Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C6263998848011EFAA998A96762E951A.roa
File: C6263998848011EFAA998A96762E951A.roa (raw, json)
Hash identifier: 7pLiVykcpNB61b9uTOfPQKtdMaNQfNXZhZHjF5fDR2M=
Subject key identifier: FA:3E:E8:38:E5:E8:2F:DD:8C:D1:78:A5:FD:66:FD:0B:5A:E4:D6:72
Certificate issuer: /CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Certificate serial: 044A
Authority key identifier: BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C6263998848011EFAA998A96762E951A.roa
Signing time: Mon 07 Oct 2024 07:50:09 +0000
ROA not before: Mon 07 Oct 2024 07:50:05 +0000
ROA not after: Tue 31 Oct 2034 07:50:05 +0000
asID: 328537
IP address blocks: 102.36.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.mft
rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1098 (0x44a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D32D1AF/serialNumber=BF5D3F4DC9AF17F8BA73F55A1D72F3959C0518E2
Validity
Not Before: Oct 7 07:50:05 2024 GMT
Not After : Oct 31 07:50:05 2034 GMT
Subject: CN=670392b1-d361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:25:ba:61:f4:23:40:f2:9c:17:f2:77:79:4c:
62:f5:53:8c:9a:15:70:e9:fb:37:6b:2b:70:9c:a7:
be:ef:57:00:cc:93:ad:51:05:b3:c0:54:1a:0e:78:
ff:79:a9:02:68:73:8b:40:b1:6d:20:c9:fa:54:b1:
1c:16:97:5d:cc:41:7f:6c:e6:d3:a6:bc:5e:26:e1:
40:5f:d9:a9:e2:b3:ad:42:db:97:51:4c:56:5a:49:
c2:25:e5:2e:24:02:03:38:7e:1d:67:e2:31:22:93:
bc:78:ab:63:cf:73:b0:10:fc:68:8f:d5:7c:89:87:
78:29:ef:d5:6c:3a:ad:3d:60:fc:c3:8a:49:75:92:
24:37:50:bf:76:04:b5:3a:3c:15:3a:6c:2a:94:dd:
58:16:8d:d9:e6:5c:6b:89:33:e1:cf:23:3c:91:34:
70:ea:7f:2a:0e:83:34:db:78:98:25:c1:78:9a:d7:
a8:22:84:aa:cf:94:79:28:80:b2:ba:d4:de:c1:be:
a7:e1:98:68:e2:85:01:41:54:41:ca:02:c2:06:08:
be:2b:64:ac:31:71:ad:7c:c9:f5:24:9c:b8:0a:68:
39:23:59:76:09:c3:cc:af:8e:6d:06:1a:ee:26:c9:
04:28:44:86:9e:2f:ff:e2:e1:3d:00:08:f0:2d:92:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3E:E8:38:E5:E8:2F:DD:8C:D1:78:A5:FD:66:FD:0B:5A:E4:D6:72
X509v3 Authority Key Identifier:
keyid:BF:5D:3F:4D:C9:AF:17:F8:BA:73:F5:5A:1D:72:F3:95:9C:05:18:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/v10_TcmvF_i6c_VaHXLzlZwFGOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/v10_TcmvF_i6c_VaHXLzlZwFGOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D32D1/AD00932C407D11ECA8E59D0FD8A014CE/C6263998848011EFAA998A96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.172.0/24
Signature Algorithm: sha256WithRSAEncryption
