Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F911E3AC1B211EF8B52FE47762E951A.roa
File: 1F911E3AC1B211EF8B52FE47762E951A.roa (raw, json)
Hash identifier: DeWq6E5c4oPBgtmOabrl4mFRQrEkq2LpAWFSizGOAUE=
Subject key identifier: C3:E7:DB:86:A0:9C:68:9A:F6:6B:86:38:8D:F9:77:B2:5C:3F:30:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012181
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F911E3AC1B211EF8B52FE47762E951A.roa
Signing time: Tue 24 Dec 2024 04:47:05 +0000
ROA not before: Tue 24 Dec 2024 04:47:01 +0000
ROA not after: Wed 10 Dec 2025 04:47:01 +0000
asID: 984
IP address blocks: 154.193.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74113 (0x12181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 04:47:01 2024 GMT
Not After : Dec 10 04:47:01 2025 GMT
Subject: CN=676a3cc9-cb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c8:dc:91:10:43:b0:dd:23:0f:ff:b6:32:ac:
2a:da:68:6d:06:63:b6:23:1e:68:12:cd:c9:d8:2a:
49:1a:3a:e1:08:01:2a:e9:68:b9:67:13:0a:df:aa:
ff:d3:93:dd:f8:32:0a:31:e0:e8:1a:5a:2a:b6:21:
b6:bc:6e:be:98:8d:39:dc:49:23:10:9d:f8:a3:6c:
c8:7f:28:f8:1d:fe:73:e7:89:76:82:48:f0:8e:6b:
a7:da:3e:86:91:29:2b:77:01:6a:73:42:49:aa:8c:
aa:70:f8:1c:e8:e3:6c:f3:bf:62:f5:0e:1b:0b:31:
65:f2:ac:79:ab:b8:37:7f:06:d1:75:b0:6b:e1:57:
83:46:59:09:bb:8c:b3:eb:1a:c5:96:c6:3c:09:5f:
3d:e6:18:ab:0a:23:70:d8:b6:fe:e2:fc:31:13:b5:
83:68:fb:1a:6a:1e:85:51:5e:70:b1:18:d7:01:2c:
ef:2d:c7:f2:aa:fa:34:12:a5:87:1f:94:2f:07:02:
ca:b0:34:04:2d:6e:b9:97:0a:e6:a3:3d:69:0d:64:
5b:e7:27:41:d3:bc:23:ff:17:0e:20:22:40:e9:9f:
51:49:41:c3:24:f5:07:a9:dd:6a:b6:4c:fb:2d:2b:
ec:62:63:44:a4:a3:f5:dc:2a:33:ac:7d:48:d1:50:
e4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E7:DB:86:A0:9C:68:9A:F6:6B:86:38:8D:F9:77:B2:5C:3F:30:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1F911E3AC1B211EF8B52FE47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:04:d3:1e:6c:e1:0b:ac:28:83:95:e5:a9:f8:a3:0d:a4:f0:
b3:5b:d4:a7:93:20:51:01:d8:d4:d8:65:3a:28:18:ca:f1:c1:
b1:de:f8:65:f6:8a:50:db:e2:54:06:bf:e9:96:96:66:d8:7a:
72:57:0d:75:34:e1:5c:b8:03:34:c4:ea:50:f9:ac:a2:55:3b:
48:f7:b3:ae:d1:c9:4f:05:ad:ca:20:15:21:3d:ef:fd:e1:08:
1b:0c:9a:7a:92:de:e6:b0:d8:13:c1:cd:66:2f:29:98:24:a5:
b3:52:70:0c:bc:c0:86:fb:62:9a:51:a0:2f:86:6b:f4:51:b7:
17:0c:2c:40:b3:3e:b0:81:ce:9e:a6:f5:1b:2a:2e:26:cb:30:
27:1e:c2:5c:48:90:11:e8:64:ac:f4:61:26:65:e6:a6:e0:ca:
a6:4c:5d:f2:18:e5:1b:92:c0:2e:45:31:71:9f:8f:34:7c:e9:
9e:b0:1c:d0:c7:c8:13:6b:04:09:35:f7:91:3c:cc:28:aa:d8:
9c:e5:92:21:9a:b5:55:ac:af:cd:e7:41:bb:f9:07:8d:0d:75:
3d:88:19:44:4c:7f:65:2c:1e:44:fb:6c:e6:ea:69:cf:44:ef:
98:0e:47:4f:7e:09:e9:73:62:74:49:bd:80:cd:e7:75:53:b4:
12:c9:92:39
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASGBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI0MDQ0NzAxWhcNMjUxMjEwMDQ0NzAxWjAYMRYw
FAYDVQQDEw02NzZhM2NjOS1jYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvsjckRBDsN0jD/+2Mqwq2mhtBmO2Ix5oEs3J2CpJGjrhCAEq6Wi5ZxMK
36r/05Pd+DIKMeDoGloqtiG2vG6+mI053EkjEJ34o2zIfyj4Hf5z54l2gkjwjmun
2j6GkSkrdwFqc0JJqoyqcPgc6ONs879i9Q4bCzFl8qx5q7g3fwbRdbBr4VeDRlkJ
u4yz6xrFlsY8CV895hirCiNw2Lb+4vwxE7WDaPsaah6FUV5wsRjXASzvLcfyqvo0
EqWHH5QvBwLKsDQELW65lwrmoz1pDWRb5ydB07wj/xcOICJA6Z9RSUHDJPUHqd1q
tkz7LSvsYmNEpKP13CozrH1I0VDklQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMPn
24agnGia9muGOI35d7JcPzDZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRjkxMUUzQUMxQjIxMUVGOEI1MkZFNDc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsFqMA0GCSqGSIb3DQEB
CwUAA4IBAQCmBNMebOELrCiDleWp+KMNpPCzW9SnkyBRAdjU2GU6KBjK8cGx3vhl
9opQ2+JUBr/plpZm2HpyVw11NOFcuAM0xOpQ+ayiVTtI97Ou0clPBa3KIBUhPe/9
4QgbDJp6kt7msNgTwc1mLymYJKWzUnAMvMCG+2KaUaAvhmv0UbcXDCxAsz6wgc6e
pvUbKi4myzAnHsJcSJAR6GSs9GEmZeam4MqmTF3yGOUbksAuRTFxn480fOmesBzQ
x8gTawQJNfeRPMwoqtic5ZIhmrVVrK/N50G7+QeNDXU9iBlETH9lLB5E+2zm6mnP
RO+YDkdPfgnpc2J0Sb2Azed1U7QSyZI5
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:11 2025 by rpki-client