Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04ADA168A9A911EF85BF8267762E951A.roa
File: 04ADA168A9A911EF85BF8267762E951A.roa (raw, json)
Hash identifier: g/pqievS+QuapriNaKU7E0tzBb7DoPjDPLfohnf2YJ4=
Subject key identifier: 23:7E:00:B7:F6:D3:CF:3E:49:4E:24:7C:1E:FD:8D:80:83:B6:CE:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011172
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04ADA168A9A911EF85BF8267762E951A.roa
Signing time: Sat 23 Nov 2024 14:41:27 +0000
ROA not before: Sat 23 Nov 2024 14:41:23 +0000
ROA not after: Thu 28 Nov 2024 14:41:23 +0000
asID: 212238
IP address blocks: 154.207.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70002 (0x11172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 14:41:23 2024 GMT
Not After : Nov 28 14:41:23 2024 GMT
Subject: CN=6741e996-878f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:98:b3:fa:c1:ca:fe:3a:7b:3c:1f:85:b7:1c:
b8:6b:19:f5:8a:d4:5e:31:84:8e:fd:db:60:30:3e:
6b:d2:f4:f3:19:05:81:e7:73:b2:10:f3:4e:90:50:
e8:77:2e:b1:33:7c:39:e4:1e:db:08:5b:57:0b:0f:
33:32:17:cf:a6:c9:d0:ce:45:d5:6b:60:4b:21:d0:
e5:52:03:04:81:d2:2c:7f:d8:89:84:cb:2e:07:1c:
0c:90:5c:fd:15:ce:69:e6:a9:48:0f:8c:e0:f3:01:
92:fd:de:fd:ce:57:13:76:28:23:3e:a3:d3:ed:19:
28:1c:9a:72:b0:22:bb:e7:08:03:dd:71:fc:e7:7a:
30:db:c9:bb:cc:fc:42:43:d6:3f:cf:1f:ad:68:93:
d1:1e:bc:bc:80:c9:b3:5d:34:eb:32:78:7d:06:89:
40:e8:88:be:ab:0c:f0:d0:5d:37:8a:57:91:5b:8f:
f9:41:84:d8:41:57:af:06:58:77:04:23:fd:9e:a7:
d7:2b:cd:64:1f:33:d4:a4:b5:42:55:a6:f9:1e:ce:
d4:a4:c2:3a:5a:39:0e:5d:ad:be:d1:06:b0:4f:1a:
2c:f4:d4:3e:d5:6f:5e:8f:89:bd:1e:13:0f:c5:58:
cb:8d:15:56:a4:9d:8b:55:db:c9:71:17:29:18:6b:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7E:00:B7:F6:D3:CF:3E:49:4E:24:7C:1E:FD:8D:80:83:B6:CE:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04ADA168A9A911EF85BF8267762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.148.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:eb:5d:83:f4:1b:af:d7:2a:3a:be:4f:a4:44:35:bf:8c:eb:
9e:8e:15:8c:0e:8f:ca:65:d8:0f:db:2a:81:30:81:3a:3c:68:
00:d8:65:c7:c5:61:46:ca:8e:54:a1:99:a7:5e:83:64:35:e4:
61:03:46:7a:fc:86:a9:8c:3a:5e:f0:df:b6:e1:4a:11:26:7f:
0a:fa:30:25:ef:89:5c:e6:d0:83:11:6d:f4:39:0a:19:e2:7d:
9e:ab:38:f8:6a:08:95:2b:52:ec:9f:a9:51:7c:f5:1b:1c:6c:
be:8d:6c:bc:72:6a:25:8e:81:cf:14:d4:91:d6:fe:bd:ee:9f:
8a:e1:2c:f8:bf:08:cb:c4:c1:33:17:4d:d1:b4:92:3b:5a:87:
96:c0:f6:1e:55:30:d5:4c:30:63:40:ed:f9:06:73:02:ba:4b:
5d:c1:eb:53:6b:87:ef:c4:ca:4c:61:bc:ad:ba:5f:58:e3:97:
50:ab:0c:ae:fc:dc:bb:76:0d:36:4a:e4:59:f2:3c:f5:ad:14:
14:96:c0:97:e0:bc:cc:f2:a9:68:0d:27:dc:94:40:64:38:c7:
5b:d4:7f:c8:dc:92:58:8b:d5:52:61:d9:0b:8c:8f:83:40:f8:
ca:a6:e4:5c:25:1a:91:7a:f9:c2:e6:bb:56:27:3f:12:1c:9c:
41:39:49:94
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARFyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIzMTQ0MTIzWhcNMjQxMTI4MTQ0MTIzWjAYMRYw
FAYDVQQDEw02NzQxZTk5Ni04NzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzpiz+sHK/jp7PB+Ftxy4axn1itReMYSO/dtgMD5r0vTzGQWB53OyEPNO
kFDody6xM3w55B7bCFtXCw8zMhfPpsnQzkXVa2BLIdDlUgMEgdIsf9iJhMsuBxwM
kFz9Fc5p5qlID4zg8wGS/d79zlcTdigjPqPT7RkoHJpysCK75wgD3XH853ow28m7
zPxCQ9Y/zx+taJPRHry8gMmzXTTrMnh9BolA6Ii+qwzw0F03ileRW4/5QYTYQVev
Blh3BCP9nqfXK81kHzPUpLVCVab5Hs7UpMI6WjkOXa2+0QawTxos9NQ+1W9ej4m9
HhMPxVjLjRVWpJ2LVdvJcRcpGGurfwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCN+
ALf2088+SU4kfB79jYCDts5QMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNEFEQTE2OEE5QTkxMUVGODVCRjgyNjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms+UMA0GCSqGSIb3DQEB
CwUAA4IBAQA7612D9Buv1yo6vk+kRDW/jOuejhWMDo/KZdgP2yqBMIE6PGgA2GXH
xWFGyo5UoZmnXoNkNeRhA0Z6/IapjDpe8N+24UoRJn8K+jAl74lc5tCDEW30OQoZ
4n2eqzj4agiVK1Lsn6lRfPUbHGy+jWy8cmoljoHPFNSR1v697p+K4Sz4vwjLxMEz
F03RtJI7WoeWwPYeVTDVTDBjQO35BnMCuktdwetTa4fvxMpMYbytul9Y45dQqwyu
/Ny7dg02SuRZ8jz1rRQUlsCX4LzM8qloDSfclEBkOMdb1H/I3JJYi9VSYdkLjI+D
QPjKpuRcJRqRevnC5rtWJz8SHJxBOUmU
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:53 2024 by rpki-client on console-ams.rpki-client.org