Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/CF11144669BB11EEBEC7BF4E4AD9E6FC.roa
File: CF11144669BB11EEBEC7BF4E4AD9E6FC.roa (raw, json)
Hash identifier: jVDLQqzU5lX70Av7IqzNJn5pSmJ1DH8wQT4zfXJ4GDg=
Subject key identifier: F2:73:1A:6A:5A:DA:82:A1:B8:FA:93:83:D6:A7:14:A9:95:78:0E:5A
Certificate issuer: /CN=F36F193DAF/serialNumber=F7BF5D5A467375CDBF22158151722ED4AB9A03A6
Certificate serial: 02
Authority key identifier: F7:BF:5D:5A:46:73:75:CD:BF:22:15:81:51:72:2E:D4:AB:9A:03:A6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/979dWkZzdc2_IhWBUXIu1KuaA6Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/CF11144669BB11EEBEC7BF4E4AD9E6FC.roa
Signing time: Fri 13 Oct 2023 11:29:45 +0000
ROA not before: Fri 13 Oct 2023 11:29:41 +0000
ROA not after: Fri 17 Oct 2025 11:29:41 +0000
asID: 203963
IP address blocks: 102.215.208.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/979dWkZzdc2_IhWBUXIu1KuaA6Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/979dWkZzdc2_IhWBUXIu1KuaA6Y.mft
rsync://rpki.afrinic.net/repository/afrinic/979dWkZzdc2_IhWBUXIu1KuaA6Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Jun 2024 00:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F193DAF/serialNumber=F7BF5D5A467375CDBF22158151722ED4AB9A03A6
Validity
Not Before: Oct 13 11:29:41 2023 GMT
Not After : Oct 17 11:29:41 2025 GMT
Subject: CN=65292a29-b097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:77:6f:5f:1d:27:8e:ac:1f:3e:b3:1c:3e:55:
2b:50:82:e8:da:fb:2c:07:f6:9d:27:16:29:87:1c:
2b:3c:23:57:3b:67:49:05:d1:43:5d:a9:46:65:27:
4d:9d:ad:1f:4f:d8:c8:ad:94:3c:f1:a2:41:03:e2:
f4:44:af:02:07:38:19:a2:d8:11:64:49:00:4d:55:
dd:71:64:3b:4b:41:cd:4f:84:3d:c5:50:92:9b:4f:
e2:ff:75:70:f4:e6:7f:8a:e0:70:ff:12:0e:00:08:
39:81:47:92:e0:e2:aa:e1:21:f2:a6:c4:aa:5e:52:
76:b2:b0:33:3f:80:b0:f1:47:53:e1:27:bd:67:40:
5a:fd:c7:8e:1a:d2:4e:7b:73:b1:fb:cb:ff:c5:c4:
8e:96:4d:99:a7:86:0c:c7:f8:7a:fb:82:7d:2e:6f:
15:15:84:7e:d8:ba:f1:10:f9:3a:ea:a2:ba:9a:39:
f1:63:8a:e6:04:77:83:71:b2:02:54:70:27:17:47:
9b:08:74:e7:21:6e:f7:38:32:a7:9f:01:2a:49:8e:
a7:8f:4b:3c:a4:95:21:46:11:0f:69:2b:92:9f:f8:
87:d9:68:db:ca:6f:fe:ee:e2:69:e0:43:f6:de:7e:
b9:71:e2:90:94:e4:d1:a1:bb:e9:cd:05:cb:ad:c7:
81:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:73:1A:6A:5A:DA:82:A1:B8:FA:93:83:D6:A7:14:A9:95:78:0E:5A
X509v3 Authority Key Identifier:
keyid:F7:BF:5D:5A:46:73:75:CD:BF:22:15:81:51:72:2E:D4:AB:9A:03:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/979dWkZzdc2_IhWBUXIu1KuaA6Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/979dWkZzdc2_IhWBUXIu1KuaA6Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F193D/17AB84B269BB11EE81EE854C4AD9E6FC/CF11144669BB11EEBEC7BF4E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.208.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:e1:ff:1f:c9:b8:c0:83:e8:db:d8:16:00:4b:5b:d7:32:e8:
