Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/F145B322374E11EE8F129E784AD9E6FC.roa
File: F145B322374E11EE8F129E784AD9E6FC.roa (raw, json)
Hash identifier: MBk8OyWgetmt/dAZbGXNZYY9i8llqzp1g5jqzySwP50=
Subject key identifier: 00:B1:3D:EE:D3:DF:BD:E9:18:28:D4:0B:49:DB:96:33:4B:E5:49:B9
Certificate issuer: /CN=F36F143FAF/serialNumber=1E894EC0B286A6EDD93117D7A3BDCD8F5771019D
Certificate serial: 0C
Authority key identifier: 1E:89:4E:C0:B2:86:A6:ED:D9:31:17:D7:A3:BD:CD:8F:57:71:01:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/F145B322374E11EE8F129E784AD9E6FC.roa
Signing time: Thu 10 Aug 2023 07:24:29 +0000
ROA not before: Thu 10 Aug 2023 07:24:26 +0000
ROA not after: Sat 31 Dec 2033 07:24:26 +0000
asID: 329083
IP address blocks: 2001:43fd:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.mft
rsync://rpki.afrinic.net/repository/afrinic/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Sep 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F143FAF/serialNumber=1E894EC0B286A6EDD93117D7A3BDCD8F5771019D
Validity
Not Before: Aug 10 07:24:26 2023 GMT
Not After : Dec 31 07:24:26 2033 GMT
Subject: CN=64d490ad-4fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ee:c0:10:b2:ee:cf:ba:4a:b8:56:31:67:37:
45:7b:a3:28:38:8c:52:c9:9e:7c:fb:4e:8f:c7:d7:
a5:64:2b:78:4d:5c:c3:d9:c2:f2:4c:a1:35:4d:4a:
64:84:38:0b:96:44:1f:dc:22:24:3e:be:d6:aa:84:
53:fe:c0:4e:84:1a:bd:85:3e:82:d0:e8:e6:09:8b:
cb:5e:45:82:9c:9b:fb:20:6a:3b:9e:43:fb:ea:ac:
4b:df:a9:48:2c:57:26:e2:ed:d3:06:28:10:6c:66:
c5:51:9c:ea:6e:9b:14:a4:54:85:ff:49:b1:e8:54:
e1:7b:fb:51:ed:87:c4:21:46:5a:99:f4:b6:94:c9:
0f:4f:81:2e:42:df:0c:7c:dc:c7:b6:78:6f:6b:b1:
a1:73:68:1d:7f:bf:9b:08:22:09:de:c5:8c:bb:92:
15:ba:58:44:ad:00:ee:bf:ab:1c:d8:70:cd:b7:a7:
8f:b0:42:f3:61:84:25:cb:ae:b3:8b:27:19:aa:b3:
a6:38:5b:3a:7d:b3:9b:92:b8:ac:9c:e7:29:40:9e:
3f:2f:8f:36:cb:ca:c9:a9:ea:e6:29:ec:53:27:20:
7e:c3:c8:4b:38:ac:ee:50:0c:96:f9:64:65:3a:06:
95:ce:55:ff:1a:5a:54:13:fa:97:e1:89:3f:8e:6c:
0a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B1:3D:EE:D3:DF:BD:E9:18:28:D4:0B:49:DB:96:33:4B:E5:49:B9
X509v3 Authority Key Identifier:
keyid:1E:89:4E:C0:B2:86:A6:ED:D9:31:17:D7:A3:BD:CD:8F:57:71:01:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HolOwLKGpu3ZMRfXo73Nj1dxAZ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F143F/54BBD744314411EEAD49313E4AD9E6FC/F145B322374E11EE8F129E784AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43fd:6000::/40
Signature Algorithm: sha256WithRSAEncryption
