Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA6D9129A9311EF8F6A384E762E951A.roa
File: 3FA6D9129A9311EF8F6A384E762E951A.roa (raw, json)
Hash identifier: EZwAvYG4IoRO3JkjO/PIKD2TEU9669ZV1yXzOAB1HPk=
Subject key identifier: 31:84:3A:32:5B:A1:3F:ED:3A:22:4C:A9:62:BD:F6:3E:32:1B:B6:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010684
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA6D9129A9311EF8F6A384E762E951A.roa
Signing time: Mon 04 Nov 2024 09:57:49 +0000
ROA not before: Mon 04 Nov 2024 09:57:45 +0000
ROA not after: Mon 25 Nov 2024 09:57:45 +0000
asID: 44559
IP address blocks: 154.211.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67204 (0x10684)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 09:57:45 2024 GMT
Not After : Nov 25 09:57:45 2024 GMT
Subject: CN=67289a9d-8afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:53:86:50:a6:9b:81:a5:fb:3c:b1:ba:c3:13:
69:40:04:26:c1:00:cd:3c:9d:ab:4d:c3:6b:da:82:
62:5d:6c:89:bf:b4:aa:0a:e4:a3:95:77:d4:00:82:
98:76:60:40:4c:3d:72:a6:5a:db:1a:1d:c5:a3:2e:
1d:f9:82:2e:e8:c2:59:14:8a:d3:15:60:f9:6c:7a:
ae:48:eb:3f:ad:38:53:64:df:18:37:f0:2a:f7:60:
da:99:dc:36:a2:db:5f:9f:f9:ba:84:af:57:f0:5a:
7f:8d:44:8c:50:6c:f7:49:be:c1:16:da:cb:18:38:
63:00:77:8b:e4:a7:ef:eb:dd:61:83:17:26:58:c5:
82:4b:98:21:a7:9a:45:1d:94:53:cd:7a:6d:2f:ab:
71:06:2d:c1:64:0d:35:6a:95:45:09:d2:f2:bd:5f:
22:1a:08:c4:2f:b1:b0:e9:cb:fe:d0:1b:ee:ba:fb:
f6:3a:0d:00:b3:af:9e:35:89:78:2c:93:fc:50:80:
07:8d:92:74:1a:f5:ff:fd:bd:31:f1:7d:4e:a2:a6:
3a:9a:e0:8a:b7:d7:ea:41:46:15:6f:c8:a9:9c:65:
fa:4d:6b:f0:01:9a:95:34:94:6d:b6:fa:9d:f2:8d:
90:77:89:39:4d:8e:18:a1:c4:30:a3:2e:78:e8:91:
43:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:84:3A:32:5B:A1:3F:ED:3A:22:4C:A9:62:BD:F6:3E:32:1B:B6:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA6D9129A9311EF8F6A384E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.47.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e6:50:aa:70:e5:d5:2c:90:c6:56:de:c0:2a:1d:50:4f:5d:
30:22:9d:2b:fe:85:7d:68:38:40:43:ef:48:f7:55:d4:08:00:
75:af:f9:7d:b4:4d:1e:f2:83:38:dd:6e:a0:fb:47:e7:9f:c3:
70:b1:54:7a:23:77:c5:98:79:fd:c1:22:b7:bc:de:dc:3f:1c:
50:3c:bf:0d:6c:88:3a:53:e7:50:dd:f9:54:76:bf:14:b9:0a:
01:a1:6e:4d:e0:0e:9a:4b:88:40:65:16:5b:50:69:ab:48:3e:
06:64:cd:b4:15:97:53:4c:5a:be:e1:7f:0f:eb:28:3b:e2:3a:
0d:53:56:8b:cd:1a:37:2b:a0:2c:b3:15:8e:43:6c:fb:bb:2d:
87:a1:22:a1:fc:4f:34:85:f1:3f:74:be:e4:92:52:b3:c3:7f:
11:e4:d8:8c:0a:4b:92:54:68:f2:2d:cb:a7:3c:a7:4b:5b:af:
61:43:a4:5b:4c:0c:cf:75:f4:6d:da:3b:60:6f:23:b7:93:02:
22:22:03:11:ec:c9:aa:0a:0d:86:b2:98:8d:c0:e7:b4:91:1f:
e8:0a:2e:5f:72:5b:2d:49:68:44:80:0c:f4:53:58:99:90:6c:
3c:d8:43:54:1e:9f:88:ab:ad:86:a9:70:2e:74:df:01:e7:cd:
5c:06:a8:76
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQaEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA0MDk1NzQ1WhcNMjQxMTI1MDk1NzQ1WjAYMRYw
FAYDVQQDEw02NzI4OWE5ZC04YWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuFOGUKabgaX7PLG6wxNpQAQmwQDNPJ2rTcNr2oJiXWyJv7SqCuSjlXfU
AIKYdmBATD1yplrbGh3Foy4d+YIu6MJZFIrTFWD5bHquSOs/rThTZN8YN/Aq92Da
mdw2ottfn/m6hK9X8Fp/jUSMUGz3Sb7BFtrLGDhjAHeL5Kfv691hgxcmWMWCS5gh
p5pFHZRTzXptL6txBi3BZA01apVFCdLyvV8iGgjEL7Gw6cv+0Bvuuvv2Og0As6+e
NYl4LJP8UIAHjZJ0GvX//b0x8X1OoqY6muCKt9fqQUYVb8ipnGX6TWvwAZqVNJRt
tvqd8o2Qd4k5TY4YocQwoy546JFDfwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDGE
OjJboT/tOiJMqWK99j4yG7ZiMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zRkE2RDkxMjlBOTMxMUVGOEY2QTM4NEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtMvMA0GCSqGSIb3DQEB
CwUAA4IBAQCb5lCqcOXVLJDGVt7AKh1QT10wIp0r/oV9aDhAQ+9I91XUCAB1r/l9
tE0e8oM43W6g+0fnn8NwsVR6I3fFmHn9wSK3vN7cPxxQPL8NbIg6U+dQ3flUdr8U
uQoBoW5N4A6aS4hAZRZbUGmrSD4GZM20FZdTTFq+4X8P6yg74joNU1aLzRo3K6As
sxWOQ2z7uy2HoSKh/E80hfE/dL7kklKzw38R5NiMCkuSVGjyLcunPKdLW69hQ6Rb
TAzPdfRt2jtgbyO3kwIiIgMR7MmqCg2GspiNwOe0kR/oCi5fclstSWhEgAz0U1iZ
kGw82ENUHp+Iq62GqXAudN8B581cBqh2
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:01 2024 by rpki-client on console-ams.rpki-client.org