Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FFA155EA8F011EF8E78B95C762E951A.roa
File: 2FFA155EA8F011EF8E78B95C762E951A.roa (raw, json)
Hash identifier: 5jcLkpHkAE2LFe4+5w7vrsdMks6GNYB27kDcqddZf8c=
Subject key identifier: 7B:9C:41:BB:18:55:59:B3:BB:3E:E3:37:AA:13:59:87:C2:04:E6:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011149
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FFA155EA8F011EF8E78B95C762E951A.roa
Signing time: Fri 22 Nov 2024 16:38:22 +0000
ROA not before: Fri 22 Nov 2024 16:38:19 +0000
ROA not after: Tue 03 Dec 2024 16:38:19 +0000
asID: 62240
IP address blocks: 154.195.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69961 (0x11149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 16:38:19 2024 GMT
Not After : Dec 3 16:38:19 2024 GMT
Subject: CN=6740b37e-c6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:62:0a:54:38:b6:88:81:05:2a:40:d9:d6:d7:
ed:1c:9a:77:cf:e2:12:ca:b0:b6:59:4c:2a:50:99:
92:dc:52:ae:1f:3a:b3:7b:39:5c:9d:86:e7:2a:d3:
67:13:3c:ec:92:ee:be:f7:a0:4b:89:c1:7f:3c:16:
2e:c2:f2:13:7d:f3:15:dd:a8:3e:87:25:b6:e9:a8:
7a:f5:b7:3d:d4:d8:5c:2a:cf:e3:3e:67:b6:01:69:
67:35:5d:87:8e:a4:a1:aa:47:ce:a1:33:1c:05:7a:
51:1a:65:4a:c9:ea:87:4f:06:90:d3:26:ab:d3:39:
98:de:75:2a:1b:45:79:2b:88:b6:67:c6:6d:45:9a:
49:f2:be:b8:66:cf:ff:d6:de:d9:31:ed:13:81:d5:
39:d7:3d:4e:79:7f:35:25:e9:b8:4a:98:29:88:a8:
7e:ad:03:5a:95:9f:fd:89:85:59:e6:f1:55:fa:fe:
c8:ba:3a:b1:6d:34:4a:53:8d:0b:bd:61:e3:fe:d9:
11:33:a8:70:a8:8f:e2:1e:77:08:b7:f0:7b:11:69:
ab:e3:87:bb:ba:42:bb:23:e1:42:8b:27:f1:dc:57:
78:e3:69:87:ef:8e:5e:88:01:3c:73:d0:b0:f8:f8:
16:e5:9e:dc:f7:18:63:72:02:0a:f9:e9:da:15:11:
cb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9C:41:BB:18:55:59:B3:BB:3E:E3:37:AA:13:59:87:C2:04:E6:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2FFA155EA8F011EF8E78B95C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.159.0/24
Signature Algorithm: sha256WithRSAEncryption
37:7b:90:b2:92:3f:42:69:b9:1b:9c:5c:f0:4f:7f:cc:24:53:
25:bf:ff:70:1f:24:f8:fa:29:1b:86:f3:b2:22:7b:2e:82:65:
91:0c:8c:90:4e:9a:88:14:8f:c4:87:93:e2:e6:83:3d:b6:92:
e0:c7:5c:4c:6c:37:a7:4e:4c:54:67:b1:7f:ae:dd:d7:8d:2a:
88:d5:dc:06:1b:a5:a5:da:40:94:98:e0:fe:2a:45:6e:1d:97:
c9:8f:4b:80:44:5b:05:0c:d1:61:5c:54:fd:43:45:59:82:8a:
6e:d2:7e:19:f6:55:df:a6:dc:c4:68:94:39:12:49:2a:5a:0b:
b3:e8:8d:ab:81:70:14:90:aa:de:5b:be:bb:07:8a:e4:99:e4:
22:d9:d0:19:7b:a9:ae:61:06:79:ee:2d:c8:da:a4:b5:9b:7c:
7f:6e:fc:e3:2f:01:19:3b:b8:36:b2:44:1f:e9:33:0d:11:49:
10:23:a4:9d:2b:d1:91:37:4f:b1:ff:28:64:c8:aa:95:f9:44:
fe:55:26:0e:c2:39:10:53:c6:51:0e:6d:2b:3f:2f:35:4f:82:
5b:4b:ac:2a:f2:78:fb:0d:cd:a2:d4:5b:37:e4:85:7a:7e:ad:
f6:22:c1:d7:ed:5c:7e:6b:63:30:1c:b2:8e:5c:59:6b:76:a2:
31:be:7f:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARFJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTYzODE5WhcNMjQxMjAzMTYzODE5WjAYMRYw
FAYDVQQDEw02NzQwYjM3ZS1jNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6GIKVDi2iIEFKkDZ1tftHJp3z+ISyrC2WUwqUJmS3FKuHzqzezlcnYbn
KtNnEzzsku6+96BLicF/PBYuwvITffMV3ag+hyW26ah69bc91NhcKs/jPme2AWln
NV2HjqShqkfOoTMcBXpRGmVKyeqHTwaQ0yar0zmY3nUqG0V5K4i2Z8ZtRZpJ8r64
Zs//1t7ZMe0TgdU51z1OeX81Jem4SpgpiKh+rQNalZ/9iYVZ5vFV+v7IujqxbTRK
U40LvWHj/tkRM6hwqI/iHncIt/B7EWmr44e7ukK7I+FCiyfx3Fd442mH745eiAE8
c9Cw+PgW5Z7c9xhjcgIK+enaFRHLswIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHuc
QbsYVVmzuz7jN6oTWYfCBOarMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yRkZBMTU1RUE4RjAxMUVGOEU3OEI5NUM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsOfMA0GCSqGSIb3DQEB
CwUAA4IBAQA3e5Cykj9CabkbnFzwT3/MJFMlv/9wHyT4+ikbhvOyInsugmWRDIyQ
TpqIFI/Eh5Pi5oM9tpLgx1xMbDenTkxUZ7F/rt3XjSqI1dwGG6Wl2kCUmOD+KkVu
HZfJj0uARFsFDNFhXFT9Q0VZgopu0n4Z9lXfptzEaJQ5EkkqWguz6I2rgXAUkKre
W767B4rkmeQi2dAZe6muYQZ57i3I2qS1m3x/bvzjLwEZO7g2skQf6TMNEUkQI6Sd
K9GRN0+x/yhkyKqV+UT+VSYOwjkQU8ZRDm0rPy81T4JbS6wq8nj7Dc2i1Fs35IV6
fq32IsHX7Vx+a2MwHLKOXFlrdqIxvn93
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:02 2024 by rpki-client on console-ams.rpki-client.org