Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DDF15D8904F11EFA9CFEC99762E951A.roa
File: 4DDF15D8904F11EFA9CFEC99762E951A.roa (raw, json)
Hash identifier: z5yATZPqi3/ZDxYMXSPR+OPM56YrTqWLz8+NQD3UG68=
Subject key identifier: 7A:CB:93:11:22:40:EA:DA:77:20:67:3E:94:D3:07:E1:57:88:A3:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01007F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DDF15D8904F11EFA9CFEC99762E951A.roa
Signing time: Tue 22 Oct 2024 08:26:16 +0000
ROA not before: Tue 22 Oct 2024 08:26:12 +0000
ROA not after: Tue 26 Nov 2024 08:26:12 +0000
asID: 149513
IP address blocks: 154.201.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65663 (0x1007f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:26:12 2024 GMT
Not After : Nov 26 08:26:12 2024 GMT
Subject: CN=671761a7-a40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:68:8b:3d:6c:b4:e6:b3:68:62:a3:ec:65:32:
4a:45:0e:3f:c9:29:28:3b:5e:a9:c0:69:b7:c5:23:
59:42:36:1f:56:f9:b3:b2:15:fd:7c:64:99:49:3d:
c5:61:81:9f:82:ea:af:c4:ae:c7:35:16:d7:0d:58:
80:a7:db:50:18:74:e2:e9:ee:91:56:79:2d:ef:7e:
61:6e:01:15:58:25:82:b6:7e:0e:65:0f:65:87:b1:
61:14:c1:00:bc:79:13:15:b3:96:4f:db:fb:b6:5b:
eb:73:f2:b6:2b:f6:6e:8b:9c:6e:81:fc:04:f6:66:
a0:90:3a:94:28:c5:4b:e4:36:d0:85:f5:51:b7:bd:
12:b9:5b:20:14:c4:26:71:0a:73:63:b3:3e:0f:08:
d5:24:d5:25:a3:52:bb:48:eb:0d:d0:11:97:46:c3:
92:6e:ba:cd:c7:99:5d:22:aa:e8:96:82:d0:5d:cb:
ee:5a:4e:70:6b:3d:77:40:28:17:23:5c:d9:2b:08:
a6:0d:56:d9:7b:8c:fe:fc:44:29:e9:e2:f1:b3:82:
0c:30:8e:32:c4:8d:29:fc:19:26:11:7f:d7:93:53:
e1:02:72:77:63:a2:b3:05:b7:c4:8e:e8:d5:43:29:
01:a4:cc:d5:9e:b2:5e:59:15:16:34:3c:7f:4e:15:
20:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CB:93:11:22:40:EA:DA:77:20:67:3E:94:D3:07:E1:57:88:A3:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4DDF15D8904F11EFA9CFEC99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.94.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:98:e8:a9:2b:28:0e:44:eb:df:b8:53:9e:55:96:0f:ef:3f:
81:38:ea:4b:45:04:90:86:ad:e6:a6:5e:c1:3d:98:87:27:1c:
62:0e:a1:2e:53:0b:67:ca:89:7c:a1:6c:b5:ed:96:d5:aa:be:
7e:5c:e3:0a:de:6b:36:4a:8b:d6:fd:79:35:40:ba:c0:d1:05:
1c:85:c5:bf:67:62:b7:33:ce:df:40:b1:2f:63:9a:97:e2:59:
c2:41:71:8d:6b:8b:bd:00:8f:54:0d:12:f6:e9:12:6f:fa:d1:
59:e4:1b:af:2b:dd:b4:12:62:37:19:26:ee:78:c2:b5:ac:ab:
fc:cf:7d:05:61:57:ec:9e:84:bf:f9:d3:04:74:9a:d4:6a:0a:
a0:79:fc:db:75:31:4e:83:94:b7:fc:52:86:0d:50:d4:6b:ca:
ba:57:e7:ed:f4:70:c7:89:9f:da:3a:85:16:e9:3d:d3:1e:9f:
6f:4c:92:ca:31:4a:80:0e:41:25:aa:21:80:c5:94:13:69:94:
6c:8a:52:37:23:43:6f:5e:df:3d:e4:14:d3:b0:1c:95:3b:20:
23:a3:af:3a:b2:e2:d9:9b:40:40:bd:15:18:b9:56:bb:6f:60:
cb:72:e5:12:df:a4:78:8c:7c:46:d4:5e:ba:a8:54:8e:2e:35:
40:ad:16:64
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQB/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIyMDgyNjEyWhcNMjQxMTI2MDgyNjEyWjAYMRYw
FAYDVQQDEw02NzE3NjFhNy1hNDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy2iLPWy05rNoYqPsZTJKRQ4/ySkoO16pwGm3xSNZQjYfVvmzshX9fGSZ
ST3FYYGfguqvxK7HNRbXDViAp9tQGHTi6e6RVnkt735hbgEVWCWCtn4OZQ9lh7Fh
FMEAvHkTFbOWT9v7tlvrc/K2K/Zui5xugfwE9magkDqUKMVL5DbQhfVRt70SuVsg
FMQmcQpzY7M+DwjVJNUlo1K7SOsN0BGXRsOSbrrNx5ldIqroloLQXcvuWk5waz13
QCgXI1zZKwimDVbZe4z+/EQp6eLxs4IMMI4yxI0p/BkmEX/Xk1PhAnJ3Y6KzBbfE
jujVQykBpMzVnrJeWRUWNDx/ThUgCwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHrL
kxEiQOradyBnPpTTB+FXiKM6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80RERGMTVEODkwNEYxMUVGQTlDRkVDOTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsleMA0GCSqGSIb3DQEB
CwUAA4IBAQBcmOipKygOROvfuFOeVZYP7z+BOOpLRQSQhq3mpl7BPZiHJxxiDqEu
Uwtnyol8oWy17ZbVqr5+XOMK3ms2SovW/Xk1QLrA0QUchcW/Z2K3M87fQLEvY5qX
4lnCQXGNa4u9AI9UDRL26RJv+tFZ5BuvK920EmI3GSbueMK1rKv8z30FYVfsnoS/
+dMEdJrUagqgefzbdTFOg5S3/FKGDVDUa8q6V+ft9HDHiZ/aOoUW6T3THp9vTJLK
MUqADkElqiGAxZQTaZRsilI3I0NvXt895BTTsByVOyAjo686suLZm0BAvRUYuVa7
b2DLcuUS36R4jHxG1F66qFSOLjVArRZk
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:08 2024 by rpki-client on console-ams.rpki-client.org