Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/77776CF68DDF11EE9554951A4AD9E6FC.roa
File: 77776CF68DDF11EE9554951A4AD9E6FC.roa (raw, json)
Hash identifier: P/s62KTUxEoG/rgkYrfYli6201mLv2NV6jxtdASDzgE=
Subject key identifier: 57:1A:74:75:15:D3:5C:30:13:51:D5:43:7E:E8:AC:6D:B5:E4:65:EB
Certificate issuer: /CN=F36ECAA2AR/serialNumber=9242C6092FE2239ACD30C48F35AC1BC4DDF5DCBE
Certificate serial: 0135
Authority key identifier: 92:42:C6:09:2F:E2:23:9A:CD:30:C4:8F:35:AC:1B:C4:DD:F5:DC:BE
Authority info access: rsync://rpki.afrinic.net/repository/arin/kkLGCS_iI5rNMMSPNawbxN313L4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/77776CF68DDF11EE9554951A4AD9E6FC.roa
Signing time: Tue 28 Nov 2023 11:15:42 +0000
ROA not before: Tue 28 Nov 2023 11:15:38 +0000
ROA not after: Tue 14 Nov 2028 11:15:38 +0000
asID: 37148
IP address blocks: 129.205.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/kkLGCS_iI5rNMMSPNawbxN313L4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/kkLGCS_iI5rNMMSPNawbxN313L4.mft
rsync://rpki.afrinic.net/repository/arin/kkLGCS_iI5rNMMSPNawbxN313L4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309 (0x135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36ECAA2AR/serialNumber=9242C6092FE2239ACD30C48F35AC1BC4DDF5DCBE
Validity
Not Before: Nov 28 11:15:38 2023 GMT
Not After : Nov 14 11:15:38 2028 GMT
Subject: CN=6565cbde-eef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9c:89:71:d0:f0:1a:77:cc:b5:b2:89:e8:e9:
83:f4:82:28:66:f5:3a:e1:97:e7:2d:4e:99:5f:c5:
01:61:35:af:f5:84:0c:05:8a:bb:e7:74:6b:26:6d:
79:40:39:38:a5:b8:d2:c8:cd:c1:1b:16:db:21:34:
04:9a:16:0b:56:88:42:61:b7:df:3f:83:f8:44:8c:
59:43:02:4b:c5:ba:60:7c:ed:2f:6f:bb:87:83:5a:
fd:58:c3:36:a9:cb:90:dd:94:a4:af:46:9f:11:e8:
0a:39:2a:95:21:5b:87:c0:b1:41:9c:5b:ea:97:92:
62:f1:f2:e1:2d:2f:22:fa:59:db:e8:a6:28:84:51:
a5:3e:84:8c:76:1a:1f:aa:d0:a0:d5:c6:ac:32:f6:
d6:a2:ce:c1:23:0d:e4:7e:d8:6e:2f:46:cb:70:8c:
ef:e2:df:ca:61:e3:d1:88:8b:c4:10:f3:0a:d0:f2:
a8:db:45:5a:dd:14:b6:9c:34:c1:32:17:c4:99:1d:
ec:69:8f:90:65:57:8e:47:c1:b6:40:dc:a9:b6:3a:
8b:34:be:27:97:06:25:96:4a:94:f9:f1:61:c0:0d:
d8:13:eb:75:8f:72:94:b4:50:52:c6:bc:8d:03:26:
27:51:ca:3e:12:d5:f6:fe:2a:f7:c6:18:04:33:66:
fd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1A:74:75:15:D3:5C:30:13:51:D5:43:7E:E8:AC:6D:B5:E4:65:EB
X509v3 Authority Key Identifier:
keyid:92:42:C6:09:2F:E2:23:9A:CD:30:C4:8F:35:AC:1B:C4:DD:F5:DC:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/kkLGCS_iI5rNMMSPNawbxN313L4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kkLGCS_iI5rNMMSPNawbxN313L4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/3C5E0A62A60911EDA2E792B9F1222468/77776CF68DDF11EE9554951A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
