Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/91DA0C3CF08F11ECA3387197F1222468.roa
File: 91DA0C3CF08F11ECA3387197F1222468.roa (raw, json)
Hash identifier: m3NCW8i2F16lSabUpSi4fXD8AQaLmw9scRn5comU59s=
Subject key identifier: 22:09:20:5E:7A:7C:42:C7:DC:B6:82:FE:A7:7E:B2:20:F2:14:73:70
Certificate issuer: /CN=F36DCAE3AF/serialNumber=01A371D487B5D552E44D4BBEC956AB96C32581ED
Certificate serial: 05
Authority key identifier: 01:A3:71:D4:87:B5:D5:52:E4:4D:4B:BE:C9:56:AB:96:C3:25:81:ED
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/AaNx1Ie11VLkTUu-yVarlsMlge0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/91DA0C3CF08F11ECA3387197F1222468.roa
Signing time: Mon 20 Jun 2022 11:53:16 +0000
ROA not before: Mon 20 Jun 2022 11:53:13 +0000
ROA not after: Fri 31 Dec 2032 11:53:13 +0000
asID: 29286
IP address blocks: 102.216.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/AaNx1Ie11VLkTUu-yVarlsMlge0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/AaNx1Ie11VLkTUu-yVarlsMlge0.mft
rsync://rpki.afrinic.net/repository/afrinic/AaNx1Ie11VLkTUu-yVarlsMlge0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DCAE3AF/serialNumber=01A371D487B5D552E44D4BBEC956AB96C32581ED
Validity
Not Before: Jun 20 11:53:13 2022 GMT
Not After : Dec 31 11:53:13 2032 GMT
Subject: CN=62b05fac-025b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:96:5a:33:72:52:61:59:89:d8:13:2f:07:
be:91:b3:06:03:7a:b0:f9:7e:8b:4b:16:41:22:04:
a0:41:f8:a1:76:66:66:12:48:8f:3d:da:9d:12:4b:
9a:f2:38:16:06:98:29:a8:78:08:7c:b0:0a:25:6f:
b5:b0:37:7e:d7:01:bb:6b:61:98:23:69:d3:8d:bc:
c4:44:6c:5f:a3:11:a6:a0:f2:bd:2f:81:c8:f8:b5:
3c:7a:94:d1:13:df:5d:cb:e5:fa:5e:56:3d:b9:5c:
af:44:c3:0c:b9:4d:de:f2:3c:4d:e7:3e:b5:88:b6:
3a:98:23:05:fb:03:56:29:97:fc:96:65:0e:c7:85:
e1:1f:3f:ca:c0:a5:0f:91:47:5f:03:bb:8f:75:3c:
84:45:84:84:92:5f:1a:2a:5c:97:b6:69:3c:6f:86:
5a:00:73:a0:69:72:f3:f6:eb:09:34:40:f5:83:46:
5a:32:38:3d:7c:18:6b:f3:18:e6:48:74:68:62:3d:
0b:15:3a:81:0a:fd:b5:59:a2:77:e3:3d:b0:9a:94:
b9:28:69:9c:dc:b0:75:74:c3:45:44:85:29:ce:cd:
c5:0e:69:83:98:1f:d8:8b:0d:65:59:b4:18:91:91:
21:fc:7a:52:93:f8:4c:a1:d1:a9:ba:ad:a7:7f:55:
55:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:09:20:5E:7A:7C:42:C7:DC:B6:82:FE:A7:7E:B2:20:F2:14:73:70
X509v3 Authority Key Identifier:
keyid:01:A3:71:D4:87:B5:D5:52:E4:4D:4B:BE:C9:56:AB:96:C3:25:81:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/AaNx1Ie11VLkTUu-yVarlsMlge0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/AaNx1Ie11VLkTUu-yVarlsMlge0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DCAE3/830D63FAF08C11EC92201A8EF1222468/91DA0C3CF08F11ECA3387197F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.38.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:20:7c:3a:b5:6a:74:e7:fd:6c:6c:96:0c:dc:20:c5:a5:93:
