Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3924FDF0736311EF85A8A4AB762E951A.roa
File: 3924FDF0736311EF85A8A4AB762E951A.roa (raw, json)
Hash identifier: fhayF6InwbCcu2l+C8TGEXiVeFNZgdou46KMsXkGJyQ=
Subject key identifier: 87:D1:6F:CE:87:67:BE:27:6F:91:F6:E5:EE:BE:A4:4B:A9:98:C5:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EEE6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3924FDF0736311EF85A8A4AB762E951A.roa
Signing time: Sun 15 Sep 2024 13:05:47 +0000
ROA not before: Sun 15 Sep 2024 13:05:43 +0000
ROA not after: Sat 30 Nov 2024 13:05:43 +0000
asID: 142403
IP address blocks: 154.221.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61158 (0xeee6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:05:43 2024 GMT
Not After : Nov 30 13:05:43 2024 GMT
Subject: CN=66e6dbab-40a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:60:e4:03:d1:a0:3f:ee:12:1e:1f:fb:b9:
1a:fc:f8:f7:c3:b1:1e:5e:1a:d4:6c:ba:32:98:30:
45:c8:4d:31:38:12:cf:b0:f3:c3:9c:1b:a7:6e:e2:
2e:3b:4a:14:31:5a:f4:68:16:d5:d1:54:e9:2d:8e:
8e:9b:c8:a2:31:41:c4:4b:08:1d:69:b2:98:28:bc:
a0:8a:9d:f7:bc:51:90:57:53:3a:8f:2e:ee:a6:14:
aa:29:21:7d:8e:98:25:d0:cb:21:07:eb:0e:e7:b5:
fc:b4:7e:89:c8:e3:26:c3:1d:25:99:82:3e:32:58:
99:bf:b5:4f:4f:cf:f5:bb:aa:e2:6e:7c:8a:f3:01:
48:8d:43:de:ab:c2:04:74:03:9b:67:27:f5:3e:37:
09:7d:a6:5c:76:e3:68:02:16:b1:b1:ff:1a:c8:ba:
ba:89:27:bd:4c:3b:b5:f2:9a:ba:24:fe:5f:45:2e:
5a:4c:5c:49:1e:a2:0a:02:60:75:10:52:9f:b8:b7:
d2:ab:9e:9e:ff:ba:d6:d2:c7:e8:b9:20:7c:d3:3d:
37:2c:28:24:56:c8:ce:1b:88:f5:ce:b1:ab:89:74:
1e:9a:7a:ff:57:9a:b0:be:79:4e:df:60:51:ac:6d:
46:80:ef:63:7a:b7:27:c7:81:aa:36:88:e8:99:ba:
52:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D1:6F:CE:87:67:BE:27:6F:91:F6:E5:EE:BE:A4:4B:A9:98:C5:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3924FDF0736311EF85A8A4AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.31.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:5d:83:fa:30:67:4d:ec:81:41:2e:fd:1d:44:ad:06:b2:2d:
9e:ac:79:f8:22:5f:c3:c3:8c:60:04:20:2d:62:bb:a5:62:a4:
a7:6f:49:3f:a5:77:9d:ac:b4:34:91:a8:c0:2e:a5:b4:9f:db:
92:46:99:8c:52:55:1a:c8:56:6e:4a:d1:c7:d1:1e:e1:b7:68:
61:cb:a8:c5:bf:f0:0f:9b:3b:d0:4b:c1:1c:d5:b9:90:68:45:
c1:be:68:18:f3:c4:93:c5:2a:b0:e0:f0:58:b4:55:af:db:ed:
4a:50:55:92:f5:6a:3c:7e:84:36:16:a4:7c:27:4d:63:62:b0:
6d:29:00:50:ef:7e:5c:76:05:2e:c3:10:4b:0a:f7:58:b7:7d:
9d:92:54:c1:7d:9b:9e:0a:d9:15:ce:04:4c:58:45:76:37:13:
db:eb:bb:b7:6b:12:e9:20:7a:05:31:22:82:5c:b6:dc:43:21:
38:36:de:ad:ed:d5:d5:04:5a:03:a2:31:92:c8:0f:9a:0b:97:
71:f9:1e:97:22:70:8e:bd:13:14:30:92:7b:dc:66:0b:2a:03:
68:09:c2:ce:1a:22:ac:b2:8b:5c:a9:ba:07:59:cf:9b:96:95:
a4:1f:9a:5c:a7:c2:13:80:d7:0c:8e:14:5d:37:d9:b6:b0:1e:
ea:7f:1e:1e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO7mMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE1MTMwNTQzWhcNMjQxMTMwMTMwNTQzWjAYMRYw
FAYDVQQDEw02NmU2ZGJhYi00MGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu8xg5APRoD/uEh4f+7ka/Pj3w7EeXhrUbLoymDBFyE0xOBLPsPPDnBun
buIuO0oUMVr0aBbV0VTpLY6Om8iiMUHESwgdabKYKLygip33vFGQV1M6jy7uphSq
KSF9jpgl0MshB+sO57X8tH6JyOMmwx0lmYI+MliZv7VPT8/1u6ribnyK8wFIjUPe
q8IEdAObZyf1PjcJfaZcduNoAhaxsf8ayLq6iSe9TDu18pq6JP5fRS5aTFxJHqIK
AmB1EFKfuLfSq56e/7rW0sfouSB80z03LCgkVsjOG4j1zrGriXQemnr/V5qwvnlO
32BRrG1GgO9jercnx4GqNojombpSfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIfR
b86HZ74nb5H25e6+pEupmMWRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zOTI0RkRGMDczNjMxMUVGODVBOEE0QUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0fMA0GCSqGSIb3DQEB
CwUAA4IBAQDVXYP6MGdN7IFBLv0dRK0Gsi2erHn4Il/Dw4xgBCAtYrulYqSnb0k/
pXedrLQ0kajALqW0n9uSRpmMUlUayFZuStHH0R7ht2hhy6jFv/APmzvQS8Ec1bmQ
aEXBvmgY88STxSqw4PBYtFWv2+1KUFWS9Wo8foQ2FqR8J01jYrBtKQBQ735cdgUu
wxBLCvdYt32dklTBfZueCtkVzgRMWEV2NxPb67u3axLpIHoFMSKCXLbcQyE4Nt6t
7dXVBFoDojGSyA+aC5dx+R6XInCOvRMUMJJ73GYLKgNoCcLOGiKssotcqboHWc+b
lpWkH5pcp8ITgNcMjhRdN9m2sB7qfx4e
-----END CERTIFICATE-----
Generated at Mon Nov 25 02:47:31 2024 by rpki-client on console-ams.rpki-client.org