Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A632A7524A9311EEA933AC7F4AD9E6FC.roa
File: A632A7524A9311EEA933AC7F4AD9E6FC.roa (raw, json)
Hash identifier: 989QeyV0tCLRIDQrSwFN7hoE8gXvYUy2ldXlV1YkXGI=
Subject key identifier: 8C:83:18:C2:3F:A7:2E:83:CA:1F:51:19:9C:81:88:15:90:C2:76:37
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 7D
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A632A7524A9311EEA933AC7F4AD9E6FC.roa
Signing time: Sun 03 Sep 2023 19:54:10 +0000
ROA not before: Sun 03 Sep 2023 19:54:07 +0000
ROA not after: Wed 15 Sep 2027 19:54:07 +0000
asID: 328344
IP address blocks: 102.135.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Validity
Not Before: Sep 3 19:54:07 2023 GMT
Not After : Sep 15 19:54:07 2027 GMT
Subject: CN=64f4e462-a800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1a:5c:09:b2:00:1d:49:31:51:81:eb:99:8f:
86:65:b1:69:2b:b7:d7:b5:e7:d5:99:6f:52:cf:19:
6c:35:27:08:20:f5:76:c8:fa:d6:04:4a:4d:72:97:
25:e1:60:c8:e4:1f:76:24:e2:38:90:d9:e2:ef:4d:
48:3f:6a:5b:73:a4:38:8f:67:fd:a1:e0:59:de:26:
4c:fd:8a:27:23:3e:da:3e:1e:ab:9e:b0:10:83:71:
41:15:2f:a9:f3:da:ad:c2:10:a5:cc:e1:dc:a0:d5:
68:3f:00:c7:2b:87:73:55:c5:b7:e9:36:08:f0:de:
fc:df:a4:fd:4e:48:22:c1:3c:ef:96:57:32:96:31:
5a:cc:26:63:f0:ec:d8:fc:d0:20:bf:7d:60:09:9b:
54:6e:b2:0d:6e:5f:37:fc:a9:94:25:41:33:e2:d3:
84:b2:4c:e8:89:38:2e:29:4f:57:86:dd:05:20:ed:
d4:97:06:88:77:32:1f:74:a1:97:a3:18:04:14:31:
56:ef:be:ce:d0:43:05:47:16:fe:27:fc:38:15:b6:
34:a8:9c:34:ef:14:9c:c7:43:85:8f:0a:7c:d9:b5:
0e:78:3e:7d:17:da:8d:f8:84:7b:26:b2:29:db:9b:
46:13:7c:96:56:de:33:2d:d6:42:47:6a:74:eb:bf:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:83:18:C2:3F:A7:2E:83:CA:1F:51:19:9C:81:88:15:90:C2:76:37
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/A632A7524A9311EEA933AC7F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.181.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:a5:2a:5c:19:a8:13:e2:9b:91:ff:21:66:22:b9:ab:2d:66:
d4:5b:42:e9:51:1f:ca:94:28:23:cb:d2:a4:ad:7c:56:0f:d2:
2d:29:89:7b:0e:cb:9f:8e:de:2f:54:12:51:d8:ae:3c:59:89:
5d:74:ff:81:e9:24:6d:a6:1a:58:43:07:a8:56:2e:8d:42:49:
fd:a9:b0:6c:ec:41:dc:e9:52:60:85:7d:55:17:8b:83:62:a5:
b0:80:22:12:4e:ba:bb:d1:bd:92:ee:e5:2a:b2:e8:72:53:c7:
68:d2:5e:8a:f5:d7:23:34:95:8d:1c:78:d4:06:4e:84:e7:e2:
9d:90:94:3d:bb:d2:8b:91:7e:7a:ef:0b:85:a6:1f:3f:09:d3:
4b:6a:ed:e5:36:be:08:4f:cf:9b:7d:17:70:96:23:36:70:0f:
03:26:0a:be:c3:ec:5c:a8:3e:33:59:8d:c4:40:bc:24:dd:34:
0f:67:7e:c9:04:2a:ba:73:d7:54:1b:72:a4:91:ec:42:24:63:
7b:30:8f:e6:c1:5d:23:f9:5f:8a:66:49:ad:dc:35:88:49:97:
4d:39:60:6a:a6:99:43:f7:49:b3:20:ab:07:53:55:63:f5:bd:
8a:5d:dd:77:0f:92:f7:e6:55:f6:2e:68:2d:5f:f8:f6:88:0a:
5a:21:5d:66
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBfTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZE
N0ZCN0FGMTEwLwYDVQQFEyhBNThBNkQyOTExNEM4ODFFMDA1ODc3Mjc5RDk1QUJB
QTM5RUUxNDFDMB4XDTIzMDkwMzE5NTQwN1oXDTI3MDkxNTE5NTQwN1owGDEWMBQG
A1UEAxMNNjRmNGU0NjItYTgwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN4aXAmyAB1JMVGB65mPhmWxaSu317Xn1ZlvUs8ZbDUnCCD1dsj61gRKTXKX
JeFgyOQfdiTiOJDZ4u9NSD9qW3OkOI9n/aHgWd4mTP2KJyM+2j4eq56wEINxQRUv
qfParcIQpczh3KDVaD8AxyuHc1XFt+k2CPDe/N+k/U5IIsE875ZXMpYxWswmY/Ds
2PzQIL99YAmbVG6yDW5fN/yplCVBM+LThLJM6Ik4LilPV4bdBSDt1JcGiHcyH3Sh
l6MYBBQxVu++ztBDBUcW/if8OBW2NKicNO8UnMdDhY8KfNm1Dng+fRfajfiEeyay
KdubRhN8llbeMy3WQkdqdOu/kVMCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBSMgxjC
P6cug8ofURmcgYgVkMJ2NzAfBgNVHSMEGDAWgBSlim0pEUyIHgBYdyedlauqOe4U
HDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RDdGQjcvOEFDMUM1NzJGNjJDMTFFREExMEQzQjNBNEFEOUU2RkMvcFlwdEtS
Rk1pQjRBV0hjbm5aV3Jxam51RkJ3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvcFlwdEtSRk1pQjRBV0hjbm5aV3Jxam51RkJ3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RDdGQjcvOEFDMUM1NzJGNjJDMTFFREExMEQzQjNBNEFE
OUU2RkMvQTYzMkE3NTI0QTkzMTFFRUE5MzNBQzdGNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGaHtTANBgkqhkiG9w0BAQsF
AAOCAQEAbqUqXBmoE+Kbkf8hZiK5qy1m1FtC6VEfypQoI8vSpK18Vg/SLSmJew7L
n47eL1QSUdiuPFmJXXT/gekkbaYaWEMHqFYujUJJ/amwbOxB3OlSYIV9VReLg2Kl
sIAiEk66u9G9ku7lKrLoclPHaNJeivXXIzSVjRx41AZOhOfinZCUPbvSi5F+eu8L
haYfPwnTS2rt5Ta+CE/Pm30XcJYjNnAPAyYKvsPsXKg+M1mNxEC8JN00D2d+yQQq
unPXVBtypJHsQiRjezCP5sFdI/lfimZJrdw1iEmXTTlgaqaZQ/dJsyCrB1NVY/W9
il3ddw+S9+ZV9i5oLV/49ogKWiFdZg==
-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org