Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/086D98B0CCA811EDB662B1A7F1222468.roa
File: 086D98B0CCA811EDB662B1A7F1222468.roa (raw, json)
Hash identifier: nnMjPyXhgx6XEhhcx/f+j045cw3LDYD0M4TZuc1eZmM=
Subject key identifier: A8:3C:EC:91:94:5A:ED:01:A8:37:D8:1A:38:F1:21:A8:95:E6:5E:E1
Certificate issuer: /CN=F36E61B7AF/serialNumber=4376A562D4DD84D4D68922632EB0BB342A6ADA6A
Certificate serial: 05AB
Authority key identifier: 43:76:A5:62:D4:DD:84:D4:D6:89:22:63:2E:B0:BB:34:2A:6A:DA:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/086D98B0CCA811EDB662B1A7F1222468.roa
Signing time: Mon 27 Mar 2023 14:02:39 +0000
ROA not before: Mon 27 Mar 2023 14:02:35 +0000
ROA not after: Sun 27 Mar 2033 14:02:35 +0000
asID: 328461
IP address blocks: 102.68.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.mft
rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1451 (0x5ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E61B7AF/serialNumber=4376A562D4DD84D4D68922632EB0BB342A6ADA6A
Validity
Not Before: Mar 27 14:02:35 2023 GMT
Not After : Mar 27 14:02:35 2033 GMT
Subject: CN=6421a1ff-6f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:47:ac:39:ac:ee:ca:69:8a:b7:2f:0c:7a:19:
fc:a1:c2:77:a8:b9:d7:9d:68:2d:4a:39:06:2e:1a:
9d:19:24:c1:81:88:1c:5a:bd:48:a4:16:4f:7e:7a:
e0:15:58:64:94:c9:ee:a2:6b:6e:14:8c:80:14:8b:
ea:67:a5:f5:64:5b:13:2e:00:7b:eb:57:67:75:dc:
59:02:3e:18:95:b9:52:07:f4:ef:bd:5f:58:ef:45:
7d:21:bc:77:8f:8f:a9:78:96:d8:a0:56:b3:40:80:
39:cf:b3:0d:4a:f2:af:b9:ef:37:09:47:ac:b4:77:
34:a3:2f:e9:68:23:e0:aa:b5:59:e7:b7:13:27:32:
32:47:94:1c:c3:57:a8:22:a7:48:e3:f7:7d:dd:55:
2d:25:53:1b:29:36:fc:8f:7f:0e:3b:99:6d:53:e8:
4c:51:c8:33:0e:2b:54:18:e5:41:6c:05:3b:fb:a0:
87:15:f1:1d:72:de:5b:25:20:be:36:86:f1:c0:5a:
cf:b6:d3:8a:5a:24:17:7b:03:34:68:d8:ca:dc:64:
3b:49:96:52:41:8a:d3:89:e6:db:54:c8:cf:c3:ad:
3d:ae:63:71:07:c6:0c:b6:a2:87:b6:a1:92:6b:e8:
c6:8d:12:66:d5:e3:d9:fa:21:77:eb:78:0b:d8:ea:
6c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3C:EC:91:94:5A:ED:01:A8:37:D8:1A:38:F1:21:A8:95:E6:5E:E1
X509v3 Authority Key Identifier:
keyid:43:76:A5:62:D4:DD:84:D4:D6:89:22:63:2E:B0:BB:34:2A:6A:DA:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/Q3alYtTdhNTWiSJjLrC7NCpq2mo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Q3alYtTdhNTWiSJjLrC7NCpq2mo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E61B7/AA88E506734611E98799801FF8AEA228/086D98B0CCA811EDB662B1A7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.68.0.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:23:a6:73:a1:f6:d6:46:56:a9:fb:c3:3e:1b:e7:7c:c2:af:
