Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/C0E88DD6025E11EFB5BAAD30017001B1.roa
File: C0E88DD6025E11EFB5BAAD30017001B1.roa (raw, json)
Hash identifier: DJWXY1V0N/SZP8fVnsyyzg0SRQs5AOjIUrDn4upoYrc=
Subject key identifier: 48:05:CB:11:52:BF:78:50:32:95:8E:DC:1B:5B:D6:07:F2:82:B3:03
Certificate issuer: /CN=F36E4CC6AF/serialNumber=3394DF701923443C5F98F03DB7FF0573AEB76492
Certificate serial: 02
Authority key identifier: 33:94:DF:70:19:23:44:3C:5F:98:F0:3D:B7:FF:05:73:AE:B7:64:92
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/M5TfcBkjRDxfmPA9t_8Fc663ZJI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/C0E88DD6025E11EFB5BAAD30017001B1.roa
Signing time: Wed 24 Apr 2024 17:19:06 +0000
ROA not before: Wed 24 Apr 2024 17:19:02 +0000
ROA not after: Thu 23 Apr 2026 17:19:02 +0000
asID: 329389
IP address blocks: 102.210.32.0/24 maxlen: 24
102.210.33.0/24 maxlen: 24
102.210.34.0/24 maxlen: 24
102.210.35.0/24 maxlen: 24
2001:43fc:3000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/M5TfcBkjRDxfmPA9t_8Fc663ZJI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/M5TfcBkjRDxfmPA9t_8Fc663ZJI.mft
rsync://rpki.afrinic.net/repository/afrinic/M5TfcBkjRDxfmPA9t_8Fc663ZJI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E4CC6AF/serialNumber=3394DF701923443C5F98F03DB7FF0573AEB76492
Validity
Not Before: Apr 24 17:19:02 2024 GMT
Not After : Apr 23 17:19:02 2026 GMT
Subject: CN=66293f0a-9f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:3b:d7:f9:74:2a:e7:35:4f:1b:04:4c:a4:
cd:e2:cd:4b:85:e3:cc:d1:69:74:60:e1:8b:d3:db:
a2:5a:2e:c9:44:fc:78:25:bc:fb:7c:7f:46:38:b9:
2f:31:fe:f4:20:37:6a:09:94:24:84:9e:4d:36:7b:
39:ca:cc:96:ee:40:aa:db:59:66:f9:a1:9a:76:ba:
cb:c2:95:be:87:9d:d1:d9:69:66:85:09:b1:79:c0:
f2:6e:ba:4f:36:93:2a:db:ea:a8:c2:38:0f:ff:fe:
d4:e0:7a:61:7b:4c:08:bd:84:79:e4:a1:bb:61:f0:
c8:b3:65:3a:e2:fb:a7:70:aa:cd:72:d1:5d:1c:a9:
47:66:24:d9:b5:54:1a:4e:a8:fe:64:58:8e:f0:16:
e9:2e:2b:24:c8:28:b2:85:c4:d4:57:33:5b:47:a2:
ab:8c:ac:ba:8e:a8:87:08:7d:58:42:bf:90:52:50:
a5:01:e5:0a:9c:a0:60:cd:ab:10:cc:85:c3:ed:01:
11:7d:33:cb:92:58:5d:47:12:e5:12:70:e7:26:c9:
c8:02:d1:82:3a:b6:7a:1c:ab:16:c4:01:5e:f0:ce:
cd:40:fb:f7:e3:b2:9a:2b:37:23:4b:43:f4:8f:c6:
ac:11:43:66:d2:7b:64:e3:2e:65:8a:9c:22:f6:77:
40:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:05:CB:11:52:BF:78:50:32:95:8E:DC:1B:5B:D6:07:F2:82:B3:03
X509v3 Authority Key Identifier:
keyid:33:94:DF:70:19:23:44:3C:5F:98:F0:3D:B7:FF:05:73:AE:B7:64:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/M5TfcBkjRDxfmPA9t_8Fc663ZJI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/M5TfcBkjRDxfmPA9t_8Fc663ZJI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4CC6/3FBFCE2E025711EF893557F4007001B1/C0E88DD6025E11EFB5BAAD30017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.32.0/22
