Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12489D9EA27111EF93FC077B762E951A.roa
File: 12489D9EA27111EF93FC077B762E951A.roa (raw, json)
Hash identifier: D9yslFOJU5qN8shKuTDYobLwkd0WwNxQbY1I7/OWx00=
Subject key identifier: 30:99:7A:12:00:C5:48:5D:83:4D:9B:69:F4:D6:9C:1A:B3:F5:8F:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D1C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12489D9EA27111EF93FC077B762E951A.roa
Signing time: Thu 14 Nov 2024 10:13:19 +0000
ROA not before: Thu 14 Nov 2024 10:13:16 +0000
ROA not after: Sun 24 Nov 2024 10:13:16 +0000
asID: 133180
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 10:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68892 (0x10d1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:13:16 2024 GMT
Not After : Nov 24 10:13:16 2024 GMT
Subject: CN=6735cd3f-1a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6e:86:6d:98:e7:63:b2:d5:3f:32:20:b1:65:
6d:ac:58:99:2c:6f:f1:dd:8e:ed:f3:7b:59:6c:de:
73:a1:75:ba:83:79:60:50:2b:fb:01:36:3b:3b:4a:
02:59:5e:5f:06:c7:7d:b8:d3:37:f4:23:d6:6f:51:
6c:5f:5c:f7:6e:10:ad:e0:9d:50:86:e1:9d:f8:c2:
f8:10:5a:8f:70:07:49:fb:06:13:90:83:01:fa:81:
ef:95:24:ec:68:e6:ed:35:48:dd:39:67:15:34:fa:
b1:bb:62:f0:12:77:ac:38:ff:37:a1:94:2b:38:5d:
42:38:57:48:01:c5:b4:c5:ee:39:69:1e:80:a6:da:
f1:b2:0e:3f:44:90:c5:99:39:3b:b0:ab:56:27:b9:
5d:4b:b5:db:94:92:d4:05:2e:a2:33:d6:78:dc:84:
be:b8:ef:fd:d4:6f:93:30:2b:cf:11:8a:8b:eb:68:
ed:66:ef:91:6b:d6:02:5d:58:e2:db:d2:b2:94:fa:
fc:b0:eb:89:70:fc:75:51:69:61:09:a2:01:bf:db:
04:a7:dc:0c:f9:6a:f2:e4:d8:c4:fd:99:0f:b6:61:
8c:6f:d1:ab:38:ce:01:96:7e:33:54:97:62:76:56:
8c:86:68:a7:f6:96:f3:9a:d6:88:13:dc:24:ac:9c:
e5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:99:7A:12:00:C5:48:5D:83:4D:9B:69:F4:D6:9C:1A:B3:F5:8F:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/12489D9EA27111EF93FC077B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4f:4e:8a:eb:09:6b:38:06:6d:ff:5a:cf:94:94:74:9c:9d:c6:
b0:32:b6:2b:6a:3e:fd:e8:1b:cc:67:8f:a7:92:cc:83:44:53:
1b:be:00:26:a6:b1:13:3e:cb:a8:d9:b8:d7:46:de:78:5f:4b:
1c:67:72:48:90:a8:2e:90:ff:ad:2d:76:10:74:f0:42:bd:14:
94:80:9e:68:7b:00:40:44:e0:df:1d:f6:75:ee:37:fc:69:da:
57:7f:a2:cf:99:0b:ae:10:9f:b1:56:ad:34:40:39:ae:36:5d:
a5:68:66:69:01:56:f1:bf:2a:46:c0:4e:14:b2:95:7b:d5:98:
5b:ff:f5:66:69:9e:0f:3c:6a:91:63:5d:5e:3d:48:25:d2:cf:
71:4a:43:4f:51:ae:5f:22:8c:b6:b3:69:64:4a:53:2e:6b:38:
55:ec:0c:07:0c:81:0d:dc:11:26:7b:02:e9:96:23:9a:04:41:
5c:c3:7f:65:27:85:1b:18:d3:85:20:37:a5:77:54:70:23:e6:
74:22:ef:1f:1e:99:e1:4f:b5:f0:df:d1:ba:6b:5a:ab:96:4c:
54:77:b6:48:11:7e:0b:fd:4f:c5:bf:9e:a6:a3:1d:3b:cf:c9:
d0:fc:63:a3:fd:2d:eb:75:7a:6b:09:03:18:7f:43:b7:c5:aa:
16:63:48:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ0cMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE0MTAxMzE2WhcNMjQxMTI0MTAxMzE2WjAYMRYw
FAYDVQQDEw02NzM1Y2QzZi0xYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvG6GbZjnY7LVPzIgsWVtrFiZLG/x3Y7t83tZbN5zoXW6g3lgUCv7ATY7
O0oCWV5fBsd9uNM39CPWb1FsX1z3bhCt4J1QhuGd+ML4EFqPcAdJ+wYTkIMB+oHv
lSTsaObtNUjdOWcVNPqxu2LwEnesOP83oZQrOF1COFdIAcW0xe45aR6Aptrxsg4/
RJDFmTk7sKtWJ7ldS7XblJLUBS6iM9Z43IS+uO/91G+TMCvPEYqL62jtZu+Ra9YC
XVji29KylPr8sOuJcPx1UWlhCaIBv9sEp9wM+Wry5NjE/ZkPtmGMb9GrOM4Bln4z
VJdidlaMhmin9pbzmtaIE9wkrJzl5wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDCZ
ehIAxUhdg02bafTWnBqz9Y/6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMjQ4OUQ5RUEyNzExMUVGOTNGQzA3N0I3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmtZAMA0GCSqGSIb3DQEB
CwUAA4IBAQBPTorrCWs4Bm3/Ws+UlHScncawMrYraj796BvMZ4+nksyDRFMbvgAm
prETPsuo2bjXRt54X0scZ3JIkKgukP+tLXYQdPBCvRSUgJ5oewBARODfHfZ17jf8
adpXf6LPmQuuEJ+xVq00QDmuNl2laGZpAVbxvypGwE4UspV71Zhb//VmaZ4PPGqR
Y11ePUgl0s9xSkNPUa5fIoy2s2lkSlMuazhV7AwHDIEN3BEmewLpliOaBEFcw39l
J4UbGNOFIDeld1RwI+Z0Iu8fHpnhT7Xw39G6a1qrlkxUd7ZIEX4L/U/Fv56mox07
z8nQ/GOj/S3rdXprCQMYf0O3xaoWY0jk
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:56 2024 by rpki-client on console-ams.rpki-client.org