Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/678006082E4B11EE848CEB314AD9E6FC.roa
File: 678006082E4B11EE848CEB314AD9E6FC.roa (raw, json)
Hash identifier: cVFpkkWIxHSC7Gd9x7kYfzvWGMV10/oscamgD8qFKEU=
Subject key identifier: 78:42:70:61:63:42:5F:96:CD:87:34:AC:DA:BF:22:19:C8:3E:99:CB
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 04A3
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/678006082E4B11EE848CEB314AD9E6FC.roa
Signing time: Sat 29 Jul 2023 20:06:29 +0000
ROA not before: Sat 29 Jul 2023 20:06:25 +0000
ROA not after: Sat 30 Jul 2033 20:06:25 +0000
asID: 37119
IP address blocks: 105.168.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.mft
rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1187 (0x4a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Validity
Not Before: Jul 29 20:06:25 2023 GMT
Not After : Jul 30 20:06:25 2033 GMT
Subject: CN=64c57145-1d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:61:fe:93:ec:14:ed:fc:24:ae:9e:41:ba:
59:44:93:7b:98:b1:b6:7d:ea:c2:88:de:37:ad:6c:
a5:ba:3b:33:6f:e9:03:83:e6:3e:34:38:bf:db:c7:
4b:05:e6:5a:f1:27:c2:54:a9:95:52:d3:b3:6f:13:
0c:30:5c:8a:c9:ca:b4:19:cb:10:fa:00:c9:a8:e6:
a8:28:be:90:6b:03:3c:e8:d4:69:ac:0a:a3:9c:1a:
60:e3:1b:39:37:85:65:ef:5c:13:04:57:66:90:ef:
83:d1:7b:54:76:55:42:41:c4:83:0d:9d:66:e7:04:
cf:e5:04:15:79:8d:1b:fa:75:87:0e:d5:52:de:25:
40:fe:b8:ac:62:7d:9a:b5:bd:89:a2:bf:fd:a7:44:
24:13:ba:22:15:2f:20:4e:1b:c1:cc:48:7e:8c:b2:
fc:1e:0a:00:06:ab:37:d0:27:e5:a9:e9:e7:3a:03:
a3:a0:72:22:af:05:12:c1:45:5d:ca:e7:5e:64:5a:
62:58:39:b5:87:c2:0b:7b:b1:3b:08:a2:76:a2:05:
20:3a:4f:0b:3b:04:b2:ad:88:ab:72:51:60:41:bd:
29:51:00:c1:b0:46:cc:1a:f3:fb:7b:e1:61:9e:51:
87:10:a8:e7:ac:ef:90:5b:6f:a3:45:a1:70:16:d8:
81:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:42:70:61:63:42:5F:96:CD:87:34:AC:DA:BF:22:19:C8:3E:99:CB
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/678006082E4B11EE848CEB314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
105.168.0.0/16
Signature Algorithm: sha256WithRSAEncryption
04:0f:05:a6:e3:58:6f:eb:4c:9a:8c:11:8c:a7:9f:f6:fb:3d:
b0:33:9e:01:08:b2:e9:8e:88:d2:d6:be:10:ef:b6:ff:46:9d:
a7:ca:97:cb:39:30:4d:33:e7:dd:8c:c2:0c:38:a8:09:09:0b:
b5:47:8a:bb:d0:75:a7:ae:05:8b:87:ce:67:22:09:84:f2:99:
32:9f:ad:01:0e:73:41:fe:ec:5c:80:3d:fb:e5:ad:a3:9c:91:
f7:18:0e:4a:2f:3b:c1:28:79:ab:16:9f:df:b8:73:7a:63:bd:
4e:1d:49:e4:66:11:97:c5:35:c7:88:27:62:ac:77:c3:d5:f9:
85:9b:d7:3d:53:3d:41:eb:18:1c:c0:2d:20:e6:13:17:2d:dd:
04:c0:a3:59:74:13:b8:32:1f:29:f7:0b:95:19:d3:42:76:ba:
ca:7d:f0:4d:aa:37:09:e8:56:82:fa:58:0f:91:ec:06:e3:e9:
b2:68:3b:e2:e6:51:c9:87:3f:e5:75:64:d5:33:4f:18:44:95:
b6:7f:74:70:4c:64:38:93:67:03:81:cb:ec:1f:3f:7d:16:8f:
e9:df:8b:55:f3:73:f1:8b:15:39:46:5a:22:00:bf:74:8f:b0:
d6:37:a7:58:ea:c7:c5:7b:f9:80:b3:2f:ec:43:18:89:c1:83:
ea:6e:3e:f1
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RDBGNTBBRjExMC8GA1UEBRMoQUU5OEE1RkRBRDJEQzlGNEZDMUJFNDdGNjY4NTdB
OEM0Nzk4ODEwMjAeFw0yMzA3MjkyMDA2MjVaFw0zMzA3MzAyMDA2MjVaMBgxFjAU
BgNVBAMTDTY0YzU3MTQ1LTFkNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC3f2H+k+wU7fwkrp5BullEk3uYsbZ96sKI3jetbKW6OzNv6QOD5j40OL/b
x0sF5lrxJ8JUqZVS07NvEwwwXIrJyrQZyxD6AMmo5qgovpBrAzzo1GmsCqOcGmDj
Gzk3hWXvXBMEV2aQ74PRe1R2VUJBxIMNnWbnBM/lBBV5jRv6dYcO1VLeJUD+uKxi
fZq1vYmiv/2nRCQTuiIVLyBOG8HMSH6MsvweCgAGqzfQJ+Wp6ec6A6OgciKvBRLB
RV3K515kWmJYObWHwgt7sTsIonaiBSA6Tws7BLKtiKtyUWBBvSlRAMGwRswa8/t7
4WGeUYcQqOes75Bbb6NFoXAW2IEXAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUeEJw
YWNCX5bNhzSs2r8iGcg+mcswHwYDVR0jBBgwFoAUrpil/a0tyfT8G+R/ZoV6jEeY
gQIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4QUVBMjI4L3JwaWxf
YTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JwaWxfYTB0eWZUOEctUl9ab1Y2akVlWWdRSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQwRjUwLzVFQUFBNkI4MjU4RjExRUJCNzBCN0MxOUY4
QUVBMjI4LzY3ODAwNjA4MkU0QjExRUU4NDhDRUIzMTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBpqDANBgkqhkiG9w0BAQsF
AAOCAQEABA8FpuNYb+tMmowRjKef9vs9sDOeAQiy6Y6I0ta+EO+2/0adp8qXyzkw
TTPn3YzCDDioCQkLtUeKu9B1p64Fi4fOZyIJhPKZMp+tAQ5zQf7sXIA9++Wto5yR
9xgOSi87wSh5qxaf37hzemO9Th1J5GYRl8U1x4gnYqx3w9X5hZvXPVM9QesYHMAt
IOYTFy3dBMCjWXQTuDIfKfcLlRnTQna6yn3wTao3CehWgvpYD5HsBuPpsmg74uZR
yYc/5XVk1TNPGESVtn90cExkOJNnA4HL7B8/fRaP6d+LVfNz8YsVOUZaIgC/dI+w
1jenWOrHxXv5gLMv7EMYicGD6m4+8Q==
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:48:46 2024 by rpki-client on console-ams.rpki-client.org