Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A651F64441E111EEADBE8A4C4AD9E6FC.roa
File: A651F64441E111EEADBE8A4C4AD9E6FC.roa (raw, json)
Hash identifier: na3zMW65LzRLit/bOf3+sfLfwD/XqHGj5J+NXRc3tMg=
Subject key identifier: D4:DD:07:D1:B0:E4:A6:B1:78:E6:7A:2C:4B:31:1B:BB:75:AB:6B:A9
Certificate issuer: /CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Certificate serial: 09
Authority key identifier: 5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A651F64441E111EEADBE8A4C4AD9E6FC.roa
Signing time: Wed 23 Aug 2023 18:19:51 +0000
ROA not before: Wed 23 Aug 2023 18:19:48 +0000
ROA not after: Tue 23 Aug 2033 18:19:48 +0000
asID: 29614
IP address blocks: 41.155.0.0/17 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.mft
rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE42DAF/serialNumber=5A659972FEFD8131888ECA98B8F433266CD0E176
Validity
Not Before: Aug 23 18:19:48 2023 GMT
Not After : Aug 23 18:19:48 2033 GMT
Subject: CN=64e64dc7-a209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:63:1f:87:31:9f:cd:07:c6:f3:64:7f:a6:
f7:6f:be:af:47:5b:63:ec:34:b1:e0:df:65:2e:6b:
d2:df:46:48:02:f5:8e:fd:73:04:66:ca:33:43:d9:
44:b8:86:d0:46:81:2c:37:28:33:28:62:8b:de:9a:
b8:31:b5:72:ca:92:35:c1:c1:05:98:f5:39:e4:f6:
45:a3:7a:54:1e:8a:3a:5b:51:e0:2a:34:7e:37:6d:
49:58:04:22:71:91:ff:e8:45:3b:ab:e4:34:53:7f:
8f:ba:6b:ec:a9:49:0f:ec:73:e3:f1:88:2b:d9:cf:
1f:67:a5:99:e7:9a:f5:cb:54:f9:85:c4:dc:5d:00:
2d:2b:15:1d:fa:24:ec:f5:b4:71:1d:9b:84:e2:4b:
17:b9:5a:df:2f:4b:2f:c0:76:f3:4c:ab:18:61:70:
3b:45:c8:cd:46:a3:57:15:d8:9c:df:19:a4:62:01:
c4:24:82:1c:a7:b3:0d:70:b4:ce:9e:b2:88:6c:3f:
e3:b5:c3:77:9c:ce:e5:30:a7:ef:0c:71:cc:f1:61:
a4:29:2f:a7:50:e1:8a:26:7d:76:6f:94:b4:0b:f4:
94:fa:27:00:97:48:7e:ad:f1:81:ca:f3:3f:3f:1e:
d6:c1:70:1e:6c:19:d0:56:ea:10:9d:28:06:c9:03:
da:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DD:07:D1:B0:E4:A6:B1:78:E6:7A:2C:4B:31:1B:BB:75:AB:6B:A9
X509v3 Authority Key Identifier:
keyid:5A:65:99:72:FE:FD:81:31:88:8E:CA:98:B8:F4:33:26:6C:D0:E1:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/WmWZcv79gTGIjsqYuPQzJmzQ4XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WmWZcv79gTGIjsqYuPQzJmzQ4XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE42D/DD92018241DA11EE8310FE374AD9E6FC/A651F64441E111EEADBE8A4C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.155.0.0/17
Signature Algorithm: sha256WithRSAEncryption
