Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/12CCB84CE4DE11EDA0C1852A5D736454.roa
File: 12CCB84CE4DE11EDA0C1852A5D736454.roa (raw, json)
Hash identifier: HaON/agiYAdyVFEHj7cPqN0oFZZmaBLOYLDvF3mwFdM=
Subject key identifier: E5:2C:03:0A:03:BD:6C:AE:47:48:E8:FE:8C:E8:0D:32:9C:AA:5C:3A
Certificate issuer: /CN=F36EBDD7AF/serialNumber=671762DF2F4B65E8350EF43DFE6E347765751B67
Certificate serial: 02D6
Authority key identifier: 67:17:62:DF:2F:4B:65:E8:35:0E:F4:3D:FE:6E:34:77:65:75:1B:67
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/12CCB84CE4DE11EDA0C1852A5D736454.roa
Signing time: Thu 27 Apr 2023 09:29:57 +0000
ROA not before: Thu 27 Apr 2023 09:29:53 +0000
ROA not after: Mon 31 May 2032 09:29:53 +0000
asID: 37349
IP address blocks: 196.200.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.mft
rsync://rpki.afrinic.net/repository/afrinic/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 726 (0x2d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EBDD7AF/serialNumber=671762DF2F4B65E8350EF43DFE6E347765751B67
Validity
Not Before: Apr 27 09:29:53 2023 GMT
Not After : May 31 09:29:53 2032 GMT
Subject: CN=644a4095-e3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:49:0c:16:ac:d6:0d:31:9b:6a:8d:d9:ad:88:
6a:b3:84:ed:f3:ec:d9:8e:45:ce:6e:b1:ad:cc:03:
d4:ed:36:cd:2b:19:fb:3f:fc:6c:f1:2a:9c:a2:1b:
a5:92:eb:8b:44:4f:d7:f4:88:82:2f:83:d3:17:f1:
6f:70:ef:54:42:12:bd:f8:3c:b3:34:28:b0:30:90:
fc:14:f9:c3:a6:2c:73:4e:3a:af:93:cc:1c:5d:00:
23:b0:7c:bf:3b:2a:8b:37:bd:00:4e:3e:58:9b:96:
db:52:b0:6b:32:1b:18:53:48:84:4c:79:53:1c:4a:
64:28:24:de:bd:f7:23:da:b3:fb:b1:3e:58:5b:bb:
fe:ea:b2:58:84:ab:45:4a:28:71:e6:38:fb:28:8f:
de:86:d5:f2:12:d7:65:d8:18:f3:22:b1:72:97:1c:
a6:5e:52:e5:2e:e7:df:50:58:63:ff:36:5c:20:c6:
db:ab:72:67:20:12:e9:5b:73:70:4a:f6:08:05:d1:
15:69:65:0f:36:3b:c9:df:26:de:55:fd:12:9e:01:
96:b4:c6:da:9d:31:75:fd:cb:44:7b:67:36:1c:77:
da:60:64:99:8a:81:83:36:5f:01:56:22:04:1a:73:
d9:f9:44:18:01:3a:26:db:03:c8:3b:6a:6f:96:ce:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2C:03:0A:03:BD:6C:AE:47:48:E8:FE:8C:E8:0D:32:9C:AA:5C:3A
X509v3 Authority Key Identifier:
keyid:67:17:62:DF:2F:4B:65:E8:35:0E:F4:3D:FE:6E:34:77:65:75:1B:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/12CCB84CE4DE11EDA0C1852A5D736454.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.200.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:5e:75:91:7b:47:f2:ca:f2:48:b5:f5:e3:36:c1:30:2c:88:
