Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBF5C568D3811EFB450069B762E951A.roa
File: 2CBF5C568D3811EFB450069B762E951A.roa (raw, json)
Hash identifier: nrn6ZV3/0A2qcwemy6gmiHg9HqVowv0iO4pmWOrym4I=
Subject key identifier: EB:4E:26:36:BA:5A:B0:9F:F1:57:67:CE:1B:1C:C1:55:80:13:A7:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FFDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBF5C568D3811EFB450069B762E951A.roa
Signing time: Fri 18 Oct 2024 10:03:08 +0000
ROA not before: Fri 18 Oct 2024 10:03:04 +0000
ROA not after: Sat 04 Jan 2025 10:03:04 +0000
asID: 136933
IP address blocks: 154.213.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65499 (0xffdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 18 10:03:04 2024 GMT
Not After : Jan 4 10:03:04 2025 GMT
Subject: CN=6712325c-eaad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:77:91:e9:51:2b:82:ed:e9:1a:0b:3a:0e:
de:36:2f:38:e0:db:11:32:2a:b2:71:d5:b0:22:ff:
3a:e9:51:2e:1c:b6:59:4a:ea:59:06:de:b5:30:ca:
b6:cc:08:45:98:a4:00:3a:2d:ee:d6:8d:bc:2c:bc:
c9:b8:10:8a:ff:6f:41:b8:75:b4:bf:94:62:1d:06:
a1:3c:e1:f5:19:21:e4:71:e8:e6:7a:6b:0e:a3:49:
31:21:5d:e4:0a:fc:48:82:fe:43:fa:ad:6f:ac:42:
c1:85:d1:37:8b:fd:30:5e:9e:6e:8e:21:d4:04:1c:
e9:9e:67:81:c2:1c:72:29:32:c9:a0:2e:36:e6:32:
d6:5b:8e:1a:13:88:d6:57:43:c8:e9:dc:bf:f9:82:
20:6e:0a:04:cf:e3:fd:13:40:24:6b:e7:72:ee:09:
82:48:92:5c:9b:5b:93:7e:2c:c6:0a:1f:00:99:06:
1b:53:63:28:f4:2e:a4:80:66:15:dc:47:14:09:01:
7f:93:e9:36:51:eb:5d:59:b1:b0:42:1f:64:c2:3d:
a7:06:a2:1f:bc:38:cf:ee:66:01:86:eb:63:3f:68:
94:7d:93:93:26:a0:83:4f:81:3d:a1:67:04:99:20:
30:db:24:2b:f1:96:bc:a0:62:85:9e:f9:33:c9:69:
5b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4E:26:36:BA:5A:B0:9F:F1:57:67:CE:1B:1C:C1:55:80:13:A7:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CBF5C568D3811EFB450069B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.20.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:99:30:92:10:1f:c6:73:06:b8:4f:9d:8f:1f:33:39:5e:4e:
eb:7f:ac:10:99:01:89:cd:e2:f7:61:89:47:b3:15:cc:ef:c7:
c9:cd:82:c7:7a:b1:ac:6d:17:34:01:af:12:90:c8:e8:24:a5:
1d:e1:f7:22:61:30:fe:5c:bf:b2:ce:29:2e:58:77:82:8b:1d:
de:90:2e:58:05:98:1d:27:31:e1:28:6b:f4:59:2d:b4:d1:26:
51:cb:be:ca:bb:9c:5d:43:ab:ff:12:6f:42:f8:d2:8b:2a:95:
63:f8:31:48:e9:a7:63:01:c6:91:3a:61:0e:44:a8:e2:88:fa:
d1:b2:5b:28:ef:35:f1:f0:74:f4:bd:3b:37:ba:46:1a:ae:ea:
1b:e8:9c:09:7f:5a:b3:0e:7d:17:9b:e6:15:e5:1c:40:fd:0c:
8d:a4:70:e2:82:39:7b:11:0c:9b:82:64:e6:db:f4:eb:29:33:
ec:c4:6a:4c:ee:fd:83:24:3f:56:f3:20:2d:8c:1a:77:31:d8:
d2:21:27:98:cc:3b:02:1a:1c:8c:e2:c3:87:23:c5:c7:24:e9:
e5:9f:a1:75:2c:52:bf:61:3f:e2:6c:dd:b4:a5:0b:53:5c:fa:
e6:c2:e9:f9:25:b9:98:90:e1:79:c6:3a:e5:78:12:76:9b:4a:
ae:85:49:9a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAP/bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDE4MTAwMzA0WhcNMjUwMTA0MTAwMzA0WjAYMRYw
FAYDVQQDEw02NzEyMzI1Yy1lYWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvrt3kelRK4Lt6RoLOg7eNi844NsRMiqycdWwIv866VEuHLZZSupZBt61
MMq2zAhFmKQAOi3u1o28LLzJuBCK/29BuHW0v5RiHQahPOH1GSHkcejmemsOo0kx
IV3kCvxIgv5D+q1vrELBhdE3i/0wXp5ujiHUBBzpnmeBwhxyKTLJoC425jLWW44a
E4jWV0PI6dy/+YIgbgoEz+P9E0Aka+dy7gmCSJJcm1uTfizGCh8AmQYbU2Mo9C6k
gGYV3EcUCQF/k+k2UetdWbGwQh9kwj2nBqIfvDjP7mYBhutjP2iUfZOTJqCDT4E9
oWcEmSAw2yQr8Za8oGKFnvkzyWlb/wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOtO
Jja6WrCf8VdnzhscwVWAE6c7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQ0JGNUM1NjhEMzgxMUVGQjQ1MDA2OUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtUUMA0GCSqGSIb3DQEB
CwUAA4IBAQCymTCSEB/Gcwa4T52PHzM5Xk7rf6wQmQGJzeL3YYlHsxXM78fJzYLH
erGsbRc0Aa8SkMjoJKUd4fciYTD+XL+yzikuWHeCix3ekC5YBZgdJzHhKGv0WS20
0SZRy77Ku5xdQ6v/Em9C+NKLKpVj+DFI6adjAcaROmEORKjiiPrRslso7zXx8HT0
vTs3ukYaruob6JwJf1qzDn0Xm+YV5RxA/QyNpHDigjl7EQybgmTm2/TrKTPsxGpM
7v2DJD9W8yAtjBp3MdjSISeYzDsCGhyM4sOHI8XHJOnln6F1LFK/YT/ibN20pQtT
XPrmwun5JbmYkOF5xjrleBJ2m0quhUma
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:02 2024 by rpki-client on console-ams.rpki-client.org