Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA934AC9CE611EF8C466E7C762E951A.roa
File: 6AA934AC9CE611EF8C466E7C762E951A.roa (raw, json)
Hash identifier: KzTX2pJ5CoFf4Ie7nEtI9hFUtem+YvrbMvKghP3pXCg=
Subject key identifier: 79:DC:12:CD:F4:1E:72:44:FC:61:A4:A8:0E:92:99:D0:D3:73:2C:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010931
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA934AC9CE611EF8C466E7C762E951A.roa
Signing time: Thu 07 Nov 2024 08:58:12 +0000
ROA not before: Thu 07 Nov 2024 08:58:08 +0000
ROA not after: Tue 07 Jan 2025 08:58:08 +0000
asID: 18004
IP address blocks: 154.85.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67889 (0x10931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 7 08:58:08 2024 GMT
Not After : Jan 7 08:58:08 2025 GMT
Subject: CN=672c8124-245e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8d:96:87:18:61:96:ca:08:ea:b5:ec:70:65:
a2:91:83:25:e4:b6:8f:a8:18:96:f8:70:42:93:f3:
5f:9a:f2:8b:b7:08:bf:86:14:b9:e5:86:6d:f8:21:
b3:4b:44:ea:1e:94:3c:d7:67:cc:4a:e1:d0:56:1c:
ee:40:86:42:0b:d2:00:c4:5a:1b:1f:de:5d:8b:b8:
b5:d5:bc:69:0b:42:dd:9f:29:84:11:7c:89:30:e9:
91:73:13:cf:b7:0c:21:8c:0a:9c:fa:11:da:e8:e9:
2b:76:0a:e6:2f:95:b2:e6:c3:e2:0b:f9:16:45:53:
17:24:c5:9f:01:e6:26:3e:cd:51:99:b4:89:fe:ec:
b9:3c:05:9e:7b:b7:17:d7:28:fa:e1:fd:6b:15:82:
62:65:b5:19:06:18:f0:60:21:7c:b7:ed:7e:c0:f4:
a3:98:23:a5:5b:81:5e:1e:0d:0a:4f:d1:cc:da:5a:
1d:d5:64:80:a2:91:7a:f8:38:4a:ef:64:e4:33:34:
1d:32:99:2d:4f:68:b8:25:15:03:59:07:2e:37:13:
6a:17:e5:e1:36:53:51:1b:c6:e1:d4:11:3b:7d:a8:
e6:3e:be:b6:7c:95:50:ef:c0:5f:8c:ab:de:60:19:
84:f8:43:3f:00:e2:0c:d8:33:88:cc:65:02:18:26:
42:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DC:12:CD:F4:1E:72:44:FC:61:A4:A8:0E:92:99:D0:D3:73:2C:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA934AC9CE611EF8C466E7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.82.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8d:4a:27:e3:3a:91:38:3e:fc:1a:db:c1:fc:68:f9:cf:88:
c1:a5:fd:91:20:22:cd:6f:98:03:39:ca:54:8d:26:74:c3:67:
57:48:7c:f1:c9:49:43:ee:6f:39:3f:45:52:40:6b:f3:83:60:
71:5e:78:f3:6d:7d:cb:4b:5c:86:23:ff:5d:64:49:ea:e5:9b:
e9:29:69:a5:e8:cd:de:54:ba:fd:3d:96:53:26:08:11:30:7b:
25:34:f8:90:3a:c0:b3:a1:5c:9e:b0:b9:20:c3:4a:92:59:f6:
a9:99:c9:b2:1a:34:22:26:eb:e0:37:dd:70:94:62:eb:43:5f:
04:92:35:65:83:27:4e:a4:65:49:21:a0:18:5b:08:11:91:a4:
d2:e8:3e:d4:cd:e5:0d:2f:81:23:4c:83:d8:ad:6d:88:ff:e9:
82:77:64:fc:22:35:c7:7a:47:c1:0a:89:c4:18:83:2f:1b:d8:
f9:59:93:dc:9a:19:e6:2c:70:56:cd:f9:50:9c:72:31:e2:de:
f2:f7:e9:9e:a1:46:d7:c2:1a:a5:48:fd:bf:3c:8f:00:34:e6:
8e:9a:54:36:78:a7:1d:49:70:61:5e:62:40:35:20:62:b3:ae:
61:b4:65:04:38:d4:fe:60:64:34:b2:a6:00:02:29:21:ae:b1:
ce:bc:e5:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQkxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA3MDg1ODA4WhcNMjUwMTA3MDg1ODA4WjAYMRYw
FAYDVQQDEw02NzJjODEyNC0yNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz42WhxhhlsoI6rXscGWikYMl5LaPqBiW+HBCk/NfmvKLtwi/hhS55YZt
+CGzS0TqHpQ812fMSuHQVhzuQIZCC9IAxFobH95di7i11bxpC0LdnymEEXyJMOmR
cxPPtwwhjAqc+hHa6OkrdgrmL5Wy5sPiC/kWRVMXJMWfAeYmPs1RmbSJ/uy5PAWe
e7cX1yj64f1rFYJiZbUZBhjwYCF8t+1+wPSjmCOlW4FeHg0KT9HM2lod1WSAopF6
+DhK72TkMzQdMpktT2i4JRUDWQcuNxNqF+XhNlNRG8bh1BE7fajmPr62fJVQ78Bf
jKveYBmE+EM/AOIM2DOIzGUCGCZCjwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHnc
Es30HnJE/GGkqA6SmdDTcywmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QUE5MzRBQzlDRTYxMUVGOEM0NjZFN0M3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlVSMA0GCSqGSIb3DQEB
CwUAA4IBAQBjjUon4zqROD78GtvB/Gj5z4jBpf2RICLNb5gDOcpUjSZ0w2dXSHzx
yUlD7m85P0VSQGvzg2BxXnjzbX3LS1yGI/9dZEnq5ZvpKWml6M3eVLr9PZZTJggR
MHslNPiQOsCzoVyesLkgw0qSWfapmcmyGjQiJuvgN91wlGLrQ18EkjVlgydOpGVJ
IaAYWwgRkaTS6D7UzeUNL4EjTIPYrW2I/+mCd2T8IjXHekfBConEGIMvG9j5WZPc
mhnmLHBWzflQnHIx4t7y9+meoUbXwhqlSP2/PI8ANOaOmlQ2eKcdSXBhXmJANSBi
s65htGUEONT+YGQ0sqYAAikhrrHOvOWr
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:08 2024 by rpki-client on console-ams.rpki-client.org