Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/8859EF00498511EABE163653F8AEA228.roa
File: 8859EF00498511EABE163653F8AEA228.roa (raw, json)
Hash identifier: QVI82FLm1BSma7kxHblG+4W4pZzP5tIprd7dKYd5Sbc=
Subject key identifier: BB:D8:B2:2C:F0:5E:AD:BC:C7:9E:7C:3F:70:E4:F5:E6:5E:9A:21:95
Certificate issuer: /CN=F36F18B8AF/serialNumber=3E887E856814833141F8D0F664ACAF6C4A305D43
Certificate serial: 04
Authority key identifier: 3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/8859EF00498511EABE163653F8AEA228.roa
Signing time: Fri 07 Feb 2020 08:40:47 +0000
ROA not before: Fri 07 Feb 2020 08:40:41 +0000
ROA not after: Wed 01 Feb 2040 08:40:41 +0000
asID: 328242
IP address blocks: 154.115.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft
rsync://rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:04:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F18B8AF/serialNumber=3E887E856814833141F8D0F664ACAF6C4A305D43
Validity
Not Before: Feb 7 08:40:41 2020 GMT
Not After : Feb 1 08:40:41 2040 GMT
Subject: CN=5e3d228e-7ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:6c:e6:31:e1:0e:21:a6:b5:ee:41:be:fe:
01:04:3f:f1:4a:0a:30:6f:cb:a4:cb:a0:14:1f:84:
cd:aa:d8:99:cf:db:1e:b9:f8:ae:55:b2:0d:44:58:
22:51:5a:49:da:80:f0:45:9a:42:05:1f:a3:53:67:
d1:46:27:bc:6a:0b:58:5a:e7:fc:2c:4d:15:34:32:
37:6f:b6:1c:a5:0f:22:23:04:bb:47:e4:85:2a:45:
42:62:0e:5d:34:fc:62:ac:fa:6b:52:1e:5a:be:8a:
6a:a3:36:42:b3:4d:7b:17:31:30:4c:9f:b9:42:5b:
d5:ea:4e:d7:bc:5d:44:bb:d7:56:f3:8d:80:98:74:
bc:e1:9b:2d:9e:be:d2:59:ef:31:06:ee:47:34:c4:
cc:fb:fb:62:eb:23:4a:49:ce:b3:ad:5a:75:56:a4:
73:ba:3f:2d:1f:2d:23:57:6d:19:be:fb:99:4a:da:
eb:0d:bd:be:ed:83:3d:fe:d9:47:17:0f:28:b8:3d:
12:38:bc:f1:dd:3f:0a:3c:aa:04:7b:ca:d1:88:f1:
7a:bf:c9:1e:04:d1:bd:03:0b:7d:77:40:6c:63:75:
c6:9f:36:13:5f:32:04:eb:57:2f:24:2d:4d:ba:9a:
5d:05:a9:4a:78:28:18:e0:a2:f0:ee:54:88:25:24:
3d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D8:B2:2C:F0:5E:AD:BC:C7:9E:7C:3F:70:E4:F5:E6:5E:9A:21:95
X509v3 Authority Key Identifier:
keyid:3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/8859EF00498511EABE163653F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.115.156.0/22
Signature Algorithm: sha256WithRSAEncryption
68:bb:9d:27:03:74:63:6e:2f:d6:f7:bc:07:98:b6:66:44:86:
47:cf:2e:07:ba:9a:8c:92:36:08:7a:29:90:70:c8:5d:8e:43:
