Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A393D665DCD11EF9C390E84762E951A.roa
File: 2A393D665DCD11EF9C390E84762E951A.roa (raw, json)
Hash identifier: 24UxB97xkLd0/r4HCcvL3rVNz9BVlvsHpvZBMQ2C+Uw=
Subject key identifier: 75:25:E8:A1:3D:90:60:E0:8A:C8:FD:B0:EA:8F:04:B1:3E:89:93:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E123
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A393D665DCD11EF9C390E84762E951A.roa
Signing time: Mon 19 Aug 2024 01:48:43 +0000
ROA not before: Mon 19 Aug 2024 01:48:40 +0000
ROA not after: Thu 31 Dec 2026 01:48:40 +0000
asID: 17561
IP address blocks: 154.193.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57635 (0xe123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 19 01:48:40 2024 GMT
Not After : Dec 31 01:48:40 2026 GMT
Subject: CN=66c2a47b-4d8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:0d:3f:f3:75:06:1d:78:be:59:75:27:e4:
bc:d5:e5:11:b0:60:66:54:43:88:fd:00:9a:93:99:
04:cc:cc:28:5b:64:b3:f9:5d:c2:f5:5e:e2:1f:d7:
43:38:c7:f4:49:93:05:62:ee:4e:19:ff:7e:a2:31:
6c:ee:a5:86:75:bd:01:b2:63:c6:ac:63:f8:c0:b6:
0f:3d:31:b4:a5:d0:c6:07:cd:25:74:9d:3b:45:d4:
b1:6d:cd:30:3c:3f:40:9c:81:23:ce:83:d6:57:5a:
bf:0b:11:e8:6a:57:25:6e:ff:51:7d:c8:84:c0:53:
0d:1c:ff:45:3c:b1:ef:d0:fb:29:aa:16:2f:7a:55:
04:db:60:43:c7:81:f9:e3:92:a0:62:f2:45:68:56:
c3:fc:34:e0:9e:73:35:f2:bb:c0:27:66:79:af:3c:
ae:89:a1:7c:7e:54:d7:30:a4:d7:6f:40:59:da:de:
7a:3a:cb:e6:14:b0:71:84:ce:8c:5e:3b:c8:29:3f:
bc:00:b1:b9:a8:43:d5:ae:1e:7e:b5:71:05:7a:28:
35:6d:c6:0b:b7:1f:ef:13:a2:8c:d2:24:fe:5b:92:
2b:11:32:59:3a:66:6b:3f:4e:35:44:78:ff:30:f0:
56:d5:cb:aa:f7:71:d2:28:7d:87:e5:ab:9c:ae:e8:
6d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:25:E8:A1:3D:90:60:E0:8A:C8:FD:B0:EA:8F:04:B1:3E:89:93:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A393D665DCD11EF9C390E84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.3.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ca:5b:50:50:77:68:35:fb:64:fd:d5:52:8c:76:82:b0:9b:
9f:03:2e:2f:3b:4d:d0:46:ed:e8:b7:fb:36:75:33:4c:8a:ff:
16:db:ea:8e:c9:61:a8:f5:2d:ec:e3:57:03:7a:aa:3c:0a:63:
8c:a2:82:2e:cf:57:6c:48:76:f6:12:f4:79:3c:cb:85:6b:e0:
e6:05:4b:1e:97:34:1c:d7:96:8c:68:00:08:c1:00:ea:93:91:
46:be:af:77:14:33:a6:40:3c:55:86:96:13:ad:21:3b:f5:a7:
05:01:6e:ed:f0:49:4d:41:90:6e:a9:f1:89:27:db:68:a7:df:
f4:40:71:01:ef:ef:2e:a9:bc:d0:93:2c:e8:f5:6f:9c:1f:95:
0a:ef:b4:01:dc:10:7a:41:ce:fc:3e:5a:af:0a:10:c4:2e:de:
96:ec:e8:b5:38:17:a9:ca:7c:d5:84:d9:a6:61:a3:6d:9f:33:
5b:71:80:94:cd:09:ec:a2:fe:d5:31:55:f5:c4:58:72:1e:13:
54:3f:86:f8:e1:c6:40:e6:c4:02:32:6a:48:1c:8d:e9:45:bc:
25:df:25:9b:80:f0:6d:93:ae:15:34:83:42:26:4d:e9:39:d2:
b3:2f:0d:f9:55:87:58:7c:62:95:8e:48:73:56:5a:38:25:e3:
4b:31:43:1b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAOEjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwODE5MDE0ODQwWhcNMjYxMjMxMDE0ODQwWjAYMRYw
FAYDVQQDEw02NmMyYTQ3Yi00ZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsboNP/N1Bh14vll1J+S81eURsGBmVEOI/QCak5kEzMwoW2Sz+V3C9V7i
H9dDOMf0SZMFYu5OGf9+ojFs7qWGdb0BsmPGrGP4wLYPPTG0pdDGB80ldJ07RdSx
bc0wPD9AnIEjzoPWV1q/CxHoalclbv9RfciEwFMNHP9FPLHv0PspqhYvelUE22BD
x4H545KgYvJFaFbD/DTgnnM18rvAJ2Z5rzyuiaF8flTXMKTXb0BZ2t56OsvmFLBx
hM6MXjvIKT+8ALG5qEPVrh5+tXEFeig1bcYLtx/vE6KM0iT+W5IrETJZOmZrP041
RHj/MPBW1cuq93HSKH2H5aucruhtHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHUl
6KE9kGDgisj9sOqPBLE+iZPvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQTM5M0Q2NjVEQ0QxMUVGOUMzOTBFODQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsEDMA0GCSqGSIb3DQEB
CwUAA4IBAQCRyltQUHdoNftk/dVSjHaCsJufAy4vO03QRu3ot/s2dTNMiv8W2+qO
yWGo9S3s41cDeqo8CmOMooIuz1dsSHb2EvR5PMuFa+DmBUselzQc15aMaAAIwQDq
k5FGvq93FDOmQDxVhpYTrSE79acFAW7t8ElNQZBuqfGJJ9top9/0QHEB7+8uqbzQ
kyzo9W+cH5UK77QB3BB6Qc78PlqvChDELt6W7Oi1OBepynzVhNmmYaNtnzNbcYCU
zQnsov7VMVX1xFhyHhNUP4b44cZA5sQCMmpIHI3pRbwl3yWbgPBtk64VNINCJk3p
OdKzLw35VYdYfGKVjkhzVlo4JeNLMUMb
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:57 2024 by rpki-client on console-ams.rpki-client.org