Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/093BC01EA32511EFAA1C0B7B762E951A.roa
File: 093BC01EA32511EFAA1C0B7B762E951A.roa (raw, json)
Hash identifier: gBovAubQLTXjF1nx7rdQZSqiPHITS6n4RsjC9pNOUMg=
Subject key identifier: 59:53:31:74:0F:2E:BC:53:4D:48:68:43:18:32:DD:81:70:AB:41:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/093BC01EA32511EFAA1C0B7B762E951A.roa
Signing time: Fri 15 Nov 2024 07:41:34 +0000
ROA not before: Fri 15 Nov 2024 07:41:30 +0000
ROA not after: Thu 12 Dec 2024 07:41:30 +0000
asID: 394432
IP address blocks: 154.196.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68934 (0x10d46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 07:41:30 2024 GMT
Not After : Dec 12 07:41:30 2024 GMT
Subject: CN=6736fb2e-4a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1c:ab:0c:10:bf:f5:96:aa:8b:b7:33:bf:47:
be:50:d4:06:28:3a:16:dc:df:ef:1f:4e:3c:a2:02:
b8:5f:da:c4:b1:6b:10:2c:bd:e6:e3:1c:14:0b:46:
2e:dc:fb:53:19:c7:62:a3:52:38:88:75:7d:eb:26:
40:c6:77:01:dc:01:6c:3d:80:76:9c:72:5e:73:88:
3c:43:39:ba:69:6c:5b:4b:ac:e9:f2:64:ee:a7:07:
63:0d:0f:32:5b:28:23:6d:28:17:a0:ea:9f:22:84:
48:83:c3:94:a6:21:cf:e8:11:0c:4a:2f:9b:c2:8c:
0f:31:a1:90:a7:5d:8f:b0:db:91:1e:8a:6e:85:8b:
00:42:06:35:37:99:90:9c:8d:eb:f0:5b:0f:87:65:
ca:70:2b:97:bf:0d:8e:8c:e6:bc:f1:fb:04:58:d8:
af:36:ea:ec:b8:b5:18:d2:7b:0e:7f:8e:79:39:f1:
e5:11:a2:1f:c0:bd:b4:40:af:15:49:9e:54:76:90:
da:ce:e0:1a:81:d2:f8:44:d4:1d:bd:bd:ad:3f:b3:
80:3f:c7:f6:d7:5e:09:c4:24:e9:5f:04:95:d3:46:
ce:1b:ab:ae:83:f3:3e:86:18:bd:39:b7:10:f7:7d:
ab:be:6d:e1:b7:52:19:07:f3:7c:0d:10:e3:61:8d:
3c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:53:31:74:0F:2E:BC:53:4D:48:68:43:18:32:DD:81:70:AB:41:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/093BC01EA32511EFAA1C0B7B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.204.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:5e:a8:98:bb:d3:28:43:3f:bc:21:bb:78:e5:cf:50:cb:51:
c5:a3:61:3f:d6:95:a8:e9:f3:fa:55:6b:35:e1:31:87:35:e9:
33:f5:27:2a:95:61:a0:03:83:0c:12:91:00:b9:ed:a0:72:24:
22:f3:de:41:8e:4d:19:1e:63:0e:60:01:ee:ac:fe:38:26:d6:
6a:95:d5:29:69:8f:54:b0:66:95:7d:f1:78:86:0b:cd:80:2e:
52:0a:6b:79:ce:30:07:77:93:73:f6:a4:f5:b6:90:e3:93:be:
bf:6c:73:6e:0b:07:44:b7:5f:ed:25:03:a8:be:bf:f4:4a:86:
93:4b:53:98:af:52:5f:f3:88:6b:f6:c8:86:28:e4:81:d5:5e:
f3:9e:62:fb:b2:b4:94:03:4a:39:73:e3:ff:b6:05:86:3e:db:
df:2a:da:5e:83:61:ee:3a:75:37:7a:52:d3:9d:a2:94:6a:17:
6e:b6:21:fc:f2:91:9d:d3:ad:0f:4e:27:3a:c3:0f:3f:da:7a:
2d:52:ca:08:20:e7:13:8f:c0:04:ca:d0:7c:72:27:f0:c9:7d:
11:87:61:77:90:cd:b8:5a:2b:0d:5b:40:86:41:1e:f5:42:d9:
28:dc:55:21:0c:c4:30:86:dd:c2:7f:7b:81:80:87:28:60:93:
7d:11:b3:81
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ1GMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE1MDc0MTMwWhcNMjQxMjEyMDc0MTMwWjAYMRYw
FAYDVQQDEw02NzM2ZmIyZS00YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtByrDBC/9Zaqi7czv0e+UNQGKDoW3N/vH048ogK4X9rEsWsQLL3m4xwU
C0Yu3PtTGcdio1I4iHV96yZAxncB3AFsPYB2nHJec4g8Qzm6aWxbS6zp8mTupwdj
DQ8yWygjbSgXoOqfIoRIg8OUpiHP6BEMSi+bwowPMaGQp12PsNuRHopuhYsAQgY1
N5mQnI3r8FsPh2XKcCuXvw2OjOa88fsEWNivNursuLUY0nsOf455OfHlEaIfwL20
QK8VSZ5UdpDazuAagdL4RNQdvb2tP7OAP8f2114JxCTpXwSV00bOG6uug/M+hhi9
ObcQ932rvm3ht1IZB/N8DRDjYY08JwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFlT
MXQPLrxTTUhoQxgy3YFwq0HoMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wOTNCQzAxRUEzMjUxMUVGQUExQzBCN0I3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsTMMA0GCSqGSIb3DQEB
CwUAA4IBAQDHXqiYu9MoQz+8Ibt45c9Qy1HFo2E/1pWo6fP6VWs14TGHNekz9Scq
lWGgA4MMEpEAue2gciQi895Bjk0ZHmMOYAHurP44JtZqldUpaY9UsGaVffF4hgvN
gC5SCmt5zjAHd5Nz9qT1tpDjk76/bHNuCwdEt1/tJQOovr/0SoaTS1OYr1Jf84hr
9siGKOSB1V7znmL7srSUA0o5c+P/tgWGPtvfKtpeg2HuOnU3elLTnaKUahdutiH8
8pGd060PTic6ww8/2notUsoIIOcTj8AEytB8cifwyX0Rh2F3kM24WisNW0CGQR71
Qtko3FUhDMQwht3Cf3uBgIcoYJN9EbOB
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:21:41 2024 by rpki-client on console-ams.rpki-client.org