Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA8FD08A2C711EE82F88A2BD25BE465.roa
File: 6FA8FD08A2C711EE82F88A2BD25BE465.roa (raw, json)
Hash identifier: aUmfD5hRFWEy69zMkD4lzfw2tK0cLjWEY0IUoo7aPvg=
Subject key identifier: 4E:B9:99:EE:0A:DB:E6:81:FB:7C:B1:0F:43:7E:CA:6D:0D:D1:20:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 66A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA8FD08A2C711EE82F88A2BD25BE465.roa
Signing time: Mon 25 Dec 2023 01:46:35 +0000
ROA not before: Mon 25 Dec 2023 01:46:32 +0000
ROA not after: Tue 07 Jan 2025 01:46:32 +0000
asID: 139057
IP address blocks: 154.85.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26275 (0x66a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 01:46:32 2023 GMT
Not After : Jan 7 01:46:32 2025 GMT
Subject: CN=6588defb-b5ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:66:42:99:68:db:05:80:27:cd:03:f9:6c:11:
d8:dc:f5:08:83:9b:26:6b:ed:b6:86:eb:41:ef:d3:
7a:a4:de:c3:90:c1:8c:6e:c9:5e:c1:54:de:07:bd:
f1:d8:a5:c5:b4:81:aa:e0:8d:e7:48:6c:1e:7e:d4:
92:05:66:1c:f4:17:e9:d2:1e:59:3c:dc:9c:23:ad:
6e:fd:bb:ae:0d:81:5d:45:05:34:99:02:98:8f:c4:
f1:fd:69:38:12:a1:7f:08:f6:05:8f:c7:be:0e:e3:
67:4e:15:18:fd:b7:24:9b:4a:9c:ab:da:08:f7:28:
5c:18:83:50:29:55:93:24:9c:1d:56:ec:e1:9a:c7:
52:f9:59:6a:a9:7e:29:c4:9e:fb:94:aa:d8:70:5c:
9d:0e:66:cd:46:3b:08:c1:3e:2f:cd:75:4e:cf:8a:
c8:c8:23:46:fb:c3:e6:d7:36:39:11:6f:64:b9:6b:
25:41:0a:bb:70:47:4d:02:0c:d2:fb:d7:ee:45:37:
d6:27:19:da:74:36:dd:9d:3c:f2:d3:b3:a1:26:84:
39:3f:7a:92:8b:9d:d8:a8:a7:cd:16:9f:d0:f5:bf:
a5:de:16:b7:d5:5e:05:b1:f6:b0:ec:30:12:6f:78:
3f:db:56:2b:69:d9:9a:de:c9:e1:d2:2b:21:31:c1:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B9:99:EE:0A:DB:E6:81:FB:7C:B1:0F:43:7E:CA:6D:0D:D1:20:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6FA8FD08A2C711EE82F88A2BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.78.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:9e:e1:73:2f:e8:86:d8:9f:92:01:6a:e7:2f:93:f2:1f:7a:
d9:59:d2:28:50:3d:6f:6d:f4:49:ec:dd:51:9c:22:81:e9:42:
88:01:79:b2:52:e5:db:42:f1:07:03:57:26:34:c9:3a:e8:dd:
32:75:3e:e4:ec:e2:fd:3f:54:7f:e8:98:07:58:a3:93:7c:71:
af:13:d0:ac:b2:14:65:8a:e4:28:4f:e5:e0:0c:63:0a:31:44:
c9:97:24:5b:af:46:95:86:a8:15:ad:03:1c:a4:03:e3:91:90:
eb:dd:98:de:d7:c9:ce:22:9d:dd:0a:f6:f4:de:4e:98:0c:05:
02:db:6a:3b:ed:d1:7a:db:54:ca:ea:d1:92:ad:ed:f5:ea:f1:
b4:f5:cf:62:98:77:45:8d:24:68:a8:c7:c6:5f:18:71:30:09:
4f:09:43:36:88:4c:89:72:dc:cb:33:34:9a:73:4f:ff:38:30:
b8:5a:ad:a0:31:97:d7:ab:93:19:cf:38:e4:af:26:35:4e:7b:
de:61:77:df:eb:09:25:d6:27:be:5c:1a:a4:7b:a6:d6:e5:cf:
6d:fc:31:a9:09:c3:65:bf:52:f2:30:69:06:2c:c0:6b:2d:42:
b8:a5:f5:dc:de:e6:2a:e9:0c:41:85:c7:88:70:47:b9:ab:be:
23:59:82:76
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICZqMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEyMjUwMTQ2MzJaFw0yNTAxMDcwMTQ2MzJaMBgxFjAU
BgNVBAMTDTY1ODhkZWZiLWI1ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPZkKZaNsFgCfNA/lsEdjc9QiDmyZr7baG60Hv03qk3sOQwYxuyV7BVN4H
vfHYpcW0gargjedIbB5+1JIFZhz0F+nSHlk83JwjrW79u64NgV1FBTSZApiPxPH9
aTgSoX8I9gWPx74O42dOFRj9tySbSpyr2gj3KFwYg1ApVZMknB1W7OGax1L5WWqp
finEnvuUqthwXJ0OZs1GOwjBPi/NdU7PisjII0b7w+bXNjkRb2S5ayVBCrtwR00C
DNL71+5FN9YnGdp0Nt2dPPLTs6EmhDk/epKLndiop80Wn9D1v6XeFrfVXgWx9rDs
MBJveD/bVitp2ZreyeHSKyExwbRjAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTrmZ
7grb5oH7fLEPQ37KbQ3RILEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzZGQThGRDA4QTJDNzExRUU4MkY4OEEyQkQyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaVU4wDQYJKoZIhvcNAQEL
BQADggEBAHue4XMv6IbYn5IBaucvk/IfetlZ0ihQPW9t9Ens3VGcIoHpQogBebJS
5dtC8QcDVyY0yTro3TJ1PuTs4v0/VH/omAdYo5N8ca8T0KyyFGWK5ChP5eAMYwox
RMmXJFuvRpWGqBWtAxykA+ORkOvdmN7Xyc4ind0K9vTeTpgMBQLbajvt0XrbVMrq
0ZKt7fXq8bT1z2KYd0WNJGiox8ZfGHEwCU8JQzaITIly3MszNJpzT/84MLharaAx
l9erkxnPOOSvJjVOe95hd9/rCSXWJ75cGqR7ptblz238MakJw2W/UvIwaQYswGst
Qril9dze5irpDEGFx4hwR7mrviNZgnY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:09 2024 by rpki-client on console-ams.rpki-client.org