Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35532732A9C411EF9099A191762E951A.roa
File: 35532732A9C411EF9099A191762E951A.roa (raw, json)
Hash identifier: GMzipk1M3y1fpcmpTZ+utUv84Q54n+bRGqn0gSKcieo=
Subject key identifier: 58:B0:1B:09:64:EB:19:80:09:2C:C4:CF:53:B3:0D:7C:C1:A6:EB:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0111D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35532732A9C411EF9099A191762E951A.roa
Signing time: Sat 23 Nov 2024 17:56:04 +0000
ROA not before: Sat 23 Nov 2024 17:56:01 +0000
ROA not after: Mon 09 Dec 2024 17:56:01 +0000
asID: 5065
IP address blocks: 154.206.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70102 (0x111d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 23 17:56:01 2024 GMT
Not After : Dec 9 17:56:01 2024 GMT
Subject: CN=67421734-d96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d6:e9:ad:48:22:b9:dc:0c:b2:d8:6b:95:1b:
0a:d2:53:b9:ec:1d:9c:fe:b9:18:54:8f:53:1f:38:
90:9f:d0:f0:e6:c5:25:85:a0:b3:51:70:ab:25:5c:
89:f2:07:c0:0d:71:ba:1b:cc:b4:d4:b5:94:2d:f0:
3e:4b:af:45:c1:35:e8:ee:5e:f1:60:39:d7:cb:2c:
67:3a:11:9e:f0:16:db:f7:5a:48:22:e8:6f:e4:60:
42:1b:0c:06:c4:b9:db:56:a9:14:d8:52:8b:c2:99:
aa:05:d3:84:c1:c4:5a:2d:16:47:d5:fc:57:f7:fc:
f2:b2:05:33:1c:8a:68:8c:b2:f2:f8:52:14:26:a4:
03:0f:1e:e0:b7:34:eb:28:59:43:d8:6c:b4:da:4e:
8e:11:6b:a5:0c:36:8b:bf:8b:88:98:4a:17:4e:c0:
da:92:14:86:08:3e:64:af:8b:ef:eb:b3:db:d0:cb:
ab:64:17:42:ce:d7:66:52:b2:01:04:ba:b7:5b:9d:
a8:b1:3d:6a:dc:9e:6f:72:72:a4:49:38:a3:a0:35:
80:01:6e:da:de:63:94:0c:22:08:3f:cf:f4:20:2a:
46:b3:65:ec:d3:c7:30:91:8d:80:0a:49:97:ca:98:
71:d7:f0:df:65:04:0a:54:6f:2b:e8:c3:cd:b8:32:
c3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B0:1B:09:64:EB:19:80:09:2C:C4:CF:53:B3:0D:7C:C1:A6:EB:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35532732A9C411EF9099A191762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.41.0/24
Signature Algorithm: sha256WithRSAEncryption
13:35:3a:2a:ca:f4:7c:81:7f:1c:9d:27:be:8e:da:90:e8:52:
6e:18:ad:2b:6d:77:77:d6:3f:56:3d:0e:03:54:aa:0f:6c:32:
5a:f6:4a:46:ce:6b:45:64:ba:06:5e:31:b3:97:f6:39:f4:1f:
98:b8:66:9d:69:52:0d:f7:45:4f:c4:a2:23:b0:24:a3:e8:79:
d7:9d:14:15:4b:12:81:50:14:ae:7a:ab:2b:1b:b7:ce:d1:54:
6f:96:ab:04:6f:8e:d0:97:d4:45:77:92:66:b4:20:c2:ad:82:
7c:e9:44:5b:6e:f4:e5:d6:5a:0f:5b:be:c7:3d:59:35:a3:d9:
94:31:c3:47:ba:24:72:e6:7b:a1:2e:e2:5f:b3:37:62:da:ce:
52:10:86:22:c2:58:53:99:ad:0c:34:cc:c1:32:19:a0:b8:bc:
0f:cb:a2:03:8f:70:54:18:1e:e6:b5:8c:7c:ca:8f:b5:61:88:
75:42:05:1a:93:57:dc:e3:4c:33:8a:9c:21:68:41:f4:a8:ae:
2e:8e:e5:bb:b1:a0:cf:01:ad:a2:4a:c1:f7:3d:8c:c9:6f:02:
e8:b9:a5:86:1b:41:de:52:ed:a3:a4:71:0e:d6:eb:0e:c4:a1:
5d:14:25:1c:bc:d7:31:f9:05:54:e1:2e:2a:11:61:d3:02:b9:
fc:a3:f0:f1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARHWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIzMTc1NjAxWhcNMjQxMjA5MTc1NjAxWjAYMRYw
FAYDVQQDEw02NzQyMTczNC1kOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt9bprUgiudwMsthrlRsK0lO57B2c/rkYVI9THziQn9Dw5sUlhaCzUXCr
JVyJ8gfADXG6G8y01LWULfA+S69FwTXo7l7xYDnXyyxnOhGe8Bbb91pIIuhv5GBC
GwwGxLnbVqkU2FKLwpmqBdOEwcRaLRZH1fxX9/zysgUzHIpojLLy+FIUJqQDDx7g
tzTrKFlD2Gy02k6OEWulDDaLv4uImEoXTsDakhSGCD5kr4vv67Pb0MurZBdCztdm
UrIBBLq3W52osT1q3J5vcnKkSTijoDWAAW7a3mOUDCIIP8/0ICpGs2Xs08cwkY2A
CkmXyphx1/DfZQQKVG8r6MPNuDLDZQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFiw
Gwlk6xmACSzEz1OzDXzBpuurMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNTUzMjczMkE5QzQxMUVGOTA5OUExOTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4pMA0GCSqGSIb3DQEB
CwUAA4IBAQATNToqyvR8gX8cnSe+jtqQ6FJuGK0rbXd31j9WPQ4DVKoPbDJa9kpG
zmtFZLoGXjGzl/Y59B+YuGadaVIN90VPxKIjsCSj6HnXnRQVSxKBUBSueqsrG7fO
0VRvlqsEb47Ql9RFd5JmtCDCrYJ86URbbvTl1loPW77HPVk1o9mUMcNHuiRy5nuh
LuJfszdi2s5SEIYiwlhTma0MNMzBMhmguLwPy6IDj3BUGB7mtYx8yo+1YYh1QgUa
k1fc40wzipwhaEH0qK4ujuW7saDPAa2iSsH3PYzJbwLouaWGG0HeUu2jpHEO1usO
xKFdFCUcvNcx+QVU4S4qEWHTArn8o/Dx
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:26 2024 by rpki-client on console-fra.rpki-client.org