Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE06D20911B11EF8A36BE9B762E951A.roa
File: 3FE06D20911B11EF8A36BE9B762E951A.roa (raw, json)
Hash identifier: jAL7q83xWrQwB74Z/39J9U7YN4qK6LYBIfl2YyfkLk0=
Subject key identifier: 31:60:2E:6E:B8:B9:BF:47:FF:C2:98:F6:AD:9B:21:5D:64:29:B5:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE06D20911B11EF8A36BE9B762E951A.roa
Signing time: Wed 23 Oct 2024 08:46:09 +0000
ROA not before: Wed 23 Oct 2024 08:46:06 +0000
ROA not after: Mon 25 Nov 2024 08:46:06 +0000
asID: 135983
IP address blocks: 154.200.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65752 (0x100d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 08:46:06 2024 GMT
Not After : Nov 25 08:46:06 2024 GMT
Subject: CN=6718b7d1-a26d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f0:dc:d6:60:61:af:e6:3e:a2:4f:ba:f1:7e:
57:c3:d6:86:83:9c:09:86:9d:8f:17:c4:d7:c1:19:
57:94:ec:d5:6a:34:ac:22:e5:7b:b9:0a:f4:ac:69:
33:31:df:e9:0c:33:90:e4:e0:8d:c0:f9:50:97:55:
12:df:fe:45:02:b7:ec:19:a3:c5:90:ed:0f:e5:ca:
39:6e:f7:ca:a7:73:2d:f6:e5:f3:45:e7:33:8f:7a:
9e:0c:50:bc:3d:d5:74:8b:d9:3d:f9:c6:68:37:c6:
bf:40:44:50:4f:01:17:aa:60:62:89:5f:92:96:95:
65:94:cf:14:bc:77:15:ac:51:17:c5:d5:49:d6:3b:
7c:ea:42:e7:a0:a8:87:66:fd:80:64:73:ad:24:a2:
a9:6c:e6:98:14:b5:52:fc:08:16:42:71:27:eb:d7:
76:ba:57:8b:7b:2a:f1:b6:d1:4f:98:54:27:c7:b2:
9c:ec:1e:13:8c:41:a7:31:a2:d2:72:9a:ed:d6:99:
f0:b8:f0:6c:e3:58:f1:e7:da:c0:97:78:bb:1c:fa:
90:ae:05:70:c5:d9:6e:29:db:50:14:e7:b1:76:d8:
bf:93:dc:41:6a:01:50:db:ad:d2:8d:74:80:28:8b:
e7:fa:f4:77:df:11:71:46:06:e5:d3:62:69:0f:c9:
da:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:60:2E:6E:B8:B9:BF:47:FF:C2:98:F6:AD:9B:21:5D:64:29:B5:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE06D20911B11EF8A36BE9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.35.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:25:96:19:fd:ef:d1:cc:88:63:3d:83:06:ea:c9:bb:67:97:
65:6e:c2:dd:70:69:6c:65:c6:98:56:5b:fb:ba:19:f6:08:4b:
1d:48:67:63:3e:78:6c:b7:9a:a0:0b:81:34:d8:61:00:9c:e4:
ab:d0:e7:07:eb:e3:f7:21:32:0a:4d:08:be:c4:a9:59:cb:4d:
8e:30:a8:5a:2f:a2:07:5b:1e:39:77:aa:9e:ac:c4:9d:d9:be:
e5:e2:2a:df:a3:2e:7b:29:05:53:89:28:ee:8b:d3:d4:e4:d0:
d0:9c:36:04:6f:f9:ef:cb:60:bc:f3:6a:44:7d:fe:8c:d3:75:
98:46:93:a8:18:64:6e:b3:d3:88:ec:d7:b6:ba:f4:4e:29:01:
2c:f8:d8:5b:fb:66:ad:c7:fd:86:f0:0d:2e:fd:58:47:ab:4e:
32:18:27:b3:38:6d:b8:79:9a:68:b7:79:b1:8d:ad:e2:74:d7:
1b:df:1f:a7:6e:72:67:72:a7:6a:ea:d4:bd:bb:b3:c5:95:f9:
56:7a:82:ac:76:c8:e2:63:96:01:90:ff:4a:b3:63:f7:63:d6:
1c:6a:5c:eb:27:01:2f:8b:d5:54:e8:9b:86:a0:06:a1:cd:c9:
81:98:38:cc:e7:b0:1f:51:46:10:10:cb:ba:b9:9d:e7:0a:ab:
82:6a:5c:35
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQDYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIzMDg0NjA2WhcNMjQxMTI1MDg0NjA2WjAYMRYw
FAYDVQQDEw02NzE4YjdkMS1hMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7PDc1mBhr+Y+ok+68X5Xw9aGg5wJhp2PF8TXwRlXlOzVajSsIuV7uQr0
rGkzMd/pDDOQ5OCNwPlQl1US3/5FArfsGaPFkO0P5co5bvfKp3Mt9uXzReczj3qe
DFC8PdV0i9k9+cZoN8a/QERQTwEXqmBiiV+SlpVllM8UvHcVrFEXxdVJ1jt86kLn
oKiHZv2AZHOtJKKpbOaYFLVS/AgWQnEn69d2uleLeyrxttFPmFQnx7Kc7B4TjEGn
MaLScprt1pnwuPBs41jx59rAl3i7HPqQrgVwxdluKdtQFOexdti/k9xBagFQ263S
jXSAKIvn+vR33xFxRgbl02JpD8naCwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDFg
Lm64ub9H/8KY9q2bIV1kKbUKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zRkUwNkQyMDkxMUIxMUVGOEEzNkJFOUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsgjMA0GCSqGSIb3DQEB
CwUAA4IBAQC8JZYZ/e/RzIhjPYMG6sm7Z5dlbsLdcGlsZcaYVlv7uhn2CEsdSGdj
Pnhst5qgC4E02GEAnOSr0OcH6+P3ITIKTQi+xKlZy02OMKhaL6IHWx45d6qerMSd
2b7l4irfoy57KQVTiSjui9PU5NDQnDYEb/nvy2C882pEff6M03WYRpOoGGRus9OI
7Ne2uvROKQEs+Nhb+2atx/2G8A0u/VhHq04yGCezOG24eZpot3mxja3idNcb3x+n
bnJncqdq6tS9u7PFlflWeoKsdsjiY5YBkP9Ks2P3Y9YcalzrJwEvi9VU6JuGoAah
zcmBmDjM57AfUUYQEMu6uZ3nCquCalw1
-----END CERTIFICATE-----
Generated at Fri Nov 22 16:47:46 2024 by rpki-client on console-ams.rpki-client.org