Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A1430FA9F8011EFAD5A4E51762E951A.roa
File: 0A1430FA9F8011EFAD5A4E51762E951A.roa (raw, json)
Hash identifier: nqICRwTuGdtPFq6iOT202U5DDGJ93jljFW26lUwTv34=
Subject key identifier: 7A:D6:87:B6:B7:60:B7:4E:C4:90:28:A2:50:FE:A6:2A:15:5F:F2:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A1430FA9F8011EFAD5A4E51762E951A.roa
Signing time: Sun 10 Nov 2024 16:22:55 +0000
ROA not before: Sun 10 Nov 2024 16:22:51 +0000
ROA not after: Fri 17 Oct 2025 16:22:51 +0000
asID: 132813
IP address blocks: 154.205.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68382 (0x10b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:22:51 2024 GMT
Not After : Oct 17 16:22:51 2025 GMT
Subject: CN=6730ddde-345e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:e7:59:f9:cd:7b:75:3f:69:be:52:58:96:
9f:47:4d:97:85:c6:b1:f3:b9:f9:b6:41:59:9f:db:
08:70:64:d6:40:13:cb:cb:ed:d2:a3:de:76:f5:ca:
23:aa:0c:84:2c:e5:0b:10:71:77:b2:0c:f2:c5:a7:
18:1e:65:c9:2b:cf:dd:87:24:87:f1:98:1b:fc:cf:
cf:5d:3d:bf:71:0f:9a:4b:25:cf:90:e9:9d:c5:97:
5a:62:b2:c8:2c:67:0d:7a:6c:74:d6:8f:51:6a:f7:
37:49:50:5a:ba:d4:4b:0b:2d:08:59:72:95:c6:5f:
d0:db:4b:86:59:b3:6c:93:a9:8e:9c:fc:20:1f:be:
31:6e:37:7a:f1:bb:2e:b6:bd:fe:e4:a6:eb:fa:dd:
19:bb:7d:c5:e9:53:b3:a7:00:a3:96:20:6a:a1:0c:
86:bc:51:f7:ed:fc:ce:d6:66:19:53:06:ff:e6:45:
26:c8:11:92:0e:79:f3:c9:42:dc:ae:24:8c:2f:d7:
1b:23:26:70:57:7a:23:1b:74:15:9a:a1:b0:11:0f:
e5:39:d9:77:a5:ac:f8:df:f8:b7:13:30:ec:d2:59:
b1:e6:0f:6d:8b:a7:c9:a6:88:48:42:fb:d2:d6:5c:
2c:74:61:c3:15:3f:88:4e:91:15:f6:2c:bb:7e:da:
79:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D6:87:B6:B7:60:B7:4E:C4:90:28:A2:50:FE:A6:2A:15:5F:F2:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A1430FA9F8011EFAD5A4E51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:3d:25:20:e8:7a:fe:72:c5:35:69:63:f5:bd:84:86:b5:ff:
89:34:a4:7b:89:57:45:87:06:85:7a:e8:a8:9b:04:e8:0d:b7:
a2:ef:cc:7f:17:ad:97:dd:4c:f8:77:85:2a:19:9a:a5:ce:bd:
d9:c3:e8:79:45:a1:00:91:bd:39:f7:5f:84:ec:6f:7c:79:ad:
31:7d:5b:c9:55:c3:ad:25:a7:26:36:27:a1:b0:ed:5b:24:ae:
d2:16:0f:49:f2:27:d9:6c:2a:d4:f4:92:15:96:fd:54:c8:44:
f0:55:b7:52:55:1f:ed:e2:86:ce:34:eb:1d:3f:8f:fd:ba:0c:
80:5e:d2:bc:a6:92:0e:dd:54:31:44:e6:9f:ab:33:0f:b7:71:
c2:fb:7d:1b:76:23:84:cc:b3:f1:74:8e:92:35:9f:a1:a7:9e:
d6:b5:0e:4a:72:eb:13:98:4e:e4:ac:55:90:d8:32:e7:c2:32:
91:78:e5:6a:ab:5b:ec:b4:44:73:e7:66:57:24:d5:d7:89:67:
b5:de:23:08:23:a6:12:ab:c3:d2:fc:73:da:10:7e:29:17:34:
60:a7:45:66:9b:40:60:6b:88:c5:4f:3d:46:c1:e3:14:56:0d:
88:6b:6d:6e:46:7a:2a:e3:8e:23:5b:b0:95:b9:ef:3f:8f:7a:
b5:ac:45:ba
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQseMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTYyMjUxWhcNMjUxMDE3MTYyMjUxWjAYMRYw
FAYDVQQDEw02NzMwZGRkZS0zNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs0nnWfnNe3U/ab5SWJafR02Xhcax87n5tkFZn9sIcGTWQBPLy+3So952
9cojqgyELOULEHF3sgzyxacYHmXJK8/dhySH8Zgb/M/PXT2/cQ+aSyXPkOmdxZda
YrLILGcNemx01o9Ravc3SVBautRLCy0IWXKVxl/Q20uGWbNsk6mOnPwgH74xbjd6
8bsutr3+5Kbr+t0Zu33F6VOzpwCjliBqoQyGvFH37fzO1mYZUwb/5kUmyBGSDnnz
yULcriSML9cbIyZwV3ojG3QVmqGwEQ/lOdl3paz43/i3EzDs0lmx5g9ti6fJpohI
QvvS1lwsdGHDFT+ITpEV9iy7ftp5UQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHrW
h7a3YLdOxJAoolD+pioVX/KQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQTE0MzBGQTlGODAxMUVGQUQ1QTRFNTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms0IMA0GCSqGSIb3DQEB
CwUAA4IBAQCyPSUg6Hr+csU1aWP1vYSGtf+JNKR7iVdFhwaFeuiomwToDbei78x/
F62X3Uz4d4UqGZqlzr3Zw+h5RaEAkb0591+E7G98ea0xfVvJVcOtJacmNiehsO1b
JK7SFg9J8ifZbCrU9JIVlv1UyETwVbdSVR/t4obONOsdP4/9ugyAXtK8ppIO3VQx
ROafqzMPt3HC+30bdiOEzLPxdI6SNZ+hp57WtQ5KcusTmE7krFWQ2DLnwjKReOVq
q1vstERz52ZXJNXXiWe13iMII6YSq8PS/HPaEH4pFzRgp0Vmm0Bga4jFTz1GweMU
Vg2Ia21uRnoq444jW7CVue8/j3q1rEW6
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:58 2024 by rpki-client on console-fra.rpki-client.org