Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B3681D4A33211EF99F5AC4E762E951A.roa
File: 6B3681D4A33211EF99F5AC4E762E951A.roa (raw, json)
Hash identifier: o3EwGz7FK5mPO+9qp4kuWvdqjyU9BgjSph6DZGi097o=
Subject key identifier: E4:B3:AE:21:18:0C:BC:BC:68:19:34:7D:76:E0:64:C1:8C:2F:AF:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D7A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B3681D4A33211EF99F5AC4E762E951A.roa
Signing time: Fri 15 Nov 2024 09:17:21 +0000
ROA not before: Fri 15 Nov 2024 09:17:18 +0000
ROA not after: Sat 17 Oct 2026 09:17:18 +0000
asID: 137443
IP address blocks: 154.205.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68986 (0x10d7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 09:17:18 2024 GMT
Not After : Oct 17 09:17:18 2026 GMT
Subject: CN=673711a1-54ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fc:8e:76:f0:01:34:bc:04:9e:3b:59:cb:aa:
d7:49:0e:6b:57:12:3a:f0:09:d0:e4:59:20:a4:92:
b2:d1:66:64:2d:27:4c:dd:29:cb:9e:e5:39:eb:c5:
c4:e6:91:f8:2d:0b:16:8b:83:c5:9c:d0:1a:24:f7:
af:2c:fb:17:fe:0f:2f:0b:77:62:05:91:df:84:b4:
bb:31:bd:17:27:75:82:2e:c9:fb:1f:7a:0c:00:aa:
11:13:8a:df:26:b3:27:4d:5c:e8:86:58:cf:f8:21:
63:f5:7f:2b:30:ab:f4:d6:04:d7:ed:0b:ff:71:96:
12:59:1f:8e:36:86:4f:ba:68:fb:b0:5a:ef:e2:82:
5f:c9:f0:ac:e9:2d:3f:35:a3:7d:ea:82:83:ae:82:
a1:d3:91:ef:da:b1:99:3d:9c:b3:e7:91:e7:df:c5:
c1:58:57:8a:8b:c8:fa:c7:a0:ad:b2:1a:4a:54:c7:
f8:73:ff:e2:15:30:ba:bc:56:70:1d:00:cf:15:ed:
b2:97:3f:b1:28:28:ab:c4:f4:1b:36:5b:5a:cd:5a:
2c:9b:e7:43:bb:4a:76:24:6b:ca:ce:07:3b:59:c9:
a4:f0:3a:4e:32:28:17:c7:41:e2:50:20:92:b8:e0:
4d:c6:90:b4:b0:4b:24:e3:3b:30:d3:a4:4c:0c:82:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B3:AE:21:18:0C:BC:BC:68:19:34:7D:76:E0:64:C1:8C:2F:AF:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B3681D4A33211EF99F5AC4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.6.0/23
Signature Algorithm: sha256WithRSAEncryption
41:92:d7:13:d8:ac:c4:90:2f:a6:50:39:ed:e6:5e:c8:65:f3:
a5:cc:8f:d8:48:59:a7:4d:34:41:f5:cc:e7:9f:11:86:ed:c6:
5a:ed:2c:d2:d2:5f:4b:17:88:df:41:57:39:c1:a9:c5:63:4e:
7c:3a:6e:c7:18:ae:63:d1:cb:69:da:c2:57:e3:81:35:7d:58:
02:41:a9:3c:d2:40:ad:99:12:d9:6f:bc:33:4a:f0:c6:0a:7d:
88:5d:ef:e4:59:95:58:0a:e0:a1:5b:e1:b2:dd:5a:77:4e:9e:
0f:0b:62:af:04:a2:03:79:e6:36:1b:0d:a1:cc:a4:d6:d2:3f:
47:3b:90:2a:45:db:2f:91:fa:35:8d:79:ac:c6:ab:68:13:51:
2a:31:5e:8b:f7:d5:c4:99:11:0a:4d:f7:ae:d2:74:75:8f:91:
22:9e:6c:ec:00:6a:79:fe:a5:46:47:b7:be:8d:f1:3e:7f:a9:
64:e4:a9:1a:27:09:f3:19:4d:9d:cc:97:fa:8e:31:9a:14:14:
43:d6:85:dc:f9:96:0a:54:bd:58:d4:b3:48:71:6b:cc:0a:29:
75:db:fc:2f:31:66:d0:90:a9:60:36:25:ff:11:f2:21:93:fc:
a8:01:8f:86:0c:84:8b:08:a6:6c:82:77:38:58:e5:20:5e:43:
72:b5:38:44
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ16MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE1MDkxNzE4WhcNMjYxMDE3MDkxNzE4WjAYMRYw
FAYDVQQDEw02NzM3MTFhMS01NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmvyOdvABNLwEnjtZy6rXSQ5rVxI68AnQ5FkgpJKy0WZkLSdM3SnLnuU5
68XE5pH4LQsWi4PFnNAaJPevLPsX/g8vC3diBZHfhLS7Mb0XJ3WCLsn7H3oMAKoR
E4rfJrMnTVzohljP+CFj9X8rMKv01gTX7Qv/cZYSWR+ONoZPumj7sFrv4oJfyfCs
6S0/NaN96oKDroKh05Hv2rGZPZyz55Hn38XBWFeKi8j6x6CtshpKVMf4c//iFTC6
vFZwHQDPFe2ylz+xKCirxPQbNltazVosm+dDu0p2JGvKzgc7Wcmk8DpOMigXx0Hi
UCCSuOBNxpC0sEsk4zsw06RMDIKfWQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOSz
riEYDLy8aBk0fXbgZMGML6+6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QjM2ODFENEEzMzIxMUVGOTlGNUFDNEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms0GMA0GCSqGSIb3DQEB
CwUAA4IBAQBBktcT2KzEkC+mUDnt5l7IZfOlzI/YSFmnTTRB9cznnxGG7cZa7SzS
0l9LF4jfQVc5wanFY058Om7HGK5j0ctp2sJX44E1fVgCQak80kCtmRLZb7wzSvDG
Cn2IXe/kWZVYCuChW+Gy3Vp3Tp4PC2KvBKIDeeY2Gw2hzKTW0j9HO5AqRdsvkfo1
jXmsxqtoE1EqMV6L99XEmREKTfeu0nR1j5EinmzsAGp5/qVGR7e+jfE+f6lk5Kka
JwnzGU2dzJf6jjGaFBRD1oXc+ZYKVL1Y1LNIcWvMCil12/wvMWbQkKlgNiX/EfIh
k/yoAY+GDISLCKZsgnc4WOUgXkNytThE
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org