Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E6ECC89F8211EFAE41FB5D762E951A.roa
File: 37E6ECC89F8211EFAE41FB5D762E951A.roa (raw, json)
Hash identifier: NkVh+tsZOJaGYocRvxPdPPD/rK94d2qZmSs7hw/TlU8=
Subject key identifier: 21:E1:27:72:55:1E:06:96:E5:97:B0:91:86:C8:9D:1B:22:F5:E6:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B24
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E6ECC89F8211EFAE41FB5D762E951A.roa
Signing time: Sun 10 Nov 2024 16:38:31 +0000
ROA not before: Sun 10 Nov 2024 16:38:27 +0000
ROA not after: Fri 17 Oct 2025 16:38:27 +0000
asID: 137443
IP address blocks: 154.91.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68388 (0x10b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:38:27 2024 GMT
Not After : Oct 17 16:38:27 2025 GMT
Subject: CN=6730e186-e904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:70:bc:7e:7a:ef:1b:47:3b:08:be:37:68:
1b:fd:a7:2d:2d:db:a8:ad:e2:65:93:e3:65:a6:0b:
07:9d:9d:44:e7:57:19:ea:3e:de:68:c0:df:0a:06:
10:f6:ea:bf:a0:0c:3e:10:9f:e1:eb:8b:45:07:c9:
bc:4d:63:d3:dc:94:64:5e:33:13:b2:7d:d8:69:98:
6a:01:58:27:dd:f9:a9:6a:a0:3f:67:c5:58:ac:fb:
1e:30:e0:e1:89:4d:99:94:2f:ab:b1:f6:45:72:c6:
18:81:66:b9:85:0f:fb:66:67:0f:b7:2e:14:14:0f:
04:df:a0:84:f3:d2:d0:ff:60:aa:eb:a1:d1:72:e5:
67:ee:d3:d3:50:1a:48:f4:9b:d4:88:82:d6:6b:78:
fa:d7:87:3e:40:d6:24:f5:ef:a1:04:91:64:92:c9:
d3:fa:e2:57:56:82:c8:8f:33:74:90:41:6e:9c:cf:
a8:06:8f:bf:2e:60:75:b2:e1:f7:6b:2f:47:fa:d9:
3f:8f:3e:0d:0e:87:0f:11:a9:2a:46:6a:f7:1c:b8:
b5:df:9a:7d:4b:75:b3:cc:e9:8e:c9:d5:9e:79:5d:
ba:44:44:34:62:13:7b:aa:7d:3f:f8:cf:90:77:4a:
97:e2:4c:fc:60:59:ee:eb:b6:ab:74:3c:0f:0a:e6:
f2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E1:27:72:55:1E:06:96:E5:97:B0:91:86:C8:9D:1B:22:F5:E6:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37E6ECC89F8211EFAE41FB5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.33.0/24
Signature Algorithm: sha256WithRSAEncryption
86:94:ab:7b:82:78:d4:54:f6:52:d3:99:31:e9:88:8c:23:e7:
af:44:1a:1b:7a:d6:cd:e9:46:84:03:b4:98:c1:8c:a2:a5:0d:
65:2b:04:c3:2c:50:2d:89:aa:e7:f4:ce:24:f7:09:9c:2c:7f:
a1:51:72:ac:e8:7b:49:a1:bc:43:4c:2a:91:d2:0b:ed:8c:0a:
56:79:e9:a3:d7:f6:c9:2a:9c:69:fb:3c:10:dc:bf:2d:3e:29:
72:22:e0:5c:16:f6:0f:9a:90:ae:75:97:69:9e:e7:bf:d0:7d:
d4:2f:59:1e:a3:0c:05:ee:cb:e2:9e:7a:f5:ea:06:81:82:4e:
6e:5c:ce:37:4b:73:ba:b1:69:48:87:80:bc:dd:fb:bd:f3:b1:
8f:1b:04:e9:4b:20:5d:d1:46:5f:da:9f:0f:f8:03:7b:52:ff:
07:64:12:44:b6:b7:0a:da:b3:11:a4:3d:05:b0:00:2d:93:c3:
ec:11:e6:27:c8:a0:5b:d7:5a:e0:57:59:92:5f:1b:b7:a9:fd:
02:e7:40:8e:3a:cf:10:90:5e:38:80:a5:40:19:54:aa:ac:f7:
43:00:48:e3:bb:3c:29:ef:70:fd:11:5a:1c:cb:09:c0:80:7d:
a0:06:f8:83:05:00:31:11:05:11:9a:6c:5f:83:73:7f:44:f3:
71:14:c2:ec
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQskMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTYzODI3WhcNMjUxMDE3MTYzODI3WjAYMRYw
FAYDVQQDEw02NzMwZTE4Ni1lOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqrZwvH567xtHOwi+N2gb/actLduoreJlk+NlpgsHnZ1E51cZ6j7eaMDf
CgYQ9uq/oAw+EJ/h64tFB8m8TWPT3JRkXjMTsn3YaZhqAVgn3fmpaqA/Z8VYrPse
MODhiU2ZlC+rsfZFcsYYgWa5hQ/7ZmcPty4UFA8E36CE89LQ/2Cq66HRcuVn7tPT
UBpI9JvUiILWa3j614c+QNYk9e+hBJFkksnT+uJXVoLIjzN0kEFunM+oBo+/LmB1
suH3ay9H+tk/jz4NDocPEakqRmr3HLi135p9S3WzzOmOydWeeV26REQ0YhN7qn0/
+M+Qd0qX4kz8YFnu67ardDwPCubySQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCHh
J3JVHgaW5ZewkYbInRsi9eZTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zN0U2RUNDODlGODIxMUVGQUU0MUZCNUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlshMA0GCSqGSIb3DQEB
CwUAA4IBAQCGlKt7gnjUVPZS05kx6YiMI+evRBobetbN6UaEA7SYwYyipQ1lKwTD
LFAtiarn9M4k9wmcLH+hUXKs6HtJobxDTCqR0gvtjApWeemj1/bJKpxp+zwQ3L8t
PilyIuBcFvYPmpCudZdpnue/0H3UL1keowwF7svinnr16gaBgk5uXM43S3O6sWlI
h4C83fu987GPGwTpSyBd0UZf2p8P+AN7Uv8HZBJEtrcK2rMRpD0FsAAtk8PsEeYn
yKBb11rgV1mSXxu3qf0C50COOs8QkF44gKVAGVSqrPdDAEjjuzwp73D9EVocywnA
gH2gBviDBQAxEQURmmxfg3N/RPNxFMLs
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:03 2024 by rpki-client on console-fra.rpki-client.org