f1:a0:3c:07:41:29:f6:57:34:87:c8:dc:7c:6a:b4:c7:8b:6b:
19:4a:97:6d:f6:f0:27:12:13:7b:83:f2:3c:f5:23:69:7c:11:
d5:12:1f:16:aa:f4:e4:cb:20:03:dc:a8:b2:c2:77:4e:19:a1:
2f:97:a3:d9:f6:4d:d4:e0:85:1a:a8:46:96:43:31:1e:50:2c:
a2:bb:90:91:f0:b1:47:fb:46:09:76:9a:4b:a4:2d:8a:51:23:
3e:6b:c5:ce:f5:a7:53:da:e7:6f:33:97:c7:db:3d:0f:f1:ce:
55:c0:46:fd:25:22:b5:6a:9d:31:33:c8:21:37:c9:89:20:b7:
98:68:ee:da:b1:89:81:10:29:a2:e8:b0:67:f5:e9:6d:da:b0:
73:61:fd:10:e9:9d:42:07:1d:91:ee:cd:f8:b6:03:1a:2b:e6:
96:fc:ca:c9:c3:e6:21:98:e8:87:d0:da:00:bf:72:c5:83:44:
f7:d8:4e:8e:ab:95:4f:9d:35:07:29:5f:9a:eb:6d:aa:63:31:
d0:4c:1d:f2:50:61:36:22:34:b8:c2:db:4f:69:98:33:92:17:
e1:d1:07:06:47:db:26:6d:ac:9c:0d:89:93:cb:5d:09:e5:b3:
06:b1:39:c2
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzZE
Q0FFM0FGMTEwLwYDVQQFEygwMUEzNzFENDg3QjVENTUyRTQ0RDRCQkVDOTU2QUI5
NkMzMjU4MUVEMB4XDTIyMDYyMDExNTMxM1oXDTMyMTIzMTExNTMxM1owGDEWMBQG
A1UEAwwNNjJiMDVmYWMtMDI1YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALOdllozclJhWYnYEy8HvpGzBgN6sPl+i0sWQSIEoEH4oXZmZhJIjz3anRJL
mvI4FgaYKah4CHywCiVvtbA3ftcBu2thmCNp0428xERsX6MRpqDyvS+ByPi1PHqU
0RPfXcvl+l5WPblcr0TDDLlN3vI8Tec+tYi2OpgjBfsDVimX/JZlDseF4R8/ysCl
D5FHXwO7j3U8hEWEhJJfGipcl7ZpPG+GWgBzoGly8/brCTRA9YNGWjI4PXwYa/MY
5kh0aGI9CxU6gQr9tVmid+M9sJqUuShpnNywdXTDRUSFKc7NxQ5pg5gf2IsNZVm0
GJGRIfx6UpP4TKHRqbqtp39VVcsCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQiCSBe
enxCx9y2gv6nfrIg8hRzcDAfBgNVHSMEGDAWgBQBo3HUh7XVUuRNS77JVquWwyWB
7TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RENBRTMvODMwRDYzRkFGMDhDMTFFQzkyMjAxQThFRjEyMjI0NjgvQWFOeDFJ
ZTExVkxrVFV1LXlWYXJsc01sZ2UwLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvQWFOeDFJZTExVkxrVFV1LXlWYXJsc01sZ2UwLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RENBRTMvODMwRDYzRkFGMDhDMTFFQzkyMjAxQThFRjEy
MjI0NjgvOTFEQTBDM0NGMDhGMTFFQ0EzMzg3MTk3RjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbYJjANBgkqhkiG9w0BAQsF
AAOCAQEAHiB8OrVqdOf9bGyWDNwgxaWT8aA8B0Ep9lc0h8jcfGq0x4trGUqXbfbw
JxITe4PyPPUjaXwR1RIfFqr05MsgA9yossJ3ThmhL5ej2fZN1OCFGqhGlkMxHlAs
oruQkfCxR/tGCXaaS6QtilEjPmvFzvWnU9rnbzOXx9s9D/HOVcBG/SUitWqdMTPI
ITfJiSC3mGju2rGJgRApouiwZ/Xpbdqwc2H9EOmdQgcdke7N+LYDGivmlvzKycPm
IZjoh9DaAL9yxYNE99hOjquVT501BylfmuttqmMx0Ewd8lBhNiI0uMLbT2mYM5IX
4dEHBkfbJm2snA2Jk8tdCeWzBrE5wg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org