Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F641832A4D211EFAAB79D7E762E951A.roa
File: 2F641832A4D211EFAAB79D7E762E951A.roa (raw, json)
Hash identifier: kXwR9RR7FliwUwqm3L6WR5PKhU8GttCGUgiUqYDEzXk=
Subject key identifier: EB:6B:B3:EC:85:57:EB:E5:A9:6F:F9:87:1D:FB:61:3F:2C:42:97:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EC4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F641832A4D211EFAAB79D7E762E951A.roa
Signing time: Sun 17 Nov 2024 10:53:32 +0000
ROA not before: Sun 17 Nov 2024 10:53:28 +0000
ROA not after: Tue 26 Nov 2024 10:53:28 +0000
asID: 141167
IP address blocks: 154.212.140.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69316 (0x10ec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:53:28 2024 GMT
Not After : Nov 26 10:53:28 2024 GMT
Subject: CN=6739cb2c-ad74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:88:6e:ce:bc:2a:97:eb:33:35:a5:ae:a5:
57:63:a0:7b:15:34:55:96:fe:ae:c3:a1:91:2b:bf:
be:4d:4b:bb:55:32:24:72:ba:7d:ba:8c:04:47:93:
78:7e:67:52:db:48:8c:8e:59:d5:5f:a7:59:45:67:
7e:2d:9d:4b:e0:25:a4:8d:fc:ba:5c:4a:6e:22:76:
77:71:0d:82:9f:40:21:e4:82:ff:98:ec:95:01:f8:
9e:d7:49:76:6e:9f:26:8e:06:5f:18:c2:9a:18:83:
de:12:20:8c:1c:9f:ec:a5:51:2e:f7:31:1e:d2:ed:
00:83:e0:45:6d:69:1e:a9:02:f6:63:42:71:f4:f5:
52:eb:59:ce:18:6e:dc:5a:6f:bd:16:76:cb:d8:c2:
eb:c3:28:71:74:45:67:6a:d4:6c:83:b3:36:52:14:
56:85:60:61:ab:01:c5:3f:50:84:80:71:6b:d0:49:
37:5f:1b:22:29:42:89:e8:6d:65:ab:97:37:fa:63:
f7:5e:1e:f6:86:d4:65:92:fe:bc:dd:aa:a2:24:aa:
ca:24:7c:5e:ed:de:71:fc:e1:d7:ef:55:d4:f0:23:
2b:cf:9d:79:6a:78:c3:35:9e:e8:32:ef:a7:8a:21:
b9:07:70:7b:39:e6:25:23:0c:a4:09:df:2c:22:fb:
0e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6B:B3:EC:85:57:EB:E5:A9:6F:F9:87:1D:FB:61:3F:2C:42:97:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F641832A4D211EFAAB79D7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.140.0/23
Signature Algorithm: sha256WithRSAEncryption
54:f3:ed:0e:dd:4e:33:0f:3e:a0:c7:13:24:b1:5e:88:3d:9b:
a8:47:2c:96:94:84:11:ff:21:e1:03:b3:7f:e6:40:b0:cf:0c:
e3:2b:b9:bc:c6:35:bd:ba:5b:0f:36:48:de:99:34:15:49:83:
67:9b:2f:d0:78:e6:82:ce:30:ac:22:87:04:23:59:7b:df:b1:
9f:c7:15:be:9c:6e:7d:5e:e5:92:67:59:eb:b1:0b:ca:9c:cf:
08:ea:55:4e:67:f3:b3:29:ad:40:8c:bf:fd:db:d8:05:dd:45:
7f:11:e4:98:42:4b:f3:69:d4:3e:af:ba:bc:dd:24:b5:18:ee:
e5:2c:b9:61:f4:0f:54:58:e1:28:cc:79:49:21:ad:4e:be:ff:
82:77:07:81:aa:90:2f:63:2c:42:4f:18:38:b4:9c:4d:f9:5f:
a6:95:44:11:83:39:44:4a:54:f7:cf:4c:b4:84:de:ae:ce:6f:
1a:7f:27:fc:75:a7:44:00:1b:de:d1:b1:6e:99:9b:fa:49:e9:
b7:53:73:67:f7:fd:8b:e2:49:48:92:1d:90:e6:c9:9d:b0:78:
ea:d0:46:af:6a:b7:53:67:77:a7:da:c7:d1:df:22:fb:ad:f9:
d6:ec:6e:d1:54:33:cb:20:76:83:1b:b4:d2:fa:89:16:9c:a6:
be:9f:15:a2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ7EMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE3MTA1MzI4WhcNMjQxMTI2MTA1MzI4WjAYMRYw
FAYDVQQDEw02NzM5Y2IyYy1hZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwxOIbs68KpfrMzWlrqVXY6B7FTRVlv6uw6GRK7++TUu7VTIkcrp9uowE
R5N4fmdS20iMjlnVX6dZRWd+LZ1L4CWkjfy6XEpuInZ3cQ2Cn0Ah5IL/mOyVAfie
10l2bp8mjgZfGMKaGIPeEiCMHJ/spVEu9zEe0u0Ag+BFbWkeqQL2Y0Jx9PVS61nO
GG7cWm+9FnbL2MLrwyhxdEVnatRsg7M2UhRWhWBhqwHFP1CEgHFr0Ek3XxsiKUKJ
6G1lq5c3+mP3Xh72htRlkv683aqiJKrKJHxe7d5x/OHX71XU8CMrz515anjDNZ7o
Mu+niiG5B3B7OeYlIwykCd8sIvsODQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOtr
s+yFV+vlqW/5hx37YT8sQpcWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRjY0MTgzMkE0RDIxMUVGQUFCNzlEN0U3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtSMMA0GCSqGSIb3DQEB
CwUAA4IBAQBU8+0O3U4zDz6gxxMksV6IPZuoRyyWlIQR/yHhA7N/5kCwzwzjK7m8
xjW9ulsPNkjemTQVSYNnmy/QeOaCzjCsIocEI1l737GfxxW+nG59XuWSZ1nrsQvK
nM8I6lVOZ/OzKa1AjL/929gF3UV/EeSYQkvzadQ+r7q83SS1GO7lLLlh9A9UWOEo
zHlJIa1Ovv+CdweBqpAvYyxCTxg4tJxN+V+mlUQRgzlESlT3z0y0hN6uzm8afyf8
dadEABve0bFumZv6Sem3U3Nn9/2L4klIkh2Q5smdsHjq0EavardTZ3en2sfR3yL7
rfnW7G7RVDPLIHaDG7TS+okWnKa+nxWi
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:02 2024 by rpki-client on console-fra.rpki-client.org