Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A3A3B4084A9411EEB1DF22834AD9E6FC.roa
File: A3A3B4084A9411EEB1DF22834AD9E6FC.roa (raw, json)
Hash identifier: 7/28k1jbRMHbMuR0caeZhrzprYSpaTkK0NUr0sw7sfI=
Subject key identifier: 64:C1:02:54:38:74:D1:9F:C2:00:BE:34:77:4A:A6:EF:8B:4B:68:93
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 87
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A3A3B4084A9411EEB1DF22834AD9E6FC.roa
Signing time: Sun 03 Sep 2023 20:01:16 +0000
ROA not before: Sun 03 Sep 2023 20:01:12 +0000
ROA not after: Wed 15 Sep 2027 20:01:12 +0000
asID: 328344
IP address blocks: 102.217.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 21 Feb 2025 02:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135 (0x87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF
Validity
Not Before: Sep 3 20:01:12 2023 GMT
Not After : Sep 15 20:01:12 2027 GMT
Subject: CN=64f4e60c-fcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:73:7e:24:0a:38:fe:ae:2c:8d:3b:50:a1:6e:
40:0e:cb:d8:bc:42:94:8a:cc:e8:33:b4:63:bc:8e:
f1:4d:86:f5:6b:77:7c:3d:7c:1b:f8:cb:17:e0:25:
7e:21:25:a4:79:0e:17:ce:5d:2e:4f:c5:c0:36:73:
ec:5b:d6:25:81:87:55:5e:67:f0:1a:54:87:b6:b8:
6a:ff:f8:25:2f:a4:44:79:78:fb:b9:c0:97:44:f7:
2c:4e:c9:82:df:31:9d:db:68:da:f7:a1:d6:d9:41:
5b:92:96:7f:f4:e5:f5:76:95:7a:e7:67:b8:9e:b0:
44:01:13:d6:8f:24:2e:1f:c0:55:43:19:c5:8c:a3:
a2:c0:21:2a:00:25:88:c5:4b:28:33:02:48:ef:e7:
1d:1b:4d:12:5a:4b:a7:de:f7:cf:7a:06:68:e6:d4:
fe:a2:3b:cd:b1:62:26:ab:e7:88:d4:0e:32:9a:7b:
d2:ee:d3:94:2e:a0:d9:99:fd:f7:90:8a:7a:f6:d9:
93:04:ae:8d:3c:63:c6:7c:5a:36:c6:2d:e9:03:68:
d5:9a:92:bc:0b:20:de:6f:b4:b9:b9:5f:a6:fe:b8:
13:d0:05:86:3f:aa:f1:62:25:27:6d:86:93:cb:44:
e6:67:c2:0c:b1:0e:d4:3a:f5:76:41:0d:ba:7a:41:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C1:02:54:38:74:D1:9F:C2:00:BE:34:77:4A:A6:EF:8B:4B:68:93
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A3A3B4084A9411EEB1DF22834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.17.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:82:36:e3:43:fb:33:62:35:49:f1:ba:0f:c2:e2:61:78:6f:
b2:b9:41:5e:19:33:41:05:d4:7b:d3:00:d2:a9:6a:57:2a:7b:
ab:c0:b4:ad:f1:f4:de:d7:d0:45:64:35:4a:3d:16:68:95:db:
17:8a:d4:2e:db:a8:00:d2:6a:0a:f8:ff:00:28:97:54:da:84:
8c:ed:99:2d:07:35:58:08:35:00:04:c8:06:a7:24:a9:bb:07:
c4:bb:a4:a8:b8:5e:ad:9f:d1:2b:e1:46:76:e1:9c:59:44:d2:
f0:f6:8e:ab:ea:1b:d8:d5:69:38:8d:76:ea:44:6f:ad:ec:db:
e2:ac:22:41:9a:fe:9a:98:5a:8b:46:15:94:e0:5a:8b:64:2c:
19:99:54:4b:d9:7a:58:2c:30:92:13:d8:8c:be:5c:34:0b:ba:
7d:b2:72:1e:90:ff:d7:a8:08:55:89:7c:49:b1:59:97:5f:04:
89:06:82:86:19:72:df:1a:a2:b4:2c:7a:9e:60:94:c4:98:7d:
ef:58:f4:c1:a3:7f:a8:44:a7:0d:f9:2c:c4:5e:99:34:fa:98:
c7:6f:4a:fd:e9:77:9b:f2:1d:c0:0e:f6:10:95:7c:e4:d4:04:
3a:6d:5e:7d:85:fe:11:50:69:2f:22:8d:64:63:d3:9c:cd:64:
8e:4d:cb:61
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RDdGQjdBRjExMC8GA1UEBRMoQTU4QTZEMjkxMTRDODgxRTAwNTg3NzI3OUQ5NUFC
QUEzOUVFMTQxQzAeFw0yMzA5MDMyMDAxMTJaFw0yNzA5MTUyMDAxMTJaMBgxFjAU
BgNVBAMTDTY0ZjRlNjBjLWZjZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCnc34kCjj+riyNO1ChbkAOy9i8QpSKzOgztGO8jvFNhvVrd3w9fBv4yxfg
JX4hJaR5DhfOXS5PxcA2c+xb1iWBh1VeZ/AaVIe2uGr/+CUvpER5ePu5wJdE9yxO
yYLfMZ3baNr3odbZQVuSln/05fV2lXrnZ7iesEQBE9aPJC4fwFVDGcWMo6LAISoA
JYjFSygzAkjv5x0bTRJaS6fe9896Bmjm1P6iO82xYiar54jUDjKae9Lu05QuoNmZ
/feQinr22ZMEro08Y8Z8WjbGLekDaNWakrwLIN5vtLm5X6b+uBPQBYY/qvFiJSdt
hpPLROZnwgyxDtQ69XZBDbp6QfPvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUZMEC
VDh00Z/CAL40d0qm74tLaJMwHwYDVR0jBBgwFoAUpYptKRFMiB4AWHcnnZWrqjnu
FBwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQ3RkI3LzhBQzFDNTcyRjYyQzExRURBMTBEM0IzQTRBRDlFNkZDL3BZcHRL
UkZNaUI0QVdIY25uWldycWpudUZCdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3BZcHRLUkZNaUI0QVdIY25uWldycWpudUZCdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQ3RkI3LzhBQzFDNTcyRjYyQzExRURBMTBEM0IzQTRB
RDlFNkZDL0EzQTNCNDA4NEE5NDExRUVCMURGMjI4MzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm2REwDQYJKoZIhvcNAQEL
BQADggEBAMeCNuND+zNiNUnxug/C4mF4b7K5QV4ZM0EF1HvTANKpalcqe6vAtK3x
9N7X0EVkNUo9FmiV2xeK1C7bqADSagr4/wAol1TahIztmS0HNVgINQAEyAanJKm7
B8S7pKi4Xq2f0SvhRnbhnFlE0vD2jqvqG9jVaTiNdupEb63s2+KsIkGa/pqYWotG
FZTgWotkLBmZVEvZelgsMJIT2Iy+XDQLun2ych6Q/9eoCFWJfEmxWZdfBIkGgoYZ
ct8aorQsep5glMSYfe9Y9MGjf6hEpw35LMRemTT6mMdvSv3pd5vyHcAO9hCVfOTU
BDptXn2F/hFQaS8ijWRj05zNZI5Ny2E=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:43 2025 by rpki-client