Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/D1362304419011EE9B834D534AD9E6FC.roa
File: D1362304419011EE9B834D534AD9E6FC.roa (raw, json)
Hash identifier: YNDCiZrahjcZAjNgcdtfFcQUc6+zKfN2PpG8gmYcUdM=
Subject key identifier: 5E:2A:AC:C3:82:02:1F:0E:03:AD:2A:73:B8:08:D5:AC:A7:31:03:C1
Certificate issuer: /CN=F36F505DAF/serialNumber=1DDB8E931F57A92817649830C4ED8ADD74EF49F9
Certificate serial: 72
Authority key identifier: 1D:DB:8E:93:1F:57:A9:28:17:64:98:30:C4:ED:8A:DD:74:EF:49:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/D1362304419011EE9B834D534AD9E6FC.roa
Signing time: Wed 23 Aug 2023 08:41:14 +0000
ROA not before: Wed 23 Aug 2023 08:41:10 +0000
ROA not after: Wed 31 Aug 2033 08:41:10 +0000
asID: 329243
IP address blocks: 102.212.44.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.mft
rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114 (0x72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F505DAF/serialNumber=1DDB8E931F57A92817649830C4ED8ADD74EF49F9
Validity
Not Before: Aug 23 08:41:10 2023 GMT
Not After : Aug 31 08:41:10 2033 GMT
Subject: CN=64e5c629-4c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e8:85:31:0c:4e:a3:89:9e:ce:9e:ad:5c:e6:
ed:b3:f7:9f:9b:a7:12:1b:f7:d5:8a:53:85:29:2c:
fc:57:a5:11:ac:4e:f4:a4:40:a9:3c:b4:b0:06:c8:
0e:c4:37:1a:0f:f9:fb:73:83:37:1e:2a:be:ed:ec:
1f:c1:76:19:65:86:fe:d7:ce:e7:19:c6:8c:92:82:
38:cc:b8:64:58:aa:c7:94:1c:8c:ca:d0:5b:92:4d:
a6:87:6d:b4:eb:ce:6f:4e:fb:ef:e9:8a:6f:f5:e2:
33:a3:74:98:69:91:d3:e9:da:ee:73:08:aa:f0:22:
69:35:07:8a:6b:eb:af:e6:72:a0:c1:f1:77:0b:78:
32:80:e4:fc:fd:9e:d6:9c:46:c4:32:7d:10:78:97:
17:aa:fc:f7:8e:14:8c:7f:c4:d6:19:d0:ec:29:40:
fe:0b:27:38:c2:a7:a9:cb:84:e5:d4:c6:c1:b9:93:
c5:a9:cf:da:57:4e:0c:91:ac:13:c5:6c:ec:b0:90:
3a:ef:c5:1e:ca:39:ed:5d:5e:08:f4:10:5c:e5:a0:
da:e3:8c:63:f0:a0:dc:58:78:d8:ee:62:58:2e:7c:
8b:36:39:a4:6b:0c:0d:7b:aa:41:be:83:e5:6d:80:
9a:4f:d6:62:d6:9d:26:a9:6b:42:27:d5:90:7f:22:
8e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2A:AC:C3:82:02:1F:0E:03:AD:2A:73:B8:08:D5:AC:A7:31:03:C1
X509v3 Authority Key Identifier:
keyid:1D:DB:8E:93:1F:57:A9:28:17:64:98:30:C4:ED:8A:DD:74:EF:49:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/HduOkx9XqSgXZJgwxO2K3XTvSfk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HduOkx9XqSgXZJgwxO2K3XTvSfk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F505D/1FB1B4B0EE5F11EDA8219C5A4AD9E6FC/D1362304419011EE9B834D534AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.44.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:76:97:e0:06:68:82:e3:80:21:ef:71:32:37:15:2c:73:19:
ef:a4:73:f8:80:97:fd:ac:d5:54:dd:f7:a7:78:06:1d:6b:2b:
5d:52:0f:d1:86:51:42:93:c8:d3:fe:ff:2f:27:a9:4e:3c:58:
ae:f2:ff:46:95:cd:33:ca:28:33:bd:15:b4:85:44:a4:0e:84:
01:02:f6:e3:db:3f:c0:eb:dd:49:85:08:e3:de:1b:4e:8e:e8:
47:96:13:5f:45:bb:88:83:ae:a6:18:2b:85:3c:8e:2a:9a:5f:
d5:c1:6a:53:43:fb:72:0c:34:e4:2d:c1:54:7e:78:7f:4b:3d:
6b:df:c7:4b:f1:95:9d:41:83:4c:ca:f3:15:a3:26:a6:c6:aa:
83:47:98:a9:d3:64:2c:90:90:d1:78:ae:c5:04:d5:3b:07:e8:
0f:1e:3f:95:c7:d9:2d:c8:33:f2:77:e1:5c:96:67:0f:f1:73:
ee:18:b7:ce:4e:2f:5a:38:b5:8a:7a:55:18:b6:41:99:cc:fa:
28:f6:38:c3:ae:9e:3a:f7:18:87:e5:ae:8b:24:d9:c2:3b:ec:
83:dd:00:f2:81:83:57:01:e1:15:b8:94:9e:f0:6e:a5:13:43:
e0:05:20:13:e4:19:c7:40:cc:ad:2b:b4:bb:8b:9d:e3:30:cf:
02:ae:dc:7e
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
NTA1REFGMTEwLwYDVQQFEygxRERCOEU5MzFGNTdBOTI4MTc2NDk4MzBDNEVEOEFE
RDc0RUY0OUY5MB4XDTIzMDgyMzA4NDExMFoXDTMzMDgzMTA4NDExMFowGDEWMBQG
A1UEAxMNNjRlNWM2MjktNGM5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALTohTEMTqOJns6erVzm7bP3n5unEhv31YpThSks/FelEaxO9KRAqTy0sAbI
DsQ3Gg/5+3ODNx4qvu3sH8F2GWWG/tfO5xnGjJKCOMy4ZFiqx5QcjMrQW5JNpodt
tOvOb0777+mKb/XiM6N0mGmR0+na7nMIqvAiaTUHimvrr+ZyoMHxdwt4MoDk/P2e
1pxGxDJ9EHiXF6r8944UjH/E1hnQ7ClA/gsnOMKnqcuE5dTGwbmTxanP2ldODJGs
E8Vs7LCQOu/FHso57V1eCPQQXOWg2uOMY/Cg3Fh42O5iWC58izY5pGsMDXuqQb6D
5W2Amk/WYtadJqlrQifVkH8ijlkCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBReKqzD
ggIfDgOtKnO4CNWspzEDwTAfBgNVHSMEGDAWgBQd246TH1epKBdkmDDE7YrddO9J
+TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjUwNUQvMUZCMUI0QjBFRTVGMTFFREE4MjE5QzVBNEFEOUU2RkMvSGR1T2t4
OVhxU2dYWkpnd3hPMkszWFR2U2ZrLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvSGR1T2t4OVhxU2dYWkpnd3hPMkszWFR2U2ZrLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RjUwNUQvMUZCMUI0QjBFRTVGMTFFREE4MjE5QzVBNEFE
OUU2RkMvRDEzNjIzMDQ0MTkwMTFFRTlCODM0RDUzNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmbULDANBgkqhkiG9w0BAQsF
AAOCAQEAtXaX4AZoguOAIe9xMjcVLHMZ76Rz+ICX/azVVN33p3gGHWsrXVIP0YZR
QpPI0/7/LyepTjxYrvL/RpXNM8ooM70VtIVEpA6EAQL249s/wOvdSYUI494bTo7o
R5YTX0W7iIOuphgrhTyOKppf1cFqU0P7cgw05C3BVH54f0s9a9/HS/GVnUGDTMrz
FaMmpsaqg0eYqdNkLJCQ0XiuxQTVOwfoDx4/lcfZLcgz8nfhXJZnD/Fz7hi3zk4v
Wji1inpVGLZBmcz6KPY4w66eOvcYh+WuiyTZwjvsg90A8oGDVwHhFbiUnvBupRND
4AUgE+QZx0DMrSu0u4ud4zDPAq7cfg==
-----END CERTIFICATE-----
Generated at Sun Nov 24 03:19:45 2024 by rpki-client on console-ams.rpki-client.org