Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D5F9D9CA33A11EFA253667F762E951A.roa
File: 3D5F9D9CA33A11EFA253667F762E951A.roa (raw, json)
Hash identifier: thszQakIX64oyWl2voo/tXUrkcTi9mIOuEXn4a+k0UI=
Subject key identifier: 09:9C:20:7E:13:51:CE:9E:D1:47:31:D5:33:10:B7:41:EA:72:AD:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D5F9D9CA33A11EFA253667F762E951A.roa
Signing time: Fri 15 Nov 2024 10:13:20 +0000
ROA not before: Fri 15 Nov 2024 10:13:17 +0000
ROA not after: Mon 25 Nov 2024 10:13:17 +0000
asID: 5065
IP address blocks: 154.207.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69012 (0x10d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 10:13:17 2024 GMT
Not After : Nov 25 10:13:17 2024 GMT
Subject: CN=67371ec0-1f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9e:c0:39:9e:65:0c:53:67:a4:37:96:16:a3:
55:0a:9d:09:13:c8:3e:40:25:ea:a6:20:51:e1:0e:
11:87:93:4a:32:ef:56:37:18:f1:ea:2d:03:63:40:
f5:f0:86:9f:98:1d:29:b3:95:75:90:c0:e9:17:87:
cc:91:01:b2:7f:ea:45:99:5a:b4:c3:60:65:24:fb:
40:e3:e8:5e:18:69:cb:6b:c1:ee:da:1e:c2:a2:7e:
b5:ee:84:ca:8c:b7:4d:a7:56:2d:09:a4:7b:96:f3:
90:3e:74:a0:99:fd:d3:c6:c5:ad:2a:3f:4d:ae:73:
24:6a:57:34:89:96:ea:d2:e8:7b:de:f4:06:ba:f3:
b4:1a:9d:0e:64:ae:54:85:8c:78:a0:00:ba:62:63:
ac:7e:fc:f9:48:25:3a:89:a1:9c:1e:c3:2c:78:6b:
5f:0f:3b:9d:b7:3c:77:a8:ef:7e:59:21:52:42:68:
30:3a:63:1e:20:cf:91:68:82:a9:62:08:a6:12:33:
f6:bc:27:0b:01:58:3b:63:bb:f8:4b:34:b9:4f:d8:
79:9e:87:9f:3d:28:90:9f:d8:54:fe:ff:85:45:b1:
91:f4:31:d3:13:1d:80:72:f5:42:04:4e:ed:2e:dc:
2b:8c:0d:82:80:9f:ce:f7:d1:3c:51:fc:27:af:a6:
47:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:9C:20:7E:13:51:CE:9E:D1:47:31:D5:33:10:B7:41:EA:72:AD:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3D5F9D9CA33A11EFA253667F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.164.0/22
Signature Algorithm: sha256WithRSAEncryption
14:f7:f6:cc:9a:84:11:92:b8:c5:a4:28:bf:0d:2a:b1:18:34:
16:d4:98:2d:d4:d2:62:97:df:00:38:43:f4:58:22:8d:2d:cd:
e3:92:62:d0:90:50:29:a7:19:05:28:2c:a3:21:97:bb:37:c8:
26:58:92:ed:0e:02:fe:71:17:37:c0:ea:7a:61:3f:f2:96:a8:
ba:88:4f:d8:ee:ea:f4:53:e8:1c:25:c4:f6:2e:e6:ae:fb:35:
72:aa:c7:72:b6:b6:97:fb:15:dc:f6:96:c9:ce:66:7f:f7:b1:
e9:1d:bb:9a:aa:9b:95:54:04:37:4c:41:21:9a:2e:b0:29:cc:
17:13:cb:0c:67:f9:f8:32:79:d2:40:44:6c:9a:ab:82:42:06:
63:a5:61:52:6b:40:91:8a:f8:f6:28:be:2a:a3:d1:3b:eb:7f:
b3:aa:fb:60:ca:9f:85:4a:9c:92:dd:5c:49:60:52:73:4d:cf:
7c:9b:a9:1f:c7:17:52:4d:c4:66:15:e0:2a:2e:00:7b:93:08:
bc:4a:3f:e8:18:29:2a:06:bf:40:04:88:c7:35:d8:9b:a9:5f:
66:ef:4c:88:9e:19:07:29:00:b4:28:6f:fa:fc:5f:af:95:32:
23:52:84:d3:f5:5b:7c:a3:2b:a3:a4:52:00:e0:93:bf:e0:cf:
b5:37:e6:4e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ2UMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE1MTAxMzE3WhcNMjQxMTI1MTAxMzE3WjAYMRYw
FAYDVQQDEw02NzM3MWVjMC0xZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvp7AOZ5lDFNnpDeWFqNVCp0JE8g+QCXqpiBR4Q4Rh5NKMu9WNxjx6i0D
Y0D18IafmB0ps5V1kMDpF4fMkQGyf+pFmVq0w2BlJPtA4+heGGnLa8Hu2h7Con61
7oTKjLdNp1YtCaR7lvOQPnSgmf3TxsWtKj9NrnMkalc0iZbq0uh73vQGuvO0Gp0O
ZK5UhYx4oAC6YmOsfvz5SCU6iaGcHsMseGtfDzudtzx3qO9+WSFSQmgwOmMeIM+R
aIKpYgimEjP2vCcLAVg7Y7v4SzS5T9h5noefPSiQn9hU/v+FRbGR9DHTEx2AcvVC
BE7tLtwrjA2CgJ/O99E8Ufwnr6ZH1QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAmc
IH4TUc6e0Ucx1TMQt0Hqcq2yMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zRDVGOUQ5Q0EzM0ExMUVGQTI1MzY2N0Y3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms+kMA0GCSqGSIb3DQEB
CwUAA4IBAQAU9/bMmoQRkrjFpCi/DSqxGDQW1Jgt1NJil98AOEP0WCKNLc3jkmLQ
kFAppxkFKCyjIZe7N8gmWJLtDgL+cRc3wOp6YT/ylqi6iE/Y7ur0U+gcJcT2Luau
+zVyqsdytraX+xXc9pbJzmZ/97HpHbuaqpuVVAQ3TEEhmi6wKcwXE8sMZ/n4MnnS
QERsmquCQgZjpWFSa0CRivj2KL4qo9E763+zqvtgyp+FSpyS3VxJYFJzTc98m6kf
xxdSTcRmFeAqLgB7kwi8Sj/oGCkqBr9ABIjHNdibqV9m70yInhkHKQC0KG/6/F+v
lTIjUoTT9Vt8oyujpFIA4JO/4M+1N+ZO
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:36 2024 by rpki-client on console-ams.rpki-client.org