Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E8F237E92E111EF936E3D43762E951A.roa
File: 1E8F237E92E111EF936E3D43762E951A.roa (raw, json)
Hash identifier: ZtluVsrqL0ZQeYJ/TGvf8eDpDRt+7mFQFEVEm3U0ju0=
Subject key identifier: FE:E9:98:F4:5E:9A:96:15:91:AE:A3:37:0E:86:70:AF:A8:7D:90:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010250
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E8F237E92E111EF936E3D43762E951A.roa
Signing time: Fri 25 Oct 2024 14:55:05 +0000
ROA not before: Fri 25 Oct 2024 14:54:53 +0000
ROA not after: Sun 01 Dec 2024 14:54:53 +0000
asID: 49505
IP address blocks: 154.209.210.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66128 (0x10250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 14:54:53 2024 GMT
Not After : Dec 1 14:54:53 2024 GMT
Subject: CN=671bb149-8d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6f:33:37:6b:4f:ac:b8:0b:ba:76:db:f8:7a:
e6:35:9b:ef:be:40:01:8a:36:93:25:7a:46:86:5e:
21:36:46:c4:df:a5:66:3b:66:b9:85:01:23:f0:07:
76:f9:31:fc:88:0a:88:19:64:d6:92:06:8d:a5:2d:
c0:2e:86:a1:9a:d6:1d:5a:cf:83:86:21:d8:97:c9:
60:33:d8:81:a5:ce:fe:0a:41:5e:7f:91:40:d4:77:
80:06:17:9f:1b:ad:03:94:aa:2f:71:da:82:c2:e9:
57:c9:02:22:83:5f:c0:df:19:40:34:a8:58:2f:f1:
06:b9:ee:a5:bf:c6:59:1d:f5:15:9a:80:14:31:bd:
0b:b8:84:8b:4f:0e:c5:aa:4d:0c:14:c1:51:4c:e5:
e2:d8:6e:90:c8:31:e0:6d:38:fc:ea:82:e6:f9:73:
04:f0:c2:bc:aa:3c:2c:49:72:b7:e1:82:a2:84:61:
75:cc:19:fa:d7:f5:fd:e5:43:b0:d6:07:82:aa:8b:
ac:01:35:3d:cd:24:90:bb:31:44:7f:43:bc:80:50:
47:cb:36:c0:f9:b4:a7:00:70:ff:5f:38:7f:37:38:
b6:cd:a0:11:c1:d6:46:35:31:b0:32:c3:97:81:e3:
03:4b:a0:0f:a8:f3:7a:40:7b:90:ed:02:13:cc:88:
7e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E9:98:F4:5E:9A:96:15:91:AE:A3:37:0E:86:70:AF:A8:7D:90:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E8F237E92E111EF936E3D43762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.210.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:3f:1c:65:16:d5:6e:27:64:32:d3:01:a5:d0:88:73:ab:8f:
7f:92:e9:71:5f:0f:d6:73:7d:6c:74:83:cb:4c:18:dd:da:bd:
05:41:2f:f2:d5:83:f5:22:d8:07:ce:8c:80:1e:4a:43:17:dd:
7c:b8:04:ac:05:6c:8f:c8:b4:db:d8:3f:85:9f:f8:49:8a:6c:
50:58:64:2a:75:25:64:cd:e2:06:52:18:09:bd:44:a3:54:95:
05:3a:c6:e1:ed:6a:23:b8:f2:24:ae:32:e1:b8:11:b2:d6:bf:
92:b5:11:76:93:44:81:86:d1:9a:a4:e2:07:f5:fb:bf:49:65:
96:8c:fa:2c:4e:3d:45:a8:f3:59:73:cb:6c:3e:05:d3:35:37:
b4:61:1b:7c:e5:8d:55:72:7d:0b:c3:ac:c6:ad:34:1f:0b:2f:
13:fc:82:bf:60:a2:ca:3f:e8:97:bd:27:32:44:bb:33:a5:51:
3f:41:de:74:73:ac:59:80:3f:75:9e:8a:d2:48:e7:11:f3:3e:
90:7a:92:9a:5b:c6:36:b5:e1:82:8c:7a:57:90:01:da:62:a6:
b6:ea:f3:60:67:06:a4:42:f1:80:6c:a9:7b:b9:7d:4e:47:51:
38:cd:68:db:58:c9:78:cb:85:79:86:f0:24:71:80:7c:8a:16:
52:3c:2c:3f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQJQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI1MTQ1NDUzWhcNMjQxMjAxMTQ1NDUzWjAYMRYw
FAYDVQQDEw02NzFiYjE0OS04ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2W8zN2tPrLgLunbb+HrmNZvvvkABijaTJXpGhl4hNkbE36VmO2a5hQEj
8Ad2+TH8iAqIGWTWkgaNpS3ALoahmtYdWs+DhiHYl8lgM9iBpc7+CkFef5FA1HeA
BhefG60DlKovcdqCwulXyQIig1/A3xlANKhYL/EGue6lv8ZZHfUVmoAUMb0LuISL
Tw7Fqk0MFMFRTOXi2G6QyDHgbTj86oLm+XME8MK8qjwsSXK34YKihGF1zBn61/X9
5UOw1geCqousATU9zSSQuzFEf0O8gFBHyzbA+bSnAHD/Xzh/Nzi2zaARwdZGNTGw
MsOXgeMDS6APqPN6QHuQ7QITzIh+WQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP7p
mPRempYVka6jNw6GcK+ofZCZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRThGMjM3RTkyRTExMUVGOTM2RTNENDM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtHSMA0GCSqGSIb3DQEB
CwUAA4IBAQBtPxxlFtVuJ2Qy0wGl0Ihzq49/kulxXw/Wc31sdIPLTBjd2r0FQS/y
1YP1ItgHzoyAHkpDF918uASsBWyPyLTb2D+Fn/hJimxQWGQqdSVkzeIGUhgJvUSj
VJUFOsbh7WojuPIkrjLhuBGy1r+StRF2k0SBhtGapOIH9fu/SWWWjPosTj1FqPNZ
c8tsPgXTNTe0YRt85Y1Vcn0Lw6zGrTQfCy8T/IK/YKLKP+iXvScyRLszpVE/Qd50
c6xZgD91norSSOcR8z6QepKaW8Y2teGCjHpXkAHaYqa26vNgZwakQvGAbKl7uX1O
R1E4zWjbWMl4y4V5hvAkcYB8ihZSPCw/
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:59 2024 by rpki-client on console-ams.rpki-client.org