Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/835C12EC903611EF9EC5CE7E762E951A.roa
File: 835C12EC903611EF9EC5CE7E762E951A.roa (raw, json)
Hash identifier: DtmrriHOLu1gdDvNhXOzMmrcs76nxNU0hHNn5mp6L1U=
Subject key identifier: CD:D1:55:0D:4C:B8:25:AD:73:47:5A:81:ED:B4:98:92:F7:A1:51:14
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1872
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/835C12EC903611EF9EC5CE7E762E951A.roa
Signing time: Tue 22 Oct 2024 05:28:48 +0000
ROA not before: Tue 22 Oct 2024 05:28:44 +0000
ROA not after: Thu 22 Oct 2026 05:28:44 +0000
asID: 36352
IP address blocks: 154.16.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6258 (0x1872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:28:44 2024 GMT
Not After : Oct 22 05:28:44 2026 GMT
Subject: CN=67173810-2fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:30:90:34:49:2f:c8:df:b0:db:87:d7:4b:a2:
fc:67:63:3d:de:9e:15:d8:97:be:fe:e4:43:e3:10:
28:7b:73:b6:4c:f0:92:66:57:7a:22:00:40:2e:2b:
60:7a:0a:fc:02:f0:27:5e:c8:ad:7a:0c:f5:eb:cd:
e6:e8:a1:09:08:6b:ae:6f:16:48:bb:67:c8:ae:c0:
18:33:89:b0:b4:d2:ea:a8:e1:36:97:16:cd:f7:a6:
b7:24:9d:43:9a:c7:13:fb:73:99:b3:30:04:59:44:
fa:3e:f8:14:ed:6e:3d:d7:dc:9e:72:e5:8e:f2:3a:
ab:5b:07:f2:45:d2:82:85:7a:77:17:f0:d9:b7:ef:
cb:60:2d:7c:de:a0:22:34:b5:99:86:df:d1:4e:89:
e8:ac:23:d6:27:f9:12:d3:b0:33:61:9d:b1:7e:99:
c9:73:a7:82:08:a5:09:83:78:fc:c6:f7:69:bd:e5:
e4:d2:e7:61:d3:dc:ce:cc:ce:e4:00:2e:fe:7c:ea:
27:6c:6a:80:98:73:72:25:d3:49:58:b2:04:f8:df:
36:f8:7e:cd:3b:2f:17:10:45:30:bd:e6:de:49:04:
1e:eb:4d:44:7d:d2:75:6c:8b:22:fe:7b:5e:d1:48:
e5:2b:a1:b7:ef:c6:9d:8c:a9:4f:99:cc:96:cc:45:
5a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D1:55:0D:4C:B8:25:AD:73:47:5A:81:ED:B4:98:92:F7:A1:51:14
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/835C12EC903611EF9EC5CE7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.117.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:fe:24:eb:29:aa:01:74:f9:5a:c1:b0:f5:af:c8:09:c9:93:
51:03:de:7b:72:6f:4b:89:b5:97:96:3a:1d:04:42:9e:ee:88:
15:03:17:49:b8:7d:8b:d1:2a:3d:ab:c3:be:a4:a8:30:b9:30:
0b:4f:02:cd:09:08:5c:a4:fa:ae:71:d2:ce:01:52:b1:b8:44:
29:ed:61:d5:d1:cf:38:d0:94:df:95:e6:ed:4d:a1:02:0d:f1:
e7:ad:d6:2c:31:30:f4:00:95:5e:2c:81:01:6f:00:7b:49:42:
0b:bb:e3:2d:30:92:37:ec:4c:a7:59:f7:f0:c4:00:13:15:5a:
c2:8e:c9:07:af:14:3c:88:2c:71:67:2d:dc:aa:c9:61:2d:f7:
71:4b:ec:bf:54:18:fd:76:d4:bf:3a:e9:1b:a5:9a:dd:16:ae:
ac:c1:71:56:5c:e3:78:f1:d4:7a:9f:69:42:fb:09:bb:c2:b8:
ce:3e:7a:6a:56:c6:5b:f4:29:9b:50:e5:94:3c:11:8b:5a:e4:
ff:ca:af:9c:43:03:24:af:7e:ac:c7:7a:8e:8d:86:f2:c8:fa:
f9:ce:c5:4a:80:09:16:5b:ea:01:18:03:01:f2:b6:f6:9c:59:
b4:54:cd:82:73:a6:51:4d:82:c8:9a:16:86:9b:1d:7b:87:a2:
d4:a3:41:14
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGHIwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDEwMjIwNTI4NDRaFw0yNjEwMjIwNTI4NDRaMBgxFjAU
BgNVBAMTDTY3MTczODEwLTJmY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDaMJA0SS/I37Dbh9dLovxnYz3enhXYl77+5EPjECh7c7ZM8JJmV3oiAEAu
K2B6CvwC8CdeyK16DPXrzebooQkIa65vFki7Z8iuwBgzibC00uqo4TaXFs33prck
nUOaxxP7c5mzMARZRPo++BTtbj3X3J5y5Y7yOqtbB/JF0oKFencX8Nm378tgLXze
oCI0tZmG39FOieisI9Yn+RLTsDNhnbF+mclzp4IIpQmDePzG92m95eTS52HT3M7M
zuQALv586idsaoCYc3Il00lYsgT43zb4fs07LxcQRTC95t5JBB7rTUR90nVsiyL+
e17RSOUrobfvxp2MqU+ZzJbMRVpjAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUzdFV
DUy4Ja1zR1qB7bSYkvehURQwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzgzNUMxMkVDOTAzNjExRUY5RUM1Q0U3RTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEHUwDQYJKoZIhvcNAQEL
BQADggEBALv+JOspqgF0+VrBsPWvyAnJk1ED3ntyb0uJtZeWOh0EQp7uiBUDF0m4
fYvRKj2rw76kqDC5MAtPAs0JCFyk+q5x0s4BUrG4RCntYdXRzzjQlN+V5u1NoQIN
8eet1iwxMPQAlV4sgQFvAHtJQgu74y0wkjfsTKdZ9/DEABMVWsKOyQevFDyILHFn
LdyqyWEt93FL7L9UGP121L866Rulmt0WrqzBcVZc43jx1HqfaUL7CbvCuM4+empW
xlv0KZtQ5ZQ8EYta5P/Kr5xDAySvfqzHeo6NhvLI+vnOxUqACRZb6gEYAwHytvac
WbRUzYJzplFNgsiaFoabHXuHotSjQRQ=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:56 2024 by rpki-client on console-fra.rpki-client.org