Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3354C2669C1C11EF9767DF7E762E951A.roa
File: 3354C2669C1C11EF9767DF7E762E951A.roa (raw, json)
Hash identifier: bEE9dZmUoW9onCG+mUEIwnx1TXgO57I2E894mPFw5+s=
Subject key identifier: 80:CA:14:1A:BC:DB:6C:2E:80:CA:10:77:3B:9A:76:39:04:C7:FB:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01086C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3354C2669C1C11EF9767DF7E762E951A.roa
Signing time: Wed 06 Nov 2024 08:50:41 +0000
ROA not before: Wed 06 Nov 2024 08:50:37 +0000
ROA not after: Mon 30 Dec 2024 08:50:37 +0000
asID: 63139
IP address blocks: 154.93.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67692 (0x1086c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 6 08:50:37 2024 GMT
Not After : Dec 30 08:50:37 2024 GMT
Subject: CN=672b2de1-eedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2a:cf:b6:fc:c3:b0:45:40:fe:ac:99:4b:1a:
ba:22:49:43:90:50:66:82:a0:74:bf:12:97:b3:5c:
8f:09:27:db:9f:c4:fb:50:80:2d:99:eb:d4:f4:b3:
34:2f:ab:c7:7c:db:db:7e:3b:b5:58:8c:bd:ec:8e:
5d:87:71:ea:87:64:6e:9f:17:71:03:57:49:ec:2a:
65:66:14:8f:84:8a:2a:97:de:3f:b1:16:ac:cd:22:
0e:e2:a4:e6:37:90:5f:c7:29:b6:15:0f:85:09:7c:
9d:5a:d2:f5:70:a8:1b:16:0c:27:b9:67:70:ed:cd:
98:79:94:75:a6:e6:3c:e6:b0:0c:7f:79:c7:82:32:
42:7b:3b:3f:10:cb:b4:04:76:e7:08:4e:2a:50:fa:
8e:eb:83:c9:f8:9f:ac:38:87:bd:61:65:15:5c:2f:
fd:e9:bd:4e:36:48:a0:3c:23:3b:a7:e2:c4:c3:83:
35:54:e1:b0:31:5a:43:3f:24:e4:57:18:72:da:d0:
f2:e1:0b:9e:3a:54:64:78:ee:7c:e6:06:e8:a1:ca:
50:dd:de:1e:bf:7e:a1:56:96:02:72:dc:4c:b6:9b:
f5:d1:2d:4f:ab:c7:4a:40:02:73:cd:8d:8b:75:96:
38:9c:78:19:0b:17:7d:2e:99:f7:79:5d:18:90:ac:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CA:14:1A:BC:DB:6C:2E:80:CA:10:77:3B:9A:76:39:04:C7:FB:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3354C2669C1C11EF9767DF7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:eb:ff:d1:7c:4c:49:61:5e:6e:31:0c:7d:91:84:76:b8:a7:
a7:09:76:da:ab:a8:5f:2b:e9:1d:44:b5:39:dc:fd:2f:cc:09:
28:f8:22:7f:96:57:3b:fb:61:ed:f7:62:f0:87:98:d3:5e:ea:
59:e7:b5:20:59:03:b8:63:59:d3:ed:7f:3c:7c:ac:03:31:90:
4b:aa:05:73:8b:68:cd:c3:55:54:44:e9:3b:f7:0c:88:4a:de:
0f:ba:c9:78:19:8c:49:be:74:53:35:f7:7b:5a:fc:46:fe:6e:
38:89:a6:b9:63:f5:b6:36:95:f4:b2:76:95:9b:39:d5:03:88:
b6:d5:b6:33:d7:b7:89:88:6b:6b:4c:51:24:ed:3b:b2:f9:f7:
04:54:e7:32:83:23:9e:d0:e5:5e:38:1f:91:1e:c8:8d:54:1a:
fe:2a:74:09:2c:e8:02:f0:8d:56:c3:b7:ea:f3:7a:7c:5b:6b:
b1:09:88:d1:ef:e2:9b:d6:fb:32:ef:d3:a8:6d:30:20:64:52:
e6:8a:c7:52:75:b3:dd:83:59:4d:58:58:28:bf:a6:b9:c1:bd:
4d:41:09:28:f6:a5:c0:f6:b0:01:a6:5c:b9:2e:80:2a:a0:15:
0a:4a:c4:c0:57:99:63:5a:9e:01:4e:82:a2:a1:f1:b8:57:13:
b2:e2:08:93
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQhsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA2MDg1MDM3WhcNMjQxMjMwMDg1MDM3WjAYMRYw
FAYDVQQDEw02NzJiMmRlMS1lZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1CrPtvzDsEVA/qyZSxq6IklDkFBmgqB0vxKXs1yPCSfbn8T7UIAtmevU
9LM0L6vHfNvbfju1WIy97I5dh3Hqh2RunxdxA1dJ7CplZhSPhIoql94/sRaszSIO
4qTmN5Bfxym2FQ+FCXydWtL1cKgbFgwnuWdw7c2YeZR1puY85rAMf3nHgjJCezs/
EMu0BHbnCE4qUPqO64PJ+J+sOIe9YWUVXC/96b1ONkigPCM7p+LEw4M1VOGwMVpD
PyTkVxhy2tDy4QueOlRkeO585gboocpQ3d4ev36hVpYCctxMtpv10S1Pq8dKQAJz
zY2LdZY4nHgZCxd9Lpn3eV0YkKzmDwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIDK
FBq822wugMoQdzuadjkEx/thMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zMzU0QzI2NjlDMUMxMUVGOTc2N0RGN0U3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEml1AMA0GCSqGSIb3DQEB
CwUAA4IBAQBM6//RfExJYV5uMQx9kYR2uKenCXbaq6hfK+kdRLU53P0vzAko+CJ/
llc7+2Ht92Lwh5jTXupZ57UgWQO4Y1nT7X88fKwDMZBLqgVzi2jNw1VUROk79wyI
St4Pusl4GYxJvnRTNfd7WvxG/m44iaa5Y/W2NpX0snaVmznVA4i21bYz17eJiGtr
TFEk7Tuy+fcEVOcygyOe0OVeOB+RHsiNVBr+KnQJLOgC8I1Ww7fq83p8W2uxCYjR
7+Kb1vsy79OobTAgZFLmisdSdbPdg1lNWFgov6a5wb1NQQko9qXA9rABply5LoAq
oBUKSsTAV5ljWp4BToKiofG4VxOy4giT
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:00 2024 by rpki-client on console-ams.rpki-client.org