13:02:2a:6a:36:09:08:73:b1:9d:5e:3e:e0:ec:af:ca:a1:e4:
1d:a7:78:d3:da:4f:dd:d3:19:89:7d:09:70:a4:6b:13:9a:5c:
7e:4d:29:89:fe:4a:36:d5:68:de:b4:13:aa:72:c1:40:24:03:
3e:0a:b3:44:c3:37:06:1c:69:30:e6:72:c5:40:12:11:37:8d:
1c:c6:c8:c8:86:54:cc:6a:50:c5:c3:8f:6f:2e:5d:96:76:9d:
c5:d7:be:dc:58:31:60:7f:39:7f:e1:ef:aa:db:54:3b:2e:2a:
a3:e7:29:ab:e4:3b:db:41:9d:3e:9d:12:cb:72:92:ec:39:fa:
c0:c2:7d:01:3e:e2:92:e4:6b:0d:87:60:e9:85:f6:10:31:c5:
ad:7b:23:13:30:e9:a6:55:02:f2:41:a6:42:fd:3d:bc:97:ed:
c9:46:a7:44:04:eb:38:d4:45:8b:66:9a:7f:f7:8c:b4:54:e5:
38:ac:64:0b:37:7e:44:a5:b7:c3:88:41:a0:95:86:90:0b:67:
e8:c5:93:5f:df:b6:3e:ef:65:e6:97:75:af:5f:42:78:ed:fd:
ab:3a:32:6b
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
MThCOEFGMTEwLwYDVQQFEygzRTg4N0U4NTY4MTQ4MzMxNDFGOEQwRjY2NEFDQUY2
QzRBMzA1RDQzMB4XDTIwMDIwNzA4NDA0MVoXDTQwMDIwMTA4NDA0MVowGDEWMBQG
A1UEAxMNNWUzZDIyOGUtN2VjNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKMQbOYx4Q4hprXuQb7+AQQ/8UoKMG/LpMugFB+EzarYmc/bHrn4rlWyDURY
IlFaSdqA8EWaQgUfo1Nn0UYnvGoLWFrn/CxNFTQyN2+2HKUPIiMEu0fkhSpFQmIO
XTT8Yqz6a1IeWr6KaqM2QrNNexcxMEyfuUJb1epO17xdRLvXVvONgJh0vOGbLZ6+
0lnvMQbuRzTEzPv7YusjSknOs61adVakc7o/LR8tI1dtGb77mUra6w29vu2DPf7Z
RxcPKLg9Eji88d0/CjyqBHvK0Yjxer/JHgTRvQMLfXdAbGN1xp82E18yBOtXLyQt
TbqaXQWpSngoGOCi8O5UiCUkPcsCAwEAAaOCAm4wggJqMB0GA1UdDgQWBBS72LIs
8F6tvMeefD9w5PXmXpohlTAfBgNVHSMEGDAWgBQ+iH6FaBSDMUH40PZkrK9sSjBd
QzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjE4QjgvRTIxQkYzNTQ0OTg0MTFFQUFDNDJBQTUyRjhBRUEyMjgvUG9oLWhX
Z1VnekZCLU5EMlpLeXZiRW93WFVNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvUG9oLWhXZ1VnekZCLU5EMlpLeXZiRW93WFVNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjE4QjgvRTIxQkYzNTQ0OTg0MTFFQUFDNDJBQTUyRjhB
RUEyMjgvODg1OUVGMDA0OTg1MTFFQUJFMTYzNjUzRjhBRUEyMjgucm9hMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmnOcMA0GCSqGSIb3DQEBCwUAA4IBAQBo
u50nA3Rjbi/W97wHmLZmRIZHzy4HupqMkjYIeimQcMhdjkMTAipqNgkIc7GdXj7g
7K/KoeQdp3jT2k/d0xmJfQlwpGsTmlx+TSmJ/ko21WjetBOqcsFAJAM+CrNEwzcG
HGkw5nLFQBIRN40cxsjIhlTMalDFw49vLl2Wdp3F177cWDFgfzl/4e+q21Q7Liqj
5ymr5DvbQZ0+nRLLcpLsOfrAwn0BPuKS5GsNh2DphfYQMcWteyMTMOmmVQLyQaZC
/T28l+3JRqdEBOs41EWLZpp/94y0VOU4rGQLN35EpbfDiEGglYaQC2foxZNf37Y+
72Xml3WvX0J47f2rOjJr
-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:23 2024 by rpki-client on console-fra.rpki-client.org