Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/132EAD18DE7D11EB86A3C563F8AEA228.roa
File: 132EAD18DE7D11EB86A3C563F8AEA228.roa (raw, json)
Hash identifier: iZGBXlM3XPYurzi9+dHJxzDxI/7/keWoCIvY/ASFKFI=
Subject key identifier: 42:3A:01:7B:A5:F7:22:01:79:CE:17:8E:32:5A:3C:CF:A8:8D:3B:29
Certificate issuer: /CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Certificate serial: 08EE
Authority key identifier: 23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/132EAD18DE7D11EB86A3C563F8AEA228.roa
Signing time: Tue 06 Jul 2021 17:10:34 +0000
ROA not before: Tue 06 Jul 2021 17:10:28 +0000
ROA not after: Wed 31 Dec 2031 17:10:28 +0000
asID: 37394
IP address blocks: 2001:43f8:1180::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.mft
rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2286 (0x8ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D9B5BAF/serialNumber=23F814BB47D5C3AEDD5103F36F5DB8A29BE3D71D
Validity
Not Before: Jul 6 17:10:28 2021 GMT
Not After : Dec 31 17:10:28 2031 GMT
Subject: CN=60e48e8a-2567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c9:0b:d3:21:20:7a:69:7a:75:87:e0:93:f6:
60:31:fe:f2:6a:a1:97:00:b9:2c:a0:8c:3c:e8:7a:
b2:ef:82:91:63:67:99:df:62:67:30:ab:a6:31:6c:
70:4c:64:47:59:93:99:c5:d1:ac:5d:30:ce:12:97:
5e:1c:e2:72:b1:ad:c2:79:04:ac:b4:ed:5b:e9:e2:
9e:12:6c:54:e0:c5:60:66:9d:a1:f1:a8:aa:de:fb:
01:82:41:ae:ba:e4:b2:af:67:c2:5e:45:0b:91:58:
cc:35:f8:cb:19:ce:46:dd:5a:d6:21:e2:e3:d3:53:
d0:b8:e7:c5:76:33:da:c4:00:2c:a5:76:32:94:7b:
fc:eb:8f:e6:f8:92:c9:1a:03:58:03:05:39:01:51:
21:fd:d0:d8:c2:fa:4c:91:d2:e1:3b:e4:35:91:69:
9c:ff:6d:7d:bb:c9:c0:d6:e5:06:f2:ef:59:6f:7c:
1b:48:eb:4f:d4:ed:75:cb:ee:44:a0:92:92:d2:4b:
1c:de:db:78:d5:db:95:75:74:a7:d4:19:13:bf:40:
c0:ab:b4:cb:72:97:39:c0:57:44:a9:1e:22:dd:b2:
53:71:42:e7:55:05:c4:ff:f2:92:87:e5:a8:17:e0:
e5:c6:e6:79:8c:10:ea:e4:33:09:5d:42:c2:9c:88:
e3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3A:01:7B:A5:F7:22:01:79:CE:17:8E:32:5A:3C:CF:A8:8D:3B:29
X509v3 Authority Key Identifier:
keyid:23:F8:14:BB:47:D5:C3:AE:DD:51:03:F3:6F:5D:B8:A2:9B:E3:D7:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/I_gUu0fVw67dUQPzb124opvj1x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/I_gUu0fVw67dUQPzb124opvj1x0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D9B5B/9E1BD378135A11E5B68D4286F8AEA228/132EAD18DE7D11EB86A3C563F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:1180::/48
Signature Algorithm: sha256WithRSAEncryption
