Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65828A68985F11EF80251464762E951A.roa
File: 65828A68985F11EF80251464762E951A.roa (raw, json)
Hash identifier: K/kiZE+GWPT5gwO/kjb88Sf/PSSGE1dgx2Dm/N358Mc=
Subject key identifier: 1A:FB:0E:8E:03:BA:6B:72:25:91:8D:03:CE:E1:AE:27:76:E5:F2:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65828A68985F11EF80251464762E951A.roa
Signing time: Fri 01 Nov 2024 14:41:36 +0000
ROA not before: Fri 01 Nov 2024 14:41:33 +0000
ROA not after: Tue 03 Dec 2024 14:41:33 +0000
asID: 203020
IP address blocks: 154.209.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66781 (0x104dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:41:33 2024 GMT
Not After : Dec 3 14:41:33 2024 GMT
Subject: CN=6724e8a0-7c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fd:1e:fe:5c:ae:dc:0a:51:81:8c:ef:ad:f9:
47:a0:87:fa:17:0e:b3:35:47:64:c3:6f:d6:4f:16:
ed:8d:0f:2f:d2:dc:84:6b:f4:48:84:34:91:ab:63:
18:44:a5:d6:d9:da:12:fc:1b:31:4c:e7:b0:4c:23:
ee:a2:c8:a6:d5:b6:c6:4a:b1:c5:95:a1:7d:3b:87:
e9:cf:57:aa:e0:fb:01:bc:df:92:98:dc:7e:f6:b5:
c4:3a:fa:4a:32:e1:d5:56:63:c7:1c:6c:f7:88:15:
aa:82:fc:bd:14:5f:ac:35:e0:70:8f:e4:5d:f6:8c:
4f:e8:1b:ec:ee:f8:60:53:3c:c0:e3:9f:a7:0a:0a:
09:a4:cc:ef:10:68:02:f4:44:d7:ff:ac:6c:02:3d:
cb:da:3f:16:6c:17:f9:47:20:52:8d:a2:c6:b4:2b:
d7:93:96:39:aa:c9:42:3f:dd:87:27:ac:f1:07:7b:
d8:00:c7:74:80:7b:8f:4a:ed:ae:34:2f:8b:52:4c:
30:e4:29:0e:0b:bb:bd:b6:6a:90:00:76:af:22:b7:
49:b1:53:6d:4e:a9:b8:40:ca:38:68:c5:e1:20:8e:
10:63:a5:8e:60:ba:79:74:e2:bc:59:3a:d0:5e:85:
f5:6b:a3:7c:ef:6f:86:a6:33:26:3d:83:24:65:ac:
5c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FB:0E:8E:03:BA:6B:72:25:91:8D:03:CE:E1:AE:27:76:E5:F2:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65828A68985F11EF80251464762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.8.0/21
Signature Algorithm: sha256WithRSAEncryption
13:bb:3c:00:d0:6f:c4:f3:0e:c7:c5:5e:1f:9c:05:fa:6d:fe:
6c:f4:03:3d:4b:40:d9:9c:8a:e5:e6:89:7c:ad:ad:5c:8c:13:
f8:d0:e0:ff:90:4f:fd:0f:ed:1a:1d:69:de:bb:d1:31:d0:c6:
ba:ab:59:ec:58:2a:25:b9:41:40:68:62:a0:05:e5:9a:53:ab:
64:e4:c1:69:38:03:98:9f:9b:1d:25:c0:f0:02:af:d0:fc:96:
f0:7e:ec:30:75:cd:c4:b5:ce:7b:23:f5:80:5a:b3:91:bc:90:
67:8e:97:f5:4c:62:ff:0b:5d:76:8b:d4:ea:38:ab:b0:4e:11:
6a:51:e1:24:d0:3a:14:ef:0f:b1:70:d5:49:03:2d:63:6c:44:
c8:dd:a1:f9:4c:b9:f8:96:8c:c7:08:82:85:4a:a1:4c:4b:f0:
9c:44:1d:08:5f:a6:78:90:ae:03:1f:c1:0f:4b:b4:df:37:6e:
a3:2b:ef:17:e2:61:46:e6:1d:63:44:2c:57:cf:79:d1:b0:24:
f5:a1:b1:e5:ff:3b:37:34:9d:5f:95:8e:48:b1:ab:47:4c:db:
d1:56:6b:fd:1b:71:d5:0b:35:26:4f:d3:ec:dd:b9:bd:8e:f8:
5b:de:7b:13:0e:c3:27:b1:18:1d:ce:62:b1:da:03:2b:7e:7d:
7f:f2:b2:5a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQTdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAxMTQ0MTMzWhcNMjQxMjAzMTQ0MTMzWjAYMRYw
FAYDVQQDEw02NzI0ZThhMC03YzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxf0e/lyu3ApRgYzvrflHoIf6Fw6zNUdkw2/WTxbtjQ8v0tyEa/RIhDSR
q2MYRKXW2doS/BsxTOewTCPuosim1bbGSrHFlaF9O4fpz1eq4PsBvN+SmNx+9rXE
OvpKMuHVVmPHHGz3iBWqgvy9FF+sNeBwj+Rd9oxP6Bvs7vhgUzzA45+nCgoJpMzv
EGgC9ETX/6xsAj3L2j8WbBf5RyBSjaLGtCvXk5Y5qslCP92HJ6zxB3vYAMd0gHuP
Su2uNC+LUkww5CkOC7u9tmqQAHavIrdJsVNtTqm4QMo4aMXhII4QY6WOYLp5dOK8
WTrQXoX1a6N872+GpjMmPYMkZaxc5QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBr7
Do4DumtyJZGNA87hrid25fLXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NTgyOEE2ODk4NUYxMUVGODAyNTE0NjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmtEIMA0GCSqGSIb3DQEB
CwUAA4IBAQATuzwA0G/E8w7HxV4fnAX6bf5s9AM9S0DZnIrl5ol8ra1cjBP40OD/
kE/9D+0aHWneu9Ex0Ma6q1nsWColuUFAaGKgBeWaU6tk5MFpOAOYn5sdJcDwAq/Q
/Jbwfuwwdc3Etc57I/WAWrORvJBnjpf1TGL/C112i9TqOKuwThFqUeEk0DoU7w+x
cNVJAy1jbETI3aH5TLn4lozHCIKFSqFMS/CcRB0IX6Z4kK4DH8EPS7TfN26jK+8X
4mFG5h1jRCxXz3nRsCT1obHl/zs3NJ1flY5IsatHTNvRVmv9G3HVCzUmT9Ps3bm9
jvhb3nsTDsMnsRgdzmKx2gMrfn1/8rJa
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:09 2024 by rpki-client on console-fra.rpki-client.org