Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B609C42435711EFA81AB2B6762E951A.roa
File: 7B609C42435711EFA81AB2B6762E951A.roa (raw, json)
Hash identifier: KQfUqEqY1wsGCLTYsJ29nC8DoKbNcW0hw3pzr0aoooE=
Subject key identifier: 49:83:95:44:EE:DE:DB:D0:1A:97:49:87:C0:E6:42:BC:38:69:E3:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D2A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B609C42435711EFA81AB2B6762E951A.roa
Signing time: Tue 16 Jul 2024 09:40:48 +0000
ROA not before: Tue 16 Jul 2024 09:40:45 +0000
ROA not after: Sat 18 Jan 2025 09:40:45 +0000
asID: 138204
IP address blocks: 154.209.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53928 (0xd2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 16 09:40:45 2024 GMT
Not After : Jan 18 09:40:45 2025 GMT
Subject: CN=66964020-9cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:35:28:fb:dd:bf:75:6a:d6:7f:d1:03:f0:06:
f2:38:de:7a:1b:d8:46:ae:ea:e6:fe:00:31:1a:c3:
6b:16:bd:3a:71:ef:53:fb:50:16:a2:dd:84:a1:48:
56:90:49:e1:19:be:6c:f1:b9:26:1d:72:52:31:59:
c6:72:c4:62:0a:0c:9d:60:8c:17:76:ab:b2:4c:af:
fc:a5:e2:1e:59:e4:06:8f:26:0c:8a:db:e8:89:78:
17:52:1a:e8:1e:b6:39:a6:a1:0f:8c:5b:bb:1b:2a:
67:6b:65:20:6c:05:ff:49:d3:b8:ab:a8:70:3b:2a:
c7:25:76:b6:27:54:4f:6f:e8:ac:00:4f:0b:50:d2:
52:8b:5e:db:fa:9c:d0:f3:65:a9:44:12:6a:d4:f6:
7c:fb:fd:e2:5a:d1:dd:39:05:a1:df:a5:bf:e0:3b:
e2:97:ff:ec:18:41:48:98:b0:ca:ef:b9:f5:b6:67:
0a:07:86:00:fe:99:e0:44:5b:54:bd:6c:15:bc:c0:
5a:25:41:08:9f:06:7b:35:80:3b:ec:1f:17:b0:df:
c0:83:2f:fb:b5:66:e9:3c:95:2c:d4:46:fa:b4:ba:
f8:53:b1:43:f7:13:54:e1:31:ff:52:77:6f:b0:39:
07:95:6d:56:ea:0e:81:65:f6:af:7e:d2:e4:db:1b:
3f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:83:95:44:EE:DE:DB:D0:1A:97:49:87:C0:E6:42:BC:38:69:E3:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B609C42435711EFA81AB2B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.146.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ca:ff:79:4c:46:0f:18:33:b4:57:fa:9e:9d:c9:b9:24:9d:
29:e2:30:e9:aa:03:b1:9d:72:57:b7:8c:ed:89:a0:a2:3d:75:
35:04:1b:f1:65:5a:d4:8b:91:a0:d7:7d:d5:c0:8f:aa:f8:68:
ba:6e:1e:3d:90:e4:b5:ff:55:ca:3d:86:2f:f2:3b:2a:90:07:
d4:2e:25:9a:67:6a:11:9e:47:ad:67:a7:49:62:9e:c7:dc:8d:
40:6a:09:20:29:c2:1d:8e:cc:7c:f2:06:5e:30:54:0c:05:70:
b8:34:42:5e:42:7b:38:3b:f7:6f:26:13:9f:b7:32:97:54:15:
35:a3:85:d4:93:cf:5d:ed:23:e6:2e:43:39:81:73:76:37:76:
ae:0a:cf:dd:38:0a:c4:40:95:56:81:16:6e:1e:77:53:fa:85:
88:9e:9d:21:56:07:3c:1f:01:aa:36:ce:e4:39:a1:2f:ba:41:
f6:de:09:7a:b0:c7:e2:d6:c0:07:ac:c6:da:dd:67:59:d2:3a:
cc:24:68:a2:67:e3:27:1c:c6:38:2e:11:fe:b6:bf:bb:2f:88:
e1:9d:c6:f2:73:d6:08:3e:46:5b:a9:a4:2e:87:7d:b1:a1:29:
1b:ea:a8:a7:69:b8:e9:85:26:16:86:e2:b6:f2:c2:b9:fb:98:
66:df:3c:95
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDANKoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzE2MDk0MDQ1WhcNMjUwMTE4MDk0MDQ1WjAYMRYw
FAYDVQQDEw02Njk2NDAyMC05Y2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzzUo+92/dWrWf9ED8AbyON56G9hGrurm/gAxGsNrFr06ce9T+1AWot2E
oUhWkEnhGb5s8bkmHXJSMVnGcsRiCgydYIwXdquyTK/8peIeWeQGjyYMitvoiXgX
UhroHrY5pqEPjFu7Gypna2UgbAX/SdO4q6hwOyrHJXa2J1RPb+isAE8LUNJSi17b
+pzQ82WpRBJq1PZ8+/3iWtHdOQWh36W/4Dvil//sGEFImLDK77n1tmcKB4YA/png
RFtUvWwVvMBaJUEInwZ7NYA77B8XsN/Agy/7tWbpPJUs1Eb6tLr4U7FD9xNU4TH/
UndvsDkHlW1W6g6BZfavftLk2xs/WwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEmD
lUTu3tvQGpdJh8DmQrw4aeP6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QjYwOUM0MjQzNTcxMUVGQTgxQUIyQjY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtGSMA0GCSqGSIb3DQEB
CwUAA4IBAQATyv95TEYPGDO0V/qencm5JJ0p4jDpqgOxnXJXt4ztiaCiPXU1BBvx
ZVrUi5Gg133VwI+q+Gi6bh49kOS1/1XKPYYv8jsqkAfULiWaZ2oRnketZ6dJYp7H
3I1AagkgKcIdjsx88gZeMFQMBXC4NEJeQns4O/dvJhOftzKXVBU1o4XUk89d7SPm
LkM5gXN2N3auCs/dOArEQJVWgRZuHndT+oWInp0hVgc8HwGqNs7kOaEvukH23gl6
sMfi1sAHrMba3WdZ0jrMJGiiZ+MnHMY4LhH+tr+7L4jhncbyc9YIPkZbqaQuh32x
oSkb6qinabjphSYWhuK28sK5+5hm3zyV
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org