Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/59AB9F46ACB311EA94FB7A5CF8AEA228.roa
File: 59AB9F46ACB311EA94FB7A5CF8AEA228.roa (raw, json)
Hash identifier: M7zBdV0WcI6PFd9tLd94yJGWhV8lnlP02DcFXSG5pCM=
Subject key identifier: 82:93:22:31:F3:A8:3F:C4:B2:19:D1:3A:CE:3E:00:12:86:3C:6C:CA
Certificate issuer: /CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Certificate serial: 0132
Authority key identifier: 68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/59AB9F46ACB311EA94FB7A5CF8AEA228.roa
Signing time: Fri 12 Jun 2020 13:48:10 +0000
ROA not before: Fri 12 Jun 2020 13:48:05 +0000
ROA not after: Mon 30 Jun 2031 13:48:05 +0000
asID: 36969
IP address blocks: 41.87.8.0/23 maxlen: 23
41.87.10.0/23 maxlen: 23
41.87.12.0/23 maxlen: 23
41.87.14.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.mft
rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306 (0x132)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DE46FAF/serialNumber=68C5E4BAD5DCD564A2562753C9ACB632BD24CB50
Validity
Not Before: Jun 12 13:48:05 2020 GMT
Not After : Jun 30 13:48:05 2031 GMT
Subject: CN=5ee38799-271d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:18:1e:da:cc:27:55:d2:1a:01:34:33:e2:1b:
ea:9c:36:23:cb:b1:c7:ca:ab:88:1f:17:2b:22:2d:
61:b1:61:70:c2:d1:aa:66:d4:8e:9c:6a:6f:cf:0c:
9d:7a:3f:a9:a4:30:3e:37:f2:33:ac:21:e1:de:e3:
6b:19:a8:79:8f:85:4c:b2:30:74:7f:3f:d0:d8:fb:
f7:1c:23:f5:66:48:2a:34:bb:ea:51:0e:49:5e:e7:
69:60:f2:9a:01:56:e2:06:ce:2d:03:42:e5:85:48:
b9:2d:5f:fe:47:05:b7:bc:05:78:a4:0d:5f:df:b2:
68:08:48:c6:52:a8:0a:c6:3c:57:0f:f9:57:30:20:
73:68:7f:d2:f0:13:97:d9:94:2d:07:5a:45:61:ea:
66:56:6d:d8:30:14:d1:0b:c3:f4:b6:f1:52:ab:9e:
f5:7f:33:51:76:52:0f:4c:5c:9d:ae:d9:d2:9e:20:
fe:29:21:f7:4f:72:ac:55:8f:af:cc:23:98:c6:a0:
e7:e5:7c:78:d5:52:1f:b7:5e:3a:5e:b3:65:dc:80:
cb:1e:d2:8e:3c:4c:20:24:98:28:36:16:2c:92:d1:
e7:67:28:cb:2f:9f:62:8c:d5:73:a7:fb:03:f2:49:
34:ee:e2:3f:e8:06:f0:d7:06:45:1b:72:2a:24:57:
7e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:93:22:31:F3:A8:3F:C4:B2:19:D1:3A:CE:3E:00:12:86:3C:6C:CA
X509v3 Authority Key Identifier:
keyid:68:C5:E4:BA:D5:DC:D5:64:A2:56:27:53:C9:AC:B6:32:BD:24:CB:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/aMXkutXc1WSiVidTyay2Mr0ky1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/aMXkutXc1WSiVidTyay2Mr0ky1A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DE46F/EB4934CCD5FE11E99528193BF8AEA228/59AB9F46ACB311EA94FB7A5CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.87.8.0/21
Signature Algorithm: sha256WithRSAEncryption
