Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/7AA8E23C8AF111EF819141BF762E951A.roa
File: 7AA8E23C8AF111EF819141BF762E951A.roa (raw, json)
Hash identifier: WA1vTy837ja/SSXdE4yDJ6r+9rLSH6HSYjYFhAhnYN8=
Subject key identifier: F2:D1:8B:0D:A7:84:1C:60:19:F6:6F:09:F5:04:F1:69:DA:B3:03:0C
Certificate issuer: /CN=F36FE001AF/serialNumber=3FB5BE3DDDAE614BE9D1E62E809836E2302E7118
Certificate serial: 2D
Authority key identifier: 3F:B5:BE:3D:DD:AE:61:4B:E9:D1:E6:2E:80:98:36:E2:30:2E:71:18
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P7W-Pd2uYUvp0eYugJg24jAucRg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/7AA8E23C8AF111EF819141BF762E951A.roa
Signing time: Tue 15 Oct 2024 12:32:02 +0000
ROA not before: Tue 15 Oct 2024 12:31:59 +0000
ROA not after: Wed 14 Oct 2026 12:31:59 +0000
asID: 37344
IP address blocks: 196.43.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/P7W-Pd2uYUvp0eYugJg24jAucRg.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/P7W-Pd2uYUvp0eYugJg24jAucRg.mft
rsync://rpki.afrinic.net/repository/afrinic/P7W-Pd2uYUvp0eYugJg24jAucRg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45 (0x2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FE001AF/serialNumber=3FB5BE3DDDAE614BE9D1E62E809836E2302E7118
Validity
Not Before: Oct 15 12:31:59 2024 GMT
Not After : Oct 14 12:31:59 2026 GMT
Subject: CN=670e60c2-b2cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:ae:d3:57:2a:c7:16:0d:74:39:06:fc:92:
3d:b4:89:2f:e7:69:be:bd:72:d3:a7:16:59:26:1e:
97:d3:0f:4c:ef:9d:5b:31:77:4d:b2:96:c5:ff:73:
e2:2a:da:1d:c9:58:29:15:47:73:06:5a:2e:3b:83:
20:48:44:52:3b:11:74:e0:c3:0f:32:8f:6d:a8:e9:
f1:69:fc:3d:c6:fa:5b:61:72:66:ec:6f:61:44:90:
8e:ec:76:8c:ca:66:06:7d:5e:b6:6a:2e:d8:87:e7:
d6:b6:2f:72:46:60:73:dc:66:7d:3f:fb:2d:4a:58:
32:a0:a2:5e:09:3f:8c:e3:74:67:8b:da:1b:32:0c:
0d:61:87:9b:3c:f6:e3:6b:8c:59:dc:bd:95:b1:72:
e2:f1:ae:fe:4c:a7:af:93:03:40:e0:d9:d2:c2:65:
5d:30:8a:95:80:04:81:58:9c:eb:b0:d2:6c:08:0a:
b7:94:59:8e:2c:99:1f:48:eb:e7:17:6b:c9:1f:48:
3b:64:d3:42:40:e7:93:9f:e7:28:8e:51:4e:d0:4b:
cb:2a:a8:dd:3c:6f:43:0a:1f:b3:6f:d7:58:47:43:
e1:53:c4:e4:65:22:23:23:78:5b:bc:f6:22:a3:28:
eb:e1:41:69:20:4d:1f:41:d6:4f:35:84:03:0b:48:
ff:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D1:8B:0D:A7:84:1C:60:19:F6:6F:09:F5:04:F1:69:DA:B3:03:0C
X509v3 Authority Key Identifier:
keyid:3F:B5:BE:3D:DD:AE:61:4B:E9:D1:E6:2E:80:98:36:E2:30:2E:71:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/P7W-Pd2uYUvp0eYugJg24jAucRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P7W-Pd2uYUvp0eYugJg24jAucRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE001/84ED8AA074B611EF988AF3B6762E951A/7AA8E23C8AF111EF819141BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.199.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:33:14:a8:07:68:46:e6:09:a2:b1:bf:38:7c:0e:2f:32:62:
e3:48:55:65:ea:24:ca:4f:5a:31:eb:a6:fd:ac:1a:2b:7f:07:
58:40:4c:eb:87:af:8e:ab:f1:91:09:91:40:9a:18:75:36:2c:
f6:d2:86:5a:b3:78:d0:0e:b7:7e:fd:d2:df:94:13:96:de:0d:
7a:f7:6d:90:68:c2:a7:1e:02:4e:65:bd:3e:e8:c9:9d:53:8b:
c3:5a:b0:33:7f:8b:af:c9:20:36:57:fe:bf:27:a1:ba:fd:65:
fd:84:93:c1:26:06:ef:9a:7d:5d:3c:e0:7b:7f:f7:eb:f9:5f:
49:6e:55:53:42:72:37:57:9e:ad:53:b2:8b:f3:3e:23:00:3d:
b7:ce:e0:83:52:14:ef:53:b0:2f:fe:ec:24:06:0c:4e:07:7e:
0e:71:f7:87:2d:a9:5c:85:ed:8a:d3:e0:8d:6f:64:aa:fc:b8:
89:04:e9:ed:34:7f:f4:99:6c:ab:85:cb:bb:e3:4c:d4:a7:32:
b3:cb:30:03:6d:6e:a7:3b:75:95:2d:41:92:93:33:3d:1f:86:
78:6b:f1:1e:a0:8f:45:7d:bb:4a:75:87:48:97:c1:9a:8b:d3:
97:ca:b8:4e:20:ac:18:d4:3b:b7:91:d3:7a:df:7e:8c:fa:54:
69:23:73:2a
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZG
RTAwMUFGMTEwLwYDVQQFEygzRkI1QkUzREREQUU2MTRCRTlEMUU2MkU4MDk4MzZF
MjMwMkU3MTE4MB4XDTI0MTAxNTEyMzE1OVoXDTI2MTAxNDEyMzE1OVowGDEWMBQG
A1UEAxMNNjcwZTYwYzItYjJjYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL5xrtNXKscWDXQ5BvySPbSJL+dpvr1y06cWWSYel9MPTO+dWzF3TbKWxf9z
4iraHclYKRVHcwZaLjuDIEhEUjsRdODDDzKPbajp8Wn8Pcb6W2FyZuxvYUSQjux2
jMpmBn1etmou2Ifn1rYvckZgc9xmfT/7LUpYMqCiXgk/jON0Z4vaGzIMDWGHmzz2
42uMWdy9lbFy4vGu/kynr5MDQODZ0sJlXTCKlYAEgVic67DSbAgKt5RZjiyZH0jr
5xdryR9IO2TTQkDnk5/nKI5RTtBLyyqo3TxvQwofs2/XWEdD4VPE5GUiIyN4W7z2
IqMo6+FBaSBNH0HWTzWEAwtI/80CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTy0YsN
p4QcYBn2bwn1BPFp2rMDDDAfBgNVHSMEGDAWgBQ/tb493a5hS+nR5i6AmDbiMC5x
GDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkUwMDEvODRFRDhBQTA3NEI2MTFFRjk4OEFGM0I2NzYyRTk1MUEvUDdXLVBk
MnVZVXZwMGVZdWdKZzI0akF1Y1JnLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvUDdXLVBkMnVZVXZwMGVZdWdKZzI0akF1Y1JnLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2RkUwMDEvODRFRDhBQTA3NEI2MTFFRjk4OEFGM0I2NzYy
RTk1MUEvN0FBOEUyM0M4QUYxMTFFRjgxOTE0MUJGNzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMQrxzANBgkqhkiG9w0BAQsF
AAOCAQEACjMUqAdoRuYJorG/OHwOLzJi40hVZeokyk9aMeum/awaK38HWEBM64ev
jqvxkQmRQJoYdTYs9tKGWrN40A63fv3S35QTlt4NevdtkGjCpx4CTmW9PujJnVOL
w1qwM3+Lr8kgNlf+vyehuv1l/YSTwSYG75p9XTzge3/36/lfSW5VU0JyN1eerVOy
i/M+IwA9t87gg1IU71OwL/7sJAYMTgd+DnH3hy2pXIXtitPgjW9kqvy4iQTp7TR/
9Jlsq4XLu+NM1Kcys8swA21upzt1lS1BkpMzPR+GeGvxHqCPRX27SnWHSJfBmovT
l8q4TiCsGNQ7t5HTet9+jPpUaSNzKg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:34 2024 by rpki-client on console-ams.rpki-client.org