Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/A1B5AEEC442811EFA24AB347762E951A.roa
File: A1B5AEEC442811EFA24AB347762E951A.roa (raw, json)
Hash identifier: WU/tv+bio89mYf5sL7OB/fhjHoVOLu5YlrkO6ttjHNQ=
Subject key identifier: E3:6E:35:AF:70:BB:83:F7:43:DA:68:38:CA:E5:E4:5D:6F:44:CD:BD
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 7C
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/A1B5AEEC442811EFA24AB347762E951A.roa
Signing time: Wed 17 Jul 2024 10:37:57 +0000
ROA not before: Wed 17 Jul 2024 10:37:54 +0000
ROA not after: Sun 18 Jul 2027 10:37:54 +0000
asID: 37577
IP address blocks: 102.180.232.0/22 maxlen: 22
102.180.244.0/24 maxlen: 24
102.180.245.0/24 maxlen: 24
102.180.246.0/24 maxlen: 24
102.180.247.0/24 maxlen: 24
102.180.248.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124 (0x7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Jul 17 10:37:54 2024 GMT
Not After : Jul 18 10:37:54 2027 GMT
Subject: CN=66979f05-8b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:00:3c:b8:45:09:06:88:50:13:e6:73:cc:
f8:fe:45:7a:95:5b:66:55:46:3d:37:5b:5b:d6:91:
d7:00:2c:01:78:89:13:37:fb:2c:7a:05:17:57:4c:
28:6f:07:3a:03:5a:35:8f:a4:f7:42:63:79:b7:ae:
45:4b:7b:60:10:e9:f6:29:2f:e0:40:c2:40:ea:d1:
f7:16:ed:16:aa:af:1e:82:05:80:42:f5:ef:cb:0d:
c5:39:a3:41:b6:2d:41:4a:16:3b:83:7c:43:08:28:
b9:a5:01:aa:eb:11:06:1a:61:66:c7:cf:32:49:14:
1b:ab:de:9d:e3:76:cb:ad:f1:a7:5b:9a:0e:54:73:
31:93:57:6b:07:46:7d:60:e9:a6:e1:99:ed:fd:22:
a9:16:2f:91:a9:e5:2e:24:2b:bf:d4:cd:9f:19:98:
4e:58:58:ba:7f:46:1b:3e:0b:9a:e8:96:3e:bb:0e:
dd:70:fb:9b:98:d3:44:3b:dc:43:f5:ce:7b:24:19:
c8:42:fc:98:e0:43:2f:a6:07:9c:cb:29:21:cc:44:
83:e4:4b:e7:dd:0d:3e:57:ed:f0:ec:df:25:c4:df:
8d:b0:34:c6:59:8e:ce:20:f4:e0:93:19:3d:ec:70:
f5:31:01:5e:10:64:c7:7b:2f:60:65:bb:ae:ac:fc:
d9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6E:35:AF:70:BB:83:F7:43:DA:68:38:CA:E5:E4:5D:6F:44:CD:BD
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/A1B5AEEC442811EFA24AB347762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.180.232.0/22
102.180.244.0-102.180.251.255
Signature Algorithm: sha256WithRSAEncryption
1f:36:93:f5:2a:ee:49:61:53:53:11:e2:ba:e9:ef:98:97:fc:
94:fc:97:a5:ac:6d:7d:51:73:8c:2b:23:aa:cd:4b:3e:d7:91:
61:a2:c8:ea:7a:3e:66:21:de:1c:33:85:df:15:77:b8:e8:72:
