Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/27E171828AA611EEAADC55514AD9E6FC.roa
File: 27E171828AA611EEAADC55514AD9E6FC.roa (raw, json)
Hash identifier: 09dXVAcpXBeumVd3ejmIXPVt6jsUIfxATFT48+wvgGE=
Subject key identifier: E7:44:47:11:FC:41:5B:47:86:4E:02:6C:9A:6F:CC:26:5D:56:7B:4A
Certificate issuer: /CN=F36CB8DFAF/serialNumber=1C80131916F2855CB17435CBAEF2668DE15596C1
Certificate serial: 03
Authority key identifier: 1C:80:13:19:16:F2:85:5C:B1:74:35:CB:AE:F2:66:8D:E1:55:96:C1
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HIATGRbyhVyxdDXLrvJmjeFVlsE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/27E171828AA611EEAADC55514AD9E6FC.roa
Signing time: Fri 24 Nov 2023 08:47:53 +0000
ROA not before: Fri 24 Nov 2023 08:47:50 +0000
ROA not after: Sun 31 Dec 2045 08:47:50 +0000
asID: 37085
IP address blocks: 196.216.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/HIATGRbyhVyxdDXLrvJmjeFVlsE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/HIATGRbyhVyxdDXLrvJmjeFVlsE.mft
rsync://rpki.afrinic.net/repository/afrinic/HIATGRbyhVyxdDXLrvJmjeFVlsE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB8DFAF/serialNumber=1C80131916F2855CB17435CBAEF2668DE15596C1
Validity
Not Before: Nov 24 08:47:50 2023 GMT
Not After : Dec 31 08:47:50 2045 GMT
Subject: CN=65606339-2ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2e:90:55:52:f3:46:54:03:8b:93:e3:88:c2:
65:66:52:83:6c:4c:2c:2a:cb:74:df:4c:00:1b:10:
8b:43:91:47:a6:03:49:ed:c6:1f:ec:32:d8:a1:10:
85:5d:ce:d6:6b:bd:40:93:87:ab:6e:fa:6c:05:f2:
e0:77:e8:55:a1:7b:d2:ff:f0:8f:20:2d:1e:4b:53:
e7:8c:f5:74:f6:25:a9:3a:1a:28:32:69:40:0b:50:
cf:8f:b2:c7:e3:6f:5f:92:a9:07:24:bc:60:d0:b1:
09:94:8a:74:62:97:fb:ee:26:a4:b6:10:a3:f3:da:
b7:24:96:d1:9f:7b:2a:63:cb:f2:36:11:96:f0:dd:
f8:71:25:58:1d:77:a8:e0:f6:08:f2:09:1b:49:80:
2d:4b:c9:e8:5a:f3:36:f2:06:09:47:55:ee:80:67:
0d:70:94:aa:87:aa:49:55:1a:58:88:7b:bb:de:9a:
c7:83:e3:2b:d3:cc:fc:88:07:59:83:9c:22:ab:0d:
67:91:6a:de:ac:6f:3b:0e:28:55:c0:a4:78:e3:bf:
36:30:e6:70:87:2a:5b:8d:9b:92:65:6f:42:a4:ae:
35:5b:82:5c:6f:10:f5:b4:c3:cc:95:2d:80:cd:54:
ef:3c:d5:d2:fe:54:f5:d7:59:ed:30:f9:db:6a:73:
fe:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:44:47:11:FC:41:5B:47:86:4E:02:6C:9A:6F:CC:26:5D:56:7B:4A
X509v3 Authority Key Identifier:
keyid:1C:80:13:19:16:F2:85:5C:B1:74:35:CB:AE:F2:66:8D:E1:55:96:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/HIATGRbyhVyxdDXLrvJmjeFVlsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HIATGRbyhVyxdDXLrvJmjeFVlsE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB8DF/54C57C588A4611EE8FFA9F0E4AD9E6FC/27E171828AA611EEAADC55514AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.216.247.0/24
