Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/C752587A400B11EEBBC46D7B4AD9E6FC.roa
File: C752587A400B11EEBBC46D7B4AD9E6FC.roa (raw, json)
Hash identifier: vQTlaBoB3sy8/njOdOy98dV2tA4dWiTOvqnT9aoOp+I=
Subject key identifier: FD:C9:AB:37:D3:B7:05:2C:44:FA:6D:5D:6B:DD:E5:5E:02:7F:40:00
Certificate issuer: /CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Certificate serial: 65
Authority key identifier: A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/C752587A400B11EEBBC46D7B4AD9E6FC.roa
Signing time: Mon 21 Aug 2023 10:16:23 +0000
ROA not before: Mon 21 Aug 2023 10:16:20 +0000
ROA not after: Tue 24 Aug 2027 10:16:20 +0000
asID: 16509
IP address blocks: 102.135.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.mft
rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101 (0x65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D7FB7AF/serialNumber=A58A6D29114C881E005877279D95ABAA39EE141C
Validity
Not Before: Aug 21 10:16:20 2023 GMT
Not After : Aug 24 10:16:20 2027 GMT
Subject: CN=64e33977-1f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:94:50:91:cf:bd:6b:53:d8:96:1e:4d:a9:ba:
c7:47:49:55:ba:97:27:27:82:bb:61:28:34:51:15:
13:88:1a:e4:54:a7:40:1e:97:e9:2e:d6:56:ff:d5:
db:b0:f3:f1:94:21:a7:dd:95:35:4d:8e:19:ca:17:
f4:30:ee:a0:e8:3d:82:b6:08:d3:cd:00:56:c0:52:
14:56:2f:55:da:72:54:65:e2:af:1d:b6:b2:33:68:
1e:98:43:11:5d:05:08:53:15:49:00:ba:bc:a4:87:
fa:73:69:5a:ab:5d:39:85:96:d9:4e:a2:a5:bb:6b:
ad:a6:98:af:fa:cd:a9:b1:6e:e7:75:b0:ee:59:32:
d0:50:b1:01:90:d5:ef:e1:26:5c:27:ac:0e:7c:06:
b0:a8:2f:b3:e7:67:83:86:c6:4a:e7:fe:8f:0d:5c:
53:43:6a:cb:8c:3b:15:9b:ab:ac:8a:e2:04:e4:80:
cb:62:43:b1:d8:da:6a:f8:f9:5c:46:3a:f4:66:4b:
10:34:db:e0:c5:b5:69:e5:65:a0:b1:31:bb:6b:2a:
bb:23:d0:0c:6c:8a:38:55:51:b1:e7:0b:39:ea:b9:
74:e2:79:dd:28:1a:33:12:82:3e:12:49:f9:2d:6b:
a1:b2:5a:e0:c3:b5:41:8d:92:76:23:d4:3e:b0:fd:
38:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C9:AB:37:D3:B7:05:2C:44:FA:6D:5D:6B:DD:E5:5E:02:7F:40:00
X509v3 Authority Key Identifier:
keyid:A5:8A:6D:29:11:4C:88:1E:00:58:77:27:9D:95:AB:AA:39:EE:14:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/pYptKRFMiB4AWHcnnZWrqjnuFBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pYptKRFMiB4AWHcnnZWrqjnuFBw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D7FB7/8AC1C572F62C11EDA10D3B3A4AD9E6FC/C752587A400B11EEBBC46D7B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.181.0/24
Signature Algorithm: sha256WithRSAEncryption
