Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A01E41E9EAE11EFBF75C0A6762E951A.roa
File: 4A01E41E9EAE11EFBF75C0A6762E951A.roa (raw, json)
Hash identifier: mpnxb42MVRu/3I74Qozjdi9anVNA29u7phFT0FE7dWE=
Subject key identifier: 6D:55:BE:ED:BC:25:E4:6D:2E:00:BB:99:C9:7E:E1:65:CA:7D:5A:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010A1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A01E41E9EAE11EFBF75C0A6762E951A.roa
Signing time: Sat 09 Nov 2024 15:21:27 +0000
ROA not before: Sat 09 Nov 2024 15:21:24 +0000
ROA not after: Tue 10 Dec 2024 15:21:24 +0000
asID: 272854
IP address blocks: 154.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68123 (0x10a1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 9 15:21:24 2024 GMT
Not After : Dec 10 15:21:24 2024 GMT
Subject: CN=672f7df7-b7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b9:36:fe:59:79:6a:c6:7c:2a:f3:76:dd:26:
e9:02:6e:f5:38:1f:ad:12:bc:bb:38:97:49:ec:f8:
f6:4d:01:fd:a1:12:1b:de:70:16:02:20:a8:d3:76:
c4:d6:5f:08:87:f6:e3:52:98:83:a9:f7:39:e3:8c:
43:42:13:81:62:58:47:5b:62:7f:8e:d4:72:45:63:
50:c9:a6:89:3c:3d:81:0d:cb:cd:51:5d:2b:f8:4e:
ef:d6:9f:c8:60:ae:df:34:f6:a5:5e:e9:6f:4d:6f:
1a:22:cd:76:75:05:f9:25:46:76:d0:8f:2a:6e:f0:
c9:7c:fb:60:c5:d8:53:1e:14:cd:49:58:85:33:42:
37:2b:80:93:e1:0b:34:3e:c1:ca:96:06:28:d3:e9:
64:88:95:3a:08:cd:6d:82:02:17:5b:e5:eb:e3:49:
f4:42:50:d5:65:9a:32:bb:37:a7:8e:2b:d3:a2:77:
d5:7a:40:c5:14:a9:8e:72:63:f2:97:f9:cb:82:90:
f4:e8:86:3e:d9:f8:10:9e:5a:8c:6c:06:02:b0:e0:
70:6e:46:5f:a3:f9:55:ff:56:5f:1e:cb:85:a1:1d:
c2:ff:b0:0e:41:22:d6:30:d6:5f:54:48:af:c8:85:
ce:27:11:2e:04:db:f3:d7:c2:93:02:0f:07:d6:58:
09:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:55:BE:ED:BC:25:E4:6D:2E:00:BB:99:C9:7E:E1:65:CA:7D:5A:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A01E41E9EAE11EFBF75C0A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.14.0/24
Signature Algorithm: sha256WithRSAEncryption
02:d4:97:5b:22:d2:76:de:75:03:91:17:de:0b:57:62:4d:9b:
5f:bc:84:8b:13:16:2e:ed:85:89:c8:b2:c1:0f:ef:f2:d6:f2:
68:67:ae:57:d1:93:30:db:c4:a9:3e:f6:e2:8b:a9:84:c6:a6:
8d:cc:4b:3b:04:04:64:ac:21:de:ee:ed:0a:eb:9e:c1:72:82:
df:6e:ba:a8:64:a4:ee:87:14:98:93:cf:ed:14:4c:81:66:b0:
7b:d0:b7:60:01:79:ef:9b:fd:5c:35:a3:b6:d0:3a:fc:ba:b2:
cf:8d:ad:77:85:20:73:b5:77:8a:94:12:9e:69:98:b4:b5:ee:
cb:6b:9a:57:d5:61:39:4e:08:bc:7d:41:8f:3f:3b:69:d6:02:
fd:91:f5:4d:ec:f6:ae:aa:43:f4:3c:94:3a:30:17:55:18:e4:
78:67:c9:8f:63:70:d2:9d:8f:1e:33:99:be:c9:8a:8f:da:9f:
65:b3:c2:6a:f8:28:0d:cf:22:ee:03:64:b9:be:bd:c8:eb:61:
61:cb:50:50:db:86:7a:b4:e5:c9:cb:a6:61:b7:e4:0e:65:8c:
eb:90:11:55:ed:17:3c:4f:7f:e0:67:5a:ad:2d:56:05:ce:09:
3c:54:b6:22:0b:cb:8b:cc:6c:50:b4:c3:56:b0:52:cd:b3:c9:
8d:0e:41:d0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQobMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA5MTUyMTI0WhcNMjQxMjEwMTUyMTI0WjAYMRYw
FAYDVQQDEw02NzJmN2RmNy1iN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA37k2/ll5asZ8KvN23SbpAm71OB+tEry7OJdJ7Pj2TQH9oRIb3nAWAiCo
03bE1l8Ih/bjUpiDqfc544xDQhOBYlhHW2J/jtRyRWNQyaaJPD2BDcvNUV0r+E7v
1p/IYK7fNPalXulvTW8aIs12dQX5JUZ20I8qbvDJfPtgxdhTHhTNSViFM0I3K4CT
4Qs0PsHKlgYo0+lkiJU6CM1tggIXW+Xr40n0QlDVZZoyuzenjivTonfVekDFFKmO
cmPyl/nLgpD06IY+2fgQnlqMbAYCsOBwbkZfo/lV/1ZfHsuFoR3C/7AOQSLWMNZf
VEivyIXOJxEuBNvz18KTAg8H1lgJ8wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG1V
vu28JeRtLgC7mcl+4WXKfVqdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80QTAxRTQxRTlFQUUxMUVGQkY3NUMwQTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIOMA0GCSqGSIb3DQEB
CwUAA4IBAQAC1JdbItJ23nUDkRfeC1diTZtfvISLExYu7YWJyLLBD+/y1vJoZ65X
0ZMw28SpPvbii6mExqaNzEs7BARkrCHe7u0K657BcoLfbrqoZKTuhxSYk8/tFEyB
ZrB70LdgAXnvm/1cNaO20Dr8urLPja13hSBztXeKlBKeaZi0te7La5pX1WE5Tgi8
fUGPPztp1gL9kfVN7PauqkP0PJQ6MBdVGOR4Z8mPY3DSnY8eM5m+yYqP2p9ls8Jq
+CgNzyLuA2S5vr3I62Fhy1BQ24Z6tOXJy6Zht+QOZYzrkBFV7Rc8T3/gZ1qtLVYF
zgk8VLYiC8uLzGxQtMNWsFLNs8mNDkHQ
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:02 2024 by rpki-client on console-ams.rpki-client.org