24:5b:9f:d2:3a:ab:44:63:dd:5d:d8:a9:fa:30:fe:d2:12:0b:
6e:e7:ce:a2:eb:e1:15:0e:16:2d:fd:cf:4c:fb:09:a5:95:be:
af:02:0d:aa:12:09:60:07:48:5d:37:8f:eb:3f:b5:48:60:4d:
70:35:e7:98:f6:f5:d0:6d:4b:e5:15:88:e0:84:9f:a9:06:d8:
a1:8b:55:27:cb:14:c0:14:7b:9b:e0:f3:55:fb:f5:9e:e2:bb:
ce:b3:0f:50:86:c1:cb:f4:a3:7b:12:3f:dd:a4:a1:9e:c1:42:
07:2c:c0:97:3e:5a:c3:f0:55:c6:a2:97:3b:87:68:0d:88:4c:
63:f4:4d:10:f3:d2:64:3e:47:fb:f0:75:67:da:97:ec:71:56:
0d:74:8f:3f:f9:89:68:17:40:74:0f:99:26:71:0f:5f:38:16:
8c:7e:e5:3f:b7:a5:a4:85:45:60:2b:e4:4b:86:af:b7:43:db:
58:0b:80:e6:7d:a9:76:5d:c6:a4:68:62:75:bb:3f:4b:68:df:
85:65:28:01
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
QjFCRUFGMTEwLwYDVQQFEyhBNUYwQTJCQjhCNzlFREQ2RDM3QzA3N0FERkVBMDgy
NTE0QzA0MjBGMB4XDTI0MDcxNzEwMzc1NFoXDTI3MDcxODEwMzc1NFowGDEWMBQG
A1UEAxMNNjY5NzlmMDUtOGIyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKODADy4RQkGiFAT5nPM+P5FepVbZlVGPTdbW9aR1wAsAXiJEzf7LHoFF1dM
KG8HOgNaNY+k90JjebeuRUt7YBDp9ikv4EDCQOrR9xbtFqqvHoIFgEL178sNxTmj
QbYtQUoWO4N8QwgouaUBqusRBhphZsfPMkkUG6veneN2y63xp1uaDlRzMZNXawdG
fWDppuGZ7f0iqRYvkanlLiQrv9TNnxmYTlhYun9GGz4LmuiWPrsO3XD7m5jTRDvc
Q/XOeyQZyEL8mOBDL6YHnMspIcxEg+RL590NPlft8OzfJcTfjbA0xlmOziD04JMZ
Pexw9TEBXhBkx3svYGW7rqz82WMCAwEAAaOCArMwggKvMB0GA1UdDgQWBBTjbjWv
cLuD90PaaDjK5eRdb0TNvTAfBgNVHSMEGDAWgBSl8KK7i3nt1tN8B3rf6gglFMBC
DzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2Q0IxQkUvRjMyMjhFODZGMEVFMTFFRUEzQkUwRjU4Nzc1NDEyRTYvcGZDaXU0
dDU3ZGJUZkFkNjMtb0lKUlRBUWc4LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvcGZDaXU0dDU3ZGJUZkFkNjMtb0lKUlRBUWc4LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2Q0IxQkUvRjMyMjhFODZGMEVFMTFFRUEzQkUwRjU4Nzc1
NDEyRTYvQTFCNUFFRUM0NDI4MTFFRkEyNEFCMzQ3NzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAtBggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEAma06DAMAwQCZrT0AwQCZrT4
MA0GCSqGSIb3DQEBCwUAA4IBAQAfNpP1Ku5JYVNTEeK66e+Yl/yU/JelrG19UXOM
KyOqzUs+15Fhosjqej5mId4cM4XfFXe46HIkW5/SOqtEY91d2Kn6MP7SEgtu586i
6+EVDhYt/c9M+wmllb6vAg2qEglgB0hdN4/rP7VIYE1wNeeY9vXQbUvlFYjghJ+p
Btihi1UnyxTAFHub4PNV+/We4rvOsw9QhsHL9KN7Ej/dpKGewUIHLMCXPlrD8FXG
opc7h2gNiExj9E0Q89JkPkf78HVn2pfscVYNdI8/+YloF0B0D5kmcQ9fOBaMfuU/
t6WkhUVgK+RLhq+3Q9tYC4Dmfal2XcakaGJ1uz9LaN+FZSgB
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org