44:cc:6a:ac:37:c4:0b:c0:56:77:78:97:f2:4d:fa:ea:b2:2b:
ac:35:4c:f3:d1:1a:0d:93:ff:0e:b2:70:17:83:dd:58:a5:a2:
9a:cd:e9:78:6e:f1:7a:09:86:16:3b:90:94:9a:f4:be:eb:24:
aa:6a:35:e7:3d:07:b5:cd:d6:c9:4b:35:34:ee:94:11:bf:fe:
ea:cb:95:ed:6c:56:42:90:d4:82:a4:85:eb:e1:4d:3a:e3:a0:
e6:87:22:a3:ea:61:6c:73:b0:b3:df:82:e3:17:28:2c:df:7f:
15:c7:72:9b:5a:d6:5f:e7:d9:e2:6a:25:48:49:d9:73:c6:39:
f8:83:7c:da:07:b3:dd:62:09:eb:8c:20:28:a1:42:79:e9:1f:
9c:2c:a5:96:32:71:e4:c1:fd:f7:5e:f9:96:c9:54:01:80:29:
63:9b:c5:08:2c:f0:95:dc:46:ef:d6:26:cb:11:b3:0b:18:88:
25:36:4c:1d:82:0d:c6:74:11:42:10:3d:23:8b:15:a5:5c:35:
8d:83:03:55:57:9b:a9:16:76:49:8f:33:8a:e1:28:81:e0:72:
ef:e0:33:4b:3f:3e:6a:68:93:eb:fe:ba:e8:52:31:5d:65:ac:
3f:60:4e:f2:73:30:3d:0f:44:39:d1:e8:8a:3b:2b:df:50:33:
91:4b:49:bf
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZE
RTQyREFGMTEwLwYDVQQFEyg1QTY1OTk3MkZFRkQ4MTMxODg4RUNBOThCOEY0MzMy
NjZDRDBFMTc2MB4XDTIzMDgyMzE4MTk0OFoXDTMzMDgyMzE4MTk0OFowGDEWMBQG
A1UEAxMNNjRlNjRkYzctYTIwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKEBYx+HMZ/NB8bzZH+m92++r0dbY+w0seDfZS5r0t9GSAL1jv1zBGbKM0PZ
RLiG0EaBLDcoMyhii96auDG1csqSNcHBBZj1OeT2RaN6VB6KOltR4Co0fjdtSVgE
InGR/+hFO6vkNFN/j7pr7KlJD+xz4/GIK9nPH2elmeea9ctU+YXE3F0ALSsVHfok
7PW0cR2bhOJLF7la3y9LL8B280yrGGFwO0XIzUajVxXYnN8ZpGIBxCSCHKezDXC0
zp6yiGw/47XDd5zO5TCn7wxxzPFhpCkvp1DhiiZ9dm+UtAv0lPonAJdIfq3xgcrz
Pz8e1sFwHmwZ0FbqEJ0oBskD2kkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTU3QfR
sOSmsXjmeixLMRu7datrqTAfBgNVHSMEGDAWgBRaZZly/v2BMYiOypi49DMmbNDh
djAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2REU0MkQvREQ5MjAxODI0MURBMTFFRTgzMTBGRTM3NEFEOUU2RkMvV21XWmN2
NzlnVEdJanNxWXVQUXpKbXpRNFhZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvV21XWmN2NzlnVEdJanNxWXVQUXpKbXpRNFhZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2REU0MkQvREQ5MjAxODI0MURBMTFFRTgzMTBGRTM3NEFE
OUU2RkMvQTY1MUY2NDQ0MUUxMTFFRUFEQkU4QTRDNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBymbADANBgkqhkiG9w0BAQsF
AAOCAQEARMxqrDfEC8BWd3iX8k366rIrrDVM89EaDZP/DrJwF4PdWKWims3peG7x
egmGFjuQlJr0vuskqmo15z0Htc3WyUs1NO6UEb/+6suV7WxWQpDUgqSF6+FNOuOg
5ocio+phbHOws9+C4xcoLN9/Fcdym1rWX+fZ4molSEnZc8Y5+IN82gez3WIJ64wg
KKFCeekfnCylljJx5MH99175lslUAYApY5vFCCzwldxG79YmyxGzCxiIJTZMHYIN
xnQRQhA9I4sVpVw1jYMDVVebqRZ2SY8ziuEogeBy7+AzSz8+amiT6/666FIxXWWs
P2BO8nMwPQ9EOdHoijsr31AzkUtJvw==
-----END CERTIFICATE-----
Generated at Sat Sep 28 04:04:20 2024 by rpki-client on console-fra.rpki-client.org