Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27215326A9CB11EF9B8C7FBC762E951A.roa
File: 27215326A9CB11EF9B8C7FBC762E951A.roa (raw, json)
Hash identifier: HTreSEbe7ivcfNaKHhxSzE/iGOMnTwpWF8B+5sk88Z0=
Subject key identifier: A9:BB:C9:8E:4B:84:7F:35:61:AA:77:FF:B6:05:15:B0:1A:AC:FD:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27215326A9CB11EF9B8C7FBC762E951A.roa
Signing time: Sat 23 Nov 2024 18:45:47 +0000
ROA not before: Sat 23 Nov 2024 18:45:44 +0000
ROA not after: Mon 02 Dec 2024 18:45:44 +0000
asID: 399989
IP address blocks: 154.194.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70126 (0x111ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 18:45:44 2024 GMT
Not After : Dec 2 18:45:44 2024 GMT
Subject: CN=674222db-3240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1f:39:b1:c2:24:98:6f:f8:29:b9:f6:56:4e:
74:ef:bf:f9:0c:18:a2:6b:f3:44:c5:ae:2a:14:df:
e5:e7:72:82:13:0c:95:0f:a3:f9:96:35:94:5b:08:
9c:81:16:bd:62:ae:da:d2:c2:4c:f0:20:52:1f:48:
ba:3b:0c:37:bc:c1:7d:ee:18:d2:5e:23:d1:95:1f:
da:85:f6:51:07:d7:6f:5d:cc:cb:90:07:98:c7:fe:
8e:53:80:d2:84:be:fc:d7:bb:93:2e:85:1e:b9:39:
66:63:8d:86:7e:ee:60:45:52:14:c8:4e:f5:6d:f0:
ba:66:60:f6:1c:89:35:47:d7:48:59:2f:88:a3:f4:
4c:76:4a:20:03:dd:59:a2:a2:f8:db:b4:ec:70:3e:
cc:bb:b0:2b:0f:aa:07:db:f1:0d:34:e5:da:51:6e:
2d:6f:1e:d4:a6:ec:44:e6:31:c2:dc:08:9b:fb:34:
94:77:8d:b9:8e:53:2b:68:73:1f:4e:3a:76:25:d3:
fb:f0:59:e2:6c:6c:c5:e9:0a:cb:a4:27:f9:8c:4b:
dd:41:f7:a9:64:07:19:13:61:08:80:79:95:67:ec:
d8:72:59:30:02:1e:c7:b2:2a:61:74:e4:49:d5:e5:
6c:2c:ee:8a:5c:ac:8e:5b:cf:75:a8:30:5c:d1:00:
45:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BB:C9:8E:4B:84:7F:35:61:AA:77:FF:B6:05:15:B0:1A:AC:FD:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27215326A9CB11EF9B8C7FBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.16.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:4d:92:b5:bb:fe:14:fc:a5:df:bb:88:87:f2:ab:ff:a7:d7:
c0:2f:cb:9c:01:10:fd:79:d2:45:11:45:4b:88:68:61:f0:51:
8a:ef:9c:67:3b:ac:c2:e0:db:2d:49:e5:04:90:64:57:9f:d3:
b0:08:66:f5:87:9f:1f:50:19:8e:06:d5:cc:d2:6c:e6:59:fb:
e1:ac:91:22:4e:03:64:34:1d:74:19:3c:20:cd:79:4f:61:58:
e3:b0:1e:e9:fa:41:38:1f:e0:4e:5a:40:63:dd:45:d0:ed:d7:
d4:da:71:99:9d:3d:c5:d4:27:71:bb:c0:1c:5a:0b:c1:49:be:
76:ff:d5:4f:ad:39:1e:68:58:7c:78:38:a7:9f:ee:e5:0b:c9:
52:89:36:1e:e0:80:b3:ea:08:a9:d2:8d:12:41:54:ec:06:65:
c2:57:0a:2e:79:57:e6:9b:93:5c:38:2f:9c:35:bf:91:99:76:
11:aa:22:49:f6:d0:91:40:c6:ac:d2:9f:91:d2:e1:35:52:e7:
81:bd:db:3b:b3:39:c3:2f:f9:e0:3b:56:a0:92:eb:ac:c9:a8:
b9:97:3a:64:f9:74:97:b3:fe:e4:66:97:5b:64:a4:03:b7:1e:
f9:6e:69:3b:d9:47:b4:ad:be:61:07:c5:7b:37:ef:cd:75:f8:
59:84:ee:85
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARHuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIzMTg0NTQ0WhcNMjQxMjAyMTg0NTQ0WjAYMRYw
FAYDVQQDEw02NzQyMjJkYi0zMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8B85scIkmG/4Kbn2Vk5077/5DBiia/NExa4qFN/l53KCEwyVD6P5ljWU
WwicgRa9Yq7a0sJM8CBSH0i6Oww3vMF97hjSXiPRlR/ahfZRB9dvXczLkAeYx/6O
U4DShL7817uTLoUeuTlmY42Gfu5gRVIUyE71bfC6ZmD2HIk1R9dIWS+Io/RMdkog
A91ZoqL427TscD7Mu7ArD6oH2/ENNOXaUW4tbx7UpuxE5jHC3Aib+zSUd425jlMr
aHMfTjp2JdP78FnibGzF6QrLpCf5jEvdQfepZAcZE2EIgHmVZ+zYclkwAh7Hsiph
dORJ1eVsLO6KXKyOW891qDBc0QBFGQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKm7
yY5LhH81Yap3/7YFFbAarP0SMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNzIxNTMyNkE5Q0IxMUVGOUI4QzdGQkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsIQMA0GCSqGSIb3DQEB
CwUAA4IBAQBLTZK1u/4U/KXfu4iH8qv/p9fAL8ucARD9edJFEUVLiGhh8FGK75xn
O6zC4NstSeUEkGRXn9OwCGb1h58fUBmOBtXM0mzmWfvhrJEiTgNkNB10GTwgzXlP
YVjjsB7p+kE4H+BOWkBj3UXQ7dfU2nGZnT3F1Cdxu8AcWgvBSb52/9VPrTkeaFh8
eDinn+7lC8lSiTYe4ICz6gip0o0SQVTsBmXCVwoueVfmm5NcOC+cNb+RmXYRqiJJ
9tCRQMas0p+R0uE1UueBvds7sznDL/ngO1agkuusyai5lzpk+XSXs/7kZpdbZKQD
tx75bmk72Ue0rb5hB8V7N+/NdfhZhO6F
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:25 2024 by rpki-client on console-fra.rpki-client.org