Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C48242A45711EFB13E5370762E951A.roa
File: 34C48242A45711EFB13E5370762E951A.roa (raw, json)
Hash identifier: DIrbZzaw5O6yYRG2Cr3QEQm4AEKi+we8CSt5DeQ4Y/E=
Subject key identifier: 5D:EF:34:6F:3A:D3:5A:8B:93:B6:6C:06:2E:E1:03:AF:15:A2:2C:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E3B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C48242A45711EFB13E5370762E951A.roa
Signing time: Sat 16 Nov 2024 20:13:13 +0000
ROA not before: Sat 16 Nov 2024 20:13:09 +0000
ROA not after: Tue 26 Nov 2024 20:13:09 +0000
asID: 133180
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69179 (0x10e3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:13:09 2024 GMT
Not After : Nov 26 20:13:09 2024 GMT
Subject: CN=6738fcd8-e6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:60:dd:a5:28:05:ca:89:70:03:d7:03:42:98:
db:86:76:f0:3d:3d:9e:60:25:48:e1:3e:94:c1:27:
c3:57:4d:e7:14:f6:ad:98:30:f8:b3:44:74:3d:96:
a3:9c:c4:3a:05:b5:94:e3:0b:f2:2d:db:21:79:9a:
56:b4:48:ec:0d:19:e0:d5:07:14:8a:7b:b2:1d:ca:
19:dc:f7:59:9c:fb:f3:67:ef:30:6b:e9:0b:e1:18:
29:4e:34:eb:80:23:76:ca:86:f6:05:49:0b:0a:0c:
f2:87:48:bb:fa:f9:f7:93:19:97:78:e8:38:63:d3:
58:44:46:a1:68:ab:87:08:a9:88:06:44:2a:fc:68:
86:7d:ea:9b:02:d2:4e:20:08:d8:60:0b:f0:06:51:
b0:5a:e5:8c:8b:29:64:9c:83:da:a8:e8:73:63:4e:
1e:9c:ad:78:d6:1b:07:ff:b2:7d:dd:a0:15:58:9b:
79:1e:e2:cc:d6:1c:5f:e1:8d:88:69:01:9c:ae:b4:
d1:79:1f:a6:59:87:3d:99:f2:b7:df:5d:6a:9a:9d:
0e:4b:43:39:4e:31:da:a0:3d:04:31:78:fb:7b:da:
e6:ab:2b:ea:98:9e:cf:b7:c8:ff:51:74:dc:1c:4f:
df:fc:89:52:0c:38:dc:96:d1:c8:bc:ac:2a:83:44:
75:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EF:34:6F:3A:D3:5A:8B:93:B6:6C:06:2E:E1:03:AF:15:A2:2C:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34C48242A45711EFB13E5370762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
d2:74:06:2d:f6:e8:8f:d8:a1:30:69:d0:31:97:75:62:6c:35:
58:f9:39:57:61:3d:c7:45:6c:77:4f:e0:ad:eb:54:95:e7:14:
fb:2d:d6:5e:e1:00:13:2e:57:3a:bb:70:d5:6d:af:7d:a7:51:
ad:d8:26:f0:e5:32:0d:91:ee:de:50:4c:3a:ad:d4:ea:47:6f:
cf:87:70:1d:9c:7c:4c:d1:a1:77:41:1a:90:3f:78:24:07:62:
cc:4b:52:ca:e0:36:a0:00:f9:00:11:b9:6b:f0:23:b8:a7:8a:
d4:43:c7:58:da:1f:06:04:0b:4c:e5:f5:10:11:2e:b2:4a:e5:
c7:f5:df:e6:f2:91:6e:ae:6a:0d:d1:fc:43:fe:43:af:7c:31:
9b:90:10:87:31:75:4b:b1:d0:b1:a6:b7:66:ae:7e:9e:5c:25:
56:4a:38:cb:68:f1:63:13:57:7a:18:8e:60:aa:13:8c:16:b5:
aa:bc:e0:39:ac:2a:8b:78:56:8c:1e:14:8c:51:d4:5d:00:88:
70:dc:53:10:3e:62:de:b6:69:ef:e9:c2:f0:0e:0e:82:c1:00:
37:f8:4d:f6:68:3e:cc:a1:b8:46:09:4b:d6:52:91:b1:8f:22:
af:8a:e8:d9:d2:89:25:f8:2c:b4:8e:40:c1:bc:9f:f7:d0:6b:
c5:c9:05:28
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ47MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MjAxMzA5WhcNMjQxMTI2MjAxMzA5WjAYMRYw
FAYDVQQDEw02NzM4ZmNkOC1lNmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAymDdpSgFyolwA9cDQpjbhnbwPT2eYCVI4T6UwSfDV03nFPatmDD4s0R0
PZajnMQ6BbWU4wvyLdsheZpWtEjsDRng1QcUinuyHcoZ3PdZnPvzZ+8wa+kL4Rgp
TjTrgCN2yob2BUkLCgzyh0i7+vn3kxmXeOg4Y9NYREahaKuHCKmIBkQq/GiGfeqb
AtJOIAjYYAvwBlGwWuWMiylknIPaqOhzY04enK141hsH/7J93aAVWJt5HuLM1hxf
4Y2IaQGcrrTReR+mWYc9mfK3311qmp0OS0M5TjHaoD0EMXj7e9rmqyvqmJ7Pt8j/
UXTcHE/f/IlSDDjcltHIvKwqg0R18wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFF3v
NG8601qLk7ZsBi7hA68VoiwmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNEM0ODI0MkE0NTcxMUVGQjEzRTUzNzA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmtdAMA0GCSqGSIb3DQEB
CwUAA4IBAQDSdAYt9uiP2KEwadAxl3VibDVY+TlXYT3HRWx3T+Ct61SV5xT7LdZe
4QATLlc6u3DVba99p1Gt2Cbw5TINke7eUEw6rdTqR2/Ph3AdnHxM0aF3QRqQP3gk
B2LMS1LK4DagAPkAEblr8CO4p4rUQ8dY2h8GBAtM5fUQES6ySuXH9d/m8pFurmoN
0fxD/kOvfDGbkBCHMXVLsdCxprdmrn6eXCVWSjjLaPFjE1d6GI5gqhOMFrWqvOA5
rCqLeFaMHhSMUdRdAIhw3FMQPmLetmnv6cLwDg6CwQA3+E32aD7MobhGCUvWUpGx
jyKviujZ0okl+Cy0jkDBvJ/30GvFyQUo
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:03 2024 by rpki-client on console-ams.rpki-client.org