Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E1D0E5084E2B11EEBD4B087F4AD9E6FC.roa
File: E1D0E5084E2B11EEBD4B087F4AD9E6FC.roa (raw, json)
Hash identifier: AbfJeonsV7VXdoy/itkUDlVBP3uGwIF/HBu4vFDUWac=
Subject key identifier: B7:B1:FF:18:38:B2:B3:AA:D4:37:EB:A7:C5:8B:7A:97:52:26:A6:97
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0D25
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E1D0E5084E2B11EEBD4B087F4AD9E6FC.roa
Signing time: Fri 08 Sep 2023 09:41:27 +0000
ROA not before: Fri 08 Sep 2023 09:41:23 +0000
ROA not after: Sun 08 Sep 2024 09:41:23 +0000
asID: 199737
IP address blocks: 102.129.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3365 (0xd25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 8 09:41:23 2023 GMT
Not After : Sep 8 09:41:23 2024 GMT
Subject: CN=64faec47-1509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2f:0b:d4:c2:ce:fa:d8:e7:ef:dd:10:b9:8b:
7c:bb:dc:53:e5:79:a6:d2:b1:3f:00:56:49:cf:57:
41:35:c2:cd:89:7d:d0:5d:d8:3e:2e:fe:16:f5:a7:
62:2e:95:de:9a:00:3c:5a:52:90:94:d0:c6:eb:16:
42:fa:8c:42:6b:c0:2e:ab:2a:4c:94:45:0d:7a:00:
7d:a9:e2:e5:8c:83:91:31:0c:6b:c7:c8:86:36:16:
bb:49:10:7e:d2:2e:db:7c:77:b4:69:e4:6c:9d:0e:
f6:a7:bd:71:c9:2f:da:f8:1d:3a:af:56:6c:45:6c:
e1:20:3f:9f:d8:85:12:f1:09:da:31:e1:c2:d6:d8:
d0:46:b4:2c:dc:41:bb:9e:ac:bb:f0:97:0a:41:b1:
bb:b9:00:e9:79:d9:84:3c:c5:9a:d5:6f:02:32:9e:
ef:0d:56:99:53:a0:25:30:83:a2:c6:4f:a6:69:5f:
51:2a:d4:17:6f:04:cf:7a:bf:c8:04:d5:f2:9e:10:
c7:6d:92:6b:73:b4:f9:6c:8d:11:04:44:76:75:22:
a6:f2:d7:22:59:00:ae:b4:b9:36:60:df:0b:64:96:
3d:c2:d5:e5:a5:18:e0:a7:51:bd:e3:fd:76:79:27:
10:6f:9b:a3:fe:e3:1b:fb:e7:31:65:9b:93:c2:4c:
e9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B1:FF:18:38:B2:B3:AA:D4:37:EB:A7:C5:8B:7A:97:52:26:A6:97
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E1D0E5084E2B11EEBD4B087F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.208.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:21:6e:6c:eb:bb:e5:a0:47:c6:84:cf:97:e6:c4:ad:3a:39:
da:89:f1:d6:d0:00:4e:d8:f7:c6:3c:0f:ff:20:fa:02:9c:71:
31:c5:33:aa:d2:20:e2:7e:d1:0c:f5:51:31:8a:db:eb:a4:9b:
fe:2f:fb:ca:17:8d:e5:ed:95:67:58:75:00:56:32:32:23:16:
7c:4c:74:2f:1f:dd:73:48:dc:1d:e1:41:54:69:3f:26:66:29:
fb:f6:f9:fa:00:18:bc:7b:f9:4d:96:cf:f3:c1:c8:73:08:66:
78:cb:bf:a7:b7:db:7d:12:59:8e:d9:18:02:89:de:d3:76:b8:
a1:7a:33:fc:97:5a:2a:25:e0:33:d8:b3:20:cc:a3:3d:b3:46:
b9:50:be:bd:a8:d8:b2:d1:2b:31:5e:da:b5:6d:2e:61:9f:94:
0c:8a:07:2e:08:7e:fa:1b:48:1e:70:d7:47:63:20:cd:44:d7:
ba:fd:08:f5:74:6b:2a:fe:2a:f0:0f:f5:23:a4:67:c5:79:7e:
6e:fb:3b:dd:e1:84:ec:eb:87:9a:46:2d:a2:13:32:58:f4:f6:
83:c3:68:6e:88:b8:93:5d:eb:5f:9f:f5:bd:33:fe:b1:06:d0:
55:d9:d1:fe:f0:87:b3:a3:c3:16:03:03:a5:50:0b:54:f0:d3:
65:22:70:85
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yMzA5MDgwOTQxMjNaFw0yNDA5MDgwOTQxMjNaMBgxFjAU
BgNVBAMTDTY0ZmFlYzQ3LTE1MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDNLwvUws762Ofv3RC5i3y73FPleabSsT8AVknPV0E1ws2JfdBd2D4u/hb1
p2Iuld6aADxaUpCU0MbrFkL6jEJrwC6rKkyURQ16AH2p4uWMg5ExDGvHyIY2FrtJ
EH7SLtt8d7Rp5GydDvanvXHJL9r4HTqvVmxFbOEgP5/YhRLxCdox4cLW2NBGtCzc
QbuerLvwlwpBsbu5AOl52YQ8xZrVbwIynu8NVplToCUwg6LGT6ZpX1Eq1BdvBM96
v8gE1fKeEMdtkmtztPlsjREERHZ1Iqby1yJZAK60uTZg3wtklj3C1eWlGOCnUb3j
/XZ5JxBvm6P+4xv75zFlm5PCTOlhAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUt7H/
GDiys6rUN+unxYt6l1ImppcwHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0UxRDBFNTA4NEUyQjExRUVCRDRCMDg3RjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgdAwDQYJKoZIhvcNAQEL
BQADggEBAJ8hbmzru+WgR8aEz5fmxK06OdqJ8dbQAE7Y98Y8D/8g+gKccTHFM6rS
IOJ+0Qz1UTGK2+ukm/4v+8oXjeXtlWdYdQBWMjIjFnxMdC8f3XNI3B3hQVRpPyZm
Kfv2+foAGLx7+U2Wz/PByHMIZnjLv6e3230SWY7ZGAKJ3tN2uKF6M/yXWiol4DPY
syDMoz2zRrlQvr2o2LLRKzFe2rVtLmGflAyKBy4IfvobSB5w10djIM1E17r9CPV0
ayr+KvAP9SOkZ8V5fm77O93hhOzrh5pGLaITMlj09oPDaG6IuJNd61+f9b0z/rEG
0FXZ0f7wh7OjwxYDA6VQC1Tw02UicIU=
-----END CERTIFICATE-----
Generated at Fri May 3 01:30:21 2024 by rpki-client on console-fra.rpki-client.org