Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/B1A3F5600B6D11EE9A15F12B4AD9E6FC.roa
File: B1A3F5600B6D11EE9A15F12B4AD9E6FC.roa (raw, json)
Hash identifier: Q9qWbBp9gDebr2zzD4asPao1vSmkfNVqqCPycFu1d8A=
Subject key identifier: 26:FE:CF:AF:73:5D:A7:6E:28:E4:E3:0A:F5:EB:CC:40:4F:74:FE:9D
Certificate issuer: /CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Certificate serial: 0A
Authority key identifier: 87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/B1A3F5600B6D11EE9A15F12B4AD9E6FC.roa
Signing time: Thu 15 Jun 2023 11:13:46 +0000
ROA not before: Thu 15 Jun 2023 11:13:41 +0000
ROA not after: Sat 15 Jun 2024 11:13:41 +0000
asID: 37684
IP address blocks: 41.242.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.mft
rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E2B8CAF/serialNumber=872130E69B3FB8035B1B25D3F6FB974A2A078ECC
Validity
Not Before: Jun 15 11:13:41 2023 GMT
Not After : Jun 15 11:13:41 2024 GMT
Subject: CN=648af269-8a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:65:16:1c:e7:9c:ec:9d:24:f0:27:a7:2c:c3:
e5:f7:32:99:98:31:fb:e2:b4:b6:a8:65:df:8a:95:
6b:0b:51:54:1a:04:08:04:6a:1a:30:b0:a2:2a:c2:
c3:ee:10:70:33:17:1c:4c:21:00:31:cf:2d:b9:9c:
51:a9:60:4d:4b:37:6e:02:be:ea:4e:e4:3e:a1:3f:
53:6c:3f:f2:72:84:95:14:b3:93:88:78:83:2b:2a:
10:74:0a:ab:68:55:f4:78:f2:2d:6e:ad:a2:16:00:
ac:a7:1c:72:ae:0d:79:68:77:e1:01:bd:f4:ab:01:
0f:e6:cf:02:f6:cb:fc:ac:f6:e7:87:d6:ce:51:a6:
89:70:e6:fc:81:e2:e6:3c:b2:7e:2b:45:d3:6d:c8:
fb:0f:dc:96:ec:40:0c:db:41:71:14:d1:15:4c:ef:
5a:13:f8:a5:d3:34:d7:29:31:15:d6:d1:e1:f1:3e:
9c:c7:bd:df:31:38:45:e4:cb:9d:7b:28:0e:1b:d7:
f1:a2:90:eb:ad:cb:92:3f:2d:6b:fc:32:1a:a0:d9:
88:78:a5:5d:6e:28:54:7a:dd:32:d2:a9:6c:c9:53:
f1:37:6e:42:06:06:77:53:44:ae:a9:d7:3d:11:ea:
36:9e:a5:41:e6:ac:45:2a:f6:cd:ae:ab:e7:8d:71:
53:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FE:CF:AF:73:5D:A7:6E:28:E4:E3:0A:F5:EB:CC:40:4F:74:FE:9D
X509v3 Authority Key Identifier:
keyid:87:21:30:E6:9B:3F:B8:03:5B:1B:25:D3:F6:FB:97:4A:2A:07:8E:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/hyEw5ps_uANbGyXT9vuXSioHjsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hyEw5ps_uANbGyXT9vuXSioHjsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E2B8C/C8F9DF1E0B6211EE862D868A4AD9E6FC/B1A3F5600B6D11EE9A15F12B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.2.0/24
Signature Algorithm: sha256WithRSAEncryption
