Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/A27E602082FF11EE8205C9864AD9E6FC.roa
File: A27E602082FF11EE8205C9864AD9E6FC.roa (raw, json)
Hash identifier: pv58iSJoNZfLF15J4awhKwcNzaZSo1gyn9KUtGLQf7U=
Subject key identifier: E3:91:A2:A6:D4:8D:A9:F4:36:8C:50:06:66:05:2D:32:9D:4F:35:B1
Certificate issuer: /CN=F36F7F21AF/serialNumber=52997871235F60CD715A7710FFD6E2EA4C88D29A
Certificate serial: 0231
Authority key identifier: 52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/A27E602082FF11EE8205C9864AD9E6FC.roa
Signing time: Tue 14 Nov 2023 15:08:15 +0000
ROA not before: Tue 14 Nov 2023 15:08:12 +0000
ROA not after: Tue 14 Nov 2028 15:08:12 +0000
asID: 328155
IP address blocks: 154.65.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.mft
rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 29 May 2024 00:04:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 561 (0x231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F7F21AF/serialNumber=52997871235F60CD715A7710FFD6E2EA4C88D29A
Validity
Not Before: Nov 14 15:08:12 2023 GMT
Not After : Nov 14 15:08:12 2028 GMT
Subject: CN=65538d5f-61d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:e1:c4:a9:28:c3:d0:99:70:ae:d6:bc:c4:
05:51:41:4e:97:52:1c:6f:f4:5c:f2:7e:bc:2b:93:
a6:ef:95:b4:96:8a:df:e6:ca:09:6d:db:5c:a2:b2:
2d:9d:48:bf:e0:18:36:6f:af:d2:96:f8:5a:e6:73:
a3:16:06:ea:c8:23:72:73:76:c8:dd:70:07:09:90:
fd:94:2a:8b:81:d3:8b:95:43:16:b0:68:d5:1b:1f:
a2:98:fd:e1:05:a9:60:79:ed:2e:24:43:bd:80:ab:
a2:3a:6d:a8:c0:0b:b3:8b:69:77:10:50:1b:44:55:
ab:c6:8f:1b:8e:10:9c:85:d4:5f:f3:a3:74:97:45:
7f:09:1d:7e:ae:39:25:a4:06:b8:6e:8c:ea:0f:63:
cf:ca:f3:5b:eb:87:4c:c4:08:ed:de:79:7b:5b:f0:
3b:82:0b:0d:bf:20:b2:50:70:b7:9c:5a:e5:72:9b:
d2:c0:b8:45:3a:49:4d:a7:c1:bb:03:ca:58:b9:b9:
f6:b8:22:8a:63:ef:86:3a:fc:fb:f9:09:02:e5:a6:
da:a0:b0:e8:b6:c6:97:6a:2d:8b:35:cc:23:1b:f0:
c4:7a:a4:ad:98:c5:2a:13:41:fb:92:f4:9b:1f:00:
63:39:0c:aa:a0:ae:35:18:4c:ec:ff:d8:ef:11:a1:
ec:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:91:A2:A6:D4:8D:A9:F4:36:8C:50:06:66:05:2D:32:9D:4F:35:B1
X509v3 Authority Key Identifier:
keyid:52:99:78:71:23:5F:60:CD:71:5A:77:10:FF:D6:E2:EA:4C:88:D2:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/Upl4cSNfYM1xWncQ_9bi6kyI0po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Upl4cSNfYM1xWncQ_9bi6kyI0po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F7F21/355D737EE70011EC9C84D7B9F1222468/A27E602082FF11EE8205C9864AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.65.85.0/24
