Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/C7A8EB58767411EBA6B0766EF8AEA228.roa
File: C7A8EB58767411EBA6B0766EF8AEA228.roa (raw, json)
Hash identifier: GWda8GOSrIMVnjZRMSaotXSgFivJyI4WaCZCa+WMK0A=
Subject key identifier: 0A:9C:76:98:C3:5E:27:C5:0B:C2:85:6A:9D:FD:D2:1E:F8:88:4A:C7
Certificate issuer: /CN=F36FBB68AF/serialNumber=0D150008651489BA5144B3F17EBECCDFB945640B
Certificate serial: 02
Authority key identifier: 0D:15:00:08:65:14:89:BA:51:44:B3:F1:7E:BE:CC:DF:B9:45:64:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/C7A8EB58767411EBA6B0766EF8AEA228.roa
Signing time: Wed 24 Feb 2021 07:49:11 +0000
ROA not before: Wed 24 Feb 2021 07:49:04 +0000
ROA not after: Thu 27 Feb 2031 07:49:04 +0000
asID: 37575
IP address blocks: 41.79.124.0/22 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.mft
rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FBB68AF/serialNumber=0D150008651489BA5144B3F17EBECCDFB945640B
Validity
Not Before: Feb 24 07:49:04 2021 GMT
Not After : Feb 27 07:49:04 2031 GMT
Subject: CN=603604f7-93a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:42:57:55:aa:2e:9b:f5:e1:3e:75:38:19:79:
d9:68:9c:a9:37:9e:e6:47:31:e3:7f:cd:2a:94:99:
f9:e9:85:f8:48:3e:92:45:25:98:21:19:1e:98:fe:
b4:ae:b9:60:ef:3a:5c:f4:1b:6a:49:45:6d:49:b2:
45:6c:a9:82:f0:3b:89:42:f7:72:7c:58:97:e9:11:
a0:c7:fd:77:80:05:4a:bf:05:7e:e3:62:be:d1:36:
ce:68:3b:d1:af:b3:ed:ee:b8:3f:4c:8c:3e:92:31:
07:f4:1a:28:bb:d0:c5:47:e9:98:af:3e:ea:cf:e0:
73:41:d1:54:82:37:9a:b9:db:88:40:63:9c:b5:12:
59:32:76:72:0e:22:b0:fe:dd:62:e6:ee:29:86:9a:
77:d5:e1:25:bb:66:2e:b9:8d:0b:70:8f:df:32:fd:
49:f6:bb:02:b1:1a:00:24:51:69:37:2a:b0:dc:72:
e4:11:b0:1f:99:94:ad:38:87:fa:6a:d9:f8:ab:e6:
c0:3c:c2:d5:f2:e6:be:6c:22:7e:c3:cb:1b:be:fe:
2c:fd:28:db:4d:ff:6b:26:18:a5:81:21:1c:1b:a3:
0a:be:05:c5:ba:a9:86:2d:42:90:7c:7e:1a:69:2e:
66:25:32:75:2b:b9:d6:8b:73:2e:3a:4c:64:aa:3f:
15:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9C:76:98:C3:5E:27:C5:0B:C2:85:6A:9D:FD:D2:1E:F8:88:4A:C7
X509v3 Authority Key Identifier:
keyid:0D:15:00:08:65:14:89:BA:51:44:B3:F1:7E:BE:CC:DF:B9:45:64:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/DRUACGUUibpRRLPxfr7M37lFZAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DRUACGUUibpRRLPxfr7M37lFZAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FBB68/DEFB17F0767311EBBA1F686DF8AEA228/C7A8EB58767411EBA6B0766EF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.79.124.0/22
Signature Algorithm: sha256WithRSAEncryption
