Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/310FC9967E3B11EF97885C9D762E951A.roa
File: 310FC9967E3B11EF97885C9D762E951A.roa (raw, json)
Hash identifier: Ar0i6jP4Uix+FcmJHPxhMsxmJd2jKdjr6sNp8A52w9c=
Subject key identifier: B1:CA:77:D1:0C:DA:6F:A1:67:0E:00:9D:32:A9:D6:71:32:13:40:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F488
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/310FC9967E3B11EF97885C9D762E951A.roa
Signing time: Sun 29 Sep 2024 08:16:56 +0000
ROA not before: Sun 29 Sep 2024 08:16:53 +0000
ROA not after: Mon 30 Dec 2024 08:16:53 +0000
asID: 17561
IP address blocks: 154.197.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62600 (0xf488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 08:16:53 2024 GMT
Not After : Dec 30 08:16:53 2024 GMT
Subject: CN=66f90cf8-71a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:25:62:71:1f:20:bb:ab:d8:27:a3:ca:2e:
1a:cd:f5:c1:93:ef:39:0a:07:97:76:33:86:10:a4:
66:6f:dd:f3:3c:6f:3e:aa:49:f2:b8:60:a6:df:48:
a5:19:bf:75:a1:a1:f0:6e:64:65:42:eb:b5:6c:18:
c7:37:fb:ef:de:49:ee:25:2f:80:15:86:e0:bb:b3:
9d:a9:2b:38:33:f7:73:71:bd:3d:4c:22:90:73:b6:
57:c2:77:d2:bc:5b:af:e1:25:51:a5:83:8c:61:bf:
ec:b4:d2:75:27:bb:a0:c5:32:4e:74:1f:17:76:3c:
64:13:b4:c5:18:03:da:0e:77:69:2a:f1:5f:ac:04:
23:c1:78:0a:d5:9b:ac:ae:55:b7:9b:e3:22:5c:6e:
20:02:6a:1e:01:fd:08:db:9e:08:28:49:5c:e1:89:
ab:26:a3:e2:b7:0e:15:7f:42:83:16:86:05:48:31:
25:e4:83:bd:e0:3c:26:69:36:02:a8:6c:08:b4:17:
8a:a9:b5:d6:23:2c:73:dd:80:f8:e6:32:e4:9d:5c:
b5:51:c2:92:d8:3e:99:55:85:ea:92:74:fd:55:96:
55:97:64:9c:08:61:1b:bd:f2:35:05:22:b4:6c:25:
88:5d:2c:da:2b:25:76:3e:a8:fb:22:d3:8b:67:f3:
a3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CA:77:D1:0C:DA:6F:A1:67:0E:00:9D:32:A9:D6:71:32:13:40:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/310FC9967E3B11EF97885C9D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.118.0/24
Signature Algorithm: sha256WithRSAEncryption
91:dd:75:c7:28:3e:e6:2d:dd:0f:d2:32:20:8a:45:93:17:3f:
6a:ab:7f:e7:ab:f5:04:00:71:98:42:b2:63:5d:69:5b:91:84:
f7:c1:c1:50:39:c8:6c:0e:b2:ec:51:5c:08:34:64:2c:f7:14:
59:f6:69:2f:4d:92:bf:d8:2c:2a:28:62:fc:73:97:8e:28:cd:
18:3b:d2:df:9a:e5:f7:ed:a8:30:3d:9c:ff:bc:d6:f7:bd:90:
00:13:4a:25:12:4f:be:33:5d:93:a8:49:43:4e:a9:d4:0b:6f:
a9:e6:cf:71:6b:a1:f3:42:55:05:e8:b3:88:26:4b:e7:2e:d1:
73:4e:31:30:0b:49:f1:70:ba:b3:e3:60:6d:9e:66:a7:64:68:
33:63:e7:8d:c3:4a:85:ba:f5:c2:c5:2a:8c:c8:b0:2c:81:f6:
f0:68:8e:6d:77:4b:be:2b:74:3c:5f:32:75:6c:96:d0:80:4e:
39:dc:01:d7:58:c1:87:dc:1e:98:40:42:b6:1e:65:8e:04:57:
4c:c8:a4:cd:c3:5c:4d:86:96:db:86:9a:e3:97:2e:6f:2a:6f:
b7:de:c1:3f:e8:a3:75:38:60:c2:e9:ce:7a:89:12:4b:47:22:
b6:52:ce:17:e2:06:fd:67:a3:6c:6d:5b:40:18:b5:00:52:c3:
4c:11:4e:4b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPSIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTI5MDgxNjUzWhcNMjQxMjMwMDgxNjUzWjAYMRYw
FAYDVQQDEw02NmY5MGNmOC03MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnuYlYnEfILur2Cejyi4azfXBk+85CgeXdjOGEKRmb93zPG8+qknyuGCm
30ilGb91oaHwbmRlQuu1bBjHN/vv3knuJS+AFYbgu7OdqSs4M/dzcb09TCKQc7ZX
wnfSvFuv4SVRpYOMYb/stNJ1J7ugxTJOdB8XdjxkE7TFGAPaDndpKvFfrAQjwXgK
1ZusrlW3m+MiXG4gAmoeAf0I254IKElc4YmrJqPitw4Vf0KDFoYFSDEl5IO94Dwm
aTYCqGwItBeKqbXWIyxz3YD45jLknVy1UcKS2D6ZVYXqknT9VZZVl2ScCGEbvfI1
BSK0bCWIXSzaKyV2Pqj7ItOLZ/Oj3wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLHK
d9EM2m+hZw4AnTKp1nEyE0BvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMTBGQzk5NjdFM0IxMUVGOTc4ODVDOUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsV2MA0GCSqGSIb3DQEB
CwUAA4IBAQCR3XXHKD7mLd0P0jIgikWTFz9qq3/nq/UEAHGYQrJjXWlbkYT3wcFQ
OchsDrLsUVwINGQs9xRZ9mkvTZK/2CwqKGL8c5eOKM0YO9LfmuX37agwPZz/vNb3
vZAAE0olEk++M12TqElDTqnUC2+p5s9xa6HzQlUF6LOIJkvnLtFzTjEwC0nxcLqz
42BtnmanZGgzY+eNw0qFuvXCxSqMyLAsgfbwaI5td0u+K3Q8XzJ1bJbQgE453AHX
WMGH3B6YQEK2HmWOBFdMyKTNw1xNhpbbhprjly5vKm+33sE/6KN1OGDC6c56iRJL
RyK2Us4X4gb9Z6NsbVtAGLUAUsNMEU5L
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org