Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C19F1FC904F11EFA3CCF899762E951A.roa
File: 7C19F1FC904F11EFA3CCF899762E951A.roa (raw, json)
Hash identifier: vfVmc3AYMegPeF5e+7/mH2hhYgP5o7q+LE3+c3guPFQ=
Subject key identifier: 27:8D:CF:E6:C8:63:69:37:62:E7:F4:1B:7B:AD:07:09:84:2C:ED:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010081
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C19F1FC904F11EFA3CCF899762E951A.roa
Signing time: Tue 22 Oct 2024 08:27:33 +0000
ROA not before: Tue 22 Oct 2024 08:27:29 +0000
ROA not after: Tue 26 Nov 2024 08:27:29 +0000
asID: 18013
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65665 (0x10081)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 22 08:27:29 2024 GMT
Not After : Nov 26 08:27:29 2024 GMT
Subject: CN=671761f5-770f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e7:69:2a:6a:83:65:86:d5:f6:a8:87:dc:72:
cc:de:c3:64:73:18:2b:17:27:4e:1b:11:f4:f5:1f:
97:20:9b:93:08:31:c3:1a:c1:9c:31:86:2a:38:92:
03:f3:6a:85:c0:80:50:1e:af:1c:e2:cb:19:5d:91:
3d:08:4e:3d:e9:5f:b3:64:00:c5:54:67:d5:aa:28:
83:e4:2d:34:79:3d:b2:ac:95:20:eb:3b:28:d1:06:
b3:cb:d2:b6:f6:8d:04:b0:34:d5:52:ed:c1:05:4a:
99:da:c6:14:7f:95:88:a0:8f:e3:92:35:78:ba:a6:
e4:88:82:23:64:a8:01:07:ec:50:cc:2a:ce:11:b9:
d3:39:14:2b:25:0e:08:3e:d8:7b:21:95:36:17:3f:
c9:97:ac:ad:b0:04:90:e9:f9:d5:22:69:ab:2c:70:
f9:c3:61:f1:7e:1f:2b:0a:d1:b9:13:4f:69:3b:e5:
77:7d:78:26:70:51:32:98:bb:99:ef:0e:d8:49:22:
ad:da:c8:53:24:25:f1:e0:5b:33:c9:a0:3b:93:82:
c9:ff:d7:b9:7e:9b:29:88:77:05:d8:de:1a:c7:37:
9e:9b:d9:b3:f9:ce:09:97:96:7c:f4:99:2f:86:1c:
ed:88:be:6f:bf:9e:8e:ee:af:06:17:ac:cb:aa:80:
5f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8D:CF:E6:C8:63:69:37:62:E7:F4:1B:7B:AD:07:09:84:2C:ED:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C19F1FC904F11EFA3CCF899762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:c5:da:c5:5a:87:a3:25:f1:82:5c:78:45:7f:d7:66:a4:ab:
ee:a1:47:5c:65:b2:4a:94:26:38:a2:71:a8:ee:74:16:c2:3d:
02:0a:b6:1b:75:61:32:d0:84:91:e5:fe:95:fe:84:0d:88:71:
71:87:c5:6e:21:d1:3f:46:9b:4d:8b:96:20:c8:c9:df:d9:38:
8d:39:d6:00:01:94:87:93:3c:cb:1d:0a:b1:34:89:4a:86:2f:
bb:0a:bb:f8:94:0c:0b:d5:73:88:89:3c:de:d0:5d:84:01:3b:
2c:ce:5d:25:a3:0c:ee:47:f7:cc:fe:0b:98:ef:2a:21:f5:63:
d0:bb:d8:7a:50:5d:5d:5c:80:de:bd:f9:21:78:9e:53:43:f4:
c3:54:ec:53:70:94:d8:8d:05:12:ac:37:7c:6b:2a:5c:81:2c:
55:32:09:63:d7:f6:87:c0:a4:32:d1:9b:da:28:8d:8b:b3:e4:
f8:75:79:84:ad:02:ef:6f:6f:c8:af:b3:fa:23:78:ef:c1:4a:
db:3e:f1:7b:52:22:3e:a6:41:74:ed:70:83:ba:b7:35:41:9c:
f7:b6:6a:9e:59:4f:92:7c:43:1a:14:69:00:9a:a4:e5:8a:9a:
f1:af:d6:21:4e:d6:0f:8b:49:88:ff:12:72:1b:75:d1:05:c1:
f6:d4:d9:b6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQCBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDIyMDgyNzI5WhcNMjQxMTI2MDgyNzI5WjAYMRYw
FAYDVQQDEw02NzE3NjFmNS03NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8edpKmqDZYbV9qiH3HLM3sNkcxgrFydOGxH09R+XIJuTCDHDGsGcMYYq
OJID82qFwIBQHq8c4ssZXZE9CE496V+zZADFVGfVqiiD5C00eT2yrJUg6zso0Qaz
y9K29o0EsDTVUu3BBUqZ2sYUf5WIoI/jkjV4uqbkiIIjZKgBB+xQzCrOEbnTORQr
JQ4IPth7IZU2Fz/Jl6ytsASQ6fnVImmrLHD5w2Hxfh8rCtG5E09pO+V3fXgmcFEy
mLuZ7w7YSSKt2shTJCXx4FszyaA7k4LJ/9e5fpspiHcF2N4axzeem9mz+c4Jl5Z8
9JkvhhztiL5vv56O7q8GF6zLqoBf6wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCeN
z+bIY2k3Yuf0G3utBwmELO1eMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QzE5RjFGQzkwNEYxMUVGQTNDQ0Y4OTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmslAMA0GCSqGSIb3DQEB
CwUAA4IBAQC5xdrFWoejJfGCXHhFf9dmpKvuoUdcZbJKlCY4onGo7nQWwj0CCrYb
dWEy0ISR5f6V/oQNiHFxh8VuIdE/RptNi5YgyMnf2TiNOdYAAZSHkzzLHQqxNIlK
hi+7Crv4lAwL1XOIiTze0F2EATsszl0lowzuR/fM/guY7yoh9WPQu9h6UF1dXIDe
vfkheJ5TQ/TDVOxTcJTYjQUSrDd8aypcgSxVMglj1/aHwKQy0ZvaKI2Ls+T4dXmE
rQLvb2/Ir7P6I3jvwUrbPvF7UiI+pkF07XCDurc1QZz3tmqeWU+SfEMaFGkAmqTl
iprxr9YhTtYPi0mI/xJyG3XRBcH21Nm2
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:10 2024 by rpki-client on console-ams.rpki-client.org