Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FA55D304A5811EFBBCDFF59762E951A.roa
File: 2FA55D304A5811EFBBCDFF59762E951A.roa (raw, json)
Hash identifier: ywJ/ziFqhp2bi25u55uwZEaYWfPFj4m0YN80lsJ+S6I=
Subject key identifier: 4D:6E:10:06:92:9C:F6:81:E6:BB:9E:2D:EF:DD:47:91:60:A7:54:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D6CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FA55D304A5811EFBBCDFF59762E951A.roa
Signing time: Thu 25 Jul 2024 07:33:29 +0000
ROA not before: Thu 25 Jul 2024 07:33:26 +0000
ROA not after: Fri 11 Jul 2025 07:33:26 +0000
asID: 136933
IP address blocks: 154.91.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54990 (0xd6ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 07:33:26 2024 GMT
Not After : Jul 11 07:33:26 2025 GMT
Subject: CN=66a1ffc9-a704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:22:ad:8e:74:aa:f7:e5:e8:4d:30:35:64:
39:8f:e7:e6:e7:09:06:5e:df:d7:ca:3b:64:56:33:
d0:20:f5:71:ca:2a:df:79:10:fd:0d:36:03:a6:b7:
5e:2d:2a:27:99:93:c9:0b:b1:34:f6:d7:cc:27:d3:
cf:6c:86:1e:8f:60:8b:d7:cc:34:66:6a:69:75:7d:
98:33:7a:08:32:9a:15:ba:f5:78:eb:ae:99:14:88:
7d:46:72:d5:20:e1:e9:48:ab:c1:d3:a0:a8:09:0f:
b9:e8:b6:a2:61:af:6c:a9:07:56:1e:4f:29:01:a0:
c4:5f:70:ff:60:ef:5b:c4:56:89:9a:48:ce:02:26:
c8:19:0f:a5:94:44:4a:57:29:2d:1d:8e:67:e8:16:
4a:af:c4:3d:36:b4:93:4e:5c:9e:0c:22:e1:fc:14:
0f:74:6f:1e:cd:cb:d1:5d:f2:d1:70:c2:13:d5:35:
1c:94:4d:47:5b:33:5a:22:b0:13:c2:c9:a4:9e:f5:
f6:5f:11:b0:66:d5:07:86:f1:c8:de:7f:d1:b7:d5:
a6:7c:cd:3c:3c:e3:c0:98:eb:b7:fb:ef:02:58:3c:
60:e1:9d:a9:0f:d1:a1:6e:e7:08:15:be:b2:8f:63:
72:f5:00:a1:bd:bd:68:58:b9:66:37:0d:0e:72:7d:
09:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6E:10:06:92:9C:F6:81:E6:BB:9E:2D:EF:DD:47:91:60:A7:54:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FA55D304A5811EFBBCDFF59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.197.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:91:96:f4:1b:a8:7b:57:62:8f:72:3b:d6:45:2c:6a:af:4a:
50:3f:55:35:44:79:d6:ee:bb:17:e9:9b:47:fa:ad:5c:3b:e9:
8b:50:f8:f8:28:cd:96:94:f7:c8:5b:6b:4a:51:11:6c:76:51:
a6:6c:c9:73:34:73:fb:02:8e:62:d6:46:08:a0:d6:dc:57:b8:
7e:79:31:c8:31:96:4b:63:b2:c9:93:53:00:51:42:80:2f:75:
f9:f5:f1:a6:47:54:f5:21:38:17:6e:bf:8a:7c:aa:6f:a5:d8:
a4:ee:7c:99:84:1a:f8:89:01:b2:1f:37:b2:1a:c1:97:94:a6:
15:9a:7c:2d:99:1a:b7:26:8e:3a:af:a7:e0:91:ac:38:69:f6:
a6:f3:58:ae:8d:5b:0d:cf:54:6a:62:0f:d1:64:94:e4:e5:62:
b0:59:b4:bb:80:d1:04:99:f6:70:8b:a0:e1:12:97:03:b5:fc:
2f:0e:e5:0b:32:6f:af:93:d3:c6:bf:12:77:ec:1d:c3:43:4f:
0d:3f:07:41:89:4f:4b:9f:37:c6:03:8d:4c:c3:43:4e:3d:04:
61:f3:42:81:f1:bf:71:51:89:a2:97:59:bf:1f:d6:c2:ad:58:
3d:d8:c0:07:f8:dd:e2:cd:a3:5e:2b:6e:35:16:44:bf:14:c4:
91:3a:10:b5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDANbOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzI1MDczMzI2WhcNMjUwNzExMDczMzI2WjAYMRYw
FAYDVQQDEw02NmExZmZjOS1hNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnk8irY50qvfl6E0wNWQ5j+fm5wkGXt/XyjtkVjPQIPVxyirfeRD9DTYD
prdeLSonmZPJC7E09tfMJ9PPbIYej2CL18w0ZmppdX2YM3oIMpoVuvV4666ZFIh9
RnLVIOHpSKvB06CoCQ+56LaiYa9sqQdWHk8pAaDEX3D/YO9bxFaJmkjOAibIGQ+l
lERKVyktHY5n6BZKr8Q9NrSTTlyeDCLh/BQPdG8ezcvRXfLRcMIT1TUclE1HWzNa
IrATwsmknvX2XxGwZtUHhvHI3n/Rt9WmfM08POPAmOu3++8CWDxg4Z2pD9GhbucI
Fb6yj2Ny9QChvb1oWLlmNw0Ocn0JXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFE1u
EAaSnPaB5rueLe/dR5Fgp1T/MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRkE1NUQzMDRBNTgxMUVGQkJDREZGNTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlvFMA0GCSqGSIb3DQEB
CwUAA4IBAQA9kZb0G6h7V2KPcjvWRSxqr0pQP1U1RHnW7rsX6ZtH+q1cO+mLUPj4
KM2WlPfIW2tKURFsdlGmbMlzNHP7Ao5i1kYIoNbcV7h+eTHIMZZLY7LJk1MAUUKA
L3X59fGmR1T1ITgXbr+KfKpvpdik7nyZhBr4iQGyHzeyGsGXlKYVmnwtmRq3Jo46
r6fgkaw4afam81iujVsNz1RqYg/RZJTk5WKwWbS7gNEEmfZwi6DhEpcDtfwvDuUL
Mm+vk9PGvxJ37B3DQ08NPwdBiU9LnzfGA41Mw0NOPQRh80KB8b9xUYmil1m/H9bC
rVg92MAH+N3izaNeK241FkS/FMSROhC1
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:02 2024 by rpki-client on console-ams.rpki-client.org