76:e0:c5:6b:50:49:4e:c5:9a:c4:2a:62:02:c7:0e:e3:29:aa:
b4:16:73:e6:af:61:d3:2b:15:ae:98:a7:89:f7:ca:33:d8:b8:
d2:f2:ba:be:07:90:9b:ea:ec:0c:00:d6:c5:eb:a6:b2:83:99:
d4:5c:c3:b7:7f:b5:35:82:24:37:6b:2b:b3:b9:c2:b2:f2:97:
8b:db:0c:c3:29:92:d7:91:a0:f3:38:87:f2:cb:07:5f:18:ba:
a8:25:d3:0d:4e:7e:ab:7b:8f:85:66:3f:a1:a6:97:9e:80:b4:
d0:b0:ad:2e:58:f0:5d:96:d0:54:6d:b5:e1:7c:8b:0a:4d:cc:
ff:96:e3:53:17:a9:1c:25:2b:84:4b:2d:b9:77:40:51:18:f6:
42:84:da:89:6c:05:fc:fd:39:e4:89:9f:7e:db:b6:70:65:e4:
ae:26:60:2f:59:da:37:42:a4:f2:74:55:e9:c0:07:59:c9:b4:
8b:81:c6:a3:9f:ac:0d:df:8c:ef:96:4c:e3:e2:1d:5a:50:70:
46:c4:59:97:56:1a:38:ed:ac:9c:f5:38:0c:95:57:54:85:1f:
d9:1a:c0:9f:52:3d:5b:ea:71:49:2a:4b:6b:5c:f4:f3:7f:e2:
32:36:72:fe:ed:16:8e:fb:00:0d:fa:2e:26:dc:40:f0:56:28:
5b:98:52:dd
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
QkI2OEFGMTEwLwYDVQQFEygwRDE1MDAwODY1MTQ4OUJBNTE0NEIzRjE3RUJFQ0NE
RkI5NDU2NDBCMB4XDTIxMDIyNDA3NDkwNFoXDTMxMDIyNzA3NDkwNFowGDEWMBQG
A1UEAxMNNjAzNjA0ZjctOTNhMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM5CV1WqLpv14T51OBl52WicqTee5kcx43/NKpSZ+emF+Eg+kkUlmCEZHpj+
tK65YO86XPQbaklFbUmyRWypgvA7iUL3cnxYl+kRoMf9d4AFSr8FfuNivtE2zmg7
0a+z7e64P0yMPpIxB/QaKLvQxUfpmK8+6s/gc0HRVII3mrnbiEBjnLUSWTJ2cg4i
sP7dYubuKYaad9XhJbtmLrmNC3CP3zL9Sfa7ArEaACRRaTcqsNxy5BGwH5mUrTiH
+mrZ+KvmwDzC1fLmvmwifsPLG77+LP0o203/ayYYpYEhHBujCr4Fxbqphi1CkHx+
GmkuZiUydSu51otzLjpMZKo/FccCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQKnHaY
w14nxQvChWqd/dIe+IhKxzAfBgNVHSMEGDAWgBQNFQAIZRSJulFEs/F+vszfuUVk
CzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkJCNjgvREVGQjE3RjA3NjczMTFFQkJBMUY2ODZERjhBRUEyMjgvRFJVQUNH
VVVpYnBSUkxQeGZyN00zN2xGWkFzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvRFJVQUNHVVVpYnBSUkxQeGZyN00zN2xGWkFzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RkJCNjgvREVGQjE3RjA3NjczMTFFQkJBMUY2ODZERjhB
RUEyMjgvQzdBOEVCNTg3Njc0MTFFQkE2QjA3NjZFRjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAilPfDANBgkqhkiG9w0BAQsF
AAOCAQEAduDFa1BJTsWaxCpiAscO4ymqtBZz5q9h0ysVrpiniffKM9i40vK6vgeQ
m+rsDADWxeumsoOZ1FzDt3+1NYIkN2srs7nCsvKXi9sMwymS15Gg8ziH8ssHXxi6
qCXTDU5+q3uPhWY/oaaXnoC00LCtLljwXZbQVG214XyLCk3M/5bjUxepHCUrhEst
uXdAURj2QoTaiWwF/P055Imfftu2cGXkriZgL1naN0Kk8nRV6cAHWcm0i4HGo5+s
Dd+M75ZM4+IdWlBwRsRZl1YaOO2snPU4DJVXVIUf2RrAn1I9W+pxSSpLa1z083/i
MjZy/u0WjvsADfouJtxA8FYoW5hS3Q==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:33 2024 by rpki-client on console-ams.rpki-client.org