Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/0845198C8DDF11EE841826194AD9E6FC.roa
File: 0845198C8DDF11EE841826194AD9E6FC.roa (raw, json)
Hash identifier: RjAkig7q9LVsQiCR96gKwlxjshut4m5EhwHTV6qeAo0=
Subject key identifier: 2C:81:1C:F7:8C:05:5D:A3:CC:8C:90:1A:7B:0B:C5:22:A8:C9:BF:BB
Certificate issuer: /CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Certificate serial: 0138
Authority key identifier: 83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/0845198C8DDF11EE841826194AD9E6FC.roa
Signing time: Tue 28 Nov 2023 11:12:35 +0000
ROA not before: Tue 28 Nov 2023 11:12:32 +0000
ROA not after: Tue 14 Nov 2028 11:12:32 +0000
asID: 37148
IP address blocks: 102.213.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.mft
rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312 (0x138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36ECAA2AF/serialNumber=833D4A24E39CDC942CBC5782541B81D4DD96AEA8
Validity
Not Before: Nov 28 11:12:32 2023 GMT
Not After : Nov 14 11:12:32 2028 GMT
Subject: CN=6565cb23-49b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f3:53:37:a0:99:2a:1f:a7:de:43:52:89:79:
36:02:dc:24:64:b4:55:90:a4:f0:a0:f5:4e:91:36:
2f:7e:6b:e4:6c:86:68:ae:79:24:18:f6:45:d4:dc:
2a:16:7b:28:80:01:92:7f:6b:94:a6:a9:94:fe:cf:
2a:db:7d:48:35:6d:95:5d:df:bc:c4:8e:38:67:c9:
02:54:b0:49:db:ff:77:33:b1:3b:65:99:37:1d:09:
aa:33:dd:87:35:3d:e6:68:f0:76:1b:68:b8:36:38:
ab:b3:6b:86:bd:da:b3:71:fa:17:37:72:2d:78:8f:
06:ba:ed:56:aa:65:85:ff:4a:bb:c6:f1:cd:27:c9:
98:d9:85:a9:57:c2:b8:26:1c:d8:62:48:e8:17:b2:
3c:27:94:f2:f8:03:10:02:54:0a:95:5d:eb:1f:9c:
b3:0d:0d:fe:7a:94:a6:e9:78:a3:82:e1:01:ee:89:
83:23:79:ed:70:6d:33:fb:ca:b0:ff:28:60:4f:b9:
de:07:f8:4f:07:63:34:f5:51:ce:0f:21:48:aa:60:
64:53:80:7d:4c:12:bb:37:f4:49:53:ac:b5:d5:72:
4b:e0:d0:b6:95:9e:b5:88:70:a0:52:b5:4d:53:23:
3d:93:f1:3d:ca:42:95:d9:26:34:7b:c0:4f:b8:2c:
cf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:81:1C:F7:8C:05:5D:A3:CC:8C:90:1A:7B:0B:C5:22:A8:C9:BF:BB
X509v3 Authority Key Identifier:
keyid:83:3D:4A:24:E3:9C:DC:94:2C:BC:57:82:54:1B:81:D4:DD:96:AE:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gz1KJOOc3JQsvFeCVBuB1N2Wrqg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ECAA2/53AE1EDCA60911ED9422C1B9F1222468/0845198C8DDF11EE841826194AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.84.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:b9:b8:c1:50:77:fd:9e:df:6e:d8:61:03:4a:21:5c:66:70:
15:88:cd:7a:ae:57:3c:ca:64:b5:a3:8c:9c:ea:48:bf:1e:3a:
88:fe:57:80:d0:6b:99:a2:3f:1b:1b:2b:ae:8e:48:5e:71:9a:
0f:69:6a:a9:9f:e8:f3:2e:54:f6:94:53:83:6d:de:ef:8e:63:
56:3c:88:e4:55:d3:f6:90:c4:69:61:c6:f8:05:75:74:d8:53:
00:cf:a6:f3:ec:c1:78:92:bf:45:e1:21:6b:be:02:22:fa:91:
9d:45:cf:7a:dc:69:68:2c:d7:94:53:ee:38:c0:8d:2e:9e:46:
2c:e0:ef:92:ce:e3:ef:9e:8e:5a:82:2c:98:f5:d7:e1:11:1e:
c3:10:af:82:dc:1a:ef:58:08:0f:c6:ec:40:de:d1:23:e0:19:
e0:5d:41:2f:64:69:72:18:1c:ad:7e:86:fe:a7:00:03:4a:06:
e8:31:ef:cb:10:ce:aa:f2:cf:86:34:64:c6:58:32:df:b9:93:
14:a3:1e:92:9c:04:36:33:d6:c5:89:d8:65:01:82:e7:79:89:
da:cd:ee:6d:08:87:28:e5:3c:5a:91:91:85:91:23:03:52:ed:
dd:30:10:38:4c:cf:59:64:fe:33:e1:bb:33:4e:fc:f8:45:e6:
c4:2d:45:43
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICATgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RUNBQTJBRjExMC8GA1UEBRMoODMzRDRBMjRFMzlDREM5NDJDQkM1NzgyNTQxQjgx
RDRERDk2QUVBODAeFw0yMzExMjgxMTEyMzJaFw0yODExMTQxMTEyMzJaMBgxFjAU
BgNVBAMTDTY1NjVjYjIzLTQ5YjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCq81M3oJkqH6feQ1KJeTYC3CRktFWQpPCg9U6RNi9+a+RshmiueSQY9kXU
3CoWeyiAAZJ/a5SmqZT+zyrbfUg1bZVd37zEjjhnyQJUsEnb/3czsTtlmTcdCaoz
3Yc1PeZo8HYbaLg2OKuza4a92rNx+hc3ci14jwa67VaqZYX/SrvG8c0nyZjZhalX
wrgmHNhiSOgXsjwnlPL4AxACVAqVXesfnLMNDf56lKbpeKOC4QHuiYMjee1wbTP7
yrD/KGBPud4H+E8HYzT1Uc4PIUiqYGRTgH1MErs39ElTrLXVckvg0LaVnrWIcKBS
tU1TIz2T8T3KQpXZJjR7wE+4LM/DAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQULIEc
94wFXaPMjJAaewvFIqjJv7swHwYDVR0jBBgwFoAUgz1KJOOc3JQsvFeCVBuB1N2W
rqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVDQUEyLzUzQUUxRURDQTYwOTExRUQ5NDIyQzFCOUYxMjIyNDY4L2d6MUtK
T09jM0pRc3ZGZUNWQnVCMU4yV3JxZy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2d6MUtKT09jM0pRc3ZGZUNWQnVCMU4yV3JxZy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVDQUEyLzUzQUUxRURDQTYwOTExRUQ5NDIyQzFCOUYx
MjIyNDY4LzA4NDUxOThDOERERjExRUU4NDE4MjYxOTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm1VQwDQYJKoZIhvcNAQEL
BQADggEBAH65uMFQd/2e327YYQNKIVxmcBWIzXquVzzKZLWjjJzqSL8eOoj+V4DQ
a5miPxsbK66OSF5xmg9paqmf6PMuVPaUU4Nt3u+OY1Y8iORV0/aQxGlhxvgFdXTY
UwDPpvPswXiSv0XhIWu+AiL6kZ1Fz3rcaWgs15RT7jjAjS6eRizg75LO4++ejlqC
LJj11+ERHsMQr4LcGu9YCA/G7EDe0SPgGeBdQS9kaXIYHK1+hv6nAANKBugx78sQ
zqryz4Y0ZMZYMt+5kxSjHpKcBDYz1sWJ2GUBgud5idrN7m0IhyjlPFqRkYWRIwNS
7d0wEDhMz1lk/jPhuzNO/PhF5sQtRUM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:53:00 2024 by rpki-client on console-fra.rpki-client.org