129.205.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:c4:a1:e4:02:69:4c:96:91:fd:40:8f:52:b2:fd:6e:a8:18:
4c:d6:87:ec:13:8c:f6:4e:dd:01:d9:e7:4e:6c:49:29:59:dd:
0b:42:19:2c:43:66:98:cc:a4:4e:71:7d:cf:8e:14:b7:bd:18:
d0:53:49:22:0d:96:98:46:79:6c:a0:a6:c3:26:af:80:89:5d:
f8:b4:de:6a:87:fc:d1:18:14:d5:fb:0a:dc:67:98:84:0a:d1:
b3:a0:dc:99:67:58:68:4a:a7:f5:59:02:12:25:62:31:71:ec:
f8:7b:39:69:ca:2f:ef:e7:f7:56:2a:73:5e:ab:de:aa:a2:ed:
57:7b:11:52:ea:b3:df:98:c9:2d:00:f4:90:6d:75:de:d2:0b:
af:85:63:36:87:c4:c4:56:cc:0c:6a:ba:a1:5d:3a:6a:e5:cb:
e0:77:82:77:af:7d:2e:6f:b4:29:ca:06:db:89:7b:37:20:c5:
b1:d1:26:e3:ec:d4:01:30:ac:55:50:62:e7:d1:ca:2a:67:68:
41:40:b2:35:47:59:b5:2c:6f:65:69:b8:35:cc:c0:80:4d:91:
ab:29:0c:d9:ee:eb:64:8e:fa:06:5f:e2:b9:2f:bc:7a:5e:f3:
89:ae:d1:c4:66:68:47:c9:e3:8d:cc:72:2c:e1:38:38:00:c0:
98:f7:54:8e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICATUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RUNBQTJBUjExMC8GA1UEBRMoOTI0MkM2MDkyRkUyMjM5QUNEMzBDNDhGMzVBQzFC
QzREREY1RENCRTAeFw0yMzExMjgxMTE1MzhaFw0yODExMTQxMTE1MzhaMBgxFjAU
BgNVBAMTDTY1NjVjYmRlLWVlZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDinIlx0PAad8y1sono6YP0gihm9Trhl+ctTplfxQFhNa/1hAwFirvndGsm
bXlAOTiluNLIzcEbFtshNASaFgtWiEJht98/g/hEjFlDAkvFumB87S9vu4eDWv1Y
wzapy5DdlKSvRp8R6Ao5KpUhW4fAsUGcW+qXkmLx8uEtLyL6WdvopiiEUaU+hIx2
Gh+q0KDVxqwy9taizsEjDeR+2G4vRstwjO/i38ph49GIi8QQ8wrQ8qjbRVrdFLac
NMEyF8SZHexpj5BlV45HwbZA3Km2Oos0vieXBiWWSpT58WHADdgT63WPcpS0UFLG
vI0DJidRyj4S1fb+KvfGGAQzZv2PAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUVxp0
dRXTXDATUdVDfuisbbXkZeswHwYDVR0jBBgwFoAUkkLGCS/iI5rNMMSPNawbxN31
3L4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVDQUEyLzNDNUUwQTYyQTYwOTExRURBMkU3OTJCOUYxMjIyNDY4L2trTEdD
U19pSTVyTk1NU1BOYXdieE4zMTNMNC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2trTEdDU19pSTVyTk1NU1BOYXdieE4zMTNMNC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkVDQUEyLzNDNUUwQTYyQTYwOTExRURBMkU3OTJCOUYxMjIy
NDY4Lzc3Nzc2Q0Y2OERERjExRUU5NTU0OTUxQTRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWBzWAwDQYJKoZIhvcNAQELBQAD
ggEBAJrEoeQCaUyWkf1Aj1Ky/W6oGEzWh+wTjPZO3QHZ505sSSlZ3QtCGSxDZpjM
pE5xfc+OFLe9GNBTSSINlphGeWygpsMmr4CJXfi03mqH/NEYFNX7CtxnmIQK0bOg
3JlnWGhKp/VZAhIlYjFx7Ph7OWnKL+/n91Yqc16r3qqi7Vd7EVLqs9+YyS0A9JBt
dd7SC6+FYzaHxMRWzAxquqFdOmrly+B3gnevfS5vtCnKBtuJezcgxbHRJuPs1AEw
rFVQYufRyipnaEFAsjVHWbUsb2VpuDXMwIBNkaspDNnu62SO+gZf4rkvvHpe84mu
0cRmaEfJ443McizhODgAwJj3VI4=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org