IPv6:
2001:43fc:3000::/48
Signature Algorithm: sha256WithRSAEncryption
32:77:d4:53:9c:43:4a:e2:8a:ec:ee:36:6e:32:1f:6e:32:71:
97:60:96:44:84:cd:b9:a7:ae:c1:82:a2:94:12:ed:12:80:d6:
40:68:99:ac:a6:93:8a:4e:da:47:a0:e0:9d:4b:da:b7:ee:16:
07:c4:a5:54:16:69:a3:68:7e:b5:53:4d:41:4d:2c:d8:2d:d0:
19:10:e2:df:e6:cf:3a:af:92:81:24:6f:0d:e4:c7:e8:3d:d2:
f6:7c:c5:6a:9f:ae:70:38:58:f8:16:b4:aa:f7:bc:5d:af:34:
5f:a5:69:39:f6:bb:65:3b:bc:a7:09:63:9c:d5:bf:4b:35:2e:
a7:0e:84:59:fd:ef:96:5b:42:90:9e:73:99:92:49:35:da:19:
2c:46:0c:b2:53:fa:7a:ce:60:80:e8:de:1f:ea:22:0a:6b:6f:
0b:90:16:9d:1e:29:12:35:20:74:8e:a7:83:49:43:97:e4:02:
af:45:b1:e3:c6:aa:83:9c:7f:4a:4d:a8:06:65:65:34:33:68:
c4:64:b6:45:d3:4e:b9:a5:8a:cd:fc:89:22:9b:9e:4b:b2:6f:
5b:ce:2b:b2:ac:9e:c5:1c:ce:50:53:17:99:06:6c:77:3a:6b:
25:0d:94:d3:04:08:af:04:70:2e:62:d3:4d:e0:9b:0c:3e:92:
a0:1f:73:e5
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZF
NENDNkFGMTEwLwYDVQQFEygzMzk0REY3MDE5MjM0NDNDNUY5OEYwM0RCN0ZGMDU3
M0FFQjc2NDkyMB4XDTI0MDQyNDE3MTkwMloXDTI2MDQyMzE3MTkwMlowGDEWMBQG
A1UEAxMNNjYyOTNmMGEtOWYxZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALdmO9f5dCrnNU8bBEykzeLNS4XjzNFpdGDhi9PbolouyUT8eCW8+3x/Rji5
LzH+9CA3agmUJISeTTZ7OcrMlu5AqttZZvmhmna6y8KVvoed0dlpZoUJsXnA8m66
TzaTKtvqqMI4D//+1OB6YXtMCL2EeeShu2HwyLNlOuL7p3CqzXLRXRypR2Yk2bVU
Gk6o/mRYjvAW6S4rJMgosoXE1FczW0eiq4ysuo6ohwh9WEK/kFJQpQHlCpygYM2r
EMyFw+0BEX0zy5JYXUcS5RJw5ybJyALRgjq2ehyrFsQBXvDOzUD79+Oymis3I0tD
9I/GrBFDZtJ7ZOMuZYqcIvZ3QMsCAwEAAaOCArYwggKyMB0GA1UdDgQWBBRIBcsR
Ur94UDKVjtwbW9YH8oKzAzAfBgNVHSMEGDAWgBQzlN9wGSNEPF+Y8D23/wVzrrdk
kjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTRDQzYvM0ZCRkNFMkUwMjU3MTFFRjg5MzU1N0Y0MDA3MDAxQjEvTTVUZmNC
a2pSRHhmbVBBOXRfOEZjNjYzWkpJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTTVUZmNCa2pSRHhmbVBBOXRfOEZjNjYzWkpJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RTRDQzYvM0ZCRkNFMkUwMjU3MTFFRjg5MzU1N0Y0MDA3
MDAxQjEvQzBFODhERDYwMjVFMTFFRkI1QkFBRDMwMDE3MDAxQjEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAmbSIDAPBAIAAjAJAwcAIAFD
/DAAMA0GCSqGSIb3DQEBCwUAA4IBAQAyd9RTnENK4ors7jZuMh9uMnGXYJZEhM25
p67BgqKUEu0SgNZAaJmsppOKTtpHoOCdS9q37hYHxKVUFmmjaH61U01BTSzYLdAZ
EOLf5s86r5KBJG8N5MfoPdL2fMVqn65wOFj4FrSq97xdrzRfpWk59rtlO7ynCWOc
1b9LNS6nDoRZ/e+WW0KQnnOZkkk12hksRgyyU/p6zmCA6N4f6iIKa28LkBadHikS
NSB0jqeDSUOX5AKvRbHjxqqDnH9KTagGZWU0M2jEZLZF0065pYrN/Ikim55Lsm9b
ziuyrJ7FHM5QUxeZBmx3OmslDZTTBAivBHAuYtNN4JsMPpKgH3Pl
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org