44:85:ee:50:52:74:4b:f6:e5:a5:36:02:0d:9e:1f:4c:70:77:
e5:6d:0b:ab:44:93:89:f7:63:f7:77:40:65:a7:2c:ad:9f:a8:
68:8e:f0:56:0a:d0:a6:dd:ac:67:7a:e4:be:d3:58:ee:5a:d6:
78:3c:b6:a9:4f:3c:96:8a:90:70:34:47:dd:4f:a7:82:50:b8:
83:7d:d2:05:f3:d2:a9:51:f9:31:96:dc:54:cc:7a:de:5f:eb:
53:a4:1c:03:25:5d:06:01:ba:26:88:ae:1a:98:6c:cc:64:f4:
97:9e:37:e1:8e:49:15:d3:5a:1b:6f:ac:d9:d3:0d:fd:48:c4:
43:0c:8c:d7:7d:bf:9f:22:84:ea:ad:00:bb:df:87:6f:97:c8:
7f:cf:f0:11:c3:63:ee:2b:84:f6:4c:dd:ab:0e:9f:4d:05:bb:
42:d7:22:a5:bd:70:85:b9:9b:27:eb:e0:85:6f:89:0f:a6:16:
8b:f1:2c:1c:5b:4c:be:e9:e4:d1:17:9d:84:8d:89:aa:90:5e:
6e:bc:d4:48:86:88:1f:64:4e:e3:6f:d9:4a:72:80:54:02:1c:
55:8a:be:c9:f5:0c:ea:77:e0:b6:03:b2:c7:5b:eb:af:0d:38:
46:20:9f:23
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBaswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RTYxQjdBRjExMC8GA1UEBRMoNDM3NkE1NjJENEREODRENEQ2ODkyMjYzMkVCMEJC
MzQyQTZBREE2QTAeFw0yMzAzMjcxNDAyMzVaFw0zMzAzMjcxNDAyMzVaMBgxFjAU
BgNVBAMMDTY0MjFhMWZmLTZmOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCfR6w5rO7KaYq3Lwx6GfyhwneoudedaC1KOQYuGp0ZJMGBiBxavUikFk9+
euAVWGSUye6ia24UjIAUi+pnpfVkWxMuAHvrV2d13FkCPhiVuVIH9O+9X1jvRX0h
vHePj6l4ltigVrNAgDnPsw1K8q+57zcJR6y0dzSjL+loI+CqtVnntxMnMjJHlBzD
V6gip0jj933dVS0lUxspNvyPfw47mW1T6ExRyDMOK1QY5UFsBTv7oIcV8R1y3lsl
IL42hvHAWs+204paJBd7AzRo2MrcZDtJllJBitOJ5ttUyM/DrT2uY3EHxgy2ooe2
oZJr6MaNEmbV49n6IXfreAvY6mwJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUqDzs
kZRa7QGoN9gaOPEhqJXmXuEwHwYDVR0jBBgwFoAUQ3alYtTdhNTWiSJjLrC7NCpq
2mowDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkU2MUI3L0FBODhFNTA2NzM0NjExRTk4Nzk5ODAxRkY4QUVBMjI4L1EzYWxZ
dFRkaE5UV2lTSmpMckM3TkNwcTJtby5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1EzYWxZdFRkaE5UV2lTSmpMckM3TkNwcTJtby5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkU2MUI3L0FBODhFNTA2NzM0NjExRTk4Nzk5ODAxRkY4
QUVBMjI4LzA4NkQ5OEIwQ0NBODExRURCNjYyQjFBN0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFmRAAwDQYJKoZIhvcNAQEL
BQADggEBABojpnOh9tZGVqn7wz4b53zCr0SF7lBSdEv25aU2Ag2eH0xwd+VtC6tE
k4n3Y/d3QGWnLK2fqGiO8FYK0KbdrGd65L7TWO5a1ng8tqlPPJaKkHA0R91Pp4JQ
uIN90gXz0qlR+TGW3FTMet5f61OkHAMlXQYBuiaIrhqYbMxk9JeeN+GOSRXTWhtv
rNnTDf1IxEMMjNd9v58ihOqtALvfh2+XyH/P8BHDY+4rhPZM3asOn00Fu0LXIqW9
cIW5myfr4IVviQ+mFovxLBxbTL7p5NEXnYSNiaqQXm681EiGiB9kTuNv2UpygFQC
HFWKvsn1DOp34LYDssdb668NOEYgnyM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org