Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D86E6A5F1811EF942E4E9E762E951A.roa
File: 72D86E6A5F1811EF942E4E9E762E951A.roa (raw, json)
Hash identifier: tTOqWJsSrXjb7fOhfUy6Kb+yGkk65GOS4cV3XQLDjoY=
Subject key identifier: E2:63:D3:8B:15:75:E6:57:FF:68:8A:3D:2B:7B:D1:7D:02:04:BD:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E352
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D86E6A5F1811EF942E4E9E762E951A.roa
Signing time: Tue 20 Aug 2024 17:20:08 +0000
ROA not before: Tue 20 Aug 2024 17:20:05 +0000
ROA not after: Tue 21 Jan 2025 17:20:05 +0000
asID: 63199
IP address blocks: 154.207.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58194 (0xe352)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 17:20:05 2024 GMT
Not After : Jan 21 17:20:05 2025 GMT
Subject: CN=66c4d048-6c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:88:bc:90:79:f3:09:8f:07:54:db:ea:c2:1c:
9c:05:da:f8:83:f8:4e:a0:fa:97:79:01:07:5a:78:
f7:2c:78:96:17:fa:33:99:1e:83:9e:d1:f5:b8:f4:
0c:74:26:2f:1a:f1:fd:c3:85:26:ee:60:7c:f2:0d:
3b:fc:1b:0b:0f:e5:19:97:2c:9f:71:42:bb:0d:15:
14:65:63:ed:fb:cf:4f:a7:4d:08:ec:a2:ab:01:18:
bb:5f:59:18:bd:27:ca:55:ef:0a:de:f2:dd:5c:b9:
e2:a7:0f:5a:b4:ac:16:50:ca:43:bc:1d:21:d3:10:
21:92:0a:0a:94:0e:0d:af:4c:7a:e9:d8:d5:18:ab:
47:9c:60:e0:e8:a7:d1:3f:7f:52:00:bc:79:c4:33:
88:2e:28:c3:29:22:a7:c9:45:ee:2b:1e:2d:68:9a:
df:e7:c8:90:6d:88:84:24:f9:ec:f1:26:8a:2c:dd:
43:8a:eb:55:ba:9a:8d:e4:ba:4f:76:65:06:e4:05:
f2:7f:72:ff:c1:2d:73:cd:49:a6:c8:a7:e1:24:14:
12:7a:dc:d6:fe:9e:e3:a1:75:7e:02:ae:97:ab:c1:
ec:67:00:3f:40:c9:85:77:90:0e:b4:89:88:2d:76:
df:58:69:61:bc:2a:3b:b3:77:13:17:28:9f:1b:c7:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:63:D3:8B:15:75:E6:57:FF:68:8A:3D:2B:7B:D1:7D:02:04:BD:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D86E6A5F1811EF942E4E9E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.93.0/24
Signature Algorithm: sha256WithRSAEncryption
75:ae:6d:07:e0:f9:0e:d5:76:be:0b:d0:43:a2:5e:8b:3d:05:
5d:74:ef:78:27:90:56:1d:bb:8b:68:ad:2d:b7:ac:f8:32:23:
56:9c:1c:ad:73:79:60:50:0a:21:65:80:16:e5:57:9a:15:55:
2f:3d:56:81:06:16:a9:c0:5b:32:06:c1:6d:db:e3:8e:d6:5b:
ca:77:23:0a:23:b8:c9:19:62:3a:27:14:1f:85:b5:d9:fc:af:
29:6c:d6:c6:f4:6e:3f:b4:6d:a5:a2:9b:88:da:44:02:45:42:
7c:28:06:77:06:fd:56:2c:50:e3:b0:32:5a:10:75:e7:f4:00:
38:67:44:1b:ff:a4:8b:76:a5:37:df:ff:7e:52:6f:f7:40:06:
0d:3f:d3:f7:2e:7b:7d:c4:91:88:73:f5:ed:3d:b8:9f:4d:b0:
e9:32:0a:f8:05:b8:22:d4:70:c0:aa:7d:03:a6:88:4e:46:14:
ab:5b:55:15:9b:93:1f:76:e1:b7:3a:b3:ec:4e:df:e7:8a:52:
d1:3c:a4:0d:d8:79:ca:74:d4:bf:92:ec:35:b5:00:ce:e7:7a:
ce:8a:39:ee:66:5d:e1:e4:97:44:58:9f:da:a8:98:6f:d1:8a:
36:57:cc:c8:9c:74:98:ed:08:3a:e9:e7:45:db:19:56:5c:65:
a0:68:72:30
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAONSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwODIwMTcyMDA1WhcNMjUwMTIxMTcyMDA1WjAYMRYw
FAYDVQQDEw02NmM0ZDA0OC02YzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoYi8kHnzCY8HVNvqwhycBdr4g/hOoPqXeQEHWnj3LHiWF/ozmR6DntH1
uPQMdCYvGvH9w4Um7mB88g07/BsLD+UZlyyfcUK7DRUUZWPt+89Pp00I7KKrARi7
X1kYvSfKVe8K3vLdXLnipw9atKwWUMpDvB0h0xAhkgoKlA4Nr0x66djVGKtHnGDg
6KfRP39SALx5xDOILijDKSKnyUXuKx4taJrf58iQbYiEJPns8SaKLN1DiutVupqN
5LpPdmUG5AXyf3L/wS1zzUmmyKfhJBQSetzW/p7joXV+Aq6Xq8HsZwA/QMmFd5AO
tImILXbfWGlhvCo7s3cTFyifG8czBwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOJj
04sVdeZX/2iKPSt70X0CBL1iMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MkQ4NkU2QTVGMTgxMUVGOTQyRTRFOUU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms9dMA0GCSqGSIb3DQEB
CwUAA4IBAQB1rm0H4PkO1Xa+C9BDol6LPQVddO94J5BWHbuLaK0tt6z4MiNWnByt
c3lgUAohZYAW5VeaFVUvPVaBBhapwFsyBsFt2+OO1lvKdyMKI7jJGWI6JxQfhbXZ
/K8pbNbG9G4/tG2lopuI2kQCRUJ8KAZ3Bv1WLFDjsDJaEHXn9AA4Z0Qb/6SLdqU3
3/9+Um/3QAYNP9P3Lnt9xJGIc/XtPbifTbDpMgr4Bbgi1HDAqn0DpohORhSrW1UV
m5MfduG3OrPsTt/nilLRPKQN2HnKdNS/kuw1tQDO53rOijnuZl3h5JdEWJ/aqJhv
0Yo2V8zInHSY7Qg66edF2xlWXGWgaHIw
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:09 2024 by rpki-client on console-ams.rpki-client.org