Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F87C5D4736411EF9B3040B3762E951A.roa
File: 6F87C5D4736411EF9B3040B3762E951A.roa (raw, json)
Hash identifier: 78jfG46maU7+QG3PqssUlLnjVIXiAoT5na1312aF3As=
Subject key identifier: 3A:E1:88:72:4F:4C:B2:C4:3B:1C:C6:20:0D:61:E2:2A:FD:B9:75:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EEF6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F87C5D4736411EF9B3040B3762E951A.roa
Signing time: Sun 15 Sep 2024 13:14:28 +0000
ROA not before: Sun 15 Sep 2024 13:14:24 +0000
ROA not after: Sat 30 Nov 2024 13:14:24 +0000
asID: 142403
IP address blocks: 154.221.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61174 (0xeef6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:14:24 2024 GMT
Not After : Nov 30 13:14:24 2024 GMT
Subject: CN=66e6ddb4-a8a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:bd:fb:48:8f:c5:75:40:14:48:b3:ad:a7:
ee:94:16:8b:25:07:6a:f1:3c:6b:ea:70:60:cd:3d:
40:16:78:32:39:14:f2:94:ad:36:43:7e:ba:d1:de:
cb:90:e5:57:92:df:ad:ba:b2:fe:f4:61:6e:1b:84:
02:66:88:2d:02:c4:75:ee:3c:68:64:24:8e:1d:15:
f6:10:38:d4:4b:89:da:e5:5d:f7:64:e2:e2:0b:8e:
c6:a2:65:50:9e:30:b9:ee:cc:6a:d3:57:a7:e1:3e:
44:cd:9d:94:62:b5:81:58:7d:55:4b:de:b8:00:99:
d2:05:d1:1d:98:b9:25:59:8e:91:17:68:fd:f9:b9:
19:92:b2:01:5a:3d:d1:a2:93:88:bc:ad:be:5c:f1:
69:0c:57:e8:2a:af:f9:ea:0f:d3:b0:6f:4c:76:e7:
11:71:2b:70:d5:3a:e8:66:e5:cc:2b:ec:53:6a:24:
5d:0c:43:b8:99:85:f7:a6:eb:7d:b3:3c:95:50:20:
a3:11:dd:6f:52:89:3d:08:80:2a:44:b4:bc:d5:d1:
33:92:06:68:a9:84:aa:76:01:ba:0b:c2:eb:8d:33:
ca:9d:9d:9f:4c:84:dd:ea:0e:f1:42:54:bf:37:6d:
8e:18:4f:0d:5e:3c:b3:eb:5b:45:24:65:2d:6f:df:
9e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E1:88:72:4F:4C:B2:C4:3B:1C:C6:20:0D:61:E2:2A:FD:B9:75:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F87C5D4736411EF9B3040B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.23.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5d:c8:1d:7e:f2:66:b9:f4:a8:1f:67:1b:9c:4d:71:6d:7b:
1c:c3:59:0e:23:71:09:a1:8e:a5:83:03:df:fd:64:81:01:97:
80:7d:84:73:bd:81:de:ea:4e:6f:17:a7:7c:eb:81:f9:ac:0f:
78:5c:62:02:92:6d:9f:8b:b3:21:51:48:f6:2b:d7:8b:ce:3f:
45:61:2f:dc:d1:2c:b8:a1:7e:f1:06:39:4f:6d:80:45:51:c6:
a7:91:db:5f:40:01:92:02:16:81:15:f6:0a:7b:05:62:e3:32:
df:13:e2:47:7a:0d:6f:12:e0:ba:f5:b1:d5:8f:5a:49:fb:96:
90:b0:32:28:35:cb:4f:4f:d4:c2:62:58:fe:95:ee:f0:c9:53:
17:6a:34:16:11:31:f6:3a:4d:15:67:54:57:cf:53:47:4f:e1:
06:4b:44:6b:47:41:28:b7:08:a5:b1:a8:21:1e:27:12:bc:50:
46:28:0e:80:88:66:c9:37:10:e6:7c:d3:a4:dc:b4:57:b2:bc:
e5:51:be:c4:18:1d:21:f1:f9:cc:61:d8:eb:de:f4:d1:44:71:
e3:0d:95:00:1a:f6:cf:aa:86:96:8c:49:e5:ba:8f:40:7c:75:
23:38:e3:bd:27:bd:aa:a0:dc:4a:ef:19:02:78:20:4a:d5:28:
9b:3b:30:25
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO72MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE1MTMxNDI0WhcNMjQxMTMwMTMxNDI0WjAYMRYw
FAYDVQQDEw02NmU2ZGRiNC1hOGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqd+9+0iPxXVAFEizrafulBaLJQdq8Txr6nBgzT1AFngyORTylK02Q366
0d7LkOVXkt+turL+9GFuG4QCZogtAsR17jxoZCSOHRX2EDjUS4na5V33ZOLiC47G
omVQnjC57sxq01en4T5EzZ2UYrWBWH1VS964AJnSBdEdmLklWY6RF2j9+bkZkrIB
Wj3RopOIvK2+XPFpDFfoKq/56g/TsG9MducRcStw1TroZuXMK+xTaiRdDEO4mYX3
put9szyVUCCjEd1vUok9CIAqRLS81dEzkgZoqYSqdgG6C8LrjTPKnZ2fTITd6g7x
QlS/N22OGE8NXjyz61tFJGUtb9+ePwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDrh
iHJPTLLEOxzGIA1h4ir9uXV5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82Rjg3QzVENDczNjQxMUVGOUIzMDQwQjM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0XMA0GCSqGSIb3DQEB
CwUAA4IBAQBfXcgdfvJmufSoH2cbnE1xbXscw1kOI3EJoY6lgwPf/WSBAZeAfYRz
vYHe6k5vF6d864H5rA94XGICkm2fi7MhUUj2K9eLzj9FYS/c0Sy4oX7xBjlPbYBF
UcankdtfQAGSAhaBFfYKewVi4zLfE+JHeg1vEuC69bHVj1pJ+5aQsDIoNctPT9TC
Ylj+le7wyVMXajQWETH2Ok0VZ1RXz1NHT+EGS0RrR0EotwilsaghHicSvFBGKA6A
iGbJNxDmfNOk3LRXsrzlUb7EGB0h8fnMYdjr3vTRRHHjDZUAGvbPqoaWjEnluo9A
fHUjOOO9J72qoNxK7xkCeCBK1SibOzAl
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:10 2024 by rpki-client on console-fra.rpki-client.org