Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060FCE9AA8F111EF93021561762E951A.roa
File: 060FCE9AA8F111EF93021561762E951A.roa (raw, json)
Hash identifier: KgD76wEnfEnFdibqmNarSNbbFOJBtgxbAd7gFZNwRcI=
Subject key identifier: A4:D3:C8:4A:CA:5B:07:CB:8B:51:2B:8A:6E:38:A4:64:66:30:C7:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011153
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060FCE9AA8F111EF93021561762E951A.roa
Signing time: Fri 22 Nov 2024 16:44:21 +0000
ROA not before: Fri 22 Nov 2024 16:44:18 +0000
ROA not after: Tue 03 Dec 2024 16:44:18 +0000
asID: 62240
IP address blocks: 154.195.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69971 (0x11153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:44:18 2024 GMT
Not After : Dec 3 16:44:18 2024 GMT
Subject: CN=6740b4e5-441e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c9:02:fe:50:41:eb:38:f7:2d:27:2a:36:bb:
dd:f9:ed:1e:d4:74:75:96:db:8c:44:1c:60:a0:02:
4e:14:a5:c9:33:d7:0b:07:5c:bd:99:e0:f9:79:ab:
99:e7:17:62:43:f5:f9:f0:61:e1:f5:f6:52:9f:b8:
74:49:10:ef:06:81:58:b0:28:f6:77:1e:2b:26:55:
cf:a3:37:fe:25:9e:86:cd:f8:30:b3:1e:45:e9:76:
a8:4d:b8:be:11:6b:7c:c5:25:7c:8d:95:6e:d9:b4:
4e:a3:5c:03:5b:04:1c:41:49:52:1e:60:15:9a:0b:
f7:b5:ec:c2:2d:f4:9a:2b:8f:e7:e1:06:c8:98:df:
a3:ac:33:8b:36:46:6b:d3:d9:2f:09:42:12:08:4f:
c8:34:6d:f7:66:75:34:da:7b:fa:06:d1:59:0b:44:
d7:a8:3f:05:d5:f6:08:9f:56:c9:2a:6d:7f:bd:b4:
6d:cf:3f:28:d5:9b:f7:40:15:71:b3:d8:23:03:d7:
61:0a:ae:25:1d:90:bb:c2:7a:ec:3b:b7:8a:47:38:
79:a7:cc:38:e4:dd:02:ac:66:32:21:fe:f0:ba:0d:
6b:8c:09:93:e6:f8:77:fb:0f:08:c4:a5:52:27:03:
2c:a4:7a:2f:d3:00:d7:a1:23:e5:d3:3b:ed:a0:83:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D3:C8:4A:CA:5B:07:CB:8B:51:2B:8A:6E:38:A4:64:66:30:C7:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060FCE9AA8F111EF93021561762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.164.0/24
Signature Algorithm: sha256WithRSAEncryption
93:39:1e:a8:d3:4e:c9:51:8f:ec:91:42:b4:90:78:3f:16:85:
4f:f4:de:f1:9a:5a:22:30:bb:2b:69:00:ca:3b:25:7c:1d:04:
72:94:1d:5b:54:bd:1b:4a:c4:11:b8:8e:50:0c:e5:fe:46:3e:
9e:8a:ef:7d:61:9b:86:a6:8a:26:df:0f:08:99:80:74:bb:87:
eb:3b:b8:cc:a0:40:29:9d:95:cc:76:9d:12:ba:8b:21:df:9a:
32:c6:2a:c0:ee:72:58:3e:93:c4:8c:42:03:da:08:b9:fd:3c:
f4:dd:1d:b5:1d:a1:a8:9a:94:64:fa:bb:71:89:a8:20:19:36:
e4:5a:86:d3:ed:53:be:cd:c3:f6:c1:ee:02:e3:2b:be:b2:f5:
ef:43:89:56:fb:c3:81:14:2e:68:6d:1c:22:2d:58:b1:11:99:
c9:ba:cf:c4:7a:1a:a2:83:c1:60:b4:83:69:35:a1:3e:40:5d:
6e:5a:eb:aa:c0:e3:ab:1b:3d:4b:95:24:10:7c:b6:14:35:87:
32:a7:d7:77:a9:4a:48:47:a7:a2:75:f5:90:38:ab:3b:4c:4e:
af:c6:2d:c0:2b:ce:1b:8d:87:58:f5:11:ac:2a:82:fd:32:57:
23:6e:af:cd:b3:77:7e:ba:28:c6:85:b9:36:0c:29:17:11:90:
14:aa:10:88
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARFTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTY0NDE4WhcNMjQxMjAzMTY0NDE4WjAYMRYw
FAYDVQQDEw02NzQwYjRlNS00NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA58kC/lBB6zj3LScqNrvd+e0e1HR1ltuMRBxgoAJOFKXJM9cLB1y9meD5
eauZ5xdiQ/X58GHh9fZSn7h0SRDvBoFYsCj2dx4rJlXPozf+JZ6Gzfgwsx5F6Xao
Tbi+EWt8xSV8jZVu2bROo1wDWwQcQUlSHmAVmgv3tezCLfSaK4/n4QbImN+jrDOL
NkZr09kvCUISCE/ING33ZnU02nv6BtFZC0TXqD8F1fYIn1bJKm1/vbRtzz8o1Zv3
QBVxs9gjA9dhCq4lHZC7wnrsO7eKRzh5p8w45N0CrGYyIf7wug1rjAmT5vh3+w8I
xKVSJwMspHov0wDXoSPl0zvtoIN2EQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKTT
yErKWwfLi1Erim44pGRmMMezMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNjBGQ0U5QUE4RjExMUVGOTMwMjE1NjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsOkMA0GCSqGSIb3DQEB
CwUAA4IBAQCTOR6o007JUY/skUK0kHg/FoVP9N7xmloiMLsraQDKOyV8HQRylB1b
VL0bSsQRuI5QDOX+Rj6eiu99YZuGpoom3w8ImYB0u4frO7jMoEApnZXMdp0Suosh
35oyxirA7nJYPpPEjEID2gi5/Tz03R21HaGompRk+rtxiaggGTbkWobT7VO+zcP2
we4C4yu+svXvQ4lW+8OBFC5obRwiLVixEZnJus/Eehqig8FgtINpNaE+QF1uWuuq
wOOrGz1LlSQQfLYUNYcyp9d3qUpIR6eidfWQOKs7TE6vxi3AK84bjYdY9RGsKoL9
Mlcjbq/Ns3d+uijGhbk2DCkXEZAUqhCI
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:53 2024 by rpki-client on console-ams.rpki-client.org