Signature Algorithm: sha256WithRSAEncryption
93:60:20:96:61:8c:a3:5f:07:4f:13:a7:fd:17:57:5a:9d:d4:
4b:c3:fe:c5:d5:af:40:d2:5a:60:df:9d:4a:77:87:4e:36:ad:
62:1a:95:94:5f:95:f9:d2:80:ea:83:1e:38:63:c1:11:d2:14:
51:c9:91:16:59:f7:a7:72:69:d5:1b:06:8a:ba:d9:52:61:00:
21:08:bb:d3:fa:a8:43:36:93:54:88:2a:4a:61:37:cf:55:9c:
81:02:d0:d4:c6:27:f3:e3:ca:73:5f:aa:ce:1d:c8:12:3e:61:
d6:71:c5:b2:55:18:5f:d3:c4:ce:14:f0:86:2f:69:ab:a7:34:
3e:91:13:ca:be:7c:05:27:b7:52:1e:9f:c8:30:71:3d:70:04:
66:41:17:54:9d:c9:d3:ca:fd:ed:49:e4:8f:24:27:0d:c6:58:
a3:ad:71:78:87:2e:4d:3c:34:0a:78:58:9e:5f:eb:70:46:55:
d5:97:0a:84:dd:9f:4d:03:35:81:0b:9f:f5:cb:f7:15:02:1d:
7d:92:63:a6:0e:63:76:44:69:5d:47:f6:7a:b2:1c:a0:dc:c6:
3d:29:25:20:f3:f5:2e:ab:86:42:67:40:dc:62:b0:cb:95:80:
43:55:c1:e7:d1:f5:3e:85:e4:03:fa:0e:92:9c:1a:87:e8:eb:
82:f2:db:db
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RjdGMjFBRjExMC8GA1UEBRMoNTI5OTc4NzEyMzVGNjBDRDcxNUE3NzEwRkZENkUy
RUE0Qzg4RDI5QTAeFw0yMzExMTQxNTA4MTJaFw0yODExMTQxNTA4MTJaMBgxFjAU
BgNVBAMTDTY1NTM4ZDVmLTYxZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDL6uHEqSjD0Jlwrta8xAVRQU6XUhxv9Fzyfrwrk6bvlbSWit/myglt21yi
si2dSL/gGDZvr9KW+Frmc6MWBurII3JzdsjdcAcJkP2UKouB04uVQxawaNUbH6KY
/eEFqWB57S4kQ72Aq6I6bajAC7OLaXcQUBtEVavGjxuOEJyF1F/zo3SXRX8JHX6u
OSWkBrhujOoPY8/K81vrh0zECO3eeXtb8DuCCw2/ILJQcLecWuVym9LAuEU6SU2n
wbsDyli5ufa4Iopj74Y6/Pv5CQLlptqgsOi2xpdqLYs1zCMb8MR6pK2YxSoTQfuS
9JsfAGM5DKqgrjUYTOz/2O8RoeyxAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU45Gi
ptSNqfQ2jFAGZgUtMp1PNbEwHwYDVR0jBBgwFoAUUpl4cSNfYM1xWncQ/9bi6kyI
0powDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY3RjIxLzM1NUQ3MzdFRTcwMDExRUM5Qzg0RDdCOUYxMjIyNDY4L1VwbDRj
U05mWU0xeFduY1FfOWJpNmt5STBwby5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1VwbDRjU05mWU0xeFduY1FfOWJpNmt5STBwby5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY3RjIxLzM1NUQ3MzdFRTcwMDExRUM5Qzg0RDdCOUYx
MjIyNDY4L0EyN0U2MDIwODJGRjExRUU4MjA1Qzk4NjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaQVUwDQYJKoZIhvcNAQEL
BQADggEBAJNgIJZhjKNfB08Tp/0XV1qd1EvD/sXVr0DSWmDfnUp3h042rWIalZRf
lfnSgOqDHjhjwRHSFFHJkRZZ96dyadUbBoq62VJhACEIu9P6qEM2k1SIKkphN89V
nIEC0NTGJ/PjynNfqs4dyBI+YdZxxbJVGF/TxM4U8IYvaaunND6RE8q+fAUnt1Ie
n8gwcT1wBGZBF1SdydPK/e1J5I8kJw3GWKOtcXiHLk08NAp4WJ5f63BGVdWXCoTd
n00DNYELn/XL9xUCHX2SY6YOY3ZEaV1H9nqyHKDcxj0pJSDz9S6rhkJnQNxisMuV
gENVwefR9T6F5AP6DpKcGofo64Ly29s=
-----END CERTIFICATE-----
Generated at Mon May 27 05:03:44 2024 by rpki-client on console-ams.rpki-client.org