Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/97C6602067AF11EFAA585B6B762E951A.roa
File: 97C6602067AF11EFAA585B6B762E951A.roa (raw, json)
Hash identifier: EGYPMGb8KYABC9+3iKx+bhlSohwdLQnFAR3+p9Ba1QQ=
Subject key identifier: EF:8D:6C:BB:83:01:CE:D0:9D:E4:B7:0B:71:E5:4D:B7:A2:04:AA:FB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17DF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/97C6602067AF11EFAA585B6B762E951A.roa
Signing time: Sat 31 Aug 2024 15:42:13 +0000
ROA not before: Sat 31 Aug 2024 15:42:10 +0000
ROA not after: Mon 31 Aug 2026 15:42:10 +0000
asID: 834
IP address blocks: 154.16.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6111 (0x17df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 31 15:42:10 2024 GMT
Not After : Aug 31 15:42:10 2026 GMT
Subject: CN=66d339d5-a61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d2:f5:7a:2c:1a:e7:c9:20:1d:38:1b:83:a3:
4e:97:c9:3d:cb:61:ff:13:40:18:84:b2:b5:b8:b0:
01:f0:78:e9:b7:c8:60:ed:f5:39:97:32:ba:6b:1e:
62:85:4a:c7:36:d9:49:e5:e2:d2:32:6f:fa:51:0f:
11:b4:c8:98:0f:ae:23:24:a3:b0:cf:85:af:b8:79:
a8:df:1a:72:fc:d4:d2:67:ed:bd:1c:21:d5:62:0a:
6b:0c:4d:30:68:4d:9c:d9:46:da:5f:c9:99:52:6f:
91:c3:32:e1:66:5d:63:d1:44:9a:bd:a3:a5:e2:34:
26:a0:12:da:37:58:df:be:db:70:7d:49:85:96:80:
ab:63:95:86:87:3e:78:fe:ce:b6:fb:de:b3:da:3c:
6f:23:99:5f:c1:82:ca:e2:45:f9:c0:52:44:b4:70:
f5:86:d5:9c:d1:b9:ef:82:51:42:6b:5b:a2:4b:cf:
da:6f:84:57:27:20:53:2e:62:73:a0:8c:ab:f0:d5:
01:f1:da:96:bf:dd:49:3f:58:a4:6b:93:20:ee:63:
b3:0c:a9:42:ef:d0:c8:a7:6d:1f:55:38:8d:73:0d:
7c:46:2f:7b:c4:7d:b3:70:3d:fa:eb:5a:6f:35:17:
6c:9b:0a:43:c3:4e:ca:6a:7c:f4:a4:40:bf:7f:fc:
98:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8D:6C:BB:83:01:CE:D0:9D:E4:B7:0B:71:E5:4D:B7:A2:04:AA:FB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/97C6602067AF11EFAA585B6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.242.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:14:76:4b:f0:c9:02:e3:31:f9:ea:c3:96:fa:bf:03:49:d7:
26:33:78:5b:40:c7:42:d5:d8:73:a7:fd:46:04:b2:18:c4:43:
83:5d:31:f5:25:4c:49:6c:e9:c2:8e:49:ec:3a:a5:b7:38:ea:
ab:d3:65:90:d9:6d:e7:22:c8:49:f1:a4:4c:ed:8a:a2:c9:42:
87:55:f1:69:54:09:a8:71:a2:36:5c:e9:48:46:57:40:ea:87:
a1:8e:ab:9b:46:ec:1f:5c:68:a9:92:45:aa:13:3c:6b:d8:4a:
b0:ec:6b:0d:33:b8:e6:0a:57:a2:af:b2:a2:a3:9f:89:dc:80:
c1:b5:25:c8:27:b3:4e:6d:8f:75:dc:3d:fb:75:a3:c2:6e:7d:
f0:d9:f4:66:df:40:de:da:d5:1a:53:c2:f2:3a:90:49:75:18:
38:c4:5d:79:89:d1:0d:63:ea:2a:f3:30:ee:db:27:95:d3:9e:
2c:f1:4f:6b:22:0f:7d:af:7f:43:5e:7c:a8:2e:c9:27:af:06:
8e:2b:7c:43:d2:90:00:0d:e7:9d:bc:ec:4e:78:69:96:dc:5b:
d2:7d:8a:10:48:1d:2d:df:e6:10:49:0b:a4:35:0d:32:b7:ca:
0d:5c:45:00:ad:f0:52:ac:a6:7d:c8:60:04:3a:ab:ac:4a:9e:
d7:09:23:08
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF98wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDA4MzExNTQyMTBaFw0yNjA4MzExNTQyMTBaMBgxFjAU
BgNVBAMTDTY2ZDMzOWQ1LWE2MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDM0vV6LBrnySAdOBuDo06XyT3LYf8TQBiEsrW4sAHweOm3yGDt9TmXMrpr
HmKFSsc22Unl4tIyb/pRDxG0yJgPriMko7DPha+4eajfGnL81NJn7b0cIdViCmsM
TTBoTZzZRtpfyZlSb5HDMuFmXWPRRJq9o6XiNCagEto3WN++23B9SYWWgKtjlYaH
Pnj+zrb73rPaPG8jmV/BgsriRfnAUkS0cPWG1ZzRue+CUUJrW6JLz9pvhFcnIFMu
YnOgjKvw1QHx2pa/3Uk/WKRrkyDuY7MMqULv0MinbR9VOI1zDXxGL3vEfbNwPfrr
Wm81F2ybCkPDTspqfPSkQL9//Jh9AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU741s
u4MBztCd5LcLceVNt6IEqvswHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4Lzk3QzY2MDIwNjdBRjExRUZBQTU4NUI2Qjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEPIwDQYJKoZIhvcNAQEL
BQADggEBAL0UdkvwyQLjMfnqw5b6vwNJ1yYzeFtAx0LV2HOn/UYEshjEQ4NdMfUl
TEls6cKOSew6pbc46qvTZZDZbeciyEnxpEztiqLJQodV8WlUCahxojZc6UhGV0Dq
h6GOq5tG7B9caKmSRaoTPGvYSrDsaw0zuOYKV6KvsqKjn4ncgMG1Jcgns05tj3Xc
Pft1o8JuffDZ9GbfQN7a1RpTwvI6kEl1GDjEXXmJ0Q1j6irzMO7bJ5XTnizxT2si
D32vf0NefKguySevBo4rfEPSkAAN55287E54aZbcW9J9ihBIHS3f5hBJC6Q1DTK3
yg1cRQCt8FKspn3IYAQ6q6xKntcJIwg=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:27 2024 by rpki-client on console-ams.rpki-client.org