Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/1C19002A58A711EF91CC474E762E951A.roa
File: 1C19002A58A711EF91CC474E762E951A.roa (raw, json)
Hash identifier: 28b+AJrYiZxyaN6PahnQJz38qCvJBTTx3Q3ULsHDeuc=
Subject key identifier: 43:A2:37:1B:43:B8:41:46:28:93:6B:88:80:53:13:49:F0:E4:CD:12
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 020E
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/1C19002A58A711EF91CC474E762E951A.roa
Signing time: Mon 12 Aug 2024 12:33:43 +0000
ROA not before: Mon 12 Aug 2024 12:33:39 +0000
ROA not after: Mon 12 Aug 2030 12:33:39 +0000
asID: 55720
IP address blocks: 102.211.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Aug 12 12:33:39 2024 GMT
Not After : Aug 12 12:33:39 2030 GMT
Subject: CN=66ba0126-22cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:19:cc:3c:2c:aa:09:02:75:a1:11:80:b9:5b:
44:7d:a3:31:56:1a:42:62:98:92:42:46:12:09:9b:
b4:94:2c:46:b4:ed:d1:f0:f4:d9:a9:d1:11:f8:07:
5a:84:7b:06:40:99:52:6f:93:8d:1b:6c:66:a6:e7:
93:a2:7a:0a:18:62:97:77:c8:49:ad:1b:c8:48:88:
1e:2b:52:e4:5b:7a:20:63:be:fd:41:01:4b:5b:6b:
65:99:bc:f8:3b:8c:36:d5:c2:66:39:6c:f8:aa:4e:
f3:21:bf:c4:0d:9f:18:7d:bf:da:5a:2f:91:17:24:
a8:fb:93:5e:e0:08:c1:a5:e7:d0:eb:83:72:e2:9e:
2b:c3:60:bc:4c:a5:25:ec:cc:a0:e8:06:4f:6a:af:
4e:0d:3a:90:4d:65:e7:42:65:ed:a9:fb:aa:5e:9f:
f9:ff:b2:c9:9d:b3:38:d5:ad:90:b3:bf:df:9b:e5:
dd:69:95:de:ec:c6:76:e2:4a:d4:24:9b:20:2a:1b:
25:bc:de:5e:ae:11:46:77:f7:2b:98:ad:3e:18:30:
ff:60:ed:67:f6:1f:f1:af:98:ab:90:42:53:43:65:
76:d7:60:c3:df:77:d9:32:d1:74:37:2d:7e:f4:25:
9a:95:34:ae:c8:b9:d3:f1:1b:e4:3b:fb:c4:0e:f8:
ea:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A2:37:1B:43:B8:41:46:28:93:6B:88:80:53:13:49:F0:E4:CD:12
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/1C19002A58A711EF91CC474E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.234.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e5:f3:0d:49:bf:91:79:2b:5d:f5:df:03:07:04:5e:73:f8:
75:6f:5d:7a:c6:b1:09:d0:9f:16:56:2b:ae:22:b4:9e:c4:d3:
ce:92:a3:a5:00:b0:2b:ae:ae:fb:3b:a4:72:76:1a:ac:ee:08:
82:24:16:a4:75:f0:de:34:bc:ae:08:8a:9c:6b:ca:a0:ce:0a:
74:85:8b:c3:b9:2d:1c:c8:65:40:f0:7a:91:67:dd:97:c7:24:
15:d7:46:dc:79:4b:42:32:4e:73:ca:08:0b:e5:b5:c9:d5:04:
2c:9e:01:3b:14:be:8f:71:55:51:0a:11:6c:46:2d:d6:48:8d:
2c:dd:97:9e:99:66:9b:f9:3b:8a:97:2a:c2:87:a4:b2:05:5e:
52:34:a4:b0:30:c5:a1:f5:99:c4:7e:0f:e4:b2:11:45:d1:de:
9f:44:7e:76:59:9f:b7:56:58:3e:ef:a3:75:26:2e:02:c7:0f:
31:a2:56:a5:15:58:84:63:0d:87:48:fe:a0:71:cd:a7:96:c8:
19:e3:a6:22:24:1d:45:3e:7d:9e:7e:82:ad:40:de:53:13:1e:
6e:68:7d:aa:8d:c1:a7:ce:6a:ba:15:12:f6:80:1a:ca:9d:32:
a8:0b:1f:33:e8:06:66:27:84:84:c5:05:d7:9b:44:cd:01:f9:
a6:93:a4:22
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RUY3RDBBRjExMC8GA1UEBRMoM0E1NTNCNkVGODBCRjkyMjMxMkY5NkI4RERDMUYy
MTlBOEM0MTIxQjAeFw0yNDA4MTIxMjMzMzlaFw0zMDA4MTIxMjMzMzlaMBgxFjAU
BgNVBAMTDTY2YmEwMTI2LTIyY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQD0Gcw8LKoJAnWhEYC5W0R9ozFWGkJimJJCRhIJm7SULEa07dHw9Nmp0RH4
B1qEewZAmVJvk40bbGam55OiegoYYpd3yEmtG8hIiB4rUuRbeiBjvv1BAUtba2WZ
vPg7jDbVwmY5bPiqTvMhv8QNnxh9v9paL5EXJKj7k17gCMGl59Drg3LinivDYLxM
pSXszKDoBk9qr04NOpBNZedCZe2p+6pen/n/ssmdszjVrZCzv9+b5d1pld7sxnbi
StQkmyAqGyW83l6uEUZ39yuYrT4YMP9g7Wf2H/GvmKuQQlNDZXbXYMPfd9ky0XQ3
LX70JZqVNK7IudPxG+Q7+8QO+Oo5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQ6I3
G0O4QUYok2uIgFMTSfDkzRIwHwYDVR0jBBgwFoAUOlU7bvgL+SIxL5a43cHyGajE
EhswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRBRDlFNkZDL09sVTdi
dmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09sVTdidmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRB
RDlFNkZDLzFDMTkwMDJBNThBNzExRUY5MUNDNDc0RTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm0+owDQYJKoZIhvcNAQEL
BQADggEBAATl8w1Jv5F5K1313wMHBF5z+HVvXXrGsQnQnxZWK64itJ7E086So6UA
sCuurvs7pHJ2GqzuCIIkFqR18N40vK4IipxryqDOCnSFi8O5LRzIZUDwepFn3ZfH
JBXXRtx5S0IyTnPKCAvltcnVBCyeATsUvo9xVVEKEWxGLdZIjSzdl56ZZpv5O4qX
KsKHpLIFXlI0pLAwxaH1mcR+D+SyEUXR3p9EfnZZn7dWWD7vo3UmLgLHDzGiVqUV
WIRjDYdI/qBxzaeWyBnjpiIkHUU+fZ5+gq1A3lMTHm5ofaqNwafOaroVEvaAGsqd
MqgLHzPoBmYnhITFBdebRM0B+aaTpCI=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:31 2024 by rpki-client on console-ams.rpki-client.org