Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C15B3B274D111EF9F7BFE5D762E951A.roa
File: 0C15B3B274D111EF9F7BFE5D762E951A.roa (raw, json)
Hash identifier: UW9CZly0Pt7SXQBLFbatyOxYmQ9kjfPsHEa4U8I9jOg=
Subject key identifier: 6C:A6:EA:CE:0F:03:0A:23:56:97:00:0D:23:B4:08:B7:8D:29:0D:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F024
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C15B3B274D111EF9F7BFE5D762E951A.roa
Signing time: Tue 17 Sep 2024 08:44:27 +0000
ROA not before: Tue 17 Sep 2024 08:44:24 +0000
ROA not after: Sat 30 Nov 2024 08:44:24 +0000
asID: 142403
IP address blocks: 154.92.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61476 (0xf024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:44:24 2024 GMT
Not After : Nov 30 08:44:24 2024 GMT
Subject: CN=66e9416b-2db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:5d:ed:9c:fa:39:2c:27:ec:d8:52:3a:55:
6e:31:0e:e3:b6:ac:55:3f:e3:16:56:40:f5:09:6d:
6d:84:d5:b5:7c:ce:b0:1d:64:20:08:ff:6f:fa:cc:
9e:89:73:66:95:4b:fa:e9:41:69:7b:19:b3:47:71:
6c:7a:78:91:50:5d:b6:a7:d5:71:1b:c4:b2:9f:b7:
c2:8e:da:9d:1b:a6:6f:d8:69:38:08:2c:88:b8:8c:
fd:6b:7a:bf:71:ec:37:bc:d4:0a:db:5c:ca:82:47:
70:48:79:85:29:75:f6:10:15:8c:0c:ef:f6:a9:d6:
54:20:c6:e5:0c:46:62:9f:8d:78:cd:e0:15:ac:57:
2a:71:fa:7d:c9:67:93:6e:a7:35:0d:76:cc:fd:30:
ff:4c:d8:c6:41:33:1b:dc:5c:a0:fa:70:13:bc:41:
9c:9c:b7:d2:01:08:1b:be:da:f1:da:4e:a6:0f:0c:
a0:37:be:e8:a7:a9:5b:47:b9:2b:d7:5c:6d:62:1b:
18:61:aa:18:88:54:56:cb:a6:25:5d:64:16:a5:1f:
ba:03:54:44:05:22:01:67:26:cf:1b:96:d0:49:5d:
d2:bb:81:ef:78:1f:90:63:24:dc:e2:9a:d4:09:ff:
1c:a7:f3:d8:83:79:13:d4:78:0c:50:0d:71:ab:2a:
fd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A6:EA:CE:0F:03:0A:23:56:97:00:0D:23:B4:08:B7:8D:29:0D:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C15B3B274D111EF9F7BFE5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.14.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:ff:1b:e1:8f:22:28:12:e0:79:fe:ca:2a:c6:57:46:c4:38:
58:ba:1e:09:08:d4:17:6d:3f:e9:fe:a8:d2:5b:96:23:77:5e:
98:12:05:23:6d:6b:2d:43:5c:d3:a9:68:d3:13:1f:13:f2:e2:
45:94:6a:01:e5:f5:74:e2:ac:b6:c2:71:b6:6a:10:f1:05:c0:
37:00:89:25:7b:5c:d7:da:da:45:b2:c3:ea:17:66:bb:9e:d4:
33:0c:27:9b:6d:6b:d6:c4:20:f6:01:2c:6a:c9:4b:d9:e0:68:
d2:36:9b:84:36:73:c1:a7:5c:65:8f:11:98:2e:dd:63:56:74:
e5:f2:f8:d5:5e:fc:2c:87:d9:47:68:28:0b:4d:7f:61:b1:03:
6b:4f:f7:b5:63:9a:ed:f2:24:30:2b:ea:4f:ef:0a:b4:09:f6:
97:d2:a3:cf:e7:2f:30:46:ba:07:6e:10:ec:2d:0a:ee:c4:59:
59:69:0b:db:14:0b:01:c2:36:ea:75:e1:22:68:fe:8d:ef:3c:
b2:0a:9d:8f:51:9c:69:8a:0f:66:40:b1:f7:7e:e7:bf:31:b3:
3d:c3:b8:87:e7:a3:f8:3c:1a:f5:3d:c4:36:e2:b3:83:13:e8:
6d:77:79:28:78:a9:c2:9c:02:8c:27:63:7a:e2:40:5e:1a:7c:
78:d5:93:b4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPAkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE3MDg0NDI0WhcNMjQxMTMwMDg0NDI0WjAYMRYw
FAYDVQQDEw02NmU5NDE2Yi0yZGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArjZd7Zz6OSwn7NhSOlVuMQ7jtqxVP+MWVkD1CW1thNW1fM6wHWQgCP9v
+syeiXNmlUv66UFpexmzR3FseniRUF22p9VxG8Syn7fCjtqdG6Zv2Gk4CCyIuIz9
a3q/cew3vNQK21zKgkdwSHmFKXX2EBWMDO/2qdZUIMblDEZin414zeAVrFcqcfp9
yWeTbqc1DXbM/TD/TNjGQTMb3Fyg+nATvEGcnLfSAQgbvtrx2k6mDwygN77op6lb
R7kr11xtYhsYYaoYiFRWy6YlXWQWpR+6A1REBSIBZybPG5bQSV3Su4HveB+QYyTc
4prUCf8cp/PYg3kT1HgMUA1xqyr9aQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGym
6s4PAwojVpcADSO0CLeNKQ0GMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQzE1QjNCMjc0RDExMUVGOUY3QkZFNUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlwOMA0GCSqGSIb3DQEB
CwUAA4IBAQDE/xvhjyIoEuB5/soqxldGxDhYuh4JCNQXbT/p/qjSW5Yjd16YEgUj
bWstQ1zTqWjTEx8T8uJFlGoB5fV04qy2wnG2ahDxBcA3AIkle1zX2tpFssPqF2a7
ntQzDCebbWvWxCD2ASxqyUvZ4GjSNpuENnPBp1xljxGYLt1jVnTl8vjVXvwsh9lH
aCgLTX9hsQNrT/e1Y5rt8iQwK+pP7wq0CfaX0qPP5y8wRroHbhDsLQruxFlZaQvb
FAsBwjbqdeEiaP6N7zyyCp2PUZxpig9mQLH3fue/MbM9w7iH56P4PBr1PcQ24rOD
E+htd3koeKnCnAKMJ2N64kBeGnx41ZO0
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:58 2024 by rpki-client on console-fra.rpki-client.org