Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A838EEA71A211EF80E16C70762E951A.roa
File: 3A838EEA71A211EF80E16C70762E951A.roa (raw, json)
Hash identifier: vCWbm/ZaWl+caakkojC6D82ybgg3+9zLDY62r1NCt8A=
Subject key identifier: 33:6E:2C:6D:2F:85:D6:9A:E3:F4:40:5F:67:F9:A4:20:F7:0E:A8:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ED8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A838EEA71A211EF80E16C70762E951A.roa
Signing time: Fri 13 Sep 2024 07:31:45 +0000
ROA not before: Fri 13 Sep 2024 07:31:42 +0000
ROA not after: Sat 30 Nov 2024 07:31:42 +0000
asID: 142403
IP address blocks: 154.92.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60812 (0xed8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 13 07:31:42 2024 GMT
Not After : Nov 30 07:31:42 2024 GMT
Subject: CN=66e3ea61-6bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:40:c4:9e:25:50:fc:1a:7a:93:42:70:b7:
6f:e6:93:8f:2f:50:2e:3d:68:97:80:d6:ae:7f:fa:
70:84:93:56:28:72:53:86:20:e5:0d:f2:4b:66:54:
63:5f:a6:0f:f2:97:ab:65:d3:d4:65:85:31:a5:fe:
22:3e:20:93:04:1e:ae:ff:82:a4:53:06:85:08:2b:
eb:c6:13:3d:ad:2c:63:51:57:41:2b:93:e0:10:43:
da:7b:ef:be:3f:fa:b6:31:a4:64:54:41:99:35:d3:
44:4e:7e:da:f1:33:d2:ae:aa:fd:6a:89:80:4f:d3:
b5:b7:e9:63:0c:2d:5d:60:99:6d:38:b9:13:ab:c6:
d5:52:41:9f:5e:9b:e4:e1:5d:4b:78:8b:cd:45:d4:
8e:a2:da:44:6b:c6:fb:2b:71:4b:95:8d:ef:0d:ed:
93:46:ef:bb:7a:18:d9:1a:62:0a:46:09:c4:6a:a4:
53:52:56:48:51:57:f3:f7:8f:9d:81:4d:fd:3f:26:
ed:d0:4d:e1:90:2e:13:ed:54:59:7e:ad:31:d5:35:
2e:f0:81:9d:2e:be:49:de:08:0d:14:ce:99:c7:7a:
c5:e7:82:47:86:e2:f6:92:7a:67:32:f2:72:5d:c6:
8c:5f:f7:46:9e:66:ca:16:57:e8:5d:2f:e3:a2:f7:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6E:2C:6D:2F:85:D6:9A:E3:F4:40:5F:67:F9:A4:20:F7:0E:A8:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A838EEA71A211EF80E16C70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.16.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:b9:1f:a5:e2:7f:21:a6:22:08:7d:1c:7e:93:d7:e8:1f:9b:
c7:28:c6:74:a4:79:b6:d3:64:fa:5a:78:4e:f3:69:4f:f7:46:
60:a2:21:f8:75:e4:fe:89:8f:f9:c3:1b:12:91:24:68:81:1b:
b8:8a:0d:b7:70:a8:c1:7b:8f:d4:8f:3b:61:39:b8:45:65:28:
c8:a6:10:07:f3:14:88:54:f6:a8:5f:04:de:06:b6:25:65:08:
cc:e3:36:60:4f:37:31:7f:50:3c:f6:2f:d1:fc:0c:bc:34:e9:
f4:0c:76:cb:4c:e5:45:fb:28:f7:95:a0:23:77:db:5e:53:82:
fb:c2:ab:4c:ab:98:47:17:5d:12:0c:b7:f8:78:8c:18:a3:20:
00:65:81:94:ee:ec:30:ca:8c:fc:70:72:05:8f:76:24:85:a0:
6d:fa:6f:82:88:e4:7d:52:21:3c:0b:65:14:cf:3d:06:27:ef:
61:63:53:bc:1b:32:78:c0:a6:f2:72:49:45:90:59:4a:e4:dd:
ee:c7:84:1b:86:ea:4f:b7:b3:19:79:07:d2:63:9b:dc:81:56:
9a:93:80:2f:02:f4:d3:92:7d:8b:4d:cf:6e:97:0f:e8:0c:cb:
53:ce:36:e1:80:09:6c:51:9a:cc:1b:32:20:dc:79:1a:a4:ce:
c9:22:88:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO2MMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTEzMDczMTQyWhcNMjQxMTMwMDczMTQyWjAYMRYw
FAYDVQQDEw02NmUzZWE2MS02YmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArThAxJ4lUPwaepNCcLdv5pOPL1AuPWiXgNauf/pwhJNWKHJThiDlDfJL
ZlRjX6YP8perZdPUZYUxpf4iPiCTBB6u/4KkUwaFCCvrxhM9rSxjUVdBK5PgEEPa
e+++P/q2MaRkVEGZNdNETn7a8TPSrqr9aomAT9O1t+ljDC1dYJltOLkTq8bVUkGf
Xpvk4V1LeIvNRdSOotpEa8b7K3FLlY3vDe2TRu+7ehjZGmIKRgnEaqRTUlZIUVfz
94+dgU39Pybt0E3hkC4T7VRZfq0x1TUu8IGdLr5J3ggNFM6Zx3rF54JHhuL2knpn
MvJyXcaMX/dGnmbKFlfoXS/jovcgAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDNu
LG0vhdaa4/RAX2f5pCD3DqhkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zQTgzOEVFQTcxQTIxMUVGODBFMTZDNzA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlwQMA0GCSqGSIb3DQEB
CwUAA4IBAQDMuR+l4n8hpiIIfRx+k9foH5vHKMZ0pHm202T6WnhO82lP90ZgoiH4
deT+iY/5wxsSkSRogRu4ig23cKjBe4/UjzthObhFZSjIphAH8xSIVPaoXwTeBrYl
ZQjM4zZgTzcxf1A89i/R/Ay8NOn0DHbLTOVF+yj3laAjd9teU4L7wqtMq5hHF10S
DLf4eIwYoyAAZYGU7uwwyoz8cHIFj3YkhaBt+m+CiOR9UiE8C2UUzz0GJ+9hY1O8
GzJ4wKbycklFkFlK5N3ux4QbhupPt7MZeQfSY5vcgVaak4AvAvTTkn2LTc9ulw/o
DMtTzjbhgAlsUZrMGzIg3HkapM7JIohd
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:01 2024 by rpki-client on console-ams.rpki-client.org