Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/E43D45DC0C3C11EFB8CD281D017001B1.roa
File: E43D45DC0C3C11EFB8CD281D017001B1.roa (raw, json)
Hash identifier: R8ulMmrfGkuMtb3v329xEElK9Y5a9CJSrn49RnSXiYU=
Subject key identifier: 2E:2B:80:68:6C:6E:47:F2:21:CF:5B:61:F2:09:3F:D5:B6:3E:83:E0
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 0185
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/E43D45DC0C3C11EFB8CD281D017001B1.roa
Signing time: Tue 07 May 2024 06:41:54 +0000
ROA not before: Tue 07 May 2024 06:41:51 +0000
ROA not after: Tue 07 May 2030 06:41:51 +0000
asID: 137509
IP address blocks: 102.211.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.mft
rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 10 Jun 2024 00:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389 (0x185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: May 7 06:41:51 2024 GMT
Not After : May 7 06:41:51 2030 GMT
Subject: CN=6639cd32-6f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a8:22:27:55:7a:6b:65:63:c2:cd:dc:05:e5:
01:46:7d:5e:7e:4b:76:1b:3e:ea:94:b5:09:e7:51:
6d:1c:ee:99:fc:8c:79:52:b8:c6:98:09:80:f3:30:
5f:54:99:08:f3:21:57:05:fa:7d:07:77:5a:5e:01:
14:27:22:5a:86:71:47:91:56:da:1c:55:e7:71:cd:
4d:b0:99:8a:69:bc:f7:6f:9c:64:fd:a2:99:48:0b:
7c:3b:94:9f:65:b2:2c:1c:5a:d1:c4:a1:3d:80:80:
4c:43:f2:ee:16:5f:bf:86:14:73:2d:0e:2d:fc:06:
0a:c1:d8:76:fd:cd:f5:ab:95:cf:83:3b:aa:cd:8f:
29:86:3d:ad:b3:d5:fa:8d:62:84:01:0f:b8:ee:2b:
a1:65:42:dd:1e:88:54:f3:10:cd:76:99:4a:f4:4a:
94:9e:fc:02:6d:53:25:07:17:61:c3:06:5d:39:75:
fc:66:fa:6c:95:91:d9:1a:67:19:7d:4b:e1:5c:7e:
d3:07:7e:11:8b:85:81:b3:af:d1:d8:dc:a1:d1:95:
0a:6f:f7:8f:37:b7:43:ac:a9:45:ec:ad:04:b0:43:
3f:75:5b:6d:9d:05:df:a6:00:f3:87:8b:98:b8:fb:
a5:2a:e7:f3:ee:0d:80:8c:90:69:0e:4e:2a:18:1a:
83:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2B:80:68:6C:6E:47:F2:21:CF:5B:61:F2:09:3F:D5:B6:3E:83:E0
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/E43D45DC0C3C11EFB8CD281D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/24
Signature Algorithm: sha256WithRSAEncryption
73:75:5c:2d:ba:4f:a8:04:4b:d2:e8:e1:27:c7:bd:b5:fc:f7:
00:ab:ba:8f:86:51:02:9b:2d:88:76:6f:3a:a4:d1:bc:17:09:
9e:da:9a:7e:6f:a7:c2:5e:92:f0:46:7a:ef:78:96:e6:9b:06:
83:69:38:ae:0f:a9:d2:aa:7e:48:29:88:53:a0:e8:7d:cc:65:
8c:e7:0e:51:43:c9:d3:fb:de:dc:5f:ee:c0:35:0f:90:70:73:
1b:29:a9:5f:22:90:de:ac:e0:cd:09:f9:f6:2b:ab:15:23:84:
81:0d:65:25:68:4c:ac:47:61:00:77:77:08:c3:d1:b0:8b:d1:
0c:07:9e:70:61:04:ce:3f:e8:28:e7:d7:81:1c:90:87:69:a3:
46:69:7b:fc:03:69:84:fb:11:2e:17:a3:6f:ff:1a:89:5c:21:
db:43:7e:21:89:ef:ac:fa:ff:e1:1b:ed:0b:c0:cb:64:f0:64:
60:26:8c:73:51:19:a1:66:d7:45:10:4a:39:a5:a7:ff:c4:a0:
6d:38:94:84:83:ec:4b:89:77:6f:52:f4:01:0f:2c:be:2e:ac:
58:16:64:20:83:48:c9:69:c8:ee:8a:7c:ca:90:42:0e:75:cc:
3f:68:11:68:fd:2b:de:92:7f:90:13:2a:18:98:a6:2a:68:ab:
7b:64:f4:21
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RUY3RDBBRjExMC8GA1UEBRMoM0E1NTNCNkVGODBCRjkyMjMxMkY5NkI4RERDMUYy
MTlBOEM0MTIxQjAeFw0yNDA1MDcwNjQxNTFaFw0zMDA1MDcwNjQxNTFaMBgxFjAU
BgNVBAMTDTY2MzljZDMyLTZmMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC3qCInVXprZWPCzdwF5QFGfV5+S3YbPuqUtQnnUW0c7pn8jHlSuMaYCYDz
MF9UmQjzIVcF+n0Hd1peARQnIlqGcUeRVtocVedxzU2wmYppvPdvnGT9oplIC3w7
lJ9lsiwcWtHEoT2AgExD8u4WX7+GFHMtDi38BgrB2Hb9zfWrlc+DO6rNjymGPa2z
1fqNYoQBD7juK6FlQt0eiFTzEM12mUr0SpSe/AJtUyUHF2HDBl05dfxm+myVkdka
Zxl9S+FcftMHfhGLhYGzr9HY3KHRlQpv9483t0OsqUXsrQSwQz91W22dBd+mAPOH
i5i4+6Uq5/PuDYCMkGkOTioYGoOvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQULiuA
aGxuR/Ihz1th8gk/1bY+g+AwHwYDVR0jBBgwFoAUOlU7bvgL+SIxL5a43cHyGajE
EhswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRBRDlFNkZDL09sVTdi
dmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09sVTdidmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRB
RDlFNkZDL0U0M0Q0NURDMEMzQzExRUZCOENEMjgxRDAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm0+gwDQYJKoZIhvcNAQEL
BQADggEBAHN1XC26T6gES9Lo4SfHvbX89wCruo+GUQKbLYh2bzqk0bwXCZ7amn5v
p8JekvBGeu94luabBoNpOK4PqdKqfkgpiFOg6H3MZYznDlFDydP73txf7sA1D5Bw
cxspqV8ikN6s4M0J+fYrqxUjhIENZSVoTKxHYQB3dwjD0bCL0QwHnnBhBM4/6Cjn
14EckIdpo0Zpe/wDaYT7ES4Xo2//GolcIdtDfiGJ76z6/+Eb7QvAy2TwZGAmjHNR
GaFm10UQSjmlp//EoG04lISD7EuJd29S9AEPLL4urFgWZCCDSMlpyO6KfMqQQg51
zD9oEWj9K96Sf5ATKhiYpipoq3tk9CE=
-----END CERTIFICATE-----
Generated at Sat Jun 8 02:50:43 2024 by rpki-client on console-fra.rpki-client.org