Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/87508F760D4711EF912E6714017001B1.roa
File: 87508F760D4711EF912E6714017001B1.roa (raw, json)
Hash identifier: pydDUnaPtWXCWFUPCr6aFdN9c0OHdtNNb08WtBMhQQc=
Subject key identifier: FA:A2:48:C5:E0:7C:FE:42:05:49:93:93:D1:8F:E4:AA:81:A6:06:B9
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 018F
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/87508F760D4711EF912E6714017001B1.roa
Signing time: Wed 08 May 2024 14:30:34 +0000
ROA not before: Wed 08 May 2024 14:30:30 +0000
ROA not after: Wed 08 May 2030 14:30:30 +0000
asID: 137509
IP address blocks: 102.211.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399 (0x18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: May 8 14:30:30 2024 GMT
Not After : May 8 14:30:30 2030 GMT
Subject: CN=663b8c89-f46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:ec:84:bd:90:9e:c8:fc:44:8d:46:c8:95:
c5:a6:e0:34:a5:b2:a3:a4:a5:b1:a9:1f:b0:d3:b7:
11:d0:55:36:a4:9d:3c:1d:a2:7b:1b:a5:44:9a:4d:
2e:9c:8e:6f:89:a1:51:0e:31:f8:3d:9e:fc:5d:d2:
52:40:35:cc:f3:c8:d5:f4:6d:ec:70:a6:19:32:1a:
d5:b7:15:47:a2:19:4e:72:f7:58:8e:c2:e0:30:b1:
d2:12:b9:6b:a9:fc:ac:56:f9:8b:e8:82:c1:12:1d:
b7:5f:5f:59:c7:1e:24:90:c1:50:bc:07:fc:0a:96:
ae:ec:4d:08:ec:93:86:22:2b:7c:26:79:44:99:3d:
3a:ac:a9:34:c6:09:38:bc:57:47:dd:ae:a2:a1:68:
f4:e0:21:19:0f:5c:74:36:b2:f9:84:69:20:77:d5:
94:c2:3c:c9:ac:c0:44:cc:68:c4:c2:c5:7d:ce:dc:
d2:5a:7f:cb:ba:b3:b9:bd:38:9f:c2:a7:02:ff:7c:
2f:b6:09:f4:a3:42:31:e4:67:46:ed:48:33:14:98:
55:8f:a9:e0:3f:e4:08:1f:79:98:8f:50:aa:0f:51:
a7:f0:25:37:38:bf:f6:df:16:e5:bf:94:99:c4:85:
32:8c:85:75:d4:22:50:3d:7c:c7:d4:0c:ab:a8:4d:
3a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A2:48:C5:E0:7C:FE:42:05:49:93:93:D1:8F:E4:AA:81:A6:06:B9
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/87508F760D4711EF912E6714017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.234.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:cc:e8:c8:cd:c4:a3:45:10:b0:92:16:f2:08:fa:bf:64:c1:
ff:4b:1c:63:9c:45:01:8f:0f:6f:b8:23:b7:9b:c4:cc:b9:ce:
2f:fb:6e:2b:69:a3:d6:bb:bc:d2:ca:cc:f0:d6:9c:fd:b7:d1:
a9:4a:b6:d8:d3:0b:2d:83:bd:a0:d6:1d:2b:19:5c:c6:b1:99:
35:67:50:9f:e2:9c:94:88:bf:a7:46:fc:bb:d4:b9:c7:f5:a7:
87:a1:57:2e:5a:d5:60:5d:65:66:58:d2:01:0e:b6:58:7a:b8:
05:fa:80:65:77:93:e9:d3:a5:e4:4f:a8:6c:1d:c4:72:f6:69:
46:d0:d9:47:39:4d:f5:a8:f5:2e:f2:da:78:20:1a:67:e3:62:
b5:6e:d2:5b:dd:fb:7f:af:ee:39:35:e6:fb:32:c4:5f:b0:f0:
7f:5d:87:d1:1f:45:e4:65:61:26:89:8f:ad:cc:0b:8c:8c:5d:
83:48:00:cb:73:a9:33:7e:41:34:8e:74:e4:a2:85:4e:ae:fd:
bc:c2:00:d1:f3:35:7b:28:0b:95:91:73:44:96:4b:69:62:02:
b5:83:c8:d1:e6:25:54:74:0a:10:c7:49:40:10:25:8d:d7:61:
6a:6c:c9:35:3d:bf:58:d8:f5:11:ab:dd:61:88:76:33:49:85:
aa:bd:16:38
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RUY3RDBBRjExMC8GA1UEBRMoM0E1NTNCNkVGODBCRjkyMjMxMkY5NkI4RERDMUYy
MTlBOEM0MTIxQjAeFw0yNDA1MDgxNDMwMzBaFw0zMDA1MDgxNDMwMzBaMBgxFjAU
BgNVBAMTDTY2M2I4Yzg5LWY0NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCVBuyEvZCeyPxEjUbIlcWm4DSlsqOkpbGpH7DTtxHQVTaknTwdonsbpUSa
TS6cjm+JoVEOMfg9nvxd0lJANczzyNX0bexwphkyGtW3FUeiGU5y91iOwuAwsdIS
uWup/KxW+YvogsESHbdfX1nHHiSQwVC8B/wKlq7sTQjsk4YiK3wmeUSZPTqsqTTG
CTi8V0fdrqKhaPTgIRkPXHQ2svmEaSB31ZTCPMmswETMaMTCxX3O3NJaf8u6s7m9
OJ/CpwL/fC+2CfSjQjHkZ0btSDMUmFWPqeA/5AgfeZiPUKoPUafwJTc4v/bfFuW/
lJnEhTKMhXXUIlA9fMfUDKuoTTqDAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+qJI
xeB8/kIFSZOT0Y/kqoGmBrkwHwYDVR0jBBgwFoAUOlU7bvgL+SIxL5a43cHyGajE
EhswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRBRDlFNkZDL09sVTdi
dmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09sVTdidmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRB
RDlFNkZDLzg3NTA4Rjc2MEQ0NzExRUY5MTJFNjcxNDAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm0+owDQYJKoZIhvcNAQEL
BQADggEBAE/M6MjNxKNFELCSFvII+r9kwf9LHGOcRQGPD2+4I7ebxMy5zi/7bitp
o9a7vNLKzPDWnP230alKttjTCy2DvaDWHSsZXMaxmTVnUJ/inJSIv6dG/LvUucf1
p4ehVy5a1WBdZWZY0gEOtlh6uAX6gGV3k+nTpeRPqGwdxHL2aUbQ2Uc5TfWo9S7y
2nggGmfjYrVu0lvd+3+v7jk15vsyxF+w8H9dh9EfReRlYSaJj63MC4yMXYNIAMtz
qTN+QTSOdOSihU6u/bzCANHzNXsoC5WRc0SWS2liArWDyNHmJVR0ChDHSUAQJY3X
YWpsyTU9v1jY9RGr3WGIdjNJhaq9Fjg=
-----END CERTIFICATE-----
Generated at Sat Jun 1 02:55:13 2024 by rpki-client on console-fra.rpki-client.org