Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/477034C4911D11EF990261A8762E951A.roa
File: 477034C4911D11EF990261A8762E951A.roa (raw, json)
Hash identifier: 9L9l/TXDvkt4YnVGc2R4xcmd0OEtl0bkkXseFWQ7ZS0=
Subject key identifier: 31:82:E7:22:77:97:EE:E1:49:45:0A:D2:D3:51:05:F4:63:04:EC:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0100DA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/477034C4911D11EF990261A8762E951A.roa
Signing time: Wed 23 Oct 2024 09:00:41 +0000
ROA not before: Wed 23 Oct 2024 09:00:37 +0000
ROA not after: Mon 25 Nov 2024 09:00:37 +0000
asID: 135983
IP address blocks: 154.200.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65754 (0x100da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:00:37 2024 GMT
Not After : Nov 25 09:00:37 2024 GMT
Subject: CN=6718bb39-bce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:45:6f:2f:55:2e:03:b1:d0:a6:0e:1b:fc:40:
87:08:c9:af:ae:f9:21:d2:95:45:39:9c:f5:66:cb:
fa:57:e4:50:f3:cd:f1:ed:af:b5:f3:ab:58:1f:6d:
a7:57:27:c3:32:50:da:61:3c:6a:a9:ce:ea:11:79:
f6:1f:0f:f3:fb:99:90:1f:6c:cb:bf:79:6c:a2:3b:
79:a3:6e:4b:d6:f2:1b:20:f3:ad:07:45:ba:f7:d8:
20:79:42:ca:f8:dc:a1:6f:be:df:ee:1f:f1:09:94:
6a:05:0d:90:b2:24:e9:35:28:53:c0:ef:89:95:71:
af:fa:f1:27:be:45:be:bb:12:e9:6b:cc:c9:65:89:
37:b9:02:98:6f:73:2a:18:a1:5a:b1:44:4b:fc:71:
59:44:60:cb:86:4e:ca:41:d3:70:0e:45:f0:f3:8b:
eb:cd:c3:00:32:e9:ee:ff:4f:fc:55:12:79:a3:34:
af:52:a6:1f:4f:78:92:45:bd:4f:fb:2c:38:f5:a9:
03:36:6a:51:12:b1:07:86:e9:66:4a:26:c4:d3:fd:
91:a1:3f:55:d9:e8:24:d7:c8:80:4b:45:f2:d9:2f:
e4:b0:12:f7:ea:07:1d:c2:f0:a8:a6:74:57:63:c4:
39:b1:c7:2b:19:23:b5:5b:2a:e9:ae:d5:c4:96:cb:
75:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:82:E7:22:77:97:EE:E1:49:45:0A:D2:D3:51:05:F4:63:04:EC:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/477034C4911D11EF990261A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.36.0/24
Signature Algorithm: sha256WithRSAEncryption
24:27:0e:d1:f8:e5:8e:a0:28:f8:ee:df:ba:65:b0:cd:2f:64:
95:69:66:79:bc:c0:a0:29:09:b9:70:af:1c:3d:33:ca:d5:a4:
04:41:8e:d5:4e:9a:de:68:2d:10:99:95:fd:07:7c:2c:86:fe:
03:7e:96:05:6f:ff:3d:52:ca:60:45:69:00:b7:b3:ca:74:d0:
83:02:d9:3d:f3:5c:8f:04:81:64:54:73:d1:12:ca:01:fc:f3:
a7:9e:86:84:42:cb:42:56:bf:cc:02:78:25:e9:bc:f2:a9:05:
da:31:da:b5:3e:77:a5:d4:10:44:44:ac:5e:37:5c:05:8f:b2:
e0:bd:6c:1d:d3:ba:07:6b:45:eb:90:05:7a:8d:18:3a:47:c3:
eb:4b:cc:79:8b:f2:81:43:41:f2:7a:bf:8b:da:da:4e:d7:47:
be:15:4b:48:b7:dd:e3:76:fc:1e:2b:08:43:7c:a5:00:40:bc:
d0:94:1e:37:16:56:b8:db:06:48:00:28:87:a3:00:1a:2b:27:
f9:72:d8:da:08:26:82:3d:b3:e1:c5:8c:02:d0:76:38:e6:30:
a3:e5:a8:23:65:28:cc:59:7b:63:09:1e:59:da:30:09:c2:2f:
4e:a4:14:54:9e:8d:f0:c7:74:c1:0e:fa:be:7b:f4:36:97:d8:
e7:53:74:25
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQDaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIzMDkwMDM3WhcNMjQxMTI1MDkwMDM3WjAYMRYw
FAYDVQQDEw02NzE4YmIzOS1iY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3UVvL1UuA7HQpg4b/ECHCMmvrvkh0pVFOZz1Zsv6V+RQ883x7a+186tY
H22nVyfDMlDaYTxqqc7qEXn2Hw/z+5mQH2zLv3lsojt5o25L1vIbIPOtB0W699gg
eULK+Nyhb77f7h/xCZRqBQ2QsiTpNShTwO+JlXGv+vEnvkW+uxLpa8zJZYk3uQKY
b3MqGKFasURL/HFZRGDLhk7KQdNwDkXw84vrzcMAMunu/0/8VRJ5ozSvUqYfT3iS
Rb1P+yw49akDNmpRErEHhulmSibE0/2RoT9V2egk18iAS0Xy2S/ksBL36gcdwvCo
pnRXY8Q5sccrGSO1WyrprtXElst1MwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDGC
5yJ3l+7hSUUK0tNRBfRjBOxOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NzcwMzRDNDkxMUQxMUVGOTkwMjYxQTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsgkMA0GCSqGSIb3DQEB
CwUAA4IBAQAkJw7R+OWOoCj47t+6ZbDNL2SVaWZ5vMCgKQm5cK8cPTPK1aQEQY7V
TpreaC0QmZX9B3wshv4DfpYFb/89UspgRWkAt7PKdNCDAtk981yPBIFkVHPREsoB
/POnnoaEQstCVr/MAngl6bzyqQXaMdq1Pnel1BBERKxeN1wFj7LgvWwd07oHa0Xr
kAV6jRg6R8PrS8x5i/KBQ0Hyer+L2tpO10e+FUtIt93jdvweKwhDfKUAQLzQlB43
Fla42wZIACiHowAaKyf5ctjaCCaCPbPhxYwC0HY45jCj5agjZSjMWXtjCR5Z2jAJ
wi9OpBRUno3wx3TBDvq+e/Q2l9jnU3Ql
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:54:20 2024 by rpki-client on console-fra.rpki-client.org