Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/8804A9420EF611EF90E9CB4F017001B1.roa
File: 8804A9420EF611EF90E9CB4F017001B1.roa (raw, json)
Hash identifier: Ah/gC+WFiWi7Jlp6m9g/RNWVwD4e/UvuFekwBmptqnY=
Subject key identifier: 1B:DF:44:C3:38:92:4F:7E:25:88:0F:17:BE:71:78:AD:4C:EF:A0:39
Certificate issuer: /CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Certificate serial: C6
Authority key identifier: CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/8804A9420EF611EF90E9CB4F017001B1.roa
Signing time: Fri 10 May 2024 17:55:48 +0000
ROA not before: Fri 10 May 2024 17:55:44 +0000
ROA not after: Thu 31 Dec 2026 17:55:44 +0000
asID: 36912
IP address blocks: 102.244.104.0/24 maxlen: 24
102.244.112.0/24 maxlen: 24
102.244.113.0/24 maxlen: 24
102.244.116.0/24 maxlen: 24
102.244.120.0/24 maxlen: 24
102.244.121.0/24 maxlen: 24
102.244.124.0/24 maxlen: 24
102.244.125.0/24 maxlen: 24
102.244.126.0/24 maxlen: 24
102.244.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.mft
rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198 (0xc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4B69AF/serialNumber=CA6642EA9AFCC73AA24AA4047544B17C2603CBD2
Validity
Not Before: May 10 17:55:44 2024 GMT
Not After : Dec 31 17:55:44 2026 GMT
Subject: CN=663e5fa4-3bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:bd:64:16:b9:18:91:3e:5b:56:68:84:75:1a:
67:94:f0:27:30:96:b5:3d:8c:e2:2c:20:0d:ed:94:
81:b5:20:52:94:06:05:56:f5:36:21:46:70:ef:ed:
2f:47:35:43:c8:3b:f1:42:e9:9e:47:ef:88:80:47:
bb:de:01:da:07:6c:77:51:17:0d:c2:72:49:e2:ca:
1d:5a:0c:57:df:a1:31:22:37:35:05:15:54:4d:8a:
9b:14:d5:7c:8e:80:70:a8:78:a2:39:f8:2f:e0:ed:
70:2e:f4:aa:97:be:8f:2f:e8:93:73:18:09:e5:7f:
4d:a6:7f:d7:b3:a4:81:df:f1:1c:5e:60:6f:4e:fc:
c2:94:21:3a:4d:5b:ef:43:c7:bf:af:0c:91:fb:0a:
58:52:56:5a:51:37:22:a1:a5:17:b1:3b:bc:8c:bf:
8b:8a:55:1d:c5:92:89:29:30:c9:a6:f8:2e:f1:f0:
95:27:56:c0:44:d4:65:cc:3b:2b:71:18:4a:42:85:
2d:ee:e3:53:43:d6:6a:28:e1:4f:ff:b6:00:3f:b0:
f5:df:d8:ca:53:fd:92:89:a8:45:3e:a8:db:94:cf:
dc:73:23:f5:3e:76:3b:96:6a:e6:ba:ae:0e:0d:8c:
19:14:0c:4e:a5:87:72:7f:15:a6:38:98:f0:5a:e2:
9e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DF:44:C3:38:92:4F:7E:25:88:0F:17:BE:71:78:AD:4C:EF:A0:39
X509v3 Authority Key Identifier:
keyid:CA:66:42:EA:9A:FC:C7:3A:A2:4A:A4:04:75:44:B1:7C:26:03:CB:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/ymZC6pr8xzqiSqQEdUSxfCYDy9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/ymZC6pr8xzqiSqQEdUSxfCYDy9I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4B69/DE14770E887311EE89B811434AD9E6FC/8804A9420EF611EF90E9CB4F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.244.104.0/24
