Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C56343691E111EFBA998B77762E951A.roa
File: 1C56343691E111EFBA998B77762E951A.roa (raw, json)
Hash identifier: 092TZQ0fxQ09kOHpXd0MmxL+j8H87IWGWFZqwg8JI5E=
Subject key identifier: C9:83:CE:36:B8:B3:07:D5:71:AA:DC:73:BF:AF:44:70:BD:60:21:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010117
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C56343691E111EFBA998B77762E951A.roa
Signing time: Thu 24 Oct 2024 08:22:30 +0000
ROA not before: Thu 24 Oct 2024 08:22:26 +0000
ROA not after: Sun 26 Oct 2025 08:22:26 +0000
asID: 38638
IP address blocks: 154.194.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65815 (0x10117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 24 08:22:26 2024 GMT
Not After : Oct 26 08:22:26 2025 GMT
Subject: CN=671a03c6-1618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:54:45:37:f5:fb:b3:9b:48:a7:52:49:dd:3d:
24:90:14:5d:f3:f0:d2:3f:a1:7e:d3:b4:71:fb:7c:
c0:a1:1f:8d:08:09:c1:a0:b7:90:a1:02:7a:a4:00:
e3:cc:a5:b3:96:f1:b5:a8:e4:18:34:c7:86:01:fe:
97:4e:66:0f:60:29:a1:ac:1a:ad:03:2d:bb:b8:b3:
0a:8c:71:cb:2a:2f:2b:66:2e:04:1d:e2:8e:c3:e4:
b4:e7:e8:9d:89:a3:61:2c:bd:73:e4:25:50:df:88:
6c:f4:c9:66:60:8b:f9:c5:8c:f8:9e:fc:26:b7:df:
95:02:8d:c3:93:72:9b:11:7c:3b:54:da:6c:e2:e7:
57:3c:94:a0:3b:0f:b3:12:fc:e3:09:e0:3f:cb:a8:
e1:94:51:1b:98:3e:4f:c1:64:0a:94:4e:7f:29:4c:
c2:2c:d6:92:e6:73:4c:b0:ac:b4:29:50:d2:55:5f:
de:fa:f8:f4:12:5f:bc:75:fa:e7:34:9a:4b:32:b3:
7d:0f:f8:ef:be:81:62:da:96:49:16:51:fa:52:52:
ef:91:17:e2:15:96:26:03:23:d7:69:d8:3d:b6:fa:
4d:8b:d3:fe:3c:35:b4:eb:eb:2c:fd:21:ab:d8:db:
a9:1b:2a:3b:e9:04:61:82:c4:71:8b:62:de:94:59:
26:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:83:CE:36:B8:B3:07:D5:71:AA:DC:73:BF:AF:44:70:BD:60:21:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C56343691E111EFBA998B77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.62.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:6f:24:e6:c0:9b:47:e1:be:ef:4b:de:a6:63:51:10:2c:d1:
c0:77:f4:6b:04:09:a1:b9:b2:ee:0e:df:1d:33:3d:f4:d4:c6:
d4:76:75:bf:b7:0d:a4:40:49:ad:5e:48:6f:4c:0b:14:d8:de:
59:ac:42:23:ae:bc:da:2c:82:18:86:db:39:ea:b1:fe:09:0c:
b8:03:7b:37:42:c1:b3:75:b0:ba:2b:63:43:d6:46:5e:1a:6f:
df:69:62:ae:60:37:8e:ea:e8:eb:06:41:52:40:51:f2:dc:61:
09:ad:b4:d4:15:20:f2:54:a9:cb:22:8e:75:93:68:80:68:f8:
43:60:be:cf:fb:5b:ed:a5:29:7e:21:2e:31:41:e6:5c:3e:82:
22:f2:63:69:f1:e8:ea:92:a6:bd:2f:6b:65:d9:b0:54:ee:09:
f7:a4:e6:fd:40:ff:38:77:6a:40:14:a5:ec:40:af:c0:3f:c3:
a7:90:a4:b6:4a:68:0e:80:e0:11:54:ab:3a:6f:81:91:55:15:
a0:84:fb:71:51:8f:b4:a0:10:6a:37:08:94:97:f1:52:e3:7c:
1e:d9:92:63:17:f5:82:d3:81:ca:e6:2c:90:69:bf:b1:0e:05:
fb:6c:b4:19:84:ea:1e:11:31:5e:5f:d9:b1:5e:e2:a7:72:8f:
a8:92:19:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQEXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI0MDgyMjI2WhcNMjUxMDI2MDgyMjI2WjAYMRYw
FAYDVQQDEw02NzFhMDNjNi0xNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyFRFN/X7s5tIp1JJ3T0kkBRd8/DSP6F+07Rx+3zAoR+NCAnBoLeQoQJ6
pADjzKWzlvG1qOQYNMeGAf6XTmYPYCmhrBqtAy27uLMKjHHLKi8rZi4EHeKOw+S0
5+idiaNhLL1z5CVQ34hs9MlmYIv5xYz4nvwmt9+VAo3Dk3KbEXw7VNps4udXPJSg
Ow+zEvzjCeA/y6jhlFEbmD5PwWQKlE5/KUzCLNaS5nNMsKy0KVDSVV/e+vj0El+8
dfrnNJpLMrN9D/jvvoFi2pZJFlH6UlLvkRfiFZYmAyPXadg9tvpNi9P+PDW06+ss
/SGr2NupGyo76QRhgsRxi2LelFkm+QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMmD
zja4swfVcarcc7+vRHC9YCHDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQzU2MzQzNjkxRTExMUVGQkE5OThCNzc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI+MA0GCSqGSIb3DQEB
CwUAA4IBAQCMbyTmwJtH4b7vS96mY1EQLNHAd/RrBAmhubLuDt8dMz301MbUdnW/
tw2kQEmtXkhvTAsU2N5ZrEIjrrzaLIIYhts56rH+CQy4A3s3QsGzdbC6K2ND1kZe
Gm/faWKuYDeO6ujrBkFSQFHy3GEJrbTUFSDyVKnLIo51k2iAaPhDYL7P+1vtpSl+
IS4xQeZcPoIi8mNp8ejqkqa9L2tl2bBU7gn3pOb9QP84d2pAFKXsQK/AP8OnkKS2
SmgOgOARVKs6b4GRVRWghPtxUY+0oBBqNwiUl/FS43we2ZJjF/WC04HK5iyQab+x
DgX7bLQZhOoeETFeX9mxXuKnco+okhmE
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:59 2024 by rpki-client on console-ams.rpki-client.org