Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0261B3BC92B211EF83C5069D762E951A.roa
File: 0261B3BC92B211EF83C5069D762E951A.roa (raw, json)
Hash identifier: quWsdvEtl+DOITfLzH6OZ6Kau34v+xSqyutqc+OLvPI=
Subject key identifier: C1:3F:4E:BF:F8:DD:87:7C:B1:78:BE:E8:C7:F6:DD:0A:1B:1E:5A:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0101D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0261B3BC92B211EF83C5069D762E951A.roa
Signing time: Fri 25 Oct 2024 09:17:51 +0000
ROA not before: Fri 25 Oct 2024 09:17:48 +0000
ROA not after: Wed 27 Nov 2024 09:17:48 +0000
asID: 395793
IP address blocks: 154.194.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66008 (0x101d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:17:48 2024 GMT
Not After : Nov 27 09:17:48 2024 GMT
Subject: CN=671b623f-7c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:eb:3c:a7:f3:cc:0b:a9:e5:a1:73:09:02:dc:
70:96:b4:d1:fe:13:86:46:e2:a6:f7:02:1c:c8:7c:
48:1d:45:84:3f:ab:24:c2:f7:c9:9e:42:94:06:56:
9e:59:16:27:92:29:df:54:26:cf:25:b1:84:31:bb:
f3:9e:90:13:94:33:c1:0c:6e:75:51:f3:09:2f:84:
0d:80:ad:a3:d2:9c:9d:95:c3:05:c7:be:54:1e:13:
67:cb:27:35:d9:63:d6:54:ec:2e:47:64:b9:6d:94:
fc:a9:61:a1:e3:46:ea:c4:f1:f9:3d:6e:7f:93:69:
0d:ab:a1:8d:08:82:29:7f:0e:a2:28:97:17:20:6a:
31:1a:42:7f:d7:29:b5:cc:e6:91:e2:a7:14:d3:bc:
4a:22:12:ac:bb:e1:e6:1f:05:d0:f0:83:b7:34:f5:
2a:b5:4f:b1:61:7e:05:5e:a0:6a:33:d9:4f:50:d9:
b4:8f:f9:9d:23:36:c2:97:2f:cd:2c:11:d7:fa:18:
dc:15:b4:cc:fd:37:ce:c0:da:e0:f0:7b:82:3c:cf:
e7:4b:9b:1b:3f:a6:34:83:c3:14:7c:e2:79:9e:37:
92:5b:9a:ca:67:78:ce:46:7c:b1:a9:c9:6a:fd:c1:
07:01:eb:cf:f6:78:0e:99:d7:8c:da:25:4e:12:f2:
06:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3F:4E:BF:F8:DD:87:7C:B1:78:BE:E8:C7:F6:DD:0A:1B:1E:5A:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0261B3BC92B211EF83C5069D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.208.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:e0:f9:87:7b:f2:42:ec:fc:e1:a3:58:0c:cc:ae:c5:2f:a8:
ca:e6:1f:f7:6a:99:92:5d:a2:4e:6d:be:55:20:0c:a3:c1:59:
a4:bd:b1:f6:28:d3:0f:21:a6:14:51:03:06:1f:37:52:3c:1f:
39:87:85:02:62:ac:dd:9d:f5:63:ad:7b:f4:4f:10:1c:3a:e8:
50:e4:2a:6d:f9:6d:48:e9:79:61:06:28:32:4c:15:99:1e:ce:
a8:55:af:a6:cb:bc:45:95:64:0b:67:e4:e3:ea:ee:0f:7a:92:
ac:0c:8d:77:da:8e:e8:85:e3:1b:82:78:a2:60:e3:4e:cf:bf:
f4:2d:e5:98:4d:9c:61:0d:82:43:72:0b:16:a1:93:f2:55:22:
5a:33:18:74:36:a2:ad:01:2a:6c:fa:ee:b3:4e:c6:2d:04:55:
4e:35:c9:cc:6d:0a:dd:7d:39:57:0a:9b:9b:23:d7:09:eb:5d:
84:e7:a6:78:e0:b7:cc:cb:91:a1:72:fe:e2:c2:2a:01:9a:ba:
80:8a:b8:04:14:4a:4b:2f:a4:f4:ad:1e:ed:81:0d:72:b7:4d:
2f:c1:0f:c2:4f:11:ee:f1:f0:67:2a:78:31:3e:96:71:06:d0:
cf:a9:fb:dd:66:a2:8e:b1:11:31:73:b7:54:3c:7f:34:4f:94:
70:04:24:ac
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQHYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI1MDkxNzQ4WhcNMjQxMTI3MDkxNzQ4WjAYMRYw
FAYDVQQDEw02NzFiNjIzZi03YzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtes8p/PMC6nloXMJAtxwlrTR/hOGRuKm9wIcyHxIHUWEP6skwvfJnkKU
BlaeWRYnkinfVCbPJbGEMbvznpATlDPBDG51UfMJL4QNgK2j0pydlcMFx75UHhNn
yyc12WPWVOwuR2S5bZT8qWGh40bqxPH5PW5/k2kNq6GNCIIpfw6iKJcXIGoxGkJ/
1ym1zOaR4qcU07xKIhKsu+HmHwXQ8IO3NPUqtU+xYX4FXqBqM9lPUNm0j/mdIzbC
ly/NLBHX+hjcFbTM/TfOwNrg8HuCPM/nS5sbP6Y0g8MUfOJ5njeSW5rKZ3jORnyx
qclq/cEHAevP9ngOmdeM2iVOEvIGhwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFME/
Tr/43Yd8sXi+6Mf23QobHloYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMjYxQjNCQzkyQjIxMUVGODNDNTA2OUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsLQMA0GCSqGSIb3DQEB
CwUAA4IBAQCN4PmHe/JC7Pzho1gMzK7FL6jK5h/3apmSXaJObb5VIAyjwVmkvbH2
KNMPIaYUUQMGHzdSPB85h4UCYqzdnfVjrXv0TxAcOuhQ5Cpt+W1I6XlhBigyTBWZ
Hs6oVa+my7xFlWQLZ+Tj6u4PepKsDI132o7oheMbgniiYONOz7/0LeWYTZxhDYJD
cgsWoZPyVSJaMxh0NqKtASps+u6zTsYtBFVONcnMbQrdfTlXCpubI9cJ612E56Z4
4LfMy5Ghcv7iwioBmrqAirgEFEpLL6T0rR7tgQ1yt00vwQ/CTxHu8fBnKngxPpZx
BtDPqfvdZqKOsRExc7dUPH80T5RwBCSs
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org