Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EBA2EA12903911EF825C6E92762E951A.roa
File: EBA2EA12903911EF825C6E92762E951A.roa (raw, json)
Hash identifier: aIWepzNSNPWbu4ivyRlJcJNpS/ifpbwCpt6EQKcbg1E=
Subject key identifier: 1D:0E:BE:EB:1D:EA:7C:9D:F7:0E:45:68:36:A1:80:8C:DD:18:3C:C0
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1890
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EBA2EA12903911EF825C6E92762E951A.roa
Signing time: Tue 22 Oct 2024 05:53:11 +0000
ROA not before: Tue 22 Oct 2024 05:53:07 +0000
ROA not after: Thu 22 Oct 2026 05:53:07 +0000
asID: 212238
IP address blocks: 154.16.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6288 (0x1890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 22 05:53:07 2024 GMT
Not After : Oct 22 05:53:07 2026 GMT
Subject: CN=67173dc7-0d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5e:a3:01:9e:65:7f:33:b3:c9:b3:04:c2:20:
95:cb:da:cc:4c:51:95:09:bd:54:98:f0:87:dc:c1:
b7:d5:56:ed:8d:65:20:87:04:fc:49:fc:3c:07:f7:
f0:57:7e:cd:b4:9d:8d:16:17:16:60:4c:ac:32:c1:
94:b3:14:58:c4:b1:e8:ef:c7:16:e8:40:03:ef:db:
6f:ab:2c:6c:1e:10:d0:b1:6b:a2:2e:77:9e:6c:15:
a8:28:14:9f:bc:da:eb:ba:2a:1b:f0:5b:96:b4:86:
2e:40:d9:e4:c3:65:e5:65:77:b4:70:3c:07:03:75:
43:44:26:f2:51:3c:71:a8:6e:7f:15:54:d6:6b:36:
b7:ef:7c:a3:6f:fb:d4:94:c0:9f:c5:09:fd:2e:ce:
a4:21:68:fc:9b:c6:fe:41:af:8b:83:6d:02:e4:40:
99:8b:83:49:e1:2a:f1:ba:da:5c:30:4d:d4:e5:3c:
43:2a:e2:84:46:75:b8:92:73:7b:7f:90:d5:21:4e:
b4:f7:5e:1f:aa:5c:6a:e5:27:d2:cc:93:47:e8:df:
b8:2c:44:9e:0b:7b:89:6f:a2:05:c6:e5:49:b2:69:
12:f4:2a:86:10:8a:05:2f:11:dd:cf:2b:b9:ee:64:
92:09:65:d5:9a:2c:e9:4d:a4:f6:4d:d4:5e:75:16:
0d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0E:BE:EB:1D:EA:7C:9D:F7:0E:45:68:36:A1:80:8C:DD:18:3C:C0
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EBA2EA12903911EF825C6E92762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.29.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a7:3b:03:c2:c1:5b:27:b9:09:53:63:81:03:f6:da:e0:59:
aa:e5:f0:38:d7:22:16:12:2c:5d:a2:eb:37:07:ae:ce:91:7c:
09:21:3e:61:f9:29:e1:65:82:75:f4:54:60:f4:52:c4:26:ab:
9d:a8:e3:45:87:46:3a:c9:56:b4:83:60:d6:9f:0b:b0:b4:77:
e8:b5:f6:6c:9a:8f:a1:c7:6c:ea:d5:a6:3c:b8:87:a3:3a:0e:
ff:59:7f:f4:f5:13:b5:d4:7f:6f:fa:6a:24:cd:ee:0f:8f:86:
1f:18:d4:8e:c9:93:12:89:2c:e5:0f:9d:e7:ab:6e:81:ac:53:
80:e2:7e:4f:8c:98:7d:ae:4a:7d:f0:6f:55:3f:52:39:b2:b9:
3f:36:b0:a5:5f:0a:ca:12:ad:87:0f:c0:11:d7:20:e8:15:07:
8c:60:1f:b7:3f:c9:98:c4:2d:b8:57:08:58:68:89:ce:f5:a7:
cd:1f:8f:19:ab:f5:13:3f:e3:4e:7d:c3:ef:c3:6e:50:d1:19:
93:e1:2e:03:12:fb:50:77:07:1b:14:82:57:34:72:46:9c:3d:
dc:f6:4d:90:5d:05:ad:85:62:25:13:38:e7:3e:25:c4:12:ca:
9d:63:3c:b5:4e:24:64:c8:de:46:a3:ab:7e:d1:06:e9:ee:b6:
b7:c9:d5:07
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGJAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDEwMjIwNTUzMDdaFw0yNjEwMjIwNTUzMDdaMBgxFjAU
BgNVBAMTDTY3MTczZGM3LTBkNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDkXqMBnmV/M7PJswTCIJXL2sxMUZUJvVSY8IfcwbfVVu2NZSCHBPxJ/DwH
9/BXfs20nY0WFxZgTKwywZSzFFjEsejvxxboQAPv22+rLGweENCxa6Iud55sFago
FJ+82uu6KhvwW5a0hi5A2eTDZeVld7RwPAcDdUNEJvJRPHGobn8VVNZrNrfvfKNv
+9SUwJ/FCf0uzqQhaPybxv5Br4uDbQLkQJmLg0nhKvG62lwwTdTlPEMq4oRGdbiS
c3t/kNUhTrT3Xh+qXGrlJ9LMk0fo37gsRJ4Le4lvogXG5UmyaRL0KoYQigUvEd3P
K7nuZJIJZdWaLOlNpPZN1F51Fg3xAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUHQ6+
6x3qfJ33DkVoNqGAjN0YPMAwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0VCQTJFQTEyOTAzOTExRUY4MjVDNkU5Mjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEB0wDQYJKoZIhvcNAQEL
BQADggEBACOnOwPCwVsnuQlTY4ED9trgWarl8DjXIhYSLF2i6zcHrs6RfAkhPmH5
KeFlgnX0VGD0UsQmq52o40WHRjrJVrSDYNafC7C0d+i19myaj6HHbOrVpjy4h6M6
Dv9Zf/T1E7XUf2/6aiTN7g+Phh8Y1I7JkxKJLOUPneerboGsU4Difk+MmH2uSn3w
b1U/UjmyuT82sKVfCsoSrYcPwBHXIOgVB4xgH7c/yZjELbhXCFhoic71p80fjxmr
9RM/4059w+/DblDRGZPhLgMS+1B3BxsUglc0ckacPdz2TZBdBa2FYiUTOOc+JcQS
yp1jPLVOJGTI3kajq37RBunutrfJ1Qc=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:47 2024 by rpki-client on console-ams.rpki-client.org