Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31F3C772A44211EF962A1B6C762E951A.roa
File: 31F3C772A44211EF962A1B6C762E951A.roa (raw, json)
Hash identifier: EF+3z+/q3ozniprt+zNE1eRj62rlearsQQrsmdYZuMM=
Subject key identifier: 73:EF:AF:19:FA:48:EC:05:86:2D:E2:13:2B:5F:2F:B3:87:45:51:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DC9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31F3C772A44211EF962A1B6C762E951A.roa
Signing time: Sat 16 Nov 2024 17:42:48 +0000
ROA not before: Sat 16 Nov 2024 17:42:45 +0000
ROA not after: Sun 12 Jul 2026 17:42:45 +0000
asID: 55967
IP address blocks: 154.85.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69065 (0x10dc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:42:45 2024 GMT
Not After : Jul 12 17:42:45 2026 GMT
Subject: CN=6738d998-8243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:38:8a:8e:3d:a0:00:47:47:b0:07:cb:f4:a2:
f5:ff:37:b5:e2:49:f3:47:07:56:a3:e2:8a:4c:2b:
14:11:40:00:82:6a:2d:ce:95:bc:8c:f7:a4:33:e1:
ef:a3:1f:fb:73:e8:b0:c8:7a:f4:e3:50:f1:93:df:
56:58:ab:e9:f8:66:43:25:f2:52:f4:73:75:bf:6e:
56:ec:a1:89:d5:d3:94:a1:08:ae:cf:f2:ce:80:db:
3e:2d:15:62:5f:b3:8c:b4:24:fb:9e:30:42:63:04:
bb:db:47:e3:5a:9f:6b:0c:9f:2a:5e:ce:45:01:22:
f9:f8:de:04:47:a1:78:6f:ab:91:b9:f5:49:cf:18:
6c:30:79:66:ff:99:91:e0:55:1a:b8:59:f9:97:64:
d2:f9:63:bd:f5:83:66:49:2f:1c:83:5f:ee:5d:2a:
be:3e:ec:fb:5e:ef:6b:86:0e:ea:f5:cc:bf:48:12:
b0:43:ad:56:b4:4d:1b:2c:3c:0b:5b:d3:07:84:02:
9c:47:ce:42:7e:e7:12:70:3c:e6:13:cd:42:e7:04:
cf:6f:99:02:3b:3e:70:b7:87:d5:92:3c:5b:54:3d:
2e:b3:9c:c3:25:fd:8b:b8:0c:20:40:51:2f:df:19:
90:5d:95:d3:ec:5e:5b:4f:91:92:76:8f:70:64:9b:
7c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:EF:AF:19:FA:48:EC:05:86:2D:E2:13:2B:5F:2F:B3:87:45:51:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31F3C772A44211EF962A1B6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.44.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:ab:7b:4f:fd:f2:e8:ff:39:dd:77:65:c3:5c:1c:2f:81:7e:
a7:16:a2:21:05:02:84:26:59:7b:8e:f8:f7:42:05:1c:44:1f:
a0:65:83:af:bd:ae:40:8b:39:11:2b:62:6b:7e:23:24:29:8f:
38:00:63:d7:7c:31:33:d8:98:57:70:11:60:bb:ae:06:71:01:
e5:28:7f:46:95:df:e6:b7:4a:83:b5:15:07:ae:c7:32:92:6b:
91:01:f5:a7:ab:08:c4:c4:fd:78:45:b4:f2:db:5f:00:1e:40:
28:1a:00:cc:c5:fc:6f:a1:3e:74:ec:bd:13:c0:3d:37:5c:ea:
c6:36:34:0b:cf:3d:55:70:94:c6:ec:ea:9f:b3:4d:ed:fb:9d:
38:94:cf:d7:3b:2d:ae:00:28:84:4f:da:33:8f:ad:27:fb:9b:
8e:6b:c8:49:39:c6:5c:0c:70:c5:78:88:80:3d:b1:65:50:83:
de:32:78:6d:65:93:c7:2d:78:34:ac:82:15:66:18:1f:18:49:
76:01:e1:42:7c:4f:64:5e:70:05:51:26:ae:aa:08:16:f7:cb:
b7:10:07:dd:3a:65:a0:43:28:7d:80:f6:e2:cd:f0:c8:9d:ae:
4b:1d:f7:44:38:89:5c:33:21:48:54:cd:24:77:4f:a8:4f:68:
e5:ce:8a:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ3JMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTc0MjQ1WhcNMjYwNzEyMTc0MjQ1WjAYMRYw
FAYDVQQDEw02NzM4ZDk5OC04MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1TiKjj2gAEdHsAfL9KL1/ze14knzRwdWo+KKTCsUEUAAgmotzpW8jPek
M+Hvox/7c+iwyHr041Dxk99WWKvp+GZDJfJS9HN1v25W7KGJ1dOUoQiuz/LOgNs+
LRViX7OMtCT7njBCYwS720fjWp9rDJ8qXs5FASL5+N4ER6F4b6uRufVJzxhsMHlm
/5mR4FUauFn5l2TS+WO99YNmSS8cg1/uXSq+Puz7Xu9rhg7q9cy/SBKwQ61WtE0b
LDwLW9MHhAKcR85CfucScDzmE81C5wTPb5kCOz5wt4fVkjxbVD0us5zDJf2LuAwg
QFEv3xmQXZXT7F5bT5GSdo9wZJt8fwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHPv
rxn6SOwFhi3iEytfL7OHRVH+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMUYzQzc3MkE0NDIxMUVGOTYyQTFCNkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlUsMA0GCSqGSIb3DQEB
CwUAA4IBAQC7q3tP/fLo/zndd2XDXBwvgX6nFqIhBQKEJll7jvj3QgUcRB+gZYOv
va5AizkRK2JrfiMkKY84AGPXfDEz2JhXcBFgu64GcQHlKH9Gld/mt0qDtRUHrscy
kmuRAfWnqwjExP14RbTy218AHkAoGgDMxfxvoT507L0TwD03XOrGNjQLzz1VcJTG
7Oqfs03t+504lM/XOy2uACiET9ozj60n+5uOa8hJOcZcDHDFeIiAPbFlUIPeMnht
ZZPHLXg0rIIVZhgfGEl2AeFCfE9kXnAFUSauqggW98u3EAfdOmWgQyh9gPbizfDI
na5LHfdEOIlcMyFIVM0kd0+oT2jlzooM
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:26 2024 by rpki-client on console-fra.rpki-client.org