Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/9728765CB35211ED96B1EF87F1222468.roa
File: 9728765CB35211ED96B1EF87F1222468.roa (raw, json)
Hash identifier: TzuMAa1S+XUMBkWN3ANfTjwvxoQZORKA4C1/zSsf48o=
Subject key identifier: C1:71:59:A5:7B:13:A1:BC:99:61:3D:29:BC:75:4D:EF:D8:1D:98:46
Certificate issuer: /CN=F36F9BF2AF/serialNumber=906453CB8ADCA4B5C7A6E53B2EC51112C4C7FE2C
Certificate serial: 01A6
Authority key identifier: 90:64:53:CB:8A:DC:A4:B5:C7:A6:E5:3B:2E:C5:11:12:C4:C7:FE:2C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/kGRTy4rcpLXHpuU7LsUREsTH_iw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/9728765CB35211ED96B1EF87F1222468.roa
Signing time: Thu 23 Feb 2023 08:18:02 +0000
ROA not before: Thu 23 Feb 2023 08:17:58 +0000
ROA not after: Fri 31 Dec 2049 08:17:58 +0000
asID: 37154
IP address blocks: 41.72.96.0/19 maxlen: 19
2c0f:fcc8::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/kGRTy4rcpLXHpuU7LsUREsTH_iw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/kGRTy4rcpLXHpuU7LsUREsTH_iw.mft
rsync://rpki.afrinic.net/repository/afrinic/kGRTy4rcpLXHpuU7LsUREsTH_iw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422 (0x1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F9BF2AF/serialNumber=906453CB8ADCA4B5C7A6E53B2EC51112C4C7FE2C
Validity
Not Before: Feb 23 08:17:58 2023 GMT
Not After : Dec 31 08:17:58 2049 GMT
Subject: CN=63f7213a-d762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:2b:d1:c7:8e:8c:39:ba:c1:7c:2b:bd:98:ec:
17:d1:29:e1:c7:10:dc:c5:11:79:c7:18:08:6d:7c:
b5:c0:aa:45:75:f3:fd:7d:c3:f4:d6:ef:03:d3:06:
c4:60:e5:14:c7:9b:57:12:ff:8b:a0:67:8b:51:76:
33:b9:b0:4b:03:a3:63:ee:26:ec:8b:36:7a:a9:0e:
1d:ad:a8:c2:d9:ba:77:07:52:f3:27:1a:db:cc:81:
41:7f:71:ac:1f:5b:47:68:c0:51:b3:65:1d:b8:ea:
1f:94:a9:33:c9:10:f0:49:49:4d:70:64:66:aa:cc:
53:ef:4b:c3:86:b4:b5:1b:9e:66:a1:b8:5b:1e:a5:
96:58:0b:00:92:c2:05:e3:4c:dd:fa:b2:ae:d9:30:
1a:80:0c:00:69:3c:8f:39:a8:1a:b2:8a:0e:a3:be:
d7:89:52:29:eb:df:c4:c9:0f:b1:05:2e:66:f8:28:
e2:b7:56:91:d9:02:c1:d3:d6:a1:6c:65:b6:2c:d7:
7f:b7:59:8a:83:76:bc:73:b5:0c:82:43:a8:8c:d3:
d2:8d:c7:bf:74:ba:9a:47:c8:b2:49:00:fd:d3:1c:
f5:94:e1:3b:3b:55:a9:4e:3f:04:de:dd:19:bf:c2:
e6:52:13:e6:bb:d1:30:5a:58:e9:75:d5:f5:fa:d9:
0d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:71:59:A5:7B:13:A1:BC:99:61:3D:29:BC:75:4D:EF:D8:1D:98:46
X509v3 Authority Key Identifier:
keyid:90:64:53:CB:8A:DC:A4:B5:C7:A6:E5:3B:2E:C5:11:12:C4:C7:FE:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/kGRTy4rcpLXHpuU7LsUREsTH_iw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/kGRTy4rcpLXHpuU7LsUREsTH_iw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F9BF2/6DE7F71C6FF711ECA7B831CA5A40D577/9728765CB35211ED96B1EF87F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.72.96.0/19
