Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/660B98A2A44F11EFA6378FBD762E951A.roa
File: 660B98A2A44F11EFA6378FBD762E951A.roa (raw, json)
Hash identifier: K5tZg/ZGUyx1QtyYK1KOdQGC6F6J9MJt1nZEWm2lpkU=
Subject key identifier: 96:B7:FD:7A:E8:77:AD:94:11:6A:33:CF:F0:50:C4:B4:6D:01:B4:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/660B98A2A44F11EFA6378FBD762E951A.roa
Signing time: Sat 16 Nov 2024 19:17:19 +0000
ROA not before: Sat 16 Nov 2024 19:17:12 +0000
ROA not after: Mon 25 Nov 2024 19:17:12 +0000
asID: 9009
IP address blocks: 154.95.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69137 (0x10e11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:17:12 2024 GMT
Not After : Nov 25 19:17:12 2024 GMT
Subject: CN=6738efbf-df6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ff:20:e8:d1:ac:ef:7d:7d:b4:b2:1e:16:d7:
05:33:d4:91:5d:3a:5b:2e:bb:de:a0:4c:f4:84:3d:
57:3e:42:9a:10:95:78:33:cb:b5:8d:da:c8:46:f6:
2c:d8:c7:c8:2b:97:8f:21:6d:7f:f6:0f:c3:e5:1f:
42:37:d1:94:f4:88:59:63:6f:af:13:ca:3d:7f:6f:
81:d9:c3:d9:24:71:3a:c3:b5:b6:a7:87:27:70:07:
4a:fb:9b:af:56:2f:fc:40:6d:cb:fb:51:67:4f:ab:
62:f3:7a:48:77:1d:05:07:e9:b7:54:e2:5c:c9:8d:
4e:a3:c0:02:a8:4f:88:02:53:07:a4:fd:13:a3:54:
7d:0e:d3:c7:f4:77:5d:96:7a:21:db:75:7d:19:99:
67:48:2f:b8:d8:12:9e:db:1c:c2:63:60:68:45:2f:
c9:b3:ee:e1:bc:ff:a5:df:d4:3b:52:f0:a0:51:4a:
9d:0d:aa:1c:f7:1c:cb:2d:63:9c:86:b8:23:f5:84:
84:33:07:31:7a:71:72:29:cf:43:3c:84:d9:b5:2d:
18:fc:6a:9b:e1:e9:c4:33:79:a1:f0:32:f6:b5:ea:
02:88:14:43:f8:db:67:dd:be:29:43:3a:54:ec:ad:
77:a5:38:b5:ce:f6:ff:fc:8c:da:04:c6:03:5c:48:
53:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B7:FD:7A:E8:77:AD:94:11:6A:33:CF:F0:50:C4:B4:6D:01:B4:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/660B98A2A44F11EFA6378FBD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.32.0/22
Signature Algorithm: sha256WithRSAEncryption
82:0f:b2:61:3c:db:c1:a9:a0:52:12:cf:ba:c7:aa:7e:a1:a0:
70:8a:60:8c:83:b2:b0:a9:ff:3c:e9:a0:5e:95:b0:3d:c5:23:
68:0c:67:2f:54:92:ac:ec:4a:f6:a8:7d:c8:d6:b9:a6:8e:31:
50:98:2b:92:60:1c:37:56:a9:b8:11:6f:79:35:b1:b3:d2:e9:
7c:48:dc:61:30:be:d9:71:cc:63:5a:29:d9:89:43:f9:63:85:
48:89:0f:59:46:b3:ad:b6:6f:2a:4f:1a:cf:1f:56:8f:76:7f:
fe:30:0b:07:f6:1b:55:bc:05:61:c9:65:70:0a:08:a6:34:a0:
06:6c:7d:5d:41:dc:5d:e5:a4:08:da:8b:eb:c4:b7:26:a1:b9:
25:07:58:65:7f:8c:9f:e3:c3:a6:38:fc:e9:44:45:8c:de:9a:
08:60:d5:31:1d:7c:8c:d7:fa:21:be:c4:92:a0:48:4f:d9:2a:
77:86:a5:3a:86:4e:52:af:52:ee:94:93:0b:23:f1:69:7d:54:
62:92:cf:46:5d:7d:81:19:0a:64:b5:37:49:81:a4:9a:69:2a:
0a:d2:4e:7a:72:22:1d:64:32:12:3b:d6:bf:69:2a:12:bf:3e:
0d:c0:4e:33:75:6e:31:a5:53:3e:5a:e3:13:79:69:db:ab:d3:
68:2f:39:41
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ4RMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTkxNzEyWhcNMjQxMTI1MTkxNzEyWjAYMRYw
FAYDVQQDEw02NzM4ZWZiZi1kZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1v8g6NGs7319tLIeFtcFM9SRXTpbLrveoEz0hD1XPkKaEJV4M8u1jdrI
RvYs2MfIK5ePIW1/9g/D5R9CN9GU9IhZY2+vE8o9f2+B2cPZJHE6w7W2p4cncAdK
+5uvVi/8QG3L+1FnT6ti83pIdx0FB+m3VOJcyY1Oo8ACqE+IAlMHpP0To1R9DtPH
9Hddlnoh23V9GZlnSC+42BKe2xzCY2BoRS/Js+7hvP+l39Q7UvCgUUqdDaoc9xzL
LWOchrgj9YSEMwcxenFyKc9DPITZtS0Y/Gqb4enEM3mh8DL2teoCiBRD+Ntn3b4p
QzpU7K13pTi1zvb//IzaBMYDXEhTUwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJa3
/Xrod62UEWozz/BQxLRtAbTEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NjBCOThBMkE0NEYxMUVGQTYzNzhGQkQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCml8gMA0GCSqGSIb3DQEB
CwUAA4IBAQCCD7JhPNvBqaBSEs+6x6p+oaBwimCMg7Kwqf886aBelbA9xSNoDGcv
VJKs7Er2qH3I1rmmjjFQmCuSYBw3Vqm4EW95NbGz0ul8SNxhML7ZccxjWinZiUP5
Y4VIiQ9ZRrOttm8qTxrPH1aPdn/+MAsH9htVvAVhyWVwCgimNKAGbH1dQdxd5aQI
2ovrxLcmobklB1hlf4yf48OmOPzpREWM3poIYNUxHXyM1/ohvsSSoEhP2Sp3hqU6
hk5Sr1LulJMLI/FpfVRiks9GXX2BGQpktTdJgaSaaSoK0k56ciIdZDISO9a/aSoS
vz4NwE4zdW4xpVM+WuMTeWnbq9NoLzlB
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:50 2024 by rpki-client on console-fra.rpki-client.org