102.244.112.0/23
102.244.116.0/24
102.244.120.0/23
102.244.124.0/22
Signature Algorithm: sha256WithRSAEncryption
28:bb:6f:61:79:5f:4a:bf:b8:de:4a:d6:e6:f9:89:47:d4:1f:
a7:56:4a:aa:db:b6:92:27:11:0a:cc:de:84:b2:05:33:44:ec:
63:70:a6:6f:a8:fa:43:4d:ca:3d:b2:87:bc:02:53:48:9e:b5:
9f:9f:ac:dc:9d:67:e3:8f:67:c4:c5:33:6e:4a:bf:6f:3b:25:
df:de:09:ed:aa:10:18:71:25:33:04:ab:40:3a:8a:a3:a0:01:
4c:d8:e8:c0:14:70:c8:9c:55:5c:bc:4a:69:58:97:5c:52:aa:
d1:cf:8e:13:6b:2a:33:d2:42:c8:dc:7b:8a:3a:19:2c:a3:bd:
ac:12:a3:40:92:a5:68:45:2c:a7:ef:03:d8:7b:d7:48:b2:be:
c9:a5:5b:bd:64:2f:76:06:cb:a5:62:f4:04:41:64:2b:22:17:
d6:fa:4d:5f:33:6f:73:67:6e:03:ea:ec:80:42:3c:a1:80:c9:
dc:d6:a2:de:28:4d:49:92:4a:6a:82:9c:7b:9f:32:b5:34:1f:
a2:1a:13:24:8e:a8:c6:55:02:17:c9:3c:b7:e0:97:a4:08:60:
05:b5:53:2f:72:3d:63:f6:4b:a3:f5:8e:a3:1c:d9:2d:21:b8:
48:ee:f6:fe:d8:6a:9c:85:83:24:1d:6b:c9:cc:d5:31:3b:42:
12:6f:cc:c6
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RTRCNjlBRjExMC8GA1UEBRMoQ0E2NjQyRUE5QUZDQzczQUEyNEFBNDA0NzU0NEIx
N0MyNjAzQ0JEMjAeFw0yNDA1MTAxNzU1NDRaFw0yNjEyMzExNzU1NDRaMBgxFjAU
BgNVBAMTDTY2M2U1ZmE0LTNiZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDfvWQWuRiRPltWaIR1GmeU8CcwlrU9jOIsIA3tlIG1IFKUBgVW9TYhRnDv
7S9HNUPIO/FC6Z5H74iAR7veAdoHbHdRFw3Cckniyh1aDFffoTEiNzUFFVRNipsU
1XyOgHCoeKI5+C/g7XAu9KqXvo8v6JNzGAnlf02mf9ezpIHf8RxeYG9O/MKUITpN
W+9Dx7+vDJH7ClhSVlpRNyKhpRexO7yMv4uKVR3FkokpMMmm+C7x8JUnVsBE1GXM
OytxGEpChS3u41ND1moo4U//tgA/sPXf2MpT/ZKJqEU+qNuUz9xzI/U+djuWaua6
rg4NjBkUDE6lh3J/FaY4mPBa4p5FAgMBAAGjggK9MIICuTAdBgNVHQ4EFgQUG99E
wziST34liA8XvnF4rUzvoDkwHwYDVR0jBBgwFoAUymZC6pr8xzqiSqQEdUSxfCYD
y9IwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkU0QjY5L0RFMTQ3NzBFODg3MzExRUU4OUI4MTE0MzRBRDlFNkZDL3ltWkM2
cHI4eHpxaVNxUUVkVVN4ZkNZRHk5SS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3ltWkM2cHI4eHpxaVNxUUVkVVN4ZkNZRHk5SS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkU0QjY5L0RFMTQ3NzBFODg3MzExRUU4OUI4MTE0MzRB
RDlFNkZDLzg4MDRBOTQyMEVGNjExRUY5MEU5Q0I0RjAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABm9GgDBAFm9HADBABm9HQD
BAFm9HgDBAJm9HwwDQYJKoZIhvcNAQELBQADggEBACi7b2F5X0q/uN5K1ub5iUfU
H6dWSqrbtpInEQrM3oSyBTNE7GNwpm+o+kNNyj2yh7wCU0ietZ+frNydZ+OPZ8TF
M25Kv287Jd/eCe2qEBhxJTMEq0A6iqOgAUzY6MAUcMicVVy8SmlYl1xSqtHPjhNr
KjPSQsjce4o6GSyjvawSo0CSpWhFLKfvA9h710iyvsmlW71kL3YGy6Vi9ARBZCsi
F9b6TV8zb3NnbgPq7IBCPKGAydzWot4oTUmSSmqCnHufMrU0H6IaEySOqMZVAhfJ
PLfgl6QIYAW1Uy9yPWP2S6P1jqMc2S0huEju9v7YapyFgyQda8nM1TE7QhJvzMY=
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:36 2024 by rpki-client on console-fra.rpki-client.org