Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FB108809B8211EF813314B0762E951A.roa
File: 7FB108809B8211EF813314B0762E951A.roa (raw, json)
Hash identifier: ovUu0H3s4p80z2J3HiuFVN259cmEWnchDHHOsbVirEM=
Subject key identifier: 36:B0:83:8E:7F:C3:5A:56:FF:9D:34:FD:E3:10:48:CB:3C:52:EE:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FB108809B8211EF813314B0762E951A.roa
Signing time: Tue 05 Nov 2024 14:30:26 +0000
ROA not before: Tue 05 Nov 2024 14:30:20 +0000
ROA not after: Mon 20 Jan 2025 14:30:20 +0000
asID: 135097
IP address blocks: 154.216.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67575 (0x107f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 14:30:20 2024 GMT
Not After : Jan 20 14:30:20 2025 GMT
Subject: CN=672a2c02-c380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f3:b0:96:bf:30:96:13:2c:dd:c4:76:66:a1:
a4:af:37:dc:d5:2b:0f:8f:91:9b:5d:fa:20:a9:a9:
b7:fd:57:ac:49:70:03:76:11:23:51:d4:a2:9b:64:
6a:88:cc:59:9b:67:1c:75:65:21:08:83:08:14:24:
81:c8:48:2b:47:45:1b:78:fe:f7:d3:8b:4e:73:d6:
6b:ea:8a:7c:45:98:00:32:0a:60:ad:1f:ea:68:92:
1e:ce:a1:7a:c6:95:f1:80:d8:af:0c:91:ed:5e:8b:
71:9e:cc:95:29:49:bc:80:57:a0:f3:08:b9:32:0a:
d4:12:89:a0:bd:82:a9:82:6c:f0:74:f4:07:8f:ff:
96:0b:c5:47:17:e5:f1:76:b3:14:74:36:76:4c:78:
92:10:d3:c1:54:68:2b:51:d2:20:d1:4f:f4:89:e0:
d7:50:27:a2:98:90:ec:ef:ea:39:19:6c:98:f6:f3:
e6:f6:9c:25:7d:e5:b4:ac:fc:48:5c:5f:18:de:27:
a0:b8:83:8e:ce:9e:cc:4b:9d:22:27:fe:7a:4b:27:
a0:50:84:4e:91:db:10:5e:5c:ec:9d:7b:b6:de:5d:
a4:24:c5:d7:dc:39:a0:3d:73:9e:1d:85:2f:30:de:
7a:23:53:59:da:b2:2a:12:47:41:4e:65:73:a4:e5:
f9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B0:83:8E:7F:C3:5A:56:FF:9D:34:FD:E3:10:48:CB:3C:52:EE:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FB108809B8211EF813314B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.8.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:bb:db:cc:24:92:45:5b:ba:72:88:11:10:3c:8c:0b:e2:c3:
16:8f:55:af:43:25:f8:c2:a9:ea:29:2f:1e:a5:9e:31:5c:e1:
53:96:31:e3:c5:c0:67:bd:4d:c6:d2:65:2b:01:16:99:da:f8:
58:5f:e1:cf:35:35:d7:29:93:fe:ed:5e:57:dc:3c:f7:b6:86:
e1:d4:79:c6:ac:00:b0:84:0b:7e:31:98:0f:48:f8:c5:6d:c7:
ea:6e:84:58:ee:ff:ee:b8:b3:9d:95:f0:59:12:bc:60:17:86:
ef:5e:8c:68:d3:cb:56:d9:5e:c2:fb:b9:07:62:0a:ef:4e:bd:
53:93:c6:f0:6a:de:0c:6e:57:10:9d:b5:ad:cc:2a:c9:ca:0c:
db:4e:04:7e:10:8f:cd:22:71:12:a2:f8:f4:4e:5d:a0:1b:5c:
80:c0:63:f4:36:03:5c:36:54:64:0a:e9:dc:84:72:61:9b:07:
38:06:cf:ec:1e:45:01:05:65:74:27:a3:55:36:66:e4:ef:37:
47:5e:b1:bb:97:26:7e:36:03:4f:09:c5:63:ae:e3:f4:f0:3d:
4f:ab:5e:b8:81:4a:c5:bb:e9:73:28:72:f8:b7:d5:e4:e5:c7:
a9:3f:ea:4b:9d:07:c8:18:fe:52:95:b6:a6:6b:93:2f:90:f7:
62:b3:73:88
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQf3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA1MTQzMDIwWhcNMjUwMTIwMTQzMDIwWjAYMRYw
FAYDVQQDEw02NzJhMmMwMi1jMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAo/Owlr8wlhMs3cR2ZqGkrzfc1SsPj5GbXfogqam3/VesSXADdhEjUdSi
m2RqiMxZm2ccdWUhCIMIFCSByEgrR0UbeP7304tOc9Zr6op8RZgAMgpgrR/qaJIe
zqF6xpXxgNivDJHtXotxnsyVKUm8gFeg8wi5MgrUEomgvYKpgmzwdPQHj/+WC8VH
F+XxdrMUdDZ2THiSENPBVGgrUdIg0U/0ieDXUCeimJDs7+o5GWyY9vPm9pwlfeW0
rPxIXF8Y3ieguIOOzp7MS50iJ/56SyegUIROkdsQXlzsnXu23l2kJMXX3DmgPXOe
HYUvMN56I1NZ2rIqEkdBTmVzpOX5uQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDaw
g45/w1pW/500/eMQSMs8Uu4XMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RkIxMDg4MDlCODIxMUVGODEzMzE0QjA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmtgIMA0GCSqGSIb3DQEB
CwUAA4IBAQChu9vMJJJFW7pyiBEQPIwL4sMWj1WvQyX4wqnqKS8epZ4xXOFTljHj
xcBnvU3G0mUrARaZ2vhYX+HPNTXXKZP+7V5X3Dz3tobh1HnGrACwhAt+MZgPSPjF
bcfqboRY7v/uuLOdlfBZErxgF4bvXoxo08tW2V7C+7kHYgrvTr1Tk8bwat4MblcQ
nbWtzCrJygzbTgR+EI/NInESovj0Tl2gG1yAwGP0NgNcNlRkCunchHJhmwc4Bs/s
HkUBBWV0J6NVNmbk7zdHXrG7lyZ+NgNPCcVjruP08D1Pq164gUrFu+lzKHL4t9Xk
5cepP+pLnQfIGP5Slbama5MvkPdis3OI
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org