Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F889B029DC211EF891C8D61762E951A.roa
File: 1F889B029DC211EF891C8D61762E951A.roa (raw, json)
Hash identifier: nB7clO+OlnTTwg/Bq95yNTdh7ujKCBkqoH8JExmLbs0=
Subject key identifier: 7D:F2:48:B0:2E:7D:7E:70:CF:21:3C:21:7E:56:14:1D:A5:CB:21:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109FC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F889B029DC211EF891C8D61762E951A.roa
Signing time: Fri 08 Nov 2024 11:10:55 +0000
ROA not before: Fri 08 Nov 2024 11:10:51 +0000
ROA not after: Mon 13 Jan 2025 11:10:51 +0000
asID: 6939
IP address blocks: 154.198.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68092 (0x109fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 11:10:51 2024 GMT
Not After : Jan 13 11:10:51 2025 GMT
Subject: CN=672df1bf-cd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9c:9a:4c:de:be:2b:36:a9:1f:ab:42:b2:c2:
aa:20:ab:2c:88:66:8e:20:73:54:89:d3:49:39:e7:
ef:7c:6e:a3:c3:0e:af:4a:64:81:00:ec:a8:74:f2:
0b:1b:1e:93:9c:11:b9:c8:c5:dd:56:20:e5:bb:73:
9d:b6:72:73:78:4f:e4:42:ec:b5:d8:17:44:67:6b:
ad:39:d6:b2:7a:a5:d0:4a:33:b3:e5:60:16:b8:f8:
87:20:c0:0f:8f:e1:8d:6d:60:4c:27:11:f8:a9:35:
1d:63:80:56:fe:be:94:d0:07:e3:06:ca:00:2b:98:
72:14:1c:dc:e8:77:7e:d7:bb:8b:65:b3:54:82:c1:
4a:4f:59:bd:89:aa:f3:98:3b:c2:c8:32:46:41:62:
78:fc:d4:7a:25:c0:e5:fc:99:7a:f2:60:24:08:db:
50:37:e5:16:03:f1:5a:e0:1e:26:17:76:84:56:98:
2a:fe:7f:ac:d0:0d:12:57:01:db:12:40:b6:51:48:
fa:e5:ad:db:50:63:7d:8e:22:c1:17:51:71:0e:52:
43:5c:33:5f:ff:c1:12:6a:6f:fe:3e:7a:a0:c1:b4:
6a:bb:a6:3a:98:46:cf:72:98:d1:a9:2d:c4:e9:57:
cf:df:0b:df:35:50:85:5e:83:8e:0c:3a:a5:4a:ca:
74:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F2:48:B0:2E:7D:7E:70:CF:21:3C:21:7E:56:14:1D:A5:CB:21:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F889B029DC211EF891C8D61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.22.0/24
Signature Algorithm: sha256WithRSAEncryption
95:81:21:b1:36:3c:a2:2a:b1:5c:b4:26:2d:61:35:79:25:44:
2a:43:79:b7:e4:1c:4b:1a:b9:69:3a:da:60:12:d6:b4:32:e3:
53:aa:ac:38:a4:73:a8:6e:98:59:f5:ff:92:2b:84:83:72:da:
f9:91:0a:f8:8e:08:d5:94:a0:05:bf:8f:91:1b:10:ff:31:a4:
f1:00:95:3c:ad:4d:0b:23:1a:a3:e6:25:7f:d7:91:69:9a:14:
9c:1b:af:6c:3f:ba:1c:c7:52:cc:65:93:4b:a6:de:1c:a1:08:
19:32:6d:58:e8:83:c1:63:21:17:cd:9d:4d:1f:23:ce:33:7c:
8a:7e:3c:89:af:d2:8c:32:16:76:04:a7:2f:7b:52:87:9d:93:
88:38:c1:6e:79:d4:3a:f7:45:25:2d:7e:50:bb:bb:fe:c7:9f:
2e:7c:b9:19:99:57:37:39:86:ac:20:1c:86:f2:99:7c:e5:e5:
f3:c4:5b:9a:09:be:1d:81:f8:d2:6b:40:fc:72:69:da:32:6c:
60:65:48:08:6d:d9:05:0e:2f:53:e7:c3:dd:f5:05:d7:4d:2e:
ea:23:7e:e6:07:da:89:cb:cb:cf:02:7e:fe:ab:9a:f7:b2:c1:
09:85:49:10:94:45:93:3a:eb:11:6a:68:2e:e9:9e:51:00:89:
df:75:5c:43
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQn8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA4MTExMDUxWhcNMjUwMTEzMTExMDUxWjAYMRYw
FAYDVQQDEw02NzJkZjFiZi1jZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4pyaTN6+KzapH6tCssKqIKssiGaOIHNUidNJOefvfG6jww6vSmSBAOyo
dPILGx6TnBG5yMXdViDlu3OdtnJzeE/kQuy12BdEZ2utOdayeqXQSjOz5WAWuPiH
IMAPj+GNbWBMJxH4qTUdY4BW/r6U0AfjBsoAK5hyFBzc6Hd+17uLZbNUgsFKT1m9
iarzmDvCyDJGQWJ4/NR6JcDl/Jl68mAkCNtQN+UWA/Fa4B4mF3aEVpgq/n+s0A0S
VwHbEkC2UUj65a3bUGN9jiLBF1FxDlJDXDNf/8ESam/+PnqgwbRqu6Y6mEbPcpjR
qS3E6VfP3wvfNVCFXoOODDqlSsp0AwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH3y
SLAufX5wzyE8IX5WFB2lyyEBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRjg4OUIwMjlEQzIxMUVGODkxQzhENjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsYWMA0GCSqGSIb3DQEB
CwUAA4IBAQCVgSGxNjyiKrFctCYtYTV5JUQqQ3m35BxLGrlpOtpgEta0MuNTqqw4
pHOobphZ9f+SK4SDctr5kQr4jgjVlKAFv4+RGxD/MaTxAJU8rU0LIxqj5iV/15Fp
mhScG69sP7ocx1LMZZNLpt4coQgZMm1Y6IPBYyEXzZ1NHyPOM3yKfjyJr9KMMhZ2
BKcve1KHnZOIOMFuedQ690UlLX5Qu7v+x58ufLkZmVc3OYasIByG8pl85eXzxFua
Cb4dgfjSa0D8cmnaMmxgZUgIbdkFDi9T58Pd9QXXTS7qI37mB9qJy8vPAn7+q5r3
ssEJhUkQlEWTOusRamgu6Z5RAInfdVxD
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:33:59 2024 by rpki-client on console-ams.rpki-client.org