53:0a:68:5b:d2:ef:aa:40:c4:d3:dc:f6:87:af:49:2a:a3:46:
4d:fa:4e:3f:8f:c7:f9:a4:2d:02:e1:ac:f2:13:ec:77:68:a1:
b0:cf:da:48:67:2a:20:e7:38:74:bf:2b:d1:c1:88:17:34:87:
4e:78:63:3a:9a:a3:b0:57:01:96:f9:1e:eb:0b:70:14:98:2b:
50:32:de:61:d1:77:58:26:4f:26:a5:86:20:39:ad:89:c6:a9:
d7:0a:fc:45:c6:d9:4e:09:8c:50:53:ff:4d:e2:e5:bc:73:e8:
31:ba:0e:4a:66:23:3f:c2:f3:aa:f3:06:01:c3:a8:8b:d9:cf:
70:89:6a:69:35:53:ab:95:1e:fc:f6:cb:1f:d8:fe:d4:65:ac:
3e:db:2e:98:f2:e7:aa:52:9d:62:5f:6a:68:fc:07:fe:9f:5c:
03:44:ca:d4:e0:7a:08:f7:6e:10:7f:1e:35:6d:55:5e:22:8d:
3b:c2:dd:00:2c:b7:d3:e9:35:2f:b3:6d:7a:5d:60:7f:cc:af:
c5:9a:4e:89:54:98:8f:3f:6b:c3:33:a8:e3:45:52:64:43:09:
4f:08:30:8a:4f:65:dd:48:7e:0f:d5:7e:22:41:64:4b:51:50:
ef:9a:51:4f:18:c4:9d:a4:f6:81:bb:38:79:af:9b:d4:c5:dd:
b7:05:d0:08
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBZTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZE
N0ZCN0FGMTEwLwYDVQQFEyhBNThBNkQyOTExNEM4ODFFMDA1ODc3Mjc5RDk1QUJB
QTM5RUUxNDFDMB4XDTIzMDgyMTEwMTYyMFoXDTI3MDgyNDEwMTYyMFowGDEWMBQG
A1UEAxMNNjRlMzM5NzctMWYwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKKUUJHPvWtT2JYeTam6x0dJVbqXJyeCu2EoNFEVE4ga5FSnQB6X6S7WVv/V
27Dz8ZQhp92VNU2OGcoX9DDuoOg9grYI080AVsBSFFYvVdpyVGXirx22sjNoHphD
EV0FCFMVSQC6vKSH+nNpWqtdOYWW2U6ipbtrraaYr/rNqbFu53Ww7lky0FCxAZDV
7+EmXCesDnwGsKgvs+dng4bGSuf+jw1cU0Nqy4w7FZurrIriBOSAy2JDsdjaavj5
XEY69GZLEDTb4MW1aeVloLExu2squyPQDGyKOFVRsecLOeq5dOJ53SgaMxKCPhJJ
+S1robJa4MO1QY2SdiPUPrD9ONECAwEAAaOCAqUwggKhMB0GA1UdDgQWBBT9yas3
07cFLET6bV1r3eVeAn9AADAfBgNVHSMEGDAWgBSlim0pEUyIHgBYdyedlauqOe4U
HDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RDdGQjcvOEFDMUM1NzJGNjJDMTFFREExMEQzQjNBNEFEOUU2RkMvcFlwdEtS
Rk1pQjRBV0hjbm5aV3Jxam51RkJ3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvcFlwdEtSRk1pQjRBV0hjbm5aV3Jxam51RkJ3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RDdGQjcvOEFDMUM1NzJGNjJDMTFFREExMEQzQjNBNEFE
OUU2RkMvQzc1MjU4N0E0MDBCMTFFRUJCQzQ2RDdCNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGaHtTANBgkqhkiG9w0BAQsF
AAOCAQEAUwpoW9LvqkDE09z2h69JKqNGTfpOP4/H+aQtAuGs8hPsd2ihsM/aSGcq
IOc4dL8r0cGIFzSHTnhjOpqjsFcBlvke6wtwFJgrUDLeYdF3WCZPJqWGIDmticap
1wr8RcbZTgmMUFP/TeLlvHPoMboOSmYjP8LzqvMGAcOoi9nPcIlqaTVTq5Ue/PbL
H9j+1GWsPtsumPLnqlKdYl9qaPwH/p9cA0TK1OB6CPduEH8eNW1VXiKNO8LdACy3
0+k1L7Ntel1gf8yvxZpOiVSYjz9rwzOo40VSZEMJTwgwik9l3Uh+D9V+IkFkS1FQ
75pRTxjEnaT2gbs4ea+b1MXdtwXQCA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 03:21:24 2024 by rpki-client on console-ams.rpki-client.org