Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71A75F968F8911EFBE850EB8762E951A.roa
File: 71A75F968F8911EFBE850EB8762E951A.roa (raw, json)
Hash identifier: US0eKIdslT4FiyU4Hl9XNCjd0Urir1rE5R31uvEQ64M=
Subject key identifier: 89:CC:E3:FA:8F:77:36:D7:AB:C9:2F:3D:1E:64:CA:46:52:7C:EE:88
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010038
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71A75F968F8911EFBE850EB8762E951A.roa
Signing time: Mon 21 Oct 2024 08:49:55 +0000
ROA not before: Mon 21 Oct 2024 08:49:52 +0000
ROA not after: Sun 24 Nov 2024 08:49:52 +0000
asID: 147176
IP address blocks: 154.197.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65592 (0x10038)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 08:49:52 2024 GMT
Not After : Nov 24 08:49:52 2024 GMT
Subject: CN=671615b3-a223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3d:b8:a7:67:9e:59:dc:28:32:50:54:1a:0d:
b4:ba:8b:ac:fb:2d:34:f4:fa:bb:c0:19:97:48:95:
0f:0e:00:75:ab:19:18:78:e0:38:52:4e:b1:ab:bc:
48:d8:c9:80:09:b5:0a:98:57:1d:e4:d2:bc:e3:b3:
88:7d:8c:70:da:45:35:59:a4:20:c8:b1:87:7b:2f:
1b:76:64:4a:ed:45:4e:7c:41:f3:35:aa:4e:0a:ad:
7d:ba:c1:d1:ef:9b:94:15:97:da:c1:ed:a0:3d:c1:
77:7a:d6:a5:09:b9:83:23:53:60:ca:77:70:70:02:
7a:3e:b4:3d:fd:ce:b1:26:3e:44:9d:c9:d6:53:78:
4e:d8:60:6e:24:bd:2d:44:df:39:48:5b:5e:45:06:
65:50:29:62:a0:d9:54:9c:ff:20:00:b5:b5:6c:5a:
83:4f:73:68:06:73:1d:b2:fe:fd:31:4f:60:20:b9:
ad:76:e5:2e:97:99:61:a9:1f:5a:ac:31:42:38:02:
9a:bd:62:c2:91:78:15:8d:64:d2:a6:11:c2:0e:ab:
56:ce:87:03:c5:e3:90:b2:35:93:1e:1b:ba:1e:cb:
7c:03:94:7e:f4:30:5a:56:bf:07:97:8d:bf:c1:36:
0c:0d:3c:a9:7b:9e:bd:09:93:e5:bf:44:89:db:0d:
f5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:CC:E3:FA:8F:77:36:D7:AB:C9:2F:3D:1E:64:CA:46:52:7C:EE:88
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/71A75F968F8911EFBE850EB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.116.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f8:d8:55:ed:50:77:94:97:8f:12:84:96:35:9b:46:5b:31:
d5:2e:3c:1f:8b:14:64:81:f4:87:26:a5:45:0c:94:ee:56:99:
8f:c0:d6:fa:33:f9:f0:ea:88:1c:15:a0:c8:fc:1f:65:e0:b4:
75:c2:03:da:86:96:ae:88:40:d6:66:f1:03:f7:da:39:48:6b:
e3:70:f3:65:d2:b1:84:2b:10:47:4e:b5:9f:43:18:1b:56:b4:
7f:ec:34:60:af:d5:25:45:8b:8a:0e:9a:b1:46:5b:5d:66:3f:
3a:35:9f:48:99:79:c6:0d:70:04:98:de:79:fd:89:f7:d1:f7:
c3:34:93:18:06:f2:48:86:f4:d6:02:b8:b3:4e:00:95:3a:9b:
e7:45:dc:a0:2f:02:56:34:a6:56:dc:90:3c:52:4f:65:9e:d7:
78:c5:71:3b:03:50:59:cc:98:b8:66:7a:41:d3:11:c2:28:03:
5a:5a:71:cc:8b:b4:90:89:31:43:c9:61:3f:06:20:df:93:37:
59:97:22:00:d7:3d:03:6f:dc:1b:45:e3:16:e5:33:ef:f7:4e:
e0:a4:3b:45:f7:42:cd:c7:1a:40:ef:b6:0a:51:de:1b:ec:d4:
e8:50:ef:bb:f1:67:be:de:75:3c:ef:79:78:51:cf:39:5a:1c:
5d:43:02:df
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQA4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIxMDg0OTUyWhcNMjQxMTI0MDg0OTUyWjAYMRYw
FAYDVQQDEw02NzE2MTViMy1hMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3j24p2eeWdwoMlBUGg20uous+y009Pq7wBmXSJUPDgB1qxkYeOA4Uk6x
q7xI2MmACbUKmFcd5NK847OIfYxw2kU1WaQgyLGHey8bdmRK7UVOfEHzNapOCq19
usHR75uUFZfawe2gPcF3etalCbmDI1NgyndwcAJ6PrQ9/c6xJj5EncnWU3hO2GBu
JL0tRN85SFteRQZlUClioNlUnP8gALW1bFqDT3NoBnMdsv79MU9gILmtduUul5lh
qR9arDFCOAKavWLCkXgVjWTSphHCDqtWzocDxeOQsjWTHhu6Hst8A5R+9DBaVr8H
l42/wTYMDType569CZPlv0SJ2w31xQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFInM
4/qPdzbXq8kvPR5kykZSfO6IMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MUE3NUY5NjhGODkxMUVGQkU4NTBFQjg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsV0MA0GCSqGSIb3DQEB
CwUAA4IBAQCR+NhV7VB3lJePEoSWNZtGWzHVLjwfixRkgfSHJqVFDJTuVpmPwNb6
M/nw6ogcFaDI/B9l4LR1wgPahpauiEDWZvED99o5SGvjcPNl0rGEKxBHTrWfQxgb
VrR/7DRgr9UlRYuKDpqxRltdZj86NZ9ImXnGDXAEmN55/Yn30ffDNJMYBvJIhvTW
ArizTgCVOpvnRdygLwJWNKZW3JA8Uk9lntd4xXE7A1BZzJi4ZnpB0xHCKANaWnHM
i7SQiTFDyWE/BiDfkzdZlyIA1z0Db9wbReMW5TPv907gpDtF90LNxxpA77YKUd4b
7NToUO+78We+3nU873l4Uc85WhxdQwLf
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:09 2024 by rpki-client on console-ams.rpki-client.org