Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B114CD4A45811EF9EDB0C77762E951A.roa
File: 7B114CD4A45811EF9EDB0C77762E951A.roa (raw, json)
Hash identifier: PZVg4lbvlG1I2JGrsjTcdNemvO8q4jtR/xef2MiYF3A=
Subject key identifier: 0C:03:BE:58:74:A1:93:2A:0C:2F:77:EE:86:44:F3:8A:1E:69:4F:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E49
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B114CD4A45811EF9EDB0C77762E951A.roa
Signing time: Sat 16 Nov 2024 20:22:20 +0000
ROA not before: Sat 16 Nov 2024 20:22:16 +0000
ROA not after: Wed 27 Nov 2024 20:22:16 +0000
asID: 204721
IP address blocks: 154.215.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69193 (0x10e49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:22:16 2024 GMT
Not After : Nov 27 20:22:16 2024 GMT
Subject: CN=6738fefc-a330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8c:51:50:b1:68:25:73:f5:ff:28:4f:63:c2:
09:05:d6:05:01:46:89:8b:a2:d8:cf:c6:57:25:84:
be:26:88:e4:63:e2:18:3f:02:2a:57:d2:de:ae:34:
57:94:6d:1f:4f:4b:00:94:c3:a0:1e:46:ff:9e:72:
f2:f7:0a:98:fb:a8:64:49:b1:5e:34:0b:42:5f:af:
e9:12:22:bd:91:bc:e4:e0:22:0a:b8:a5:e4:62:5f:
56:6d:c3:b0:a5:ed:a9:b8:8d:e9:07:38:7e:f5:c7:
41:d7:73:36:23:4a:92:3d:86:b9:b9:fd:b5:73:3e:
3c:a8:f6:c4:76:d3:16:ec:46:62:86:19:2a:3a:d0:
8a:fd:e0:24:56:2d:4d:c8:5e:0b:66:92:f1:53:c7:
45:cf:43:14:62:44:d3:55:61:70:7e:9b:6c:d8:b7:
14:34:99:ef:2d:15:0a:21:d7:67:a1:c0:23:9c:d5:
8b:7d:32:dd:2c:e8:12:06:eb:07:b9:76:b7:8f:c7:
9f:3d:bf:bb:11:1b:5e:78:8a:8c:01:57:70:d6:90:
20:8d:93:50:63:ac:54:e4:dd:91:92:96:5a:95:c9:
eb:ab:4e:29:1f:f6:24:69:d1:80:31:c2:9d:ca:3c:
b6:13:4b:4e:1b:e1:68:6c:d6:c1:85:1d:15:6e:e0:
71:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:03:BE:58:74:A1:93:2A:0C:2F:77:EE:86:44:F3:8A:1E:69:4F:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B114CD4A45811EF9EDB0C77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.2.0/23
Signature Algorithm: sha256WithRSAEncryption
58:dd:20:b4:f3:96:f5:b7:c3:ea:40:72:ed:46:32:b2:ad:59:
d5:3c:d8:61:94:de:9d:4c:a5:42:e5:7f:14:b3:3e:f0:1e:10:
6d:83:10:ac:65:42:83:58:88:8d:0d:ed:dc:d2:76:35:44:8a:
35:ea:f4:8e:8f:dc:02:a7:5c:2a:bf:7e:04:28:f1:20:65:7e:
84:57:75:6c:7f:ac:f2:5b:39:ca:13:41:c4:1e:7c:4b:4b:8f:
e5:07:38:87:fa:5f:0a:d4:3c:c4:10:72:87:8f:97:6f:53:0e:
01:16:06:a0:0f:5d:6a:a7:fc:f9:e3:6b:52:2f:4c:2f:10:d7:
be:b7:f6:5d:8f:26:cf:53:97:bf:ef:a1:f8:f5:68:36:c9:3d:
d6:ff:53:cb:02:5d:35:58:9f:75:db:11:85:5a:87:32:e5:6a:
fb:81:62:b3:ff:6b:81:2e:fb:64:06:0f:fc:fc:d5:71:66:f3:
4d:94:09:8e:7c:9c:47:8b:67:b6:2c:51:0e:67:ce:40:39:11:
4c:ef:f4:9a:7f:10:78:97:ad:82:02:ae:42:2c:38:cb:12:f7:
62:e3:1a:4c:b2:c8:03:91:36:7c:48:3c:cf:59:44:41:33:99:
0b:19:d2:0c:87:ae:c4:e3:e1:65:28:e9:b4:4d:8c:9c:16:be:
d5:c7:f6:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ5JMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MjAyMjE2WhcNMjQxMTI3MjAyMjE2WjAYMRYw
FAYDVQQDEw02NzM4ZmVmYy1hMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq4xRULFoJXP1/yhPY8IJBdYFAUaJi6LYz8ZXJYS+JojkY+IYPwIqV9Le
rjRXlG0fT0sAlMOgHkb/nnLy9wqY+6hkSbFeNAtCX6/pEiK9kbzk4CIKuKXkYl9W
bcOwpe2puI3pBzh+9cdB13M2I0qSPYa5uf21cz48qPbEdtMW7EZihhkqOtCK/eAk
Vi1NyF4LZpLxU8dFz0MUYkTTVWFwfpts2LcUNJnvLRUKIddnocAjnNWLfTLdLOgS
BusHuXa3j8efPb+7ERteeIqMAVdw1pAgjZNQY6xU5N2RkpZalcnrq04pH/YkadGA
McKdyjy2E0tOG+FobNbBhR0VbuBxIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAwD
vlh0oZMqDC937oZE84oeaU9mMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QjExNENENEE0NTgxMUVGOUVEQjBDNzc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtcCMA0GCSqGSIb3DQEB
CwUAA4IBAQBY3SC085b1t8PqQHLtRjKyrVnVPNhhlN6dTKVC5X8Usz7wHhBtgxCs
ZUKDWIiNDe3c0nY1RIo16vSOj9wCp1wqv34EKPEgZX6EV3Vsf6zyWznKE0HEHnxL
S4/lBziH+l8K1DzEEHKHj5dvUw4BFgagD11qp/z542tSL0wvENe+t/ZdjybPU5e/
76H49Wg2yT3W/1PLAl01WJ912xGFWocy5Wr7gWKz/2uBLvtkBg/8/NVxZvNNlAmO
fJxHi2e2LFEOZ85AORFM7/SafxB4l62CAq5CLDjLEvdi4xpMssgDkTZ8SDzPWURB
M5kLGdIMh67E4+FlKOm0TYycFr7Vx/bD
-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:17 2024 by rpki-client on console-fra.rpki-client.org