Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/870416B8C4C811EE906C4D55775412E6.roa
File: 870416B8C4C811EE906C4D55775412E6.roa (raw, json)
Hash identifier: Vbe2KHg+Or1EjP08Hg3ouXICYgnv4yFEfEZ5ZITCte4=
Subject key identifier: B9:79:2E:7F:26:E8:F3:0F:06:BC:06:4B:AF:2E:BB:4A:2F:4E:39:36
Certificate issuer: /CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Certificate serial: 09
Authority key identifier: FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/870416B8C4C811EE906C4D55775412E6.roa
Signing time: Tue 06 Feb 2024 08:20:04 +0000
ROA not before: Tue 06 Feb 2024 08:20:00 +0000
ROA not after: Sat 06 Feb 2027 08:20:00 +0000
asID: 36905
IP address blocks: 154.126.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.mft
rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3655D2CAF/serialNumber=FDF4BF0013B1F1AACA39551BA626CA24683DAE66
Validity
Not Before: Feb 6 08:20:00 2024 GMT
Not After : Feb 6 08:20:00 2027 GMT
Subject: CN=65c1ebb3-5745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:56:5b:ac:89:d9:34:6d:b0:2c:7a:54:12:3b:
83:c3:0f:93:8c:95:15:83:c0:42:17:04:bd:22:aa:
98:52:38:48:d3:b2:26:6a:f9:02:73:bc:d5:43:f3:
1a:70:89:c8:d6:b1:59:38:f9:9c:72:4b:ba:f0:77:
79:fb:11:4f:d1:23:3b:46:d0:7a:87:88:f6:fc:26:
13:b5:2b:f4:15:94:bf:91:d7:3e:8f:72:2e:53:4b:
53:c4:fd:92:1a:d3:44:d4:41:e9:31:82:ff:90:85:
b8:a0:b9:83:1c:c2:cd:4b:ab:8b:dd:56:bb:97:13:
3e:40:0d:2c:d5:91:ae:2b:6b:b1:63:72:64:e9:b4:
15:24:d1:4c:24:6e:ee:36:3c:a5:01:56:1c:81:48:
56:7c:26:d8:8f:e2:2f:b4:ab:12:90:02:4a:51:5f:
28:fd:f8:f5:24:6d:d6:fd:1f:bf:f5:53:5f:e4:62:
ba:76:54:84:4f:13:a3:2f:8e:83:45:0c:00:3f:48:
39:a7:3f:d6:1a:94:c3:18:db:b0:03:ce:a4:16:d8:
82:d3:8d:2a:6c:29:9d:54:03:65:a0:09:01:eb:80:
21:40:1a:64:b2:8e:18:93:74:40:8d:16:e1:f1:a9:
1c:22:03:9f:76:b4:df:2a:b5:82:43:6f:89:58:e0:
f9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:79:2E:7F:26:E8:F3:0F:06:BC:06:4B:AF:2E:BB:4A:2F:4E:39:36
X509v3 Authority Key Identifier:
keyid:FD:F4:BF:00:13:B1:F1:AA:CA:39:55:1B:A6:26:CA:24:68:3D:AE:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/_fS_ABOx8arKOVUbpibKJGg9rmY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_fS_ABOx8arKOVUbpibKJGg9rmY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3655D2C/1D64C2FCC4C311EE9C41994C775412E6/870416B8C4C811EE906C4D55775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.126.162.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e9:a4:c5:f6:31:27:d3:2a:99:7c:53:9c:a3:e9:1b:69:46:
25:7a:c5:2c:20:1f:0c:86:10:6c:05:0d:f9:06:05:97:0e:51:
d2:db:e3:b0:b3:d9:94:b5:f9:13:ec:2d:70:a4:3b:9d:6e:c8:
ad:d2:2f:37:93:4f:19:08:6c:77:8d:ca:c3:6a:a1:05:61:15:
41:01:4f:43:89:24:57:3a:d2:f2:22:46:47:1c:0e:32:d0:bb:
90:40:c7:70:74:95:ab:e2:6a:ae:6b:5d:ec:0a:74:d3:73:e9:
05:51:43:27:c3:a8:42:b3:49:54:04:cc:e1:8a:87:44:d5:c1:
78:a2:0b:30:6c:f4:42:24:82:b0:1e:d9:53:47:7d:09:2f:fb:
80:2b:87:b2:7f:7d:6b:56:fa:9b:ed:22:63:ca:94:f4:01:d1:
97:b8:44:5f:91:50:8c:2e:4d:75:53:98:9d:ef:30:54:9a:73:
89:53:e7:d3:21:86:0e:7f:42:2a:7a:5a:ad:7d:0a:27:d2:ce:
4f:c4:95:3d:fe:99:23:60:5c:88:b3:d6:a2:5f:94:b5:62:ce:
33:43:e6:74:93:f0:14:89:cc:66:0d:7a:59:b1:50:96:ac:d8:
01:3e:9d:8c:85:63:0b:32:bf:29:5f:5b:1c:2f:9b:43:2f:6a:
18:3d:3e:e0
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBCTANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY1
NUQyQ0FGMTEwLwYDVQQFEyhGREY0QkYwMDEzQjFGMUFBQ0EzOTU1MUJBNjI2Q0Ey
NDY4M0RBRTY2MB4XDTI0MDIwNjA4MjAwMFoXDTI3MDIwNjA4MjAwMFowGDEWMBQG
A1UEAxMNNjVjMWViYjMtNTc0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAO5WW6yJ2TRtsCx6VBI7g8MPk4yVFYPAQhcEvSKqmFI4SNOyJmr5AnO81UPz
GnCJyNaxWTj5nHJLuvB3efsRT9EjO0bQeoeI9vwmE7Ur9BWUv5HXPo9yLlNLU8T9
khrTRNRB6TGC/5CFuKC5gxzCzUuri91Wu5cTPkANLNWRritrsWNyZOm0FSTRTCRu
7jY8pQFWHIFIVnwm2I/iL7SrEpACSlFfKP349SRt1v0fv/VTX+RiunZUhE8Toy+O
g0UMAD9IOac/1hqUwxjbsAPOpBbYgtONKmwpnVQDZaAJAeuAIUAaZLKOGJN0QI0W
4fGpHCIDn3a03yq1gkNviVjg+aUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBS5eS5/
JujzDwa8BkuvLrtKL045NjAfBgNVHSMEGDAWgBT99L8AE7Hxqso5VRumJsokaD2u
ZjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NTVEMkMvMUQ2NEMyRkNDNEMzMTFFRTlDNDE5OTRDNzc1NDEyRTYvX2ZTX0FC
T3g4YXJLT1ZVYnBpYktKR2c5cm1ZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvX2ZTX0FCT3g4YXJLT1ZVYnBpYktKR2c5cm1ZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NTVEMkMvMUQ2NEMyRkNDNEMzMTFFRTlDNDE5OTRDNzc1
NDEyRTYvODcwNDE2QjhDNEM4MTFFRTkwNkM0RDU1Nzc1NDEyRTYucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJp+ojANBgkqhkiG9w0BAQsF
AAOCAQEAOumkxfYxJ9MqmXxTnKPpG2lGJXrFLCAfDIYQbAUN+QYFlw5R0tvjsLPZ
lLX5E+wtcKQ7nW7IrdIvN5NPGQhsd43Kw2qhBWEVQQFPQ4kkVzrS8iJGRxwOMtC7
kEDHcHSVq+Jqrmtd7Ap003PpBVFDJ8OoQrNJVATM4YqHRNXBeKILMGz0QiSCsB7Z
U0d9CS/7gCuHsn99a1b6m+0iY8qU9AHRl7hEX5FQjC5NdVOYne8wVJpziVPn0yGG
Dn9CKnparX0KJ9LOT8SVPf6ZI2BciLPWol+UtWLOM0PmdJPwFInMZg16WbFQlqzY
AT6djIVjCzK/KV9bHC+bQy9qGD0+4A==
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:35 2024 by rpki-client on console-ams.rpki-client.org