bc:22:75:e3:af:fe:87:2b:cb:e4:9f:d1:da:1d:a7:fe:b1:a7:
b6:a8:f4:0d:06:6b:d7:28:b1:cb:a3:1d:a9:78:1a:32:25:3e:
0d:ff:53:9e:02:66:8a:24:a4:89:c3:2f:61:51:18:ee:22:92:
3e:2b:f7:5d:e4:85:71:82:28:26:61:ab:9e:7e:87:c8:91:4c:
96:a0:7c:84:fc:52:2b:f8:14:39:df:3c:e5:aa:50:5b:ca:62:
96:95:8a:77:88:8b:4f:4e:19:35:17:28:2f:20:24:05:1e:24:
cf:a5:54:17:df:00:34:22:1e:7b:e4:5d:c6:65:f4:39:d9:42:
d4:26:7f:0d:12:19:cd:9f:e0:6e:09:40:d8:53:3e:bc:cd:c5:
79:f0:bd:a1:8c:08:be:6c:da:b6:e6:fe:65:38:43:65:4d:87:
b0:7f:96:2e:e0:89:6c:15:f4:8a:9e:d3:66:ae:51:f0:96:e7:
2c:0b:93:b7:c7:1b:d8:e0:fc:48:45:a9:8f:69:02:8b:4d:3b:
3d:15:12:c6:d6:0b:30:11:e8:9f:13:5e:84:fe:a9:e1:f7:fb:
81:72:e7:13:ab:4f:40:80:3d:3e:59:a6:eb:63:d5:9b:6c:72:
05:ca:24:79
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
MTkzREFGMTEwLwYDVQQFEyhGN0JGNUQ1QTQ2NzM3NUNEQkYyMjE1ODE1MTcyMkVE
NEFCOUEwM0E2MB4XDTIzMTAxMzExMjk0MVoXDTI1MTAxNzExMjk0MVowGDEWMBQG
A1UEAxMNNjUyOTJhMjktYjA5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL13b18dJ46sHz6zHD5VK1CC6Nr7LAf2nScWKYccKzwjVztnSQXRQ12pRmUn
TZ2tH0/YyK2UPPGiQQPi9ESvAgc4GaLYEWRJAE1V3XFkO0tBzU+EPcVQkptP4v91
cPTmf4rgcP8SDgAIOYFHkuDiquEh8qbEql5SdrKwMz+AsPFHU+EnvWdAWv3HjhrS
TntzsfvL/8XEjpZNmaeGDMf4evuCfS5vFRWEfti68RD5Ouqiupo58WOK5gR3g3Gy
AlRwJxdHmwh05yFu9zgyp58BKkmOp49LPKSVIUYRD2krkp/4h9lo28pv/u7iaeBD
9t5+uXHikJTk0aG76c0Fy63HgXsCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTycxpq
WtqCobj6k4PWpxSplXgOWjAfBgNVHSMEGDAWgBT3v11aRnN1zb8iFYFRci7Uq5oD
pjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjE5M0QvMTdBQjg0QjI2OUJCMTFFRTgxRUU4NTRDNEFEOUU2RkMvOTc5ZFdr
WnpkYzJfSWhXQlVYSXUxS3VhQTZZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvOTc5ZFdrWnpkYzJfSWhXQlVYSXUxS3VhQTZZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjE5M0QvMTdBQjg0QjI2OUJCMTFFRTgxRUU4NTRDNEFE
OUU2RkMvQ0YxMTE0NDY2OUJCMTFFRUJFQzdCRjRFNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbX0DANBgkqhkiG9w0BAQsF
AAOCAQEAuOH/H8m4wIPo29gWAEtb1zLovCJ146/+hyvL5J/R2h2n/rGntqj0DQZr
1yixy6MdqXgaMiU+Df9TngJmiiSkicMvYVEY7iKSPiv3XeSFcYIoJmGrnn6HyJFM
lqB8hPxSK/gUOd885apQW8pilpWKd4iLT04ZNRcoLyAkBR4kz6VUF98ANCIee+Rd
xmX0OdlC1CZ/DRIZzZ/gbglA2FM+vM3FefC9oYwIvmzatub+ZThDZU2HsH+WLuCJ
bBX0ip7TZq5R8JbnLAuTt8cb2OD8SEWpj2kCi007PRUSxtYLMBHonxNehP6p4ff7
gXLnE6tPQIA9Plmm62PVm2xyBcokeQ==
-----END CERTIFICATE-----
Generated at Sun Jun 2 03:35:36 2024 by rpki-client on console-fra.rpki-client.org