4C11EEBB1CED484AD9E6FC.roa
File: A8CBE4CC1B4C11EEBB1CED484AD9E6FC.roa (raw, json)
Hash identifier: jVglAmxPCLT6eQi4+n8RvrC2RwxFmA/K1je4XFKUIww=
Subject key identifier: 87:91:C5:85:05:B6:05:2D:6C:CB:3D:4F:03:A7:F4:0A:72:98:D6:E7
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0C53
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8CBE4CC1B4C11EEBB1CED484AD9E6FC.roa
Signing time: Wed 05 Jul 2023 15:57:36 +0000
ROA not before: Wed 05 Jul 2023 15:57:31 +0000
ROA not after: Wed 09 Jul 2025 15:57:31 +0000
asID: 212238
IP address blocks: 102.165.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3155 (0xc53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jul 5 15:57:31 2023 GMT
Not After : Jul 9 15:57:31 2025 GMT
Subject: CN=64a592f0-2270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:30:fb:91:be:63:fd:0c:2a:82:16:5c:45:dc:
79:56:cb:56:c8:3a:1d:61:44:17:92:63:90:7e:49:
a2:a9:3c:57:8f:08:31:24:fe:71:a5:4d:14:1c:ce:
ad:33:73:31:71:f5:a0:fd:9a:78:73:20:f6:0d:ee:
ba:11:b9:86:35:19:e6:5b:c2:8e:73:93:42:06:9a:
a1:06:c9:8c:b1:ad:d4:5c:8c:33:e4:48:a4:6c:70:
13:5d:00:2c:92:c9:80:1d:14:19:ad:56:00:bb:7c:
ab:b6:cd:6e:f4:82:2b:6c:1b:6e:df:70:57:87:72:
ba:a8:7c:0a:69:25:36:e1:2c:e2:0e:42:26:b1:ec:
31:cc:19:2a:11:0a:ae:13:39:90:50:11:82:49:4f:
e1:ba:ac:ed:d6:94:b8:c1:5b:23:6d:b4:51:f6:e6:
07:72:2d:95:c1:27:71:88:d0:2d:58:53:eb:8a:17:
98:82:55:47:4e:12:d7:d1:b6:f5:63:81:63:90:06:
13:bf:f9:96:c3:56:21:75:5a:6c:48:04:3f:9f:e9:
ed:d0:0a:23:5f:f4:d3:3f:4b:6d:23:1f:94:6c:6d:
56:cb:30:49:b6:f0:11:ab:4e:ec:c3:8e:e7:94:b5:
02:ab:c1:0e:46:dc:a8:bc:2e:6f:1d:38:f9:71:bf:
25:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:91:C5:85:05:B6:05:2D:6C:CB:3D:4F:03:A7:F4:0A:72:98:D6:E7
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A8CBE4CC1B4C11EEBB1CED484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.28.0/24
Signature Algorithm: sha256WithRSAEncryption
83:03:f4:97:f5:e0:05:13:9c:f2:4a:38:88:07:48:d4:44:51:
b4:b6:12:5e:9c:a2:c6:1f:98:04:63:c5:40:43:c1:66:e1:d8:
b3:cb:24:98:23:40:e3:9b:c4:48:a3:fa:1f:bc:25:ea:25:27:
75:42:25:15:3f:48:a6:6c:e0:80:75:9a:46:c5:d1:26:2a:e3:
5a:5c:d0:a0:58:71:f4:79:16:e5:c7:a4:1c:40:68:14:0c:2c:
e1:3c:45:a5:f7:52:f7:14:dd:8a:f1:46:47:2f:b3:5b:84:60:
d3:b2:f1:09:b6:56:58:b6:09:9d:0b:c4:64:15:93:ee:c8:e0:
77:5d:8e:9a:64:c6:c5:53:ab:4e:44:b6:c1:fb:2c:22:af:60:
9d:a9:d5:d1:fc:d8:22:07:0d:e9:14:ae:d4:da:3b:1f:ef:ad:
89:6e:e0:13:69:75:57:68:9d:ac:f6:a8:38:95:fa:6f:ff:75:
60:45:1e:73:03:ba:5c:a2:48:b0:0e:1a:b8:db:0a:d1:c8:0e:
f4:7e:9a:57:e6:0b:75:b3:12:93:32:94:6f:bf:56:5a:ee:f7:
69:04:0a:cd:4b:e9:e4:41:e5:39:b4:86:15:d0:e2:38:8d:cf:
0b:c9:af:fa:a6:b7:e2:01:f9:87:3a:b0:af:f1:4d:9b:df:47:
9b:15:fb:0b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yMzA3MDUxNTU3MzFaFw0yNTA3MDkxNTU3MzFaMBgxFjAU
BgNVBAMTDTY0YTU5MmYwLTIyNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQChMPuRvmP9DCqCFlxF3HlWy1bIOh1hRBeSY5B+SaKpPFePCDEk/nGlTRQc
zq0zczFx9aD9mnhzIPYN7roRuYY1GeZbwo5zk0IGmqEGyYyxrdRcjDPkSKRscBNd
ACySyYAdFBmtVgC7fKu2zW70gitsG27fcFeHcrqofAppJTbhLOIOQiax7DHMGSoR
Cq4TOZBQEYJJT+G6rO3WlLjBWyNttFH25gdyLZXBJ3GI0C1YU+uKF5iCVUdOEtfR
tvVjgWOQBhO/+ZbDViF1WmxIBD+f6e3QCiNf9NM/S20jH5RsbVbLMEm28BGrTuzD
jueUtQKrwQ5G3Ki8Lm8dOPlxvyWXAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUh5HF
hQW2BS1syz1PA6f0CnKY1ucwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0E4Q0JFNENDMUI0QzExRUVCQjFDRUQ0ODRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmpRwwDQYJKoZIhvcNAQEL
BQADggEBAIMD9Jf14AUTnPJKOIgHSNREUbS2El6cosYfmARjxUBDwWbh2LPLJJgj
QOObxEij+h+8JeolJ3VCJRU/SKZs4IB1mkbF0SYq41pc0KBYcfR5FuXHpBxAaBQM
LOE8RaX3UvcU3YrxRkcvs1uEYNOy8Qm2Vli2CZ0LxGQVk+7I4HddjppkxsVTq05E
tsH7LCKvYJ2p1dH82CIHDekUrtTaOx/vrYlu4BNpdVdonaz2qDiV+m//dWBFHnMD
ulyiSLAOGrjbCtHIDvR+mlfmC3WzEpMylG+/Vlru92kECs1L6eRB5Tm0hhXQ4jiN
zwvJr/qmt+IB+Yc6sK/xTZvfR5sV+ws=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:16 2024 by rpki-client on console-fra.rpki-client.org