b5:84:45:04:e3:70:32:78:57:58:44:4d:80:31:25:ea:e6:d6:
39:06:c0:36:d0:25:be:17:05:96:9a:c1:97:90:d7:04:78:95:
93:0b:ed:ed:2a:03:76:61:9d:f1:fe:53:2b:9c:b9:00:cf:35:
b3:8b:12:c7:90:0e:d7:0d:26:2c:9e:c3:0f:8e:10:e0:29:37:
59:81:ba:8e:ac:ab:ef:5d:71:35:52:46:d0:76:00:79:53:d2:
f0:7f:6d:e2:21:8a:a3:08:36:23:31:38:55:9a:e8:4b:da:c9:
a4:86:78:72:e6:6a:08:04:0e:d7:e1:76:1c:7b:76:19:05:0d:
fe:66:45:8a:b5:20:ae:1b:13:61:46:fb:86:fd:f9:dc:1d:6c:
2f:c5:30:d3:0f:d8:aa:46:73:06:b1:41:8b:dc:d6:38:19:88:
d2:70:5f:1d:c9:00:c0:7e:fe:28:69:25:ed:eb:c1:2f:38:32:
a8:75:be:30:2d:50:d3:c2:22:28:52:96:5d:9d:29:0b:f0:4e:
40:7e:c0:bb:bb:53:f0:ba:3f:e8:96:e6:26:4a:4f:fa:b1:ff:
0e:02:70:da:15:d3:e0:b6:88:69:b0:8c:c0:6b:b9:18:a5:8e:
87:01:2e:9a:ed:72:8e:af:89:40:a6:fe:2f:c1:2a:04:94:16:
72:9e:c9:a8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIBDDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
MTQzRkFGMTEwLwYDVQQFEygxRTg5NEVDMEIyODZBNkVERDkzMTE3RDdBM0JEQ0Q4
RjU3NzEwMTlEMB4XDTIzMDgxMDA3MjQyNloXDTMzMTIzMTA3MjQyNlowGDEWMBQG
A1UEAxMNNjRkNDkwYWQtNGZiZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMTuwBCy7s+6SrhWMWc3RXujKDiMUsmefPtOj8fXpWQreE1cw9nC8kyhNU1K
ZIQ4C5ZEH9wiJD6+1qqEU/7AToQavYU+gtDo5gmLy15Fgpyb+yBqO55D++qsS9+p
SCxXJuLt0wYoEGxmxVGc6m6bFKRUhf9JsehU4Xv7Ue2HxCFGWpn0tpTJD0+BLkLf
DHzcx7Z4b2uxoXNoHX+/mwgiCd7FjLuSFbpYRK0A7r+rHNhwzbenj7BC82GEJcuu
s4snGaqzpjhbOn2zm5K4rJznKUCePy+PNsvKyanq5insUycgfsPISzis7lAMlvlk
ZToGlc5V/xpaVBP6l+GJP45sCnUCAwEAAaOCAqcwggKjMB0GA1UdDgQWBBQAsT3u
09+96Rgo1AtJ25YzS+VJuTAfBgNVHSMEGDAWgBQeiU7Asoam7dkxF9ejvc2PV3EB
nTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjE0M0YvNTRCQkQ3NDQzMTQ0MTFFRUFENDkzMTNFNEFEOUU2RkMvSG9sT3dM
S0dwdTNaTVJmWG83M05qMWR4QVowLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvSG9sT3dMS0dwdTNaTVJmWG83M05qMWR4QVowLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjE0M0YvNTRCQkQ3NDQzMTQ0MTFFRUFENDkzMTNFNEFE
OUU2RkMvRjE0NUIzMjIzNzRFMTFFRThGMTI5RTc4NEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABQ/1gMA0GCSqGSIb3DQEB
CwUAA4IBAQC1hEUE43AyeFdYRE2AMSXq5tY5BsA20CW+FwWWmsGXkNcEeJWTC+3t
KgN2YZ3x/lMrnLkAzzWzixLHkA7XDSYsnsMPjhDgKTdZgbqOrKvvXXE1UkbQdgB5
U9Lwf23iIYqjCDYjMThVmuhL2smkhnhy5moIBA7X4XYce3YZBQ3+ZkWKtSCuGxNh
RvuG/fncHWwvxTDTD9iqRnMGsUGL3NY4GYjScF8dyQDAfv4oaSXt68EvODKodb4w
LVDTwiIoUpZdnSkL8E5AfsC7u1Pwuj/oluYmSk/6sf8OAnDaFdPgtohpsIzAa7kY
pY6HAS6a7XKOr4lApv4vwSoElBZynsmo
-----END CERTIFICATE-----
Generated at Sat Sep 28 03:42:47 2024 by rpki-client on console-ams.rpki-client.org