Signature Algorithm: sha256WithRSAEncryption
57:5d:63:e0:41:0d:ad:68:d3:b3:ce:1f:54:3d:be:80:16:23:
1c:a5:96:6f:8b:e1:c2:16:c6:f0:a6:71:5e:f5:cc:83:6a:79:
b2:06:30:71:3c:85:7a:08:2a:d9:6c:37:17:67:74:a6:ea:f0:
09:9e:f3:bb:01:82:d2:fa:7e:7f:ca:b0:bd:87:5f:46:4a:03:
7d:f4:b4:a7:d2:9d:ea:d9:e3:96:27:ce:a4:bb:2f:1d:57:32:
08:bf:5a:7b:53:1f:a5:35:4c:36:78:6d:a0:e4:9b:fb:40:b3:
b8:46:21:b5:d9:04:df:00:c0:14:09:cd:bb:6d:c2:d7:a7:d0:
45:d2:e8:42:34:09:ba:80:f0:aa:50:81:8e:8b:75:05:08:f2:
ff:a2:24:e3:40:17:08:6e:05:85:18:b3:48:df:0c:59:6a:46:
25:e1:6b:ae:ab:82:9e:ee:ba:e8:f4:bf:8c:69:10:7b:77:9b:
fe:27:0d:11:3f:c5:fa:b8:7b:6c:7f:1c:81:62:a0:44:67:26:
fd:a0:48:78:6c:6c:9b:7b:b4:bd:d0:4b:a0:be:97:86:3d:ff:
02:e9:9c:63:9e:fe:d4:9d:14:ae:d2:1c:19:91:04:e0:07:15:
74:9f:59:b6:8e:15:63:18:fc:8a:b9:16:bb:4c:07:fa:b3:e8:
98:91:dc:29
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
QjhERkFGMTEwLwYDVQQFEygxQzgwMTMxOTE2RjI4NTVDQjE3NDM1Q0JBRUYyNjY4
REUxNTU5NkMxMB4XDTIzMTEyNDA4NDc1MFoXDTQ1MTIzMTA4NDc1MFowGDEWMBQG
A1UEAxMNNjU2MDYzMzktMmNlMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKYukFVS80ZUA4uT44jCZWZSg2xMLCrLdN9MABsQi0ORR6YDSe3GH+wy2KEQ
hV3O1mu9QJOHq276bAXy4HfoVaF70v/wjyAtHktT54z1dPYlqToaKDJpQAtQz4+y
x+NvX5KpByS8YNCxCZSKdGKX++4mpLYQo/PatySW0Z97KmPL8jYRlvDd+HElWB13
qOD2CPIJG0mALUvJ6FrzNvIGCUdV7oBnDXCUqoeqSVUaWIh7u96ax4PjK9PM/IgH
WYOcIqsNZ5Fq3qxvOw4oVcCkeOO/NjDmcIcqW42bkmVvQqSuNVuCXG8Q9bTDzJUt
gM1U7zzV0v5U9ddZ7TD522pz/nUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTnREcR
/EFbR4ZOAmyab8wmXVZ7SjAfBgNVHSMEGDAWgBQcgBMZFvKFXLF0Ncuu8maN4VWW
wTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2Q0I4REYvNTRDNTdDNTg4QTQ2MTFFRThGRkE5RjBFNEFEOUU2RkMvSElBVEdS
YnloVnl4ZERYTHJ2Sm1qZUZWbHNFLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvSElBVEdSYnloVnl4ZERYTHJ2Sm1qZUZWbHNFLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2Q0I4REYvNTRDNTdDNTg4QTQ2MTFFRThGRkE5RjBFNEFE
OUU2RkMvMjdFMTcxODI4QUE2MTFFRUFBREM1NTUxNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMTY9zANBgkqhkiG9w0BAQsF
AAOCAQEAV11j4EENrWjTs84fVD2+gBYjHKWWb4vhwhbG8KZxXvXMg2p5sgYwcTyF
eggq2Ww3F2d0purwCZ7zuwGC0vp+f8qwvYdfRkoDffS0p9Kd6tnjlifOpLsvHVcy
CL9ae1MfpTVMNnhtoOSb+0CzuEYhtdkE3wDAFAnNu23C16fQRdLoQjQJuoDwqlCB
jot1BQjy/6Ik40AXCG4FhRizSN8MWWpGJeFrrquCnu666PS/jGkQe3eb/icNET/F
+rh7bH8cgWKgRGcm/aBIeGxsm3u0vdBLoL6Xhj3/AumcY57+1J0UrtIcGZEE4AcV
dJ9Zto4VYxj8irkWu0wH+rPomJHcKQ==
-----END CERTIFICATE-----
Generated at Sat Jun 1 04:07:18 2024 by rpki-client on console-ams.rpki-client.org