97:40:40:d7:13:e8:fb:48:f9:64:3c:8b:80:76:48:24:50:24:
9e:91:f5:f5:61:0c:f1:0c:f8:75:8e:f7:33:40:d7:58:7a:da:
71:f4:72:67:88:4f:6e:1a:13:a9:ee:df:1d:ba:02:d0:00:d8:
29:d0:33:0f:83:67:be:14:78:00:0a:7e:85:6a:8f:bf:cb:25:
1f:bf:3a:23:ce:2d:bd:5a:7f:64:c6:06:60:6e:32:08:ac:49:
13:f7:56:5f:bd:60:f4:81:1e:f4:9a:f1:f9:8b:e8:da:bb:c3:
35:0a:57:08:4e:7d:e9:9d:cd:86:bf:f8:ab:83:8b:88:f3:45:
d6:92:f4:f8:72:bd:84:2f:23:a0:8b:c6:ec:e3:b3:d5:33:6e:
cb:fa:73:76:9c:67:8f:12:b7:15:ec:9e:4a:be:91:f4:da:4e:
68:99:e2:00:2f:07:a9:21:e2:7c:c9:92:68:55:f7:03:fb:e5:
c8:79:76:91:31:67:af:b8:4f:61:cd:ff:cb:68:b7:b0:9a:4b:
e1:3c:b4:38:3c:56:7d:00:dc:53:6d:2a:bf:39:83:10:fa:75:
b3:a5:e7:10:cb:11:2b:d7:4b:ff:46:d0:35:f3:56:cb:f6:2f:
a0:28:55:5b:95:61:1f:40:31:93:a3:13:93:0d:69:c9:1d:56:
d7:fe:81:a7
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZF
MkI4Q0FGMTEwLwYDVQQFEyg4NzIxMzBFNjlCM0ZCODAzNUIxQjI1RDNGNkZCOTc0
QTJBMDc4RUNDMB4XDTIzMDYxNTExMTM0MVoXDTI0MDYxNTExMTM0MVowGDEWMBQG
A1UEAxMNNjQ4YWYyNjktOGE0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKplFhznnOydJPAnpyzD5fcymZgx++K0tqhl34qVawtRVBoECARqGjCwoirC
w+4QcDMXHEwhADHPLbmcUalgTUs3bgK+6k7kPqE/U2w/8nKElRSzk4h4gysqEHQK
q2hV9HjyLW6tohYArKcccq4NeWh34QG99KsBD+bPAvbL/Kz254fWzlGmiXDm/IHi
5jyyfitF023I+w/cluxADNtBcRTRFUzvWhP4pdM01ykxFdbR4fE+nMe93zE4ReTL
nXsoDhvX8aKQ663Lkj8ta/wyGqDZiHilXW4oVHrdMtKpbMlT8TduQgYGd1NErqnX
PRHqNp6lQeasRSr2za6r541xU1UCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQm/s+v
c12nbijk4wr168xAT3T+nTAfBgNVHSMEGDAWgBSHITDmmz+4A1sbJdP2+5dKKgeO
zDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTJCOEMvQzhGOURGMUUwQjYyMTFFRTg2MkQ4NjhBNEFEOUU2RkMvaHlFdzVw
c191QU5iR3lYVDl2dVhTaW9IanN3LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvaHlFdzVwc191QU5iR3lYVDl2dVhTaW9IanN3LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RTJCOEMvQzhGOURGMUUwQjYyMTFFRTg2MkQ4NjhBNEFE
OUU2RkMvQjFBM0Y1NjAwQjZEMTFFRTlBMTVGMTJCNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACnyAjANBgkqhkiG9w0BAQsF
AAOCAQEAl0BA1xPo+0j5ZDyLgHZIJFAknpH19WEM8Qz4dY73M0DXWHracfRyZ4hP
bhoTqe7fHboC0ADYKdAzD4NnvhR4AAp+hWqPv8slH786I84tvVp/ZMYGYG4yCKxJ
E/dWX71g9IEe9Jrx+Yvo2rvDNQpXCE596Z3Nhr/4q4OLiPNF1pL0+HK9hC8joIvG
7OOz1TNuy/pzdpxnjxK3FeyeSr6R9NpOaJniAC8HqSHifMmSaFX3A/vlyHl2kTFn
r7hPYc3/y2i3sJpL4Ty0ODxWfQDcU20qvzmDEPp1s6XnEMsRK9dL/0bQNfNWy/Yv
oChVW5VhH0Axk6MTkw1pyR1W1/6Bpw==
-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org