Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/00C3D6362E4D11EEB06088364AD9E6FC.roa
File: 00C3D6362E4D11EEB06088364AD9E6FC.roa (raw, json)
Hash identifier: rw0gKjx45H1KpSkimzgjXhymjdV69JdU6DKxdKKD+Og=
Subject key identifier: D5:AD:2E:04:B5:49:D2:71:24:88:FF:10:CA:F1:2C:85:F2:63:2B:9C
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 04AD
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/00C3D6362E4D11EEB06088364AD9E6FC.roa
Signing time: Sat 29 Jul 2023 20:17:56 +0000
ROA not before: Sat 29 Jul 2023 20:17:49 +0000
ROA not after: Sat 30 Jul 2033 20:17:49 +0000
asID: 37119
IP address blocks: 105.169.128.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1197 (0x4ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 20:17:49 2023 GMT
Not After : Jul 30 20:17:49 2033 GMT
Subject: CN=64c573f3-358a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:84:63:f0:e3:7d:6f:95:a5:53:34:5a:e4:93:
1d:08:a4:55:63:0e:7f:bd:f6:cf:0b:82:ff:98:8a:
d4:5c:b8:61:b9:d0:3d:45:30:e0:d2:65:c2:69:9c:
9d:35:a9:16:55:49:dd:3a:b5:16:5e:6e:1f:91:13:
8c:a1:a3:8e:90:45:4f:95:13:b5:cf:6f:b8:d0:f2:
05:35:26:6f:67:2c:46:41:bc:4d:dc:86:8a:eb:27:
04:d3:90:14:21:fb:28:53:2f:c4:4d:1d:db:99:2b:
5e:cb:d6:81:68:d6:04:ab:67:91:4f:3e:ea:8c:d4:
15:ed:77:46:ed:98:ae:b1:31:79:03:b8:92:81:c7:
8d:44:3b:d8:f6:fa:99:b4:d8:53:ae:8a:b3:0b:47:
de:9b:35:0c:f4:b5:8b:dd:c3:05:47:32:62:9f:e7:
dc:d3:c6:3c:b2:8b:32:21:c0:79:39:b8:d4:a6:96:
c9:3b:92:32:21:8c:0c:f4:5d:33:c4:b2:d0:99:5a:
19:c2:bd:6e:7b:46:f8:bc:a3:9c:85:f0:25:43:86:
ae:99:96:a3:68:45:8e:35:3c:7c:65:24:13:e8:69:
3e:ec:6e:9e:76:48:c9:57:d6:8e:10:92:eb:c0:61:
8b:bb:d8:84:58:43:d9:5d:df:a2:02:dc:22:49:a0:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:AD:2E:04:B5:49:D2:71:24:88:FF:10:CA:F1:2C:85:F2:63:2B:9C
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/00C3D6362E4D11EEB06088364AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.169.128.0/19
Signature Algorithm: sha256WithRSAEncryption
7b:c5:58:fe:03:67:21:56:62:f9:9f:04:53:09:3c:b0:64:ed:
47:d0:e9:fa:f0:55:fc:cc:cf:67:46:52:19:ed:45:c5:f2:88:
cf:de:3f:f1:da:09:e5:c6:e4:6f:1b:2e:2c:1c:7d:c9:00:cf:
71:c1:a5:83:42:01:07:16:28:da:dc:1a:f1:85:dd:4a:85:eb:
e0:26:d8:26:11:76:21:95:7d:0f:ae:a5:dd:c3:25:46:eb:33:
17:84:81:13:40:14:7c:56:13:97:16:11:27:c8:06:88:34:5f:
87:39:71:8f:84:08:ae:a1:7e:15:e8:e0:74:33:6e:73:b9:b6:
e7:57:a7:c1:28:b5:10:a2:5a:ab:6e:6a:0e:c7:7f:b5:5a:40:
3e:25:72:da:19:83:b6:a0:e0:03:e4:b9:6f:06:4c:17:a6:fc:
90:d0:11:95:b1:c6:65:7b:c8:12:36:d4:13:17:3e:40:f5:75:
14:b2:15:26:aa:b8:4d:5d:3e:68:72:b7:70:23:d2:64:a9:5f:
d8:2a:0b:33:f5:64:fa:97:c8:9f:be:9f:c2:3b:73:3f:d6:3f:
03:36:c4:82:e6:f8:f4:2e:22:17:e6:fa:56:71:51:66:31:6a:
66:d6:47:07:05:aa:1e:ab:6c:bc:90:10:01:67:cb:39:07:e6:
7c:df:84:a5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RDBGNTBBRjExMC8GA1UEBRMoQUU5OEE1RkRBRDJEQzlGNEZDMUJFNDdGNjY4NTdB
OEM0Nzk4ODEwMjAeFw0yMzA3MjkyMDE3NDlaFw0zMzA3MzAyMDE3NDlaMBgxFjAU
BgNVBAMTDTY0YzU3M2YzLTM1OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC7hGPw431vlaVTNFrkkx0IpFVjDn+99s8Lgv+YitRcuGG50D1FMODSZcJp
nJ01qRZVSd06tRZebh+RE4yho46QRU+VE7XPb7jQ8gU1Jm9nLEZBvE3chorrJwTT
kBQh+yhTL8RNHduZK17L1oFo1gSrZ5FPPuqM1BXtd0btmK6xMXkDuJKBx41EO9j2
+pm02FOuirMLR96bNQz0tYvdwwVHMmKf59zTxjyyizIhwHk5uNSmlsk7kjIhjAz0
XTPEstCZWhnCvW57Rvi8o5yF8CVDhq6ZlqNoRY41PHxlJBPoaT7sbp52SMlX1o4Q
kuvAYYu72IRYQ9ld36IC3CJJoHlBAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU1a0u
BLVJ0nEkiP8QyvEshfJjK5wwHwYDVR0jBBgwFoAUrpil/a0tyfT8G+R/ZoV6jEeY
gQIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4QUVBMjI4L3JwaWxf
YTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JwaWxfYTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4
QUVBMjI4LzAwQzNENjM2MkU0RDExRUVCMDYwODgzNjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAVpqYAwDQYJKoZIhvcNAQEL
BQADggEBAHvFWP4DZyFWYvmfBFMJPLBk7UfQ6frwVfzMz2dGUhntRcXyiM/eP/Ha
CeXG5G8bLiwcfckAz3HBpYNCAQcWKNrcGvGF3UqF6+Am2CYRdiGVfQ+upd3DJUbr
MxeEgRNAFHxWE5cWESfIBog0X4c5cY+ECK6hfhXo4HQzbnO5tudXp8EotRCiWqtu
ag7Hf7VaQD4lctoZg7ag4APkuW8GTBem/JDQEZWxxmV7yBI21BMXPkD1dRSyFSaq
uE1dPmhyt3Aj0mSpX9gqCzP1ZPqXyJ++n8I7cz/WPwM2xILm+PQuIhfm+lZxUWYx
ambWRwcFqh6rbLyQEAFnyzkH5nzfhKU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org