Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAE031C912111EF8D2DD644762E951A.roa
File: 6BAE031C912111EF8D2DD644762E951A.roa (raw, json)
Hash identifier: CietWyNHcf4Zu6cRHqnKjQaPmzwGS2Br4NRVQSu7BWA=
Subject key identifier: 5C:7F:19:0F:46:02:F4:3F:02:8C:39:64:16:43:4E:BB:F6:10:CD:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010104
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAE031C912111EF8D2DD644762E951A.roa
Signing time: Wed 23 Oct 2024 09:30:20 +0000
ROA not before: Wed 23 Oct 2024 09:30:16 +0000
ROA not after: Fri 29 Nov 2024 09:30:16 +0000
asID: 203020
IP address blocks: 154.223.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65796 (0x10104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 23 09:30:16 2024 GMT
Not After : Nov 29 09:30:16 2024 GMT
Subject: CN=6718c22c-6213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:e5:43:c6:0f:6f:2a:cf:27:dc:ee:b6:21:
9f:a1:3e:ca:de:2c:55:07:b9:fe:1d:42:5e:49:0f:
78:41:f1:78:1d:56:f9:5f:55:01:51:ed:71:7b:81:
52:68:e0:9a:28:c7:66:4a:27:fe:8d:e8:14:cb:bd:
43:6f:59:4d:8e:03:40:1b:93:3d:c6:e2:03:5e:52:
8e:71:e2:cc:ac:76:d5:06:95:90:7f:a6:fd:e1:8f:
69:d8:12:fa:60:e8:ae:36:77:ea:bb:77:2a:99:dd:
e6:93:8c:2a:2c:9d:7c:b3:1b:a5:a9:7e:17:c8:90:
d9:0c:f8:42:82:89:de:ee:ad:f9:e1:14:75:43:dd:
71:c7:90:1c:ca:64:b4:d4:14:1e:bb:da:72:ef:62:
71:04:0a:1d:07:ac:35:45:fd:68:1b:b8:0e:5d:2c:
49:a7:08:76:4a:8e:a6:9a:0f:93:d3:54:87:91:fc:
1d:65:5f:40:0c:b4:98:c5:e7:71:9e:55:45:6d:fe:
21:dc:94:a5:ec:9c:4b:c1:41:90:df:df:9a:96:32:
ec:ee:f2:ca:eb:e4:4d:0d:28:59:45:c4:d1:38:c1:
dc:30:d9:b8:ef:b1:ec:11:c8:a8:8e:f9:14:65:dd:
b4:be:2e:45:dc:00:a7:9f:8b:1b:8b:e0:10:7f:42:
f3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7F:19:0F:46:02:F4:3F:02:8C:39:64:16:43:4E:BB:F6:10:CD:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BAE031C912111EF8D2DD644762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:5c:df:e9:5f:db:69:e1:01:80:cc:5b:65:dc:fb:3b:16:18:
cf:e5:b8:44:92:d8:26:71:f0:34:c3:86:09:85:ca:86:ee:c7:
f2:d8:55:24:5b:fb:4e:0c:b5:f1:0a:92:0c:98:71:f8:9a:78:
ef:2a:0e:23:b1:a4:3d:1f:78:52:8d:1f:00:19:97:55:ef:b8:
2d:e9:af:df:a3:7b:c2:d7:7a:86:ee:7c:3e:b2:9f:47:ee:1c:
77:96:06:8d:73:69:a7:d5:bf:7a:95:84:66:b5:f5:93:4b:88:
2c:6e:5f:48:3f:a6:9d:36:fe:b0:5b:77:82:71:d7:a3:d4:39:
da:5b:35:9a:0d:1a:11:1a:d1:da:f7:2c:57:07:1e:f2:f7:c0:
c9:e8:b5:0f:b2:55:8e:fc:15:ba:4f:9a:0f:b3:96:d4:ef:4c:
8a:6e:17:cf:d3:ca:34:2a:da:bb:c8:a0:87:f8:4f:95:9c:01:
9a:84:8d:75:97:a7:70:21:d4:a0:5b:8f:65:2e:61:81:64:64:
a6:72:40:30:e1:4d:94:cb:19:c2:cc:86:e8:1a:41:d0:0a:6c:
ec:87:7f:ca:13:3d:23:40:92:ea:71:28:9c:2a:2c:83:78:8d:
1d:97:aa:fd:06:da:b2:8a:84:b7:7a:0c:4e:f3:80:bc:2e:61:
c2:1e:e5:8e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQEEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIzMDkzMDE2WhcNMjQxMTI5MDkzMDE2WjAYMRYw
FAYDVQQDEw02NzE4YzIyYy02MjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsCTlQ8YPbyrPJ9zutiGfoT7K3ixVB7n+HUJeSQ94QfF4HVb5X1UBUe1x
e4FSaOCaKMdmSif+jegUy71Db1lNjgNAG5M9xuIDXlKOceLMrHbVBpWQf6b94Y9p
2BL6YOiuNnfqu3cqmd3mk4wqLJ18sxulqX4XyJDZDPhCgone7q354RR1Q91xx5Ac
ymS01BQeu9py72JxBAodB6w1Rf1oG7gOXSxJpwh2So6mmg+T01SHkfwdZV9ADLSY
xedxnlVFbf4h3JSl7JxLwUGQ39+aljLs7vLK6+RNDShZRcTROMHcMNm477HsEcio
jvkUZd20vi5F3ACnn4sbi+AQf0LzgQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFx/
GQ9GAvQ/Aow5ZBZDTrv2EM0SMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QkFFMDMxQzkxMjExMUVGOEQyREQ2NDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmt+sMA0GCSqGSIb3DQEB
CwUAA4IBAQAtXN/pX9tp4QGAzFtl3Ps7FhjP5bhEktgmcfA0w4YJhcqG7sfy2FUk
W/tODLXxCpIMmHH4mnjvKg4jsaQ9H3hSjR8AGZdV77gt6a/fo3vC13qG7nw+sp9H
7hx3lgaNc2mn1b96lYRmtfWTS4gsbl9IP6adNv6wW3eCcdej1DnaWzWaDRoRGtHa
9yxXBx7y98DJ6LUPslWO/BW6T5oPs5bU70yKbhfP08o0Ktq7yKCH+E+VnAGahI11
l6dwIdSgW49lLmGBZGSmckAw4U2UyxnCzIboGkHQCmzsh3/KEz0jQJLqcSicKiyD
eI0dl6r9BtqyioS3egxO84C8LmHCHuWO
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org