Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C149460A8CD11EFA0F87C80762E951A.roa
File: 6C149460A8CD11EFA0F87C80762E951A.roa (raw, json)
Hash identifier: bRD5e4ekOJmFOf3TddYg4/fnoZiEW4hBK2E0DPNJxsk=
Subject key identifier: FD:2C:82:79:EE:EB:8A:69:00:DF:78:89:D9:18:40:85:CB:2C:05:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011015
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C149460A8CD11EFA0F87C80762E951A.roa
Signing time: Fri 22 Nov 2024 12:29:31 +0000
ROA not before: Fri 22 Nov 2024 12:29:27 +0000
ROA not after: Sat 30 Nov 2024 12:29:27 +0000
asID: 137443
IP address blocks: 154.223.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69653 (0x11015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 12:29:27 2024 GMT
Not After : Nov 30 12:29:27 2024 GMT
Subject: CN=6740792b-aa5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a3:e8:b5:bf:5c:5e:f0:b1:e2:55:c8:a4:d7:
56:60:27:c8:60:42:b7:96:7b:8d:ca:58:79:87:4a:
0f:ff:0b:ba:e7:c2:8b:ff:b8:77:61:0f:dd:0c:2f:
aa:60:b4:e5:53:36:c0:fa:b6:94:09:a0:03:25:e1:
c4:13:51:4e:ac:e7:d2:3a:41:13:b6:e2:6c:e8:78:
77:60:c7:7b:91:90:1a:13:4a:ef:ef:57:59:59:fc:
72:2e:b7:2a:a5:26:da:ca:d4:42:82:58:c2:78:c2:
8a:21:90:ea:c8:ff:5e:ce:6e:b7:f6:5b:67:2e:85:
09:ae:4b:34:47:e3:88:8d:dc:27:0b:b6:52:58:dc:
b4:98:55:cb:b3:86:7f:ae:b8:b7:18:a9:c3:ad:59:
28:42:d7:84:e2:4a:28:20:d9:fe:51:5a:7b:c9:b8:
d6:82:0d:f4:48:a5:9b:a1:7b:14:1d:03:7a:0f:4c:
1b:b5:1d:85:63:b2:8a:eb:ec:d6:97:e9:d0:e4:c3:
e8:f3:ec:0f:27:a2:7f:0f:0b:62:62:df:0b:c0:1f:
18:fd:44:50:ab:82:7b:27:cc:bb:91:1a:1c:83:ea:
48:d2:bb:c7:75:9e:7c:7f:af:91:22:53:a5:4b:fc:
10:2f:86:71:72:3e:fe:2c:31:d9:7d:c7:5d:a0:8c:
d6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2C:82:79:EE:EB:8A:69:00:DF:78:89:D9:18:40:85:CB:2C:05:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C149460A8CD11EFA0F87C80762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.181.0/24
Signature Algorithm: sha256WithRSAEncryption
73:6c:bc:58:60:8c:a0:09:f6:a5:5c:0f:22:fb:19:16:7e:57:
54:35:7e:6d:da:44:95:9b:d6:c2:bd:20:5d:41:fb:a4:85:e9:
98:72:90:7a:9a:ce:ae:76:2e:e1:23:01:9d:67:ba:f0:c8:48:
18:16:c5:52:c2:bf:83:27:38:06:2f:a1:5b:da:0e:a6:4e:bc:
87:e7:4d:b3:b9:bb:e1:2c:da:a2:96:32:f3:d3:c7:1f:f2:23:
62:79:d6:2b:27:8c:f8:8c:47:08:ed:fb:64:34:de:4f:75:7a:
e1:4c:88:c6:38:44:71:c8:61:61:42:f6:b6:bb:06:74:f7:c9:
03:94:ef:48:06:51:82:84:c9:f5:0d:d2:af:2f:1a:87:51:89:
ff:0b:b3:f0:f1:79:5a:01:8f:5b:6a:02:5a:59:81:73:f1:49:
be:0f:34:50:d4:b6:4c:f7:66:d9:a3:0d:69:ce:4f:91:28:a9:
b0:8d:32:37:d8:b9:29:62:3e:a1:fc:27:50:4b:d4:6f:f6:76:
15:ab:3f:6b:55:7f:f7:e7:c1:7b:6c:c1:da:62:51:8c:01:77:
c1:6a:f3:56:ed:ca:56:3a:ab:fd:9c:a0:95:0c:c7:a9:44:9c:
87:93:84:4b:e6:5d:14:4c:75:4a:7a:3e:7e:8b:d6:e8:1f:ed:
ea:99:d9:55
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARAVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTIyOTI3WhcNMjQxMTMwMTIyOTI3WjAYMRYw
FAYDVQQDEw02NzQwNzkyYi1hYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtKPotb9cXvCx4lXIpNdWYCfIYEK3lnuNylh5h0oP/wu658KL/7h3YQ/d
DC+qYLTlUzbA+raUCaADJeHEE1FOrOfSOkETtuJs6Hh3YMd7kZAaE0rv71dZWfxy
LrcqpSbaytRCgljCeMKKIZDqyP9ezm639ltnLoUJrks0R+OIjdwnC7ZSWNy0mFXL
s4Z/rri3GKnDrVkoQteE4kooINn+UVp7ybjWgg30SKWboXsUHQN6D0wbtR2FY7KK
6+zWl+nQ5MPo8+wPJ6J/DwtiYt8LwB8Y/URQq4J7J8y7kRocg+pI0rvHdZ58f6+R
IlOlS/wQL4Zxcj7+LDHZfcddoIzWUwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP0s
gnnu64ppAN94idkYQIXLLAWsMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QzE0OTQ2MEE4Q0QxMUVGQTBGODdDODA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt+1MA0GCSqGSIb3DQEB
CwUAA4IBAQBzbLxYYIygCfalXA8i+xkWfldUNX5t2kSVm9bCvSBdQfukhemYcpB6
ms6udi7hIwGdZ7rwyEgYFsVSwr+DJzgGL6Fb2g6mTryH502zubvhLNqiljLz08cf
8iNiedYrJ4z4jEcI7ftkNN5PdXrhTIjGOERxyGFhQva2uwZ098kDlO9IBlGChMn1
DdKvLxqHUYn/C7Pw8XlaAY9bagJaWYFz8Um+DzRQ1LZM92bZow1pzk+RKKmwjTI3
2LkpYj6h/CdQS9Rv9nYVqz9rVX/358F7bMHaYlGMAXfBavNW7cpWOqv9nKCVDMep
RJyHk4RL5l0UTHVKej5+i9boH+3qmdlV
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:15 2024 by rpki-client on console-ams.rpki-client.org