Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AE3C072A64C11EFA43C1444762E951A.roa
File: 0AE3C072A64C11EFA43C1444762E951A.roa (raw, json)
Hash identifier: 43fPNGh+0ZwDIicwF7FpA/D3kJOp34ngWhtf1RGnnxw=
Subject key identifier: C9:C7:C4:02:4B:9A:35:79:15:66:D5:74:15:8D:7E:71:E9:3C:C3:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F02
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AE3C072A64C11EFA43C1444762E951A.roa
Signing time: Tue 19 Nov 2024 07:58:20 +0000
ROA not before: Tue 19 Nov 2024 07:58:17 +0000
ROA not after: Sun 15 Dec 2024 07:58:17 +0000
asID: 215240
IP address blocks: 154.216.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69378 (0x10f02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:58:17 2024 GMT
Not After : Dec 15 07:58:17 2024 GMT
Subject: CN=673c451c-0dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:b9:bf:74:3f:5e:39:33:30:1c:2c:a5:bf:
44:e8:ef:37:f4:ca:d4:8e:f2:25:4b:bf:33:cb:fc:
c5:9c:ca:3e:b2:ad:d4:4f:c5:7e:51:7e:23:73:db:
e3:24:49:b4:f2:10:18:61:78:10:37:ca:04:10:53:
12:c1:7a:f6:0a:c8:79:c9:84:8b:13:55:ac:d3:be:
71:3c:9a:8b:08:86:eb:65:33:6e:57:bc:b5:f7:17:
7e:97:13:67:bf:54:bb:a2:72:42:5d:bf:54:81:3b:
55:4d:9a:13:5b:83:0f:15:41:71:99:59:df:56:3b:
56:17:21:89:b3:6b:5f:fd:9b:85:14:43:43:09:7d:
70:8b:e7:a6:3e:ea:de:03:d2:73:0e:42:40:81:9d:
b1:e2:a1:27:f6:15:ff:00:dc:6d:03:a8:ec:67:68:
a6:17:70:6e:10:9f:34:09:47:fb:6e:86:9a:d2:a6:
8d:35:1f:12:d6:dc:0b:c2:a2:81:a6:94:80:be:7b:
01:0c:38:0c:e1:1f:b4:13:10:05:a5:fb:9d:ba:72:
7a:40:e0:da:f3:c7:1c:b9:4d:02:e1:ce:9b:dd:1a:
7a:e8:94:20:73:a7:b8:f7:78:f2:9b:67:78:13:c3:
0c:4c:37:13:95:8a:2a:1a:f3:6d:4d:ab:a7:2a:7c:
43:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C7:C4:02:4B:9A:35:79:15:66:D5:74:15:8D:7E:71:E9:3C:C3:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AE3C072A64C11EFA43C1444762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.18.0/24
Signature Algorithm: sha256WithRSAEncryption
20:fe:eb:a6:90:9d:4b:22:46:e5:3b:e5:4c:ba:26:a1:e1:5d:
d6:9f:82:e4:cf:a2:da:fd:f0:dd:55:90:c7:1e:e9:5a:5e:0f:
ea:1c:4a:53:de:77:66:80:21:a3:59:e9:92:82:a1:44:eb:0e:
31:7a:2f:74:05:f7:52:92:8a:a2:60:81:88:62:39:89:a1:88:
a1:a6:44:35:e5:e7:a1:8a:05:76:af:81:6d:38:18:37:6b:4a:
1e:8d:3d:3b:81:03:dc:b2:69:d9:48:de:4c:de:99:41:14:34:
d9:aa:63:e9:73:f5:33:0b:7d:4c:62:99:88:4e:eb:88:43:43:
25:de:9b:c7:d1:8b:81:ed:dc:bd:45:a9:cb:f7:1f:51:fd:96:
1a:bc:e2:5f:59:f9:94:6f:27:d4:f4:d2:82:4b:89:96:ce:2e:
73:fb:1d:04:f8:5e:e1:7b:3b:08:b4:17:4e:0e:c8:b2:34:70:
72:0e:e7:ce:19:c8:57:e5:22:ca:ca:08:c7:87:ca:90:d4:6a:
40:77:60:e2:ee:55:3a:56:7a:be:47:a7:db:6f:43:89:05:f5:
ee:43:14:ca:46:9c:4f:22:3a:67:4b:ad:18:70:e6:e7:02:b0:
f3:d7:cd:04:90:6e:c8:c3:42:1d:8b:b5:15:90:33:0e:76:92:
ba:7d:bf:30
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ8CMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE5MDc1ODE3WhcNMjQxMjE1MDc1ODE3WjAYMRYw
FAYDVQQDEw02NzNjNDUxYy0wZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuZG5v3Q/XjkzMBwspb9E6O839MrUjvIlS78zy/zFnMo+sq3UT8V+UX4j
c9vjJEm08hAYYXgQN8oEEFMSwXr2Csh5yYSLE1Ws075xPJqLCIbrZTNuV7y19xd+
lxNnv1S7onJCXb9UgTtVTZoTW4MPFUFxmVnfVjtWFyGJs2tf/ZuFFENDCX1wi+em
PureA9JzDkJAgZ2x4qEn9hX/ANxtA6jsZ2imF3BuEJ80CUf7boaa0qaNNR8S1twL
wqKBppSAvnsBDDgM4R+0ExAFpfudunJ6QODa88ccuU0C4c6b3Rp66JQgc6e493jy
m2d4E8MMTDcTlYoqGvNtTaunKnxDgwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMnH
xAJLmjV5FWbVdBWNfnHpPMN6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQUUzQzA3MkE2NEMxMUVGQTQzQzE0NDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtgSMA0GCSqGSIb3DQEB
CwUAA4IBAQAg/uumkJ1LIkblO+VMuiah4V3Wn4Lkz6La/fDdVZDHHulaXg/qHEpT
3ndmgCGjWemSgqFE6w4xei90BfdSkoqiYIGIYjmJoYihpkQ15eehigV2r4FtOBg3
a0oejT07gQPcsmnZSN5M3plBFDTZqmPpc/UzC31MYpmITuuIQ0Ml3pvH0YuB7dy9
RanL9x9R/ZYavOJfWfmUbyfU9NKCS4mWzi5z+x0E+F7hezsItBdODsiyNHByDufO
GchX5SLKygjHh8qQ1GpAd2Di7lU6Vnq+R6fbb0OJBfXuQxTKRpxPIjpnS60YcObn
ArDz180EkG7Iw0Idi7UVkDMOdpK6fb8w
-----END CERTIFICATE-----
Generated at Fri Nov 22 11:46:09 2024 by rpki-client on console-ams.rpki-client.org