Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19FA9A7092B711EFA99A95BC762E951A.roa
File: 19FA9A7092B711EFA99A95BC762E951A.roa (raw, json)
Hash identifier: i5Sh46sGNE6gB0bsDIRCgfWI+R/aqAWoVgwcYsYwGWY=
Subject key identifier: AA:D5:6A:5B:D9:A6:1C:47:DD:57:3D:1A:59:43:0C:54:6B:A5:98:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01020A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19FA9A7092B711EFA99A95BC762E951A.roa
Signing time: Fri 25 Oct 2024 09:54:18 +0000
ROA not before: Fri 25 Oct 2024 09:54:15 +0000
ROA not after: Sun 01 Dec 2024 09:54:15 +0000
asID: 202656
IP address blocks: 154.218.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66058 (0x1020a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 09:54:15 2024 GMT
Not After : Dec 1 09:54:15 2024 GMT
Subject: CN=671b6aca-274d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b1:12:72:bb:8f:17:fd:49:50:ec:a2:7f:22:
0c:38:47:71:d4:71:8a:2e:e2:91:53:41:d1:f0:2a:
d3:7c:c5:0c:dd:d6:b5:f8:b5:79:29:27:83:ec:24:
4f:2c:6d:3d:dc:af:d2:08:3e:76:e7:79:3c:6f:52:
82:00:7d:3f:24:b4:aa:7c:9d:43:46:40:7c:cc:53:
ca:75:cd:70:d2:82:9c:ee:30:87:f9:e9:e6:44:67:
ab:da:6b:6d:d7:a8:17:d1:21:d8:1a:07:d4:f3:18:
bc:6e:03:74:48:63:c0:4b:fd:f6:68:6a:42:70:a6:
7a:0a:a4:e7:03:2b:fe:d2:df:af:d6:85:c5:f5:2e:
10:65:50:de:18:9e:d8:c0:8d:c2:09:fc:b8:32:a6:
2d:81:89:1c:cc:e0:32:a2:fd:bd:d8:60:0e:a7:bc:
e8:70:19:64:a9:81:3f:91:35:fb:7c:e9:09:8f:6a:
c6:f3:dd:03:20:99:05:71:fe:48:bd:ba:f4:69:bd:
90:b3:ff:62:c6:d3:63:55:57:91:96:65:d6:4e:f8:
52:2b:d4:c5:d9:a5:3e:e8:9e:33:ce:cb:e2:3b:d0:
3c:57:95:5f:46:4b:3f:72:9b:35:6a:a4:84:f1:da:
fa:f8:64:bd:2e:8a:06:a6:3b:1c:f5:68:05:36:33:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D5:6A:5B:D9:A6:1C:47:DD:57:3D:1A:59:43:0C:54:6B:A5:98:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/19FA9A7092B711EFA99A95BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.30.0/23
Signature Algorithm: sha256WithRSAEncryption
94:64:89:b4:dd:9f:06:95:f7:b0:06:05:83:8a:fe:d9:9d:79:
58:d8:3c:e2:76:8d:79:e4:01:06:a1:ed:9a:33:5f:92:b9:49:
79:9a:5b:3c:7d:bf:b6:8f:e7:e9:96:49:c3:06:35:b4:6b:4d:
41:70:33:f8:cf:d0:1a:fa:b8:eb:05:fa:9c:99:6e:3e:0f:08:
44:5a:8a:92:e6:08:af:95:81:61:e2:17:f0:de:32:2e:74:86:
30:ef:9b:80:78:97:18:9f:d3:dd:83:77:12:0d:d6:83:6f:89:
29:7b:d6:df:82:df:ee:63:6a:45:97:0a:05:c3:84:1f:2e:f3:
99:99:08:b0:f6:08:f2:5b:33:52:16:c1:59:24:e5:99:8f:ef:
e4:bd:3b:45:cf:f3:8f:20:55:13:c5:2c:40:a1:5a:aa:9c:14:
f2:a5:2a:08:2b:0c:b7:a2:40:7a:f0:d2:95:7a:ea:5c:47:25:
f0:3e:39:a3:eb:97:14:0d:4b:b9:31:6f:38:a2:fe:94:58:61:
97:9c:0a:1d:32:6f:11:41:f7:0a:3d:cc:60:e7:d3:4a:02:fb:
ba:97:67:86:91:34:57:9c:1f:28:ca:42:3c:e3:68:47:ec:d4:
28:cf:ad:1d:80:14:42:be:08:3f:f1:eb:81:5b:e6:79:10:2a:
7a:ce:10:3a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQIKMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI1MDk1NDE1WhcNMjQxMjAxMDk1NDE1WjAYMRYw
FAYDVQQDEw02NzFiNmFjYS0yNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2bEScruPF/1JUOyifyIMOEdx1HGKLuKRU0HR8CrTfMUM3da1+LV5KSeD
7CRPLG093K/SCD5253k8b1KCAH0/JLSqfJ1DRkB8zFPKdc1w0oKc7jCH+enmRGer
2mtt16gX0SHYGgfU8xi8bgN0SGPAS/32aGpCcKZ6CqTnAyv+0t+v1oXF9S4QZVDe
GJ7YwI3CCfy4MqYtgYkczOAyov292GAOp7zocBlkqYE/kTX7fOkJj2rG890DIJkF
cf5Ivbr0ab2Qs/9ixtNjVVeRlmXWTvhSK9TF2aU+6J4zzsviO9A8V5VfRks/cps1
aqSE8dr6+GS9LooGpjsc9WgFNjNh8QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKrV
alvZphxH3Vc9GllDDFRrpZhHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xOUZBOUE3MDkyQjcxMUVGQTk5QTk1QkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtoeMA0GCSqGSIb3DQEB
CwUAA4IBAQCUZIm03Z8GlfewBgWDiv7ZnXlY2Dzido155AEGoe2aM1+SuUl5mls8
fb+2j+fplknDBjW0a01BcDP4z9Aa+rjrBfqcmW4+DwhEWoqS5givlYFh4hfw3jIu
dIYw75uAeJcYn9Pdg3cSDdaDb4kpe9bfgt/uY2pFlwoFw4QfLvOZmQiw9gjyWzNS
FsFZJOWZj+/kvTtFz/OPIFUTxSxAoVqqnBTypSoIKwy3okB68NKVeupcRyXwPjmj
65cUDUu5MW84ov6UWGGXnAodMm8RQfcKPcxg59NKAvu6l2eGkTRXnB8oykI842hH
7NQoz60dgBRCvgg/8euBW+Z5ECp6zhA6
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:58 2024 by rpki-client on console-ams.rpki-client.org