52:e4:6c:0f:d3:fa:bc:57:85:47:af:81:4c:aa:62:9b:10:e4:
be:96:f0:a8:8e:26:8c:4e:54:27:ce:06:21:7e:fc:bc:46:df:
6c:41:20:ae:0e:da:e9:75:8f:c0:5c:27:5d:fb:a9:f0:e8:35:
f3:07:89:80:9a:40:0c:f8:a2:7e:00:09:a0:91:f8:95:ac:14:
eb:27:c4:79:29:db:b0:9a:35:3e:41:77:12:35:92:9d:45:78:
41:c3:59:b7:6c:06:5f:1d:98:87:90:80:3e:3e:ae:73:23:d9:
d5:c7:fe:38:4b:b4:df:75:b6:1c:32:5d:d9:ee:70:8d:43:ae:
9f:37:65:15:13:80:8a:00:94:3f:b1:39:6e:e4:b9:cb:1f:cd:
01:04:f9:ee:4e:31:24:30:74:52:5d:00:f2:07:5d:6f:45:70:
6b:cb:64:b7:f7:8e:7c:29:3d:66:d8:31:17:f9:d0:96:3d:2f:
6a:c0:29:95:05:98:f4:a5:eb:26:92:a5:29:47:19:49:48:d3:
78:02:0b:92:9f:3c:c1:6d:0b:0a:8a:93:50:d0:c7:81:94:0a:
48:84:96:ea:82:6e:b7:cc:0e:90:8c:e6:cc:21:fc:f9:5f:f6:
85:97:f6:1b:9d:2e:5e:80:4d:cb:f5:59:75:31:ee:cb:2e:8a:
bc:55:9a:20
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBEowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RDMyRDFBRjExMC8GA1UEBRMoQkY1RDNGNERDOUFGMTdGOEJBNzNGNTVBMUQ3MkYz
OTU5QzA1MThFMjAeFw0yNDEwMDcwNzUwMDVaFw0zNDEwMzEwNzUwMDVaMBgxFjAU
BgNVBAMTDTY3MDM5MmIxLWQzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDuJbph9CNA8pwX8nd5TGL1U4yaFXDp+zdrK3Ccp77vVwDMk61RBbPAVBoO
eP95qQJoc4tAsW0gyfpUsRwWl13MQX9s5tOmvF4m4UBf2anis61C25dRTFZaScIl
5S4kAgM4fh1n4jEik7x4q2PPc7AQ/GiP1XyJh3gp79VsOq09YPzDikl1kiQ3UL92
BLU6PBU6bCqU3VgWjdnmXGuJM+HPIzyRNHDqfyoOgzTbeJglwXia16gihKrPlHko
gLK61N7BvqfhmGjihQFBVEHKAsIGCL4rZKwxca18yfUknLgKaDkjWXYJw8yvjm0G
Gu4myQQoRIaeL//i4T0ACPAtkgojAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+j7o
OOXoL92M0Xil/Wb9C1rk1nIwHwYDVR0jBBgwFoAUv10/TcmvF/i6c/VaHXLzlZwF
GOIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQzMkQxL0FEMDA5MzJDNDA3RDExRUNBOEU1OUQwRkQ4QTAxNENFL3YxMF9U
Y212Rl9pNmNfVmFIWEx6bFp3RkdPSS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3YxMF9UY212Rl9pNmNfVmFIWEx6bFp3RkdPSS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQzMkQxL0FEMDA5MzJDNDA3RDExRUNBOEU1OUQwRkQ4
QTAxNENFL0M2MjYzOTk4ODQ4MDExRUZBQTk5OEE5Njc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmJKwwDQYJKoZIhvcNAQEL
BQADggEBAFLkbA/T+rxXhUevgUyqYpsQ5L6W8KiOJoxOVCfOBiF+/LxG32xBIK4O
2ul1j8BcJ137qfDoNfMHiYCaQAz4on4ACaCR+JWsFOsnxHkp27CaNT5BdxI1kp1F
eEHDWbdsBl8dmIeQgD4+rnMj2dXH/jhLtN91thwyXdnucI1Drp83ZRUTgIoAlD+x
OW7kucsfzQEE+e5OMSQwdFJdAPIHXW9FcGvLZLf3jnwpPWbYMRf50JY9L2rAKZUF
mPSl6yaSpSlHGUlI03gCC5KfPMFtCwqKk1DQx4GUCkiEluqCbrfMDpCM5swh/Plf
9oWX9hudLl6ATcv1WXUx7ssuirxVmiA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:27 2024 by rpki-client on console-ams.rpki-client.org