fd:d5:be:7a:fb:52:5d:cd:a5:7d:47:30:4e:1c:d3:37:be:13:
12:c9:27:ce:8f:09:1e:bd:9b:25:60:58:75:d4:48:a1:cf:54:
a2:d0:fd:90:d6:93:c9:e7:90:ff:5b:c5:dd:ea:d1:f9:73:7d:
47:ab:2a:1e:ab:1c:b6:ec:80:63:1d:e8:95:0c:bb:9d:04:7b:
f2:f7:ac:12:ec:39:78:b1:2b:0d:b8:5f:8f:21:b8:7c:7e:0b:
b5:19:21:b0:8e:26:5a:87:6b:0e:61:c0:10:88:76:c3:04:1e:
12:9b:03:4b:b5:b7:93:8a:bc:24:c5:0b:22:8d:87:2d:69:cc:
4b:7a:22:8c:f4:49:4e:23:cf:89:ee:39:be:18:b6:10:73:c2:
33:0d:0b:80:15:4f:c2:b3:4a:36:76:13:65:29:1c:b3:c5:09:
28:3a:70:fd:e4:0c:d6:c4:0e:b4:b9:2c:45:38:5f:6e:29:5d:
71:6a:bf:38:c9:06:e9:57:e6:c7:73:9e:89:53:cf:2b:fc:7e:
0a:84:50:4e:c0:fe:62:4a:eb:fc:2e:5d:96:e1:0e:0a:1c:95:
d8:2b:74:23:89:e9:38:ec:2d:b4:26:46:05:d0:bc:ac:41:e6:
c6:c4:b4:a7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RUJERDdBRjExMC8GA1UEBRMoNjcxNzYyREYyRjRCNjVFODM1MEVGNDNERkU2RTM0
Nzc2NTc1MUI2NzAeFw0yMzA0MjcwOTI5NTNaFw0zMjA1MzEwOTI5NTNaMBgxFjAU
BgNVBAMTDTY0NGE0MDk1LWUzZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC6SQwWrNYNMZtqjdmtiGqzhO3z7NmORc5usa3MA9TtNs0rGfs//GzxKpyi
G6WS64tET9f0iIIvg9MX8W9w71RCEr34PLM0KLAwkPwU+cOmLHNOOq+TzBxdACOw
fL87Kos3vQBOPliblttSsGsyGxhTSIRMeVMcSmQoJN699yPas/uxPlhbu/7qsliE
q0VKKHHmOPsoj96G1fIS12XYGPMisXKXHKZeUuUu599QWGP/NlwgxturcmcgEulb
c3BK9ggF0RVpZQ82O8nfJt5V/RKeAZa0xtqdMXX9y0R7ZzYcd9pgZJmKgYM2XwFW
IgQac9n5RBgBOibbA8g7am+WzlmbAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5SwD
CgO9bK5HSOj+jOgNMpyqXDowHwYDVR0jBBgwFoAUZxdi3y9LZeg1DvQ9/m40d2V1
G2cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVCREQ3LzU5OTA3NDYwQkUxRDExRUI5QTM0OEI0MkY4QUVBMjI4L1p4ZGkz
eTlMWmVnMUR2UTlfbTQwZDJWMUcyYy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1p4ZGkzeTlMWmVnMUR2UTlfbTQwZDJWMUcyYy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVCREQ3LzU5OTA3NDYwQkUxRDExRUI5QTM0OEI0MkY4
QUVBMjI4LzEyQ0NCODRDRTRERTExRURBMEMxODUyQTVENzM2NDU0LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATEyOAwDQYJKoZIhvcNAQEL
BQADggEBAKFedZF7R/LK8ki19eM2wTAsiP3Vvnr7Ul3NpX1HME4c0ze+ExLJJ86P
CR69myVgWHXUSKHPVKLQ/ZDWk8nnkP9bxd3q0flzfUerKh6rHLbsgGMd6JUMu50E
e/L3rBLsOXixKw24X48huHx+C7UZIbCOJlqHaw5hwBCIdsMEHhKbA0u1t5OKvCTF
CyKNhy1pzEt6Ioz0SU4jz4nuOb4YthBzwjMNC4AVT8KzSjZ2E2UpHLPFCSg6cP3k
DNbEDrS5LEU4X24pXXFqvzjJBulX5sdznolTzyv8fgqEUE7A/mJK6/wuXZbhDgoc
ldgrdCOJ6TjsLbQmRgXQvKxB5sbEtKc=
-----END CERTIFICATE-----
Generated at Tue May 21 03:39:26 2024 by rpki-client on console-ams.rpki-client.org