Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E431B287CD11EF9650D660762E951A.roa
File: 37E431B287CD11EF9650D660762E951A.roa (raw, json)
Hash identifier: upgr8MIvSXZglEh1wNDsl35kjCqYHjqbi7OEhLGOQ7c=
Subject key identifier: 21:F3:38:69:5A:4F:A9:C9:2A:3C:A8:6A:6E:04:69:33:F8:78:0E:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FD8A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E431B287CD11EF9650D660762E951A.roa
Signing time: Fri 11 Oct 2024 12:34:55 +0000
ROA not before: Fri 11 Oct 2024 12:34:51 +0000
ROA not after: Fri 20 Dec 2024 12:34:51 +0000
asID: 135097
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64906 (0xfd8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 11 12:34:51 2024 GMT
Not After : Dec 20 12:34:51 2024 GMT
Subject: CN=67091b6f-e04c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:37:25:97:72:e3:3f:a5:c5:0d:6c:95:3e:e7:
bf:6f:f4:af:4c:2f:2d:dc:d6:4e:d1:96:b2:3e:56:
40:a0:47:03:d0:6e:5b:ae:e9:4c:4a:42:35:a0:cc:
6d:4f:3a:8d:9d:ac:d1:23:6f:c6:7c:84:2e:15:9d:
b0:c9:03:36:7b:d6:48:8a:69:be:0b:c3:8e:e3:1e:
de:a6:c6:65:4d:d8:3a:1e:9a:55:4a:27:60:37:f8:
34:b7:f3:d1:86:45:86:7f:21:3a:9a:c0:3b:79:f5:
9f:2c:c3:35:46:72:b8:cc:91:e9:2c:89:20:b3:e8:
5c:f1:10:07:af:30:cc:58:85:6e:01:cc:54:5e:60:
81:6b:5c:f0:46:18:97:69:12:75:e9:c7:12:a9:73:
2d:18:a8:5a:fc:51:ae:13:b4:17:f8:f4:97:fa:0b:
f3:9c:70:75:9a:76:c7:58:ef:62:2b:34:94:34:e1:
9e:90:9f:50:af:c6:56:90:72:ef:23:b5:ac:ed:ab:
af:48:81:dc:4a:34:4c:60:48:d1:47:b0:bc:4a:3d:
0a:ae:f6:d3:6b:32:3a:fc:3e:46:e1:85:43:3d:13:
97:d2:15:c5:c8:bf:e0:c0:29:de:d1:79:5f:b4:73:
44:2a:0c:60:3a:da:f1:f0:f8:f0:fe:83:18:a0:8e:
05:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F3:38:69:5A:4F:A9:C9:2A:3C:A8:6A:6E:04:69:33:F8:78:0E:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E431B287CD11EF9650D660762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
53:69:9f:d9:6b:39:d6:00:b1:8c:87:aa:91:6f:39:cf:33:c5:
07:9d:a9:23:fb:0f:09:e9:c0:73:19:6e:73:d7:c7:90:ee:cd:
d4:03:38:91:68:e5:5f:6e:68:e1:67:b3:dd:55:42:41:df:8a:
20:66:8c:5a:83:b8:ab:a3:1f:cb:34:66:cd:00:72:30:8a:87:
31:c9:87:b7:06:48:1a:30:1f:20:9d:82:65:67:1e:f1:96:81:
54:73:90:b5:6f:1e:9d:2e:4e:42:b8:01:90:fd:1a:df:de:d9:
44:5e:f9:74:84:49:0e:06:e0:ce:db:e2:96:a0:63:e7:cf:15:
b4:7d:2b:cb:9e:6e:96:fe:a8:83:65:0e:27:b4:82:67:b4:95:
b9:8a:72:30:af:a7:f7:64:0c:45:ed:ac:a2:70:a7:45:aa:86:
f1:52:f0:16:b2:b7:94:1b:48:c0:81:dc:94:05:ca:77:58:3f:
c0:ae:2c:ba:81:a5:e7:9f:97:3f:19:36:fc:fc:15:ea:14:00:
19:c2:e8:6c:4f:d6:6c:5f:13:cb:37:80:bc:d6:af:2d:bd:75:
0a:cf:c3:de:b9:a4:d1:9c:c7:49:c6:8c:f4:91:db:d2:fd:32:
c6:f7:15:39:11:ac:02:98:32:b9:5e:76:d2:53:fb:21:79:27:
07:5f:b9:5e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAP2KMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDExMTIzNDUxWhcNMjQxMjIwMTIzNDUxWjAYMRYw
FAYDVQQDEw02NzA5MWI2Zi1lMDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvTcll3LjP6XFDWyVPue/b/SvTC8t3NZO0ZayPlZAoEcD0G5brulMSkI1
oMxtTzqNnazRI2/GfIQuFZ2wyQM2e9ZIimm+C8OO4x7epsZlTdg6HppVSidgN/g0
t/PRhkWGfyE6msA7efWfLMM1RnK4zJHpLIkgs+hc8RAHrzDMWIVuAcxUXmCBa1zw
RhiXaRJ16ccSqXMtGKha/FGuE7QX+PSX+gvznHB1mnbHWO9iKzSUNOGekJ9Qr8ZW
kHLvI7Ws7auvSIHcSjRMYEjRR7C8Sj0KrvbTazI6/D5G4YVDPROX0hXFyL/gwCne
0XlftHNEKgxgOtrx8Pjw/oMYoI4FSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCHz
OGlaT6nJKjyoam4EaTP4eA7VMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zN0U0MzFCMjg3Q0QxMUVGOTY1MEQ2NjA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmllAMA0GCSqGSIb3DQEB
CwUAA4IBAQBTaZ/ZaznWALGMh6qRbznPM8UHnakj+w8J6cBzGW5z18eQ7s3UAziR
aOVfbmjhZ7PdVUJB34ogZoxag7irox/LNGbNAHIwiocxyYe3BkgaMB8gnYJlZx7x
loFUc5C1bx6dLk5CuAGQ/Rrf3tlEXvl0hEkOBuDO2+KWoGPnzxW0fSvLnm6W/qiD
ZQ4ntIJntJW5inIwr6f3ZAxF7ayicKdFqobxUvAWsreUG0jAgdyUBcp3WD/Ariy6
gaXnn5c/GTb8/BXqFAAZwuhsT9ZsXxPLN4C81q8tvXUKz8PeuaTRnMdJxoz0kdvS
/TLG9xU5EawCmDK5XnbSU/sheScHX7le
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org