Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3B2D889AA811EFAFC7D24F762E951A.roa
File: 3F3B2D889AA811EFAFC7D24F762E951A.roa (raw, json)
Hash identifier: fTeMihRNCVyRotJEw5o/ZzoX1egcUMDIIDI2qFy/q9E=
Subject key identifier: 73:93:AA:92:57:9E:6C:A7:BC:9F:67:7A:BD:0B:A6:AA:E6:0D:8E:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0106A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3B2D889AA811EFAFC7D24F762E951A.roa
Signing time: Mon 04 Nov 2024 12:28:08 +0000
ROA not before: Mon 04 Nov 2024 12:28:04 +0000
ROA not after: Mon 09 Dec 2024 12:28:04 +0000
asID: 54801
IP address blocks: 154.214.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67236 (0x106a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 12:28:04 2024 GMT
Not After : Dec 9 12:28:04 2024 GMT
Subject: CN=6728bdd8-e9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:05:82:25:b8:e5:2d:a3:82:f5:45:3c:12:8e:
32:1a:0a:e2:e9:19:71:3b:fc:4f:38:38:c9:14:70:
27:20:80:02:cd:bf:22:e8:97:7c:99:be:a6:8d:7c:
60:b3:6c:1a:6c:fc:7e:27:70:44:21:cd:c1:ed:d1:
bd:72:0d:01:01:c5:d6:fd:5a:a6:02:d7:e3:0b:30:
ef:11:73:73:68:a1:13:1e:8a:92:2c:d2:ee:ef:50:
80:7b:07:71:fb:1c:32:3a:07:da:bf:80:d6:16:10:
e9:45:7a:b3:b8:ec:e9:8f:1d:b0:ff:57:89:5c:57:
d1:c7:9a:3e:21:3d:46:52:20:ba:47:90:2a:d7:c7:
a5:ef:32:01:b4:4c:d0:da:95:69:c7:1b:ca:7d:c7:
08:a9:1d:5e:da:dc:76:bb:82:7b:fe:a2:a3:88:1f:
16:53:eb:94:b8:82:78:63:14:bc:82:d1:42:25:ca:
1b:65:29:94:f5:ab:13:4d:84:7c:de:3a:f4:c1:94:
82:07:e7:7b:be:c5:ff:2f:ec:62:e6:fb:e3:05:fc:
50:f1:2a:d7:3c:3f:be:f4:bb:e7:0d:2b:3d:fe:8c:
19:27:b1:37:82:14:a5:d1:a1:d9:b7:8a:03:57:62:
76:6f:c4:71:73:ab:49:43:eb:7f:e8:44:8b:a6:51:
bf:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:93:AA:92:57:9E:6C:A7:BC:9F:67:7A:BD:0B:A6:AA:E6:0D:8E:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F3B2D889AA811EFAFC7D24F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.32.0/19
Signature Algorithm: sha256WithRSAEncryption
89:94:e8:67:86:93:3d:21:83:70:12:17:80:07:54:d5:db:ec:
7c:b5:cd:ae:cf:9c:ea:44:90:06:01:2b:2c:50:7c:9d:c2:e5:
f3:a9:96:b8:df:00:c2:8a:33:41:29:a1:e6:a9:cb:e7:50:63:
f4:0c:5f:2f:27:03:3d:43:6b:ae:65:25:6c:81:2a:99:3b:5d:
a0:24:d6:5d:ae:52:6c:c9:d6:da:e4:00:c9:c4:d1:fa:8d:cd:
48:2d:42:81:e3:3f:ea:a6:1a:2f:5b:0c:2a:54:29:3a:3e:74:
0b:a9:e0:e7:64:16:5c:a4:4c:dc:1f:f2:91:35:f2:23:4d:85:
fa:0e:fb:0c:a6:4b:27:4c:bd:ef:16:02:c8:12:86:69:d0:b3:
63:e1:4e:78:b6:61:70:72:63:7b:57:f9:d9:40:18:34:9e:18:
0e:58:cd:d6:2f:a1:05:1c:d0:14:d7:59:f1:16:e4:44:fb:a5:
e2:df:92:83:de:88:a0:e7:fb:be:44:b8:3d:08:c2:53:d3:2c:
92:be:97:e1:e8:51:58:a3:40:3d:a5:67:21:8a:19:aa:a0:0e:
7a:c3:26:43:94:0e:25:a3:f3:aa:34:5f:58:51:c6:a7:53:23:
63:2a:4f:6d:01:22:a4:40:16:a3:42:ee:78:bc:e2:eb:97:a6:
bd:94:cb:1c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQakMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA0MTIyODA0WhcNMjQxMjA5MTIyODA0WjAYMRYw
FAYDVQQDEw02NzI4YmRkOC1lOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtwWCJbjlLaOC9UU8Eo4yGgri6RlxO/xPODjJFHAnIIACzb8i6Jd8mb6m
jXxgs2wabPx+J3BEIc3B7dG9cg0BAcXW/VqmAtfjCzDvEXNzaKETHoqSLNLu71CA
ewdx+xwyOgfav4DWFhDpRXqzuOzpjx2w/1eJXFfRx5o+IT1GUiC6R5Aq18el7zIB
tEzQ2pVpxxvKfccIqR1e2tx2u4J7/qKjiB8WU+uUuIJ4YxS8gtFCJcobZSmU9asT
TYR83jr0wZSCB+d7vsX/L+xi5vvjBfxQ8SrXPD++9LvnDSs9/owZJ7E3ghSl0aHZ
t4oDV2J2b8Rxc6tJQ+t/6ESLplG/AQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHOT
qpJXnmynvJ9ner0LpqrmDY4PMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zRjNCMkQ4ODlBQTgxMUVGQUZDN0QyNEY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmtYgMA0GCSqGSIb3DQEB
CwUAA4IBAQCJlOhnhpM9IYNwEheAB1TV2+x8tc2uz5zqRJAGASssUHydwuXzqZa4
3wDCijNBKaHmqcvnUGP0DF8vJwM9Q2uuZSVsgSqZO12gJNZdrlJsydba5ADJxNH6
jc1ILUKB4z/qphovWwwqVCk6PnQLqeDnZBZcpEzcH/KRNfIjTYX6DvsMpksnTL3v
FgLIEoZp0LNj4U54tmFwcmN7V/nZQBg0nhgOWM3WL6EFHNAU11nxFuRE+6Xi35KD
3oig5/u+RLg9CMJT0yySvpfh6FFYo0A9pWchihmqoA56wyZDlA4lo/OqNF9YUcan
UyNjKk9tASKkQBajQu54vOLrl6a9lMsc
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:01 2024 by rpki-client on console-ams.rpki-client.org