Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8032DA4759611EFA5446AB7762E951A.roa
File: D8032DA4759611EFA5446AB7762E951A.roa (raw, json)
Hash identifier: YC8DbqtqmSTKix1jSXTVBzPuKUx2bSxqbeXgnjjSkWI=
Subject key identifier: 7A:BE:50:44:BC:05:BC:02:84:DC:43:B0:A0:B6:4C:43:6F:F8:DA:C0
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1205
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8032DA4759611EFA5446AB7762E951A.roa
Signing time: Wed 18 Sep 2024 08:20:20 +0000
ROA not before: Wed 18 Sep 2024 08:20:14 +0000
ROA not after: Fri 18 Sep 2026 08:20:14 +0000
asID: 212238
IP address blocks: 196.251.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4613 (0x1205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 18 08:20:14 2024 GMT
Not After : Sep 18 08:20:14 2026 GMT
Subject: CN=66ea8d44-f422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ee:d4:10:47:ac:5a:ec:13:f2:bb:1d:aa:b3:
8d:ef:cb:98:6c:78:2e:3a:2a:73:e8:87:e0:b8:e1:
f7:1b:bc:e8:68:3b:72:55:d9:4c:75:0b:c8:48:2c:
39:5e:d4:31:7d:41:5a:89:e7:60:5f:81:9c:d9:60:
43:17:86:90:93:c1:af:e0:e0:f5:aa:c1:be:3c:20:
90:67:f1:5e:8c:5a:11:4c:fb:49:db:97:8f:df:00:
76:53:8d:00:49:eb:d5:b8:2b:67:2e:24:5a:76:ed:
ea:74:a7:81:f9:10:6b:9f:44:aa:9b:33:cc:b5:43:
46:3a:50:63:41:33:46:12:27:ed:21:9f:40:c4:f3:
9d:3f:68:b8:56:61:ca:2e:1f:de:c0:11:4a:6e:ab:
d6:bc:7c:b7:5e:ee:b8:32:6d:47:72:82:a2:0f:78:
36:1f:f1:0a:e3:85:4d:68:75:88:4c:e1:bb:7d:46:
29:ac:01:63:a5:eb:f7:36:3a:ab:69:8e:7e:99:15:
6a:05:23:a1:49:b5:b9:f0:86:c7:02:f3:d5:ca:40:
bf:1e:38:1e:88:18:85:e7:a1:99:ee:ed:e8:03:82:
26:18:4d:af:a7:dd:e0:2b:05:7e:0f:78:80:92:a9:
eb:8f:58:68:e0:63:66:33:94:f9:45:d6:ea:63:d9:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BE:50:44:BC:05:BC:02:84:DC:43:B0:A0:B6:4C:43:6F:F8:DA:C0
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D8032DA4759611EFA5446AB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.251.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f1:1a:fb:b4:71:6d:ba:80:da:9f:d5:60:22:f8:f8:f4:14:
dc:43:41:1d:67:1c:71:93:c3:a0:52:7c:de:6b:d5:29:8d:6a:
18:3d:b5:f5:af:10:73:ca:c8:be:33:bc:02:b3:b7:3f:14:20:
d8:de:10:d6:33:45:ce:2e:7a:e4:1d:70:8a:01:9a:7e:97:66:
6f:53:3e:ce:e0:2d:0e:02:9e:10:1b:80:8a:e2:b5:07:9b:18:
db:cb:ab:37:72:cf:b0:a0:e6:27:08:fb:55:70:75:b0:e8:4a:
f9:ba:c7:d3:c5:4d:17:d7:95:19:1e:b1:fd:e6:f0:63:e8:1c:
2b:92:2b:40:63:51:07:a3:77:40:6b:2e:19:6b:88:a1:1c:7d:
2d:e8:22:1f:9a:ac:37:5c:32:02:85:29:4c:47:c5:d0:40:0d:
5f:64:82:09:ce:8b:0c:09:0b:2d:05:47:3c:de:8a:b7:63:a2:
f5:dc:ae:bc:5a:c9:4a:db:48:a2:13:60:8d:f0:08:cc:dc:f0:
b7:f2:46:6f:82:04:3a:3b:3b:d6:1b:74:71:d8:02:4d:9c:34:
ae:af:36:f4:ae:78:04:50:bb:80:6f:b0:10:a2:a9:f5:f7:f4:
50:c1:a9:48:6d:08:c8:41:05:8a:83:df:37:91:39:6d:36:d3:
f3:71:20:46
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEgUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDA5MTgwODIwMTRaFw0yNjA5MTgwODIwMTRaMBgxFjAU
BgNVBAMTDTY2ZWE4ZDQ0LWY0MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDW7tQQR6xa7BPyux2qs43vy5hseC46KnPoh+C44fcbvOhoO3JV2Ux1C8hI
LDle1DF9QVqJ52BfgZzZYEMXhpCTwa/g4PWqwb48IJBn8V6MWhFM+0nbl4/fAHZT
jQBJ69W4K2cuJFp27ep0p4H5EGufRKqbM8y1Q0Y6UGNBM0YSJ+0hn0DE850/aLhW
YcouH97AEUpuq9a8fLde7rgybUdygqIPeDYf8QrjhU1odYhM4bt9RimsAWOl6/c2
Oqtpjn6ZFWoFI6FJtbnwhscC89XKQL8eOB6IGIXnoZnu7egDgiYYTa+n3eArBX4P
eICSqeuPWGjgY2YzlPlF1upj2b4hAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUer5Q
RLwFvAKE3EOwoLZMQ2/42sAwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0Q4MDMyREE0NzU5NjExRUZBNTQ0NkFCNzc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+/swDQYJKoZIhvcNAQEL
BQADggEBAGvxGvu0cW26gNqf1WAi+Pj0FNxDQR1nHHGTw6BSfN5r1SmNahg9tfWv
EHPKyL4zvAKztz8UINjeENYzRc4ueuQdcIoBmn6XZm9TPs7gLQ4CnhAbgIritQeb
GNvLqzdyz7Cg5icI+1VwdbDoSvm6x9PFTRfXlRkesf3m8GPoHCuSK0BjUQejd0Br
LhlriKEcfS3oIh+arDdcMgKFKUxHxdBADV9kggnOiwwJCy0FRzzeirdjovXcrrxa
yUrbSKITYI3wCMzc8LfyRm+CBDo7O9YbdHHYAk2cNK6vNvSueARQu4BvsBCiqfX3
9FDBqUhtCMhBBYqD3zeROW020/NxIEY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:25 2024 by rpki-client on console-ams.rpki-client.org