Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/121B42CEA44F11EF996064BB762E951A.roa
File: 121B42CEA44F11EF996064BB762E951A.roa (raw, json)
Hash identifier: /7ptI6EjKpt6AR1C0V+mVslhB4H0WGUbSasuzxQwVtY=
Subject key identifier: DD:A1:5C:4B:9E:DD:0A:39:95:90:48:B9:E1:54:05:61:F8:B4:FA:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E0D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/121B42CEA44F11EF996064BB762E951A.roa
Signing time: Sat 16 Nov 2024 19:14:58 +0000
ROA not before: Sat 16 Nov 2024 19:14:54 +0000
ROA not after: Mon 25 Nov 2024 19:14:54 +0000
asID: 9009
IP address blocks: 154.92.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69133 (0x10e0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:14:54 2024 GMT
Not After : Nov 25 19:14:54 2024 GMT
Subject: CN=6738ef32-f3d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:0e:8c:de:5e:03:f6:e2:de:7b:17:06:39:
63:e5:3c:33:fe:31:73:6e:54:57:f8:90:91:8a:ea:
9c:ea:54:5b:40:b8:cb:85:a2:b5:b7:9e:d3:f8:d8:
29:78:de:26:88:2c:6b:13:25:e9:f4:99:21:49:00:
46:21:7a:fb:85:33:a4:5a:1d:24:aa:8d:49:01:e7:
66:56:c0:1f:90:48:5b:1e:33:17:1d:a6:d0:68:b8:
ef:2c:48:e7:7c:85:78:ff:4b:74:23:b6:9b:38:4a:
f2:fb:d2:57:ca:3a:12:9e:9c:3e:3b:c3:c1:40:30:
aa:af:3e:56:3b:bc:86:f3:4c:18:c3:a0:94:12:f1:
54:ca:a1:d9:92:dc:57:ca:c2:5d:a8:36:4e:47:47:
6d:e4:95:a4:44:11:53:74:42:e3:a9:14:6f:25:ed:
db:14:1d:92:99:26:88:6d:9d:27:08:cb:76:19:4a:
13:ba:af:e5:e2:b2:bd:2c:ba:ba:83:b1:7c:51:4e:
34:fb:fc:11:9f:f2:f2:e9:31:bb:32:c2:82:5a:ad:
f7:88:b6:5c:80:3e:53:b6:a5:cd:2a:bb:0f:e3:9b:
42:14:07:e3:dc:2f:45:ef:66:be:25:3d:0a:c4:df:
41:47:f4:1d:67:f5:46:56:c9:85:e7:91:38:7f:f7:
77:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A1:5C:4B:9E:DD:0A:39:95:90:48:B9:E1:54:05:61:F8:B4:FA:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/121B42CEA44F11EF996064BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.112.0/21
Signature Algorithm: sha256WithRSAEncryption
06:92:3b:92:1f:73:a9:34:8e:b6:f4:06:76:8d:54:2a:43:cb:
63:4e:64:a9:66:82:40:9e:00:44:40:78:70:63:ea:7c:d6:85:
9d:e9:bb:2c:7b:85:12:32:99:98:b9:06:be:1a:e8:5f:ae:2e:
56:18:2f:a8:f9:21:cf:e4:4e:ab:b9:8e:47:44:63:a1:ec:9c:
4f:30:8c:b5:73:5b:00:c5:fc:ac:39:a4:3e:f5:f0:9b:b2:e1:
46:5b:83:83:27:42:89:e8:ad:8a:f9:09:f8:f9:6c:5d:f6:3d:
a5:51:52:c2:88:f9:77:4e:ff:4d:81:58:20:26:34:d3:82:08:
d0:c6:4e:ee:21:63:61:93:15:2b:4e:e4:78:ef:b1:6b:fe:80:
d0:45:17:f5:b7:54:0f:bf:97:92:1f:df:69:af:5f:1d:c3:96:
ad:47:86:7b:18:0e:e5:51:e1:ff:89:95:dc:07:f1:f6:e2:55:
b2:1f:f4:bb:19:11:bb:c7:63:24:80:1e:2b:bb:db:5a:41:bc:
52:5c:ed:fd:d9:15:0c:7f:db:b4:7e:37:3b:73:fb:bc:ab:1f:
b1:05:61:ca:36:9c:56:2b:1a:e7:18:bc:13:ac:47:74:52:b8:
48:b6:fe:a7:78:dc:53:13:b6:40:12:9c:ca:0b:65:6b:ec:c8:
ed:27:7e:b1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ4NMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTkxNDU0WhcNMjQxMTI1MTkxNDU0WjAYMRYw
FAYDVQQDEw02NzM4ZWYzMi1mM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxPYOjN5eA/bi3nsXBjlj5Twz/jFzblRX+JCRiuqc6lRbQLjLhaK1t57T
+NgpeN4miCxrEyXp9JkhSQBGIXr7hTOkWh0kqo1JAedmVsAfkEhbHjMXHabQaLjv
LEjnfIV4/0t0I7abOEry+9JXyjoSnpw+O8PBQDCqrz5WO7yG80wYw6CUEvFUyqHZ
ktxXysJdqDZOR0dt5JWkRBFTdELjqRRvJe3bFB2SmSaIbZ0nCMt2GUoTuq/l4rK9
LLq6g7F8UU40+/wRn/Ly6TG7MsKCWq33iLZcgD5TtqXNKrsP45tCFAfj3C9F72a+
JT0KxN9BR/QdZ/VGVsmF55E4f/d3GQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN2h
XEue3Qo5lZBIueFUBWH4tPotMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMjFCNDJDRUE0NEYxMUVGOTk2MDY0QkI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlxwMA0GCSqGSIb3DQEB
CwUAA4IBAQAGkjuSH3OpNI629AZ2jVQqQ8tjTmSpZoJAngBEQHhwY+p81oWd6bss
e4USMpmYuQa+Guhfri5WGC+o+SHP5E6ruY5HRGOh7JxPMIy1c1sAxfysOaQ+9fCb
suFGW4ODJ0KJ6K2K+Qn4+Wxd9j2lUVLCiPl3Tv9NgVggJjTTggjQxk7uIWNhkxUr
TuR477Fr/oDQRRf1t1QPv5eSH99pr18dw5atR4Z7GA7lUeH/iZXcB/H24lWyH/S7
GRG7x2MkgB4ru9taQbxSXO392RUMf9u0fjc7c/u8qx+xBWHKNpxWKxrnGLwTrEd0
UrhItv6neNxTE7ZAEpzKC2Vr7MjtJ36x
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:31 2024 by rpki-client on console-ams.rpki-client.org