IPv6:
2c0f:fcc8::/32
Signature Algorithm: sha256WithRSAEncryption
4b:08:ab:44:57:0d:ca:cf:d7:25:86:6a:c8:3f:29:30:64:94:
46:c4:57:89:f7:20:1b:14:98:ad:8f:2b:06:47:a5:b2:a5:f2:
c0:3b:98:76:19:21:06:7a:46:99:8c:c8:06:fa:a3:1b:95:86:
86:bb:d2:b6:c3:6f:2d:44:d3:7e:96:52:3d:48:bb:e7:40:cb:
b6:64:e0:9c:bd:57:5e:9e:6a:c0:65:05:c2:d1:62:8a:d1:84:
b7:0c:33:8c:54:1f:9e:4f:c6:db:2f:26:2a:67:1f:6f:d3:00:
fa:30:cd:be:3a:8a:5c:75:ef:c1:24:a0:7e:c1:07:0b:c4:8a:
de:b6:bd:c0:08:75:e6:ef:c4:9e:fc:93:c3:c6:7b:4f:c3:b6:
d6:21:52:1c:ec:6e:64:46:91:5f:83:4e:66:4c:54:fd:76:2e:
7c:32:af:ca:36:6f:0a:24:55:b6:01:df:da:b3:9d:9f:a7:58:
ca:b1:7f:8b:64:5d:f6:c1:15:63:48:85:80:16:e7:5f:cd:38:
4d:63:5e:e4:39:32:c9:a3:a5:2b:d5:4e:4c:bf:68:6a:72:4e:
7a:4e:c9:93:53:d8:08:01:b3:fc:15:2c:8a:ba:16:b5:ab:d9:
16:fd:b2:fd:47:05:e5:4b:13:fd:f0:e0:c9:39:54:35:aa:74:
2f:20:03:b9
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RjlCRjJBRjExMC8GA1UEBRMoOTA2NDUzQ0I4QURDQTRCNUM3QTZFNTNCMkVDNTEx
MTJDNEM3RkUyQzAeFw0yMzAyMjMwODE3NThaFw00OTEyMzEwODE3NThaMBgxFjAU
BgNVBAMMDTYzZjcyMTNhLWQ3NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDyK9HHjow5usF8K72Y7BfRKeHHENzFEXnHGAhtfLXAqkV18/19w/TW7wPT
BsRg5RTHm1cS/4ugZ4tRdjO5sEsDo2PuJuyLNnqpDh2tqMLZuncHUvMnGtvMgUF/
cawfW0dowFGzZR246h+UqTPJEPBJSU1wZGaqzFPvS8OGtLUbnmahuFsepZZYCwCS
wgXjTN36sq7ZMBqADABpPI85qBqyig6jvteJUinr38TJD7EFLmb4KOK3VpHZAsHT
1qFsZbYs13+3WYqDdrxztQyCQ6iM09KNx790uppHyLJJAP3THPWU4Ts7ValOPwTe
3Rm/wuZSE+a70TBaWOl11fX62Q0HAgMBAAGjggK0MIICsDAdBgNVHQ4EFgQUwXFZ
pXsTobyZYT0pvHVN79gdmEYwHwYDVR0jBBgwFoAUkGRTy4rcpLXHpuU7LsUREsTH
/iwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY5QkYyLzZERTdGNzFDNkZGNzExRUNBN0I4MzFDQTVBNDBENTc3L2tHUlR5
NHJjcExYSHB1VTdMc1VSRXNUSF9pdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2tHUlR5NHJjcExYSHB1VTdMc1VSRXNUSF9pdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY5QkYyLzZERTdGNzFDNkZGNzExRUNBN0I4MzFDQTVB
NDBENTc3Lzk3Mjg3NjVDQjM1MjExRUQ5NkIxRUY4N0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAUpSGAwDQQCAAIwBwMFACwP
/MgwDQYJKoZIhvcNAQELBQADggEBAEsIq0RXDcrP1yWGasg/KTBklEbEV4n3IBsU
mK2PKwZHpbKl8sA7mHYZIQZ6RpmMyAb6oxuVhoa70rbDby1E036WUj1Iu+dAy7Zk
4Jy9V16easBlBcLRYorRhLcMM4xUH55PxtsvJipnH2/TAPowzb46ilx178EkoH7B
BwvEit62vcAIdebvxJ78k8PGe0/DttYhUhzsbmRGkV+DTmZMVP12Lnwyr8o2bwok
VbYB39qznZ+nWMqxf4tkXfbBFWNIhYAW51/NOE1jXuQ5MsmjpSvVTky/aGpyTnpO
yZNT2AgBs/wVLIq6FrWr2Rb9sv1HBeVLE/3w4Mk5VDWqdC8gA7k=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org