Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19687F74A9AE11EFBC638A86762E951A.roa
File: 19687F74A9AE11EFBC638A86762E951A.roa (raw, json)
Hash identifier: 1JBhRcdjRvMHoPM4kSVJjqKY2Vm3so6CzMhdX1JE+rk=
Subject key identifier: 07:EB:3F:4B:5E:03:E4:38:67:86:B6:95:A1:64:3F:FB:9C:D2:01:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01118C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19687F74A9AE11EFBC638A86762E951A.roa
Signing time: Sat 23 Nov 2024 15:17:49 +0000
ROA not before: Sat 23 Nov 2024 15:17:45 +0000
ROA not after: Tue 25 Feb 2025 15:17:45 +0000
asID: 213323
IP address blocks: 154.197.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70028 (0x1118c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 15:17:45 2024 GMT
Not After : Feb 25 15:17:45 2025 GMT
Subject: CN=6741f21d-6cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:46:d3:b0:68:1b:8a:9e:60:e8:f0:97:18:53:
43:92:8e:1a:d4:12:bc:02:fc:1a:f6:2b:b2:56:86:
35:bd:ce:62:01:c3:a5:02:ee:28:15:48:cc:6a:6c:
41:7e:96:2d:8f:0c:79:b2:2a:2d:53:07:6f:44:eb:
4e:6c:a1:c6:3f:98:a2:fc:7a:ee:ff:74:5c:23:7d:
04:14:29:13:c6:e7:96:7d:a6:f5:22:ed:9f:f1:02:
78:ba:c1:46:25:fd:d4:c3:b1:d6:bb:18:cb:e4:d5:
d8:3d:69:63:3b:e7:ad:c8:a7:4b:53:ad:83:8e:61:
1e:f6:37:0d:f8:06:b9:05:4d:25:0e:48:9c:82:1d:
8f:ba:65:24:bd:39:ac:3f:d4:e9:b5:e7:da:33:1b:
b3:fc:fa:08:e0:79:ee:84:90:61:0e:7d:c9:8e:11:
c3:8c:9c:c2:ce:b7:26:9d:e9:ac:19:0d:d9:07:b7:
49:59:96:05:b7:c5:7d:78:f8:fb:8e:ef:39:9a:ff:
79:44:53:4a:36:c6:7e:c3:c8:1e:2e:2f:d8:5f:3f:
88:f6:1e:3b:34:be:09:d8:86:83:86:0f:45:59:62:
5a:50:b6:7f:97:57:0b:36:a6:00:85:36:ba:70:69:
03:30:b9:e2:20:59:17:7d:04:7d:e4:3e:47:a8:9e:
51:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EB:3F:4B:5E:03:E4:38:67:86:B6:95:A1:64:3F:FB:9C:D2:01:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19687F74A9AE11EFBC638A86762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.71.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:70:46:35:04:2c:04:a2:ac:55:5e:99:ce:2a:56:38:a5:a4:
cf:90:ea:4f:70:9d:01:e6:de:ff:e4:8a:84:28:26:88:74:c0:
4e:1d:7f:8e:50:17:c6:4e:a4:df:8d:23:c3:e2:ce:8a:a0:2f:
94:0e:04:96:61:eb:28:0a:d5:d6:ad:43:14:57:a5:13:90:45:
1f:2e:a7:21:5d:ff:49:2a:70:e8:21:e8:db:69:27:0d:fc:30:
e3:c1:c7:bc:0e:92:68:e4:88:81:15:92:6f:79:72:9c:37:56:
f8:9d:25:32:4a:fd:f0:09:d7:31:6b:a5:32:08:89:fc:10:89:
03:32:5e:2f:b3:fd:07:e0:72:98:d1:cc:d6:8b:18:e2:bb:4c:
eb:3a:f5:43:f7:f9:21:58:71:b3:9d:c4:48:02:0a:14:dd:d8:
87:70:cd:11:f1:7c:b7:10:16:76:d4:3b:9d:b7:b4:a1:3a:fb:
30:30:fc:1f:8d:79:ae:cc:b1:fa:19:df:d5:7e:43:29:fc:1c:
a7:89:50:79:1c:e6:e2:18:01:3e:26:0e:c4:34:4c:ba:1c:1e:
f7:7f:22:dd:b8:ac:50:e1:b2:91:ac:b5:78:0c:7d:d2:6d:a5:
07:c0:5a:b0:b3:0f:df:17:61:ed:5c:4c:28:a4:ed:de:06:1d:
19:08:7d:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARGMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIzMTUxNzQ1WhcNMjUwMjI1MTUxNzQ1WjAYMRYw
FAYDVQQDEw02NzQxZjIxZC02Y2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6kbTsGgbip5g6PCXGFNDko4a1BK8Avwa9iuyVoY1vc5iAcOlAu4oFUjM
amxBfpYtjwx5siotUwdvROtObKHGP5ii/Hru/3RcI30EFCkTxueWfab1Iu2f8QJ4
usFGJf3Uw7HWuxjL5NXYPWljO+etyKdLU62DjmEe9jcN+Aa5BU0lDkicgh2PumUk
vTmsP9TptefaMxuz/PoI4HnuhJBhDn3JjhHDjJzCzrcmnemsGQ3ZB7dJWZYFt8V9
ePj7ju85mv95RFNKNsZ+w8geLi/YXz+I9h47NL4J2IaDhg9FWWJaULZ/l1cLNqYA
hTa6cGkDMLniIFkXfQR95D5HqJ5R6QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAfr
P0teA+Q4Z4a2laFkP/uc0gGYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xOTY4N0Y3NEE5QUUxMUVGQkM2MzhBODY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVHMA0GCSqGSIb3DQEB
CwUAA4IBAQDJcEY1BCwEoqxVXpnOKlY4paTPkOpPcJ0B5t7/5IqEKCaIdMBOHX+O
UBfGTqTfjSPD4s6KoC+UDgSWYesoCtXWrUMUV6UTkEUfLqchXf9JKnDoIejbaScN
/DDjwce8DpJo5IiBFZJveXKcN1b4nSUySv3wCdcxa6UyCIn8EIkDMl4vs/0H4HKY
0czWixjiu0zrOvVD9/khWHGzncRIAgoU3diHcM0R8Xy3EBZ21Dudt7ShOvswMPwf
jXmuzLH6Gd/VfkMp/ByniVB5HObiGAE+Jg7ENEy6HB73fyLduKxQ4bKRrLV4DH3S
baUHwFqwsw/fF2HtXEwopO3eBh0ZCH13
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:58 2024 by rpki-client on console-ams.rpki-client.org