86:62:ab:00:93:30:9b:e3:b2:2c:1a:90:fc:1e:6d:ef:10:65:
35:71:d6:e5:53:19:8a:1a:5e:9c:52:16:00:59:8b:fd:03:0a:
2b:ee:50:93:c9:74:e5:1f:3f:71:36:3d:2f:e0:69:d9:4a:85:
a9:2d:6f:08:cd:68:db:ec:26:5a:f2:d5:28:66:51:ef:e5:60:
1a:05:34:90:6f:ca:7b:55:6a:79:6d:23:84:8d:34:b4:de:c2:
cc:b4:f1:98:cd:02:7e:03:a8:2b:36:92:20:88:46:2c:5f:27:
0a:cf:44:10:f4:f8:a5:89:42:8e:f8:c1:6b:2e:66:1a:b5:a0:
ea:27:4d:79:f3:4f:8d:4a:f0:d7:98:a4:ea:9a:46:9f:8e:4b:
d8:7b:40:3f:54:d3:22:cf:af:e7:2d:50:22:27:05:d0:a2:29:
b7:98:01:0c:9f:5b:c6:0f:43:28:7c:ae:75:ff:e9:e7:e7:09:
47:10:6d:31:aa:5f:29:99:82:38:7b:40:ad:e5:77:1c:db:57:
6b:a6:d3:81:d6:e9:36:33:ee:09:c3:b6:c0:98:75:99:cc:31:
76:6f:52:73:a9:11:bc:38:cd:08:aa:39:32:b2:5e:ca:d4:78:
f4:ee:3b:7c:f7:6d:a9:b6:9d:d4:ed:36:cf:5e:10:a6:3a:55:
f1:de:37:64
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICATIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
REU0NkZBRjExMC8GA1UEBRMoNjhDNUU0QkFENURDRDU2NEEyNTYyNzUzQzlBQ0I2
MzJCRDI0Q0I1MDAeFw0yMDA2MTIxMzQ4MDVaFw0zMTA2MzAxMzQ4MDVaMBgxFjAU
BgNVBAMTDTVlZTM4Nzk5LTI3MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDeGB7azCdV0hoBNDPiG+qcNiPLscfKq4gfFysiLWGxYXDC0apm1I6cam/P
DJ16P6mkMD438jOsIeHe42sZqHmPhUyyMHR/P9DY+/ccI/VmSCo0u+pRDkle52lg
8poBVuIGzi0DQuWFSLktX/5HBbe8BXikDV/fsmgISMZSqArGPFcP+VcwIHNof9Lw
E5fZlC0HWkVh6mZWbdgwFNELw/S28VKrnvV/M1F2Ug9MXJ2u2dKeIP4pIfdPcqxV
j6/MI5jGoOflfHjVUh+3Xjpes2XcgMse0o48TCAkmCg2FiyS0ednKMsvn2KM1XOn
+wPySTTu4j/oBvDXBkUbciokV37jAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUgpMi
MfOoP8SyGdE6zj4AEoY8bMowHwYDVR0jBBgwFoAUaMXkutXc1WSiVidTyay2Mr0k
y1AwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkRFNDZGL0VCNDkzNENDRDVGRTExRTk5NTI4MTkzQkY4QUVBMjI4L2FNWGt1
dFhjMVdTaVZpZFR5YXkyTXIwa3kxQS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2FNWGt1dFhjMVdTaVZpZFR5YXkyTXIwa3kxQS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkRFNDZGL0VCNDkzNENDRDVGRTExRTk5NTI4MTkzQkY4
QUVBMjI4LzU5QUI5RjQ2QUNCMzExRUE5NEZCN0E1Q0Y4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMpVwgwDQYJKoZIhvcNAQEL
BQADggEBAIZiqwCTMJvjsiwakPwebe8QZTVx1uVTGYoaXpxSFgBZi/0DCivuUJPJ
dOUfP3E2PS/gadlKhaktbwjNaNvsJlry1ShmUe/lYBoFNJBvyntVanltI4SNNLTe
wsy08ZjNAn4DqCs2kiCIRixfJwrPRBD0+KWJQo74wWsuZhq1oOonTXnzT41K8NeY
pOqaRp+OS9h7QD9U0yLPr+ctUCInBdCiKbeYAQyfW8YPQyh8rnX/6efnCUcQbTGq
XymZgjh7QK3ldxzbV2um04HW6TYz7gnDtsCYdZnMMXZvUnOpEbw4zQiqOTKyXsrU
ePTuO3z3bam2ndTtNs9eEKY6VfHeN2Q=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:29 2024 by rpki-client on console-ams.rpki-client.org