Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/630F0AD2856211EFBC4A809F762E951A.roa
File: 630F0AD2856211EFBC4A809F762E951A.roa (raw, json)
Hash identifier: +ZIPaIi0qpzpbLqoaHxAvj4zo9z7RpKfYQq2ogk5aUI=
Subject key identifier: B9:84:E5:95:E0:67:6D:03:89:FB:FC:C3:0C:03:03:41:17:7B:20:72
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 184A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/630F0AD2856211EFBC4A809F762E951A.roa
Signing time: Tue 08 Oct 2024 10:45:09 +0000
ROA not before: Tue 08 Oct 2024 10:45:05 +0000
ROA not after: Thu 08 Oct 2026 10:45:05 +0000
asID: 212238
IP address blocks: 154.16.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6218 (0x184a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 8 10:45:05 2024 GMT
Not After : Oct 8 10:45:05 2026 GMT
Subject: CN=67050d35-6fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:1f:d6:f4:00:49:ae:34:26:01:31:9d:13:
5d:94:83:ac:4c:42:75:d2:1f:dd:35:63:81:aa:d0:
21:d0:5c:e0:6c:f6:51:c0:de:8b:cf:6e:51:3e:0d:
5a:ab:f6:da:af:50:26:b4:5b:2a:b5:55:76:7e:a1:
6c:9c:ef:70:00:7d:ff:42:a2:fb:5e:65:43:d0:2c:
0d:26:ee:00:ec:fa:00:3e:2e:a0:75:8d:84:9a:55:
13:d5:50:e7:c7:dd:6b:c7:32:03:2e:a4:6a:4e:3e:
0f:0b:2d:4d:16:aa:98:97:1a:a2:c1:52:66:10:6a:
99:21:0c:4e:6a:d6:57:ba:61:fd:8c:1f:65:72:dd:
17:c7:23:a4:00:f3:41:41:9b:8b:3e:72:6f:bf:8e:
ea:21:b7:f2:4d:26:fe:95:02:af:5a:a2:11:e9:48:
e9:db:db:95:0c:e3:b7:4e:99:57:00:9c:03:27:dd:
98:7a:b3:d3:75:12:fb:e2:6a:de:80:26:9a:24:6b:
bf:ac:7f:94:64:5a:13:a2:2b:a7:dc:88:76:1c:db:
49:e9:1a:7e:98:fc:91:8f:d4:cb:2e:9c:07:bb:39:
92:bf:b3:d0:47:75:2d:fc:a3:25:71:97:c4:f8:ca:
cc:23:e8:f5:48:f7:0d:8b:aa:c1:7d:b3:87:e0:6d:
bc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:84:E5:95:E0:67:6D:03:89:FB:FC:C3:0C:03:03:41:17:7B:20:72
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/630F0AD2856211EFBC4A809F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.140.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8b:a7:cc:6c:18:8b:2d:43:26:a0:57:9b:b1:e6:1f:3f:02:
9a:34:bf:7f:e5:34:f5:51:69:b8:1f:ea:c9:a9:d7:d1:75:ca:
8b:86:d9:6d:40:b0:bc:9b:81:e3:07:ab:f9:8c:26:2f:f1:5a:
e1:a9:ed:d5:75:e6:5e:51:e5:77:00:31:fe:33:5e:51:75:87:
48:bd:0c:ce:dc:d8:3c:d8:90:92:32:19:45:d5:ff:15:e7:b3:
5d:af:98:f6:01:05:37:51:8c:9c:70:3c:8d:86:2e:1d:53:2e:
32:8e:10:4b:fe:b9:3f:2f:c4:91:32:a7:db:0a:87:e7:de:85:
1f:04:c9:e7:98:c6:30:d8:8f:46:93:d3:89:26:f0:ab:10:81:
27:7e:35:1b:61:d6:26:32:97:95:df:94:c0:71:56:11:15:38:
a3:ab:3b:68:66:04:19:53:76:9e:58:87:86:c3:45:f1:57:42:
ba:96:a8:9f:77:8c:db:e5:01:8f:d5:4a:4c:97:1c:ad:c0:5d:
cb:c4:69:e2:64:a6:52:77:19:66:32:4e:47:1d:f8:ef:ed:f9:
ec:af:0d:72:ac:fa:e9:95:d3:80:75:dc:cd:60:c7:15:65:7d:
39:48:a6:67:e7:fe:46:08:68:d2:75:2c:11:77:2a:7a:b4:55:
3a:c6:a3:02
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGEowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDEwMDgxMDQ1MDVaFw0yNjEwMDgxMDQ1MDVaMBgxFjAU
BgNVBAMTDTY3MDUwZDM1LTZmZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC31R/W9ABJrjQmATGdE12Ug6xMQnXSH901Y4Gq0CHQXOBs9lHA3ovPblE+
DVqr9tqvUCa0Wyq1VXZ+oWyc73AAff9CovteZUPQLA0m7gDs+gA+LqB1jYSaVRPV
UOfH3WvHMgMupGpOPg8LLU0WqpiXGqLBUmYQapkhDE5q1le6Yf2MH2Vy3RfHI6QA
80FBm4s+cm+/juoht/JNJv6VAq9aohHpSOnb25UM47dOmVcAnAMn3Zh6s9N1Evvi
at6AJpoka7+sf5RkWhOiK6fciHYc20npGn6Y/JGP1MsunAe7OZK/s9BHdS38oyVx
l8T4yswj6PVI9w2LqsF9s4fgbbwPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUuYTl
leBnbQOJ+/zDDAMDQRd7IHIwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzYzMEYwQUQyODU2MjExRUZCQzRBODA5Rjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEIwwDQYJKoZIhvcNAQEL
BQADggEBAKiLp8xsGIstQyagV5ux5h8/Apo0v3/lNPVRabgf6smp19F1youG2W1A
sLybgeMHq/mMJi/xWuGp7dV15l5R5XcAMf4zXlF1h0i9DM7c2DzYkJIyGUXV/xXn
s12vmPYBBTdRjJxwPI2GLh1TLjKOEEv+uT8vxJEyp9sKh+fehR8EyeeYxjDYj0aT
04km8KsQgSd+NRth1iYyl5XflMBxVhEVOKOrO2hmBBlTdp5Yh4bDRfFXQrqWqJ93
jNvlAY/VSkyXHK3AXcvEaeJkplJ3GWYyTkcd+O/t+eyvDXKs+umV04B13M1gxxVl
fTlIpmfn/kYIaNJ1LBF3Knq0VTrGowI=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:55 2024 by rpki-client on console-fra.rpki-client.org