Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD2E9B8A75311EFB1E95BB2762E951A.roa
File: 2BD2E9B8A75311EFB1E95BB2762E951A.roa (raw, json)
Hash identifier: +rG+/Gi1Dg+Kv89KE9+4SdcDQWnVFgQn1f0ayLC8yp8=
Subject key identifier: 0E:45:F0:B9:DD:72:59:F5:FA:81:B7:3C:32:12:D3:78:0E:00:76:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FC5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD2E9B8A75311EFB1E95BB2762E951A.roa
Signing time: Wed 20 Nov 2024 15:21:53 +0000
ROA not before: Wed 20 Nov 2024 15:21:49 +0000
ROA not after: Sun 01 Dec 2024 15:21:49 +0000
asID: 151800
IP address blocks: 154.197.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69573 (0x10fc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:21:49 2024 GMT
Not After : Dec 1 15:21:49 2024 GMT
Subject: CN=673dfe91-f3b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e9:5c:6a:e1:13:27:d9:12:7d:c9:4b:89:d2:
84:c9:04:6d:24:86:50:0a:d1:41:6b:be:bd:86:a5:
d2:6c:0f:e3:4d:89:62:87:6d:dc:bc:61:95:88:0d:
3e:9c:66:aa:29:be:ec:cc:34:72:ee:2e:35:6a:0f:
70:89:ac:de:bc:b3:9d:52:cd:13:28:00:f5:53:77:
c9:a6:34:ad:5f:e6:65:19:0a:14:01:57:bf:67:f4:
0e:bd:9a:6d:01:36:90:c4:06:2f:56:4c:79:32:3b:
8e:47:52:63:75:62:c9:b1:2d:d1:15:26:36:9b:b7:
a4:e3:24:9f:e4:5c:78:a0:74:b3:f0:31:07:3e:42:
ed:c7:7d:cd:cf:e3:92:97:26:5d:20:e4:ca:a3:cd:
a0:b4:53:e7:83:11:9e:39:65:36:fd:52:aa:a3:68:
b3:3a:76:bb:c1:55:47:b8:f1:dc:b2:88:15:7f:f1:
c4:b8:b5:4e:aa:f1:52:a6:09:ed:df:2f:bd:9a:2e:
15:7f:75:b0:06:05:09:7d:7b:96:66:34:40:7e:b3:
80:22:b9:7d:fb:6e:ef:bb:95:7c:54:06:a9:67:b5:
c1:b9:0b:9a:57:70:0a:6e:89:55:d0:cc:0a:29:c2:
df:5c:d3:27:61:21:92:be:ae:1f:ea:9d:68:12:35:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:45:F0:B9:DD:72:59:F5:FA:81:B7:3C:32:12:D3:78:0E:00:76:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2BD2E9B8A75311EFB1E95BB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.81.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:dd:b8:a5:45:c7:02:0e:78:b9:c0:80:0c:3d:fd:14:b5:0e:
8c:58:a3:8c:df:a3:26:99:40:b5:a8:d6:32:12:ef:2e:7a:66:
dc:38:64:50:e7:11:f9:7a:55:6d:13:98:43:16:65:96:a9:d7:
3f:a2:22:d9:ad:a0:0e:f1:05:82:fa:ec:02:e6:4c:2f:70:a5:
39:08:4e:9b:cb:a9:3e:73:a6:86:6d:60:54:17:6c:07:60:b9:
1c:94:ca:84:5d:ea:cc:31:00:3d:f4:cc:73:33:6c:42:3f:29:
92:d3:b1:fe:40:7f:1d:10:d7:bc:cd:51:ce:e9:0d:90:50:25:
24:f1:6c:0c:7e:a6:c6:2c:d4:fd:f4:b2:a2:4e:9d:61:30:6e:
8f:06:f9:7b:3c:09:c8:ba:4b:09:d9:f3:b7:0c:da:48:72:a9:
11:19:b4:82:da:14:89:74:bd:e3:f8:23:78:3f:9c:5d:1f:25:
cd:45:3c:91:f8:97:8b:91:07:78:a8:45:89:13:24:71:bd:22:
a4:51:b6:ca:31:13:72:40:68:3c:e8:89:e0:69:54:b7:ae:cc:
6a:22:d6:ef:85:7a:8e:2b:b2:cb:e8:90:39:14:f8:8e:ae:e8:
5e:9b:d7:f3:9b:ef:62:41:55:c0:be:8c:7f:ae:8f:7b:8c:17:
bd:43:c0:ad
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ/FMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIwMTUyMTQ5WhcNMjQxMjAxMTUyMTQ5WjAYMRYw
FAYDVQQDEw02NzNkZmU5MS1mM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz+lcauETJ9kSfclLidKEyQRtJIZQCtFBa769hqXSbA/jTYlih23cvGGV
iA0+nGaqKb7szDRy7i41ag9wiazevLOdUs0TKAD1U3fJpjStX+ZlGQoUAVe/Z/QO
vZptATaQxAYvVkx5MjuOR1JjdWLJsS3RFSY2m7ek4ySf5Fx4oHSz8DEHPkLtx33N
z+OSlyZdIOTKo82gtFPngxGeOWU2/VKqo2izOna7wVVHuPHcsogVf/HEuLVOqvFS
pgnt3y+9mi4Vf3WwBgUJfXuWZjRAfrOAIrl9+27vu5V8VAapZ7XBuQuaV3AKbolV
0MwKKcLfXNMnYSGSvq4f6p1oEjWegwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFA5F
8Lndcln1+oG3PDIS03gOAHYlMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQkQyRTlCOEE3NTMxMUVGQjFFOTVCQjI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVRMA0GCSqGSIb3DQEB
CwUAA4IBAQC03bilRccCDni5wIAMPf0UtQ6MWKOM36MmmUC1qNYyEu8uembcOGRQ
5xH5elVtE5hDFmWWqdc/oiLZraAO8QWC+uwC5kwvcKU5CE6by6k+c6aGbWBUF2wH
YLkclMqEXerMMQA99MxzM2xCPymS07H+QH8dENe8zVHO6Q2QUCUk8WwMfqbGLNT9
9LKiTp1hMG6PBvl7PAnIuksJ2fO3DNpIcqkRGbSC2hSJdL3j+CN4P5xdHyXNRTyR
+JeLkQd4qEWJEyRxvSKkUbbKMRNyQGg86IngaVS3rsxqItbvhXqOK7LL6JA5FPiO
ruhem9fzm+9iQVXAvox/ro97jBe9Q8Ct
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org