Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2039D032A64811EFA85B21AB762E951A.roa
File: 2039D032A64811EFA85B21AB762E951A.roa (raw, json)
Hash identifier: s1q6JK+zCfra6tgfScLwdlnAVT8MCrlbKyFcU8ci/bI=
Subject key identifier: 3C:55:39:DD:F6:0D:46:38:F6:2B:E0:7D:57:1B:6E:3B:18:E0:DB:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2039D032A64811EFA85B21AB762E951A.roa
Signing time: Tue 19 Nov 2024 07:30:18 +0000
ROA not before: Tue 19 Nov 2024 07:30:14 +0000
ROA not after: Tue 24 Dec 2024 07:30:14 +0000
asID: 25160
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69354 (0x10eea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 19 07:30:14 2024 GMT
Not After : Dec 24 07:30:14 2024 GMT
Subject: CN=673c3e8a-acaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:27:77:02:06:1c:c2:2e:1d:66:eb:eb:e3:
69:57:4b:4a:f0:cf:e1:fd:30:ba:a7:cd:09:1e:46:
d6:8e:4a:eb:c5:3e:2b:e2:97:59:4a:bd:81:98:05:
95:f2:d0:f3:32:e5:2a:e0:bc:a0:9c:47:ec:3c:1a:
32:65:ac:81:ce:60:e6:7a:86:8e:71:7a:58:6e:2d:
2d:e5:29:67:c9:04:9c:92:78:41:22:2b:d6:74:5c:
77:4b:25:0a:0a:43:84:d9:ef:68:ac:30:1b:cf:dd:
67:db:40:64:87:ab:3e:4c:20:c0:4f:86:bb:fe:2f:
40:c2:4c:25:e4:25:f5:de:51:c3:e8:93:3c:4d:19:
bc:14:a9:30:c4:96:25:c0:25:cd:71:75:37:cc:85:
19:f1:e5:a0:d7:8f:51:94:5e:25:8a:07:bf:d8:d8:
b2:55:b3:7d:ce:a2:d3:b3:5d:aa:13:a8:52:94:23:
a9:ae:fe:7c:53:d4:d0:7e:e1:85:82:7e:ba:49:41:
ca:d9:7c:8b:da:47:85:da:69:9f:5f:39:3f:5c:da:
88:67:62:8f:9a:c3:06:ce:5f:0a:85:93:45:63:22:
ee:3f:b4:16:08:08:17:07:21:95:6a:b0:26:fc:f7:
87:34:8e:45:65:eb:ea:49:15:c5:b1:65:56:57:8f:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:55:39:DD:F6:0D:46:38:F6:2B:E0:7D:57:1B:6E:3B:18:E0:DB:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2039D032A64811EFA85B21AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d6:0d:48:53:09:f8:03:1b:17:10:75:b3:ac:cc:87:db:3e:
fb:b4:49:ec:f4:30:3b:ee:44:6b:a3:ef:f9:69:cb:bb:85:f5:
78:e6:a5:2a:e7:f3:8d:c0:9c:4a:43:d0:ef:9a:2e:d8:b1:74:
6d:78:98:41:af:3d:85:36:ff:18:d2:67:77:62:e5:9a:11:2c:
ed:4b:4c:1b:14:e2:2b:27:82:dd:6d:fe:24:9e:cc:3c:fa:0c:
93:4e:a5:d8:77:8a:50:64:08:b4:31:89:bd:58:56:c0:65:51:
fc:15:34:9c:2c:15:b3:68:5e:ad:5e:84:1a:be:7d:4c:b2:8c:
a0:38:22:e6:97:e9:28:2e:7e:f3:f9:84:05:ed:fb:d7:dd:5e:
37:d9:de:c6:3b:2e:46:fb:41:f1:3f:4b:be:96:70:e8:44:67:
bd:29:c1:1e:17:04:00:ee:0b:26:1d:30:88:cf:3d:62:f7:48:
9d:76:ec:ac:cb:ca:84:e5:34:f8:89:34:40:55:b9:31:d5:2d:
8a:51:c4:3b:59:ef:8e:dd:d7:ea:ac:dc:a9:48:c9:48:7b:1d:
98:ef:8b:ed:0d:65:b5:50:10:9e:ab:74:12:71:2e:b4:2c:35:
5c:35:06:f1:2d:77:1c:53:22:05:fe:5d:4a:ba:71:9a:e5:cd:
4f:79:4c:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ7qMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE5MDczMDE0WhcNMjQxMjI0MDczMDE0WjAYMRYw
FAYDVQQDEw02NzNjM2U4YS1hY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuVcndwIGHMIuHWbr6+NpV0tK8M/h/TC6p80JHkbWjkrrxT4r4pdZSr2B
mAWV8tDzMuUq4LygnEfsPBoyZayBzmDmeoaOcXpYbi0t5SlnyQScknhBIivWdFx3
SyUKCkOE2e9orDAbz91n20Bkh6s+TCDAT4a7/i9Awkwl5CX13lHD6JM8TRm8FKkw
xJYlwCXNcXU3zIUZ8eWg149RlF4lige/2NiyVbN9zqLTs12qE6hSlCOprv58U9TQ
fuGFgn66SUHK2XyL2keF2mmfXzk/XNqIZ2KPmsMGzl8KhZNFYyLuP7QWCAgXByGV
arAm/PeHNI5FZevqSRXFsWVWV493uwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDxV
Od32DUY49ivgfVcbbjsY4NsbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yMDM5RDAzMkE2NDgxMUVGQTg1QjIxQUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlEyMA0GCSqGSIb3DQEB
CwUAA4IBAQBI1g1IUwn4AxsXEHWzrMyH2z77tEns9DA77kRro+/5acu7hfV45qUq
5/ONwJxKQ9Dvmi7YsXRteJhBrz2FNv8Y0md3YuWaESztS0wbFOIrJ4Ldbf4knsw8
+gyTTqXYd4pQZAi0MYm9WFbAZVH8FTScLBWzaF6tXoQavn1MsoygOCLml+koLn7z
+YQF7fvX3V432d7GOy5G+0HxP0u+lnDoRGe9KcEeFwQA7gsmHTCIzz1i90idduys
y8qE5TT4iTRAVbkx1S2KUcQ7We+O3dfqrNypSMlIex2Y74vtDWW1UBCeq3QScS60
LDVcNQbxLXccUyIF/l1KunGa5c1PeUxd
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:24 2024 by rpki-client on console-fra.rpki-client.org