6d:b5:2d:7f:8e:4c:1f:7b:f5:d6:11:78:c4:d5:fc:36:78:02:
38:bd:dd:de:63:0c:c8:e8:21:b2:00:bf:2f:01:25:a9:0d:8b:
29:13:90:1c:8b:20:ba:53:77:4e:ac:a7:98:df:32:aa:06:31:
f5:52:36:8d:80:f4:2f:fe:e7:5c:64:29:f5:21:a2:aa:34:0b:
13:ec:c5:02:c7:b5:fd:9e:8f:ff:9d:b6:7b:79:aa:2c:6c:99:
84:d2:50:e8:5f:f3:58:c1:71:14:be:d9:1c:08:de:e4:70:49:
04:78:0d:4a:07:49:3a:dc:e6:2a:e9:bd:cb:57:5d:03:2c:dc:
38:f5:cd:5f:d2:92:06:9a:37:76:04:65:2f:45:13:a9:37:36:
4c:71:9d:88:dd:9b:9f:d5:13:17:c5:98:37:f1:3b:d9:88:75:
c1:25:56:30:d3:9a:c6:d5:98:b9:38:8b:9d:45:8d:0d:ba:fa:
f6:88:65:0a:7b:90:64:e5:b1:4a:0f:c5:46:fb:02:20:82:d1:
09:e6:13:de:a6:be:d2:ad:cb:11:d1:6f:3b:be:82:62:70:36:
3e:8d:2a:83:b9:97:d1:eb:f9:7e:c2:70:cd:3f:f9:a6:61:a1:
5f:d0:50:09:3a:ac:60:92:bc:3d:59:50:87:4c:4e:54:a0:d7:
b0:80:ca:6f
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RDlCNUJBRjExMC8GA1UEBRMoMjNGODE0QkI0N0Q1QzNBRURENTEwM0YzNkY1REI4
QTI5QkUzRDcxRDAeFw0yMTA3MDYxNzEwMjhaFw0zMTEyMzExNzEwMjhaMBgxFjAU
BgNVBAMTDTYwZTQ4ZThhLTI1NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDJyQvTISB6aXp1h+CT9mAx/vJqoZcAuSygjDzoerLvgpFjZ5nfYmcwq6Yx
bHBMZEdZk5nF0axdMM4Sl14c4nKxrcJ5BKy07Vvp4p4SbFTgxWBmnaHxqKre+wGC
Qa665LKvZ8JeRQuRWMw1+MsZzkbdWtYh4uPTU9C458V2M9rEACyldjKUe/zrj+b4
kskaA1gDBTkBUSH90NjC+kyR0uE75DWRaZz/bX27ycDW5Qby71lvfBtI60/U7XXL
7kSgkpLSSxze23jV25V1dKfUGRO/QMCrtMtylznAV0SpHiLdslNxQudVBcT/8pKH
5agX4OXG5nmMEOrkMwldQsKciOPXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQjoB
e6X3IgF5zheOMlo8z6iNOykwHwYDVR0jBBgwFoAUI/gUu0fVw67dUQPzb124opvj
1x0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkQ5QjVCLzlFMUJEMzc4MTM1QTExRTVCNjhENDI4NkY4QUVBMjI4L0lfZ1V1
MGZWdzY3ZFVRUHpiMTI0b3B2ajF4MC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0lfZ1V1MGZWdzY3ZFVRUHpiMTI0b3B2ajF4MC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkQ5QjVCLzlFMUJEMzc4MTM1QTExRTVCNjhENDI4NkY4
QUVBMjI4LzEzMkVBRDE4REU3RDExRUI4NkEzQzU2M0Y4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAUP4EYAwDQYJKoZIhvcN
AQELBQADggEBAG21LX+OTB979dYReMTV/DZ4Aji93d5jDMjoIbIAvy8BJakNiykT
kByLILpTd06sp5jfMqoGMfVSNo2A9C/+51xkKfUhoqo0CxPsxQLHtf2ej/+dtnt5
qixsmYTSUOhf81jBcRS+2RwI3uRwSQR4DUoHSTrc5irpvctXXQMs3Dj1zV/Skgaa
N3YEZS9FE6k3NkxxnYjdm5/VExfFmDfxO9mIdcElVjDTmsbVmLk4i51FjQ26+vaI
ZQp7kGTlsUoPxUb7AiCC0QnmE96mvtKtyxHRbzu+gmJwNj6NKoO5l9Hr+X7CcM0/
+aZhoV/QUAk6rGCSvD1ZUIdMTlSg17CAym8=
-----END CERTIFICATE-----
Generated at Wed Apr 24 01:56:23 2024 by rpki-client on console-ams.rpki-client.org