Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522B3C129A9411EF8646F754762E951A.roa
File: 522B3C129A9411EF8646F754762E951A.roa (raw, json)
Hash identifier: YuNY/JXKubZkshHQKBgWQYDh2TM4Fiw3qpcGHT7I/hI=
Subject key identifier: 79:A2:DA:1B:A6:81:4B:DC:B4:8E:2A:00:FF:5C:9E:EC:BD:7F:B0:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010692
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522B3C129A9411EF8646F754762E951A.roa
Signing time: Mon 04 Nov 2024 10:05:30 +0000
ROA not before: Mon 04 Nov 2024 10:05:26 +0000
ROA not after: Mon 25 Nov 2024 10:05:26 +0000
asID: 44559
IP address blocks: 154.94.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67218 (0x10692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 10:05:26 2024 GMT
Not After : Nov 25 10:05:26 2024 GMT
Subject: CN=67289c6a-8acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4d:08:5f:a9:78:bb:90:26:55:13:20:ab:06:
0f:1b:78:3d:4c:3c:15:76:ac:93:82:ca:bd:67:ac:
6e:a8:44:f3:13:2a:5d:14:78:73:e7:30:2c:f1:ff:
f1:a2:e8:c3:1d:a8:29:1b:fc:82:ad:23:34:f6:f5:
e1:ce:70:93:fd:3a:6b:10:9e:ee:e1:68:ec:fd:ea:
44:80:a9:b5:18:3e:1f:4c:b4:71:2b:57:07:76:a8:
9d:72:81:97:0b:04:ce:54:cb:6a:46:1a:aa:c5:1a:
8e:78:92:38:d4:57:c4:ec:9d:5e:99:d3:87:0e:9e:
13:d5:9f:7f:d1:eb:f3:5b:b1:75:2c:8b:c7:8f:0f:
cc:98:0d:2e:f1:9a:28:72:49:72:bc:0c:99:d3:c5:
c0:65:dd:69:29:d5:3a:58:d3:5f:74:f3:09:67:e5:
ca:69:88:9f:73:0a:34:b1:6b:f3:1b:1a:88:f0:6d:
90:6c:6d:75:0e:8d:8e:97:d0:3d:fb:2a:48:ed:ac:
ed:9e:38:1d:e9:23:2b:1e:ba:16:d8:32:46:0d:28:
9e:83:50:96:34:db:30:af:48:48:b7:dc:78:f9:8a:
78:da:77:30:52:12:70:ea:ae:9d:2a:55:49:d2:92:
59:70:a3:0c:eb:22:8b:28:43:8e:37:8b:33:c1:49:
cd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A2:DA:1B:A6:81:4B:DC:B4:8E:2A:00:FF:5C:9E:EC:BD:7F:B0:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/522B3C129A9411EF8646F754762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.237.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:81:2c:db:aa:61:88:19:00:74:69:e3:9b:13:bb:d0:53:ea:
67:4f:cc:1d:a7:89:af:c1:a6:a1:17:80:9b:5c:8f:2c:84:eb:
33:90:dc:a1:ce:f7:f6:22:f9:45:92:81:01:6d:b3:14:62:d6:
3f:b5:dc:09:55:73:ce:2e:52:0e:6b:9b:fe:9a:d3:37:9d:a4:
7b:b6:1f:95:ba:bd:ce:f5:c7:80:17:0b:31:3a:76:a2:3d:15:
83:e8:a2:d3:90:bb:17:eb:45:f8:f5:f7:2e:96:9d:21:7f:7a:
b5:d4:03:b2:28:97:9f:cc:f9:e9:e3:1b:60:f1:00:ab:f8:91:
de:28:69:b9:77:29:74:b1:83:38:79:94:38:8a:18:18:9c:99:
9a:5f:aa:94:cd:84:fe:52:8f:cc:5e:d2:8e:4e:00:e4:7a:db:
63:78:9b:17:15:f4:4f:58:57:6b:b8:94:1b:f7:7c:68:d8:9d:
83:50:98:d4:0b:0b:35:1b:a6:c8:e3:e7:9a:c7:f3:a0:59:4d:
46:a6:20:cb:13:98:49:14:a9:07:b0:1d:09:a7:c6:76:66:ff:
96:9d:45:c5:a4:6f:f4:65:09:aa:9d:4f:50:bc:18:7a:28:65:
c8:c6:db:e2:2f:a1:5f:80:3d:79:da:9e:55:fe:d7:d0:dc:1e:
b9:52:0b:f5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQaSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA0MTAwNTI2WhcNMjQxMTI1MTAwNTI2WjAYMRYw
FAYDVQQDEw02NzI4OWM2YS04YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApk0IX6l4u5AmVRMgqwYPG3g9TDwVdqyTgsq9Z6xuqETzEypdFHhz5zAs
8f/xoujDHagpG/yCrSM09vXhznCT/TprEJ7u4Wjs/epEgKm1GD4fTLRxK1cHdqid
coGXCwTOVMtqRhqqxRqOeJI41FfE7J1emdOHDp4T1Z9/0evzW7F1LIvHjw/MmA0u
8ZoocklyvAyZ08XAZd1pKdU6WNNfdPMJZ+XKaYifcwo0sWvzGxqI8G2QbG11Do2O
l9A9+ypI7aztnjgd6SMrHroW2DJGDSieg1CWNNswr0hIt9x4+Yp42ncwUhJw6q6d
KlVJ0pJZcKMM6yKLKEOON4szwUnNQwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHmi
2humgUvctI4qAP9cnuy9f7B3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MjJCM0MxMjlBOTQxMUVGODY0NkY3NTQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml7tMA0GCSqGSIb3DQEB
CwUAA4IBAQCigSzbqmGIGQB0aeObE7vQU+pnT8wdp4mvwaahF4CbXI8shOszkNyh
zvf2IvlFkoEBbbMUYtY/tdwJVXPOLlIOa5v+mtM3naR7th+Vur3O9ceAFwsxOnai
PRWD6KLTkLsX60X49fculp0hf3q11AOyKJefzPnp4xtg8QCr+JHeKGm5dyl0sYM4
eZQ4ihgYnJmaX6qUzYT+Uo/MXtKOTgDkettjeJsXFfRPWFdruJQb93xo2J2DUJjU
Cws1G6bI4+eax/OgWU1GpiDLE5hJFKkHsB0Jp8Z2Zv+WnUXFpG/0ZQmqnU9QvBh6
KGXIxtviL6FfgD152p5V/tfQ3B65Ugv1
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org