Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/801AB4547B2211EFAF562CA7762E951A.roa
File: 801AB4547B2211EFAF562CA7762E951A.roa (raw, json)
Hash identifier: pqAhbxr+P2YMhQpn7CtcXErEgRMNsCmmIuZfb6yGl1U=
Subject key identifier: 56:03:7B:50:DD:AE:76:7F:CF:76:E7:D8:7C:9A:92:FB:26:9D:59:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F362
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/801AB4547B2211EFAF562CA7762E951A.roa
Signing time: Wed 25 Sep 2024 09:42:38 +0000
ROA not before: Wed 25 Sep 2024 09:42:34 +0000
ROA not after: Tue 30 Sep 2025 09:42:34 +0000
asID: 209242
IP address blocks: 154.85.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62306 (0xf362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:42:34 2024 GMT
Not After : Sep 30 09:42:34 2025 GMT
Subject: CN=66f3db0e-f8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:06:a0:4f:aa:fe:59:6f:4c:a5:91:29:7b:
3d:7d:9f:76:7e:11:58:0f:47:3f:be:60:ee:62:81:
47:44:0b:e4:65:3e:24:22:4f:e2:e2:16:0f:6a:5a:
b0:6d:45:ee:90:e9:74:04:22:c1:4e:24:af:2b:40:
c2:d5:f2:55:32:e1:01:90:75:6a:29:8a:68:86:b1:
2c:59:d5:81:26:d0:d9:a2:60:ae:1f:90:3d:7f:76:
b6:30:a6:d0:bf:20:47:7b:4a:1f:29:37:78:4b:1a:
5a:f1:be:30:54:d7:a6:6c:7e:48:44:8a:c1:5b:ac:
b5:cd:db:26:80:e4:8d:9b:f0:f8:d8:fe:fd:b8:fc:
78:79:b8:a9:20:bb:53:7b:3f:ef:03:f5:3b:14:e7:
1b:98:0b:fd:86:a2:2c:9a:bc:e1:cb:57:72:71:66:
cf:81:24:12:8b:0f:91:af:6e:2c:ce:7d:51:83:06:
c7:ae:a9:f9:96:06:c1:b8:7f:11:bf:4f:4f:04:06:
b1:ce:41:6e:b2:21:95:d3:72:b5:cb:69:ed:c4:86:
8b:90:35:0a:14:53:f8:95:4e:fd:82:c2:b5:34:c1:
24:0f:62:35:0f:97:5f:47:42:98:df:3b:64:96:c7:
8e:64:07:e2:c1:19:ec:a1:5c:d5:ef:e4:34:70:4a:
53:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:03:7B:50:DD:AE:76:7F:CF:76:E7:D8:7C:9A:92:FB:26:9D:59:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/801AB4547B2211EFAF562CA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.8.0/22
Signature Algorithm: sha256WithRSAEncryption
31:2a:2f:4d:86:49:77:c4:f4:23:89:9d:b9:9e:39:c4:62:95:
d1:82:47:93:c9:7f:d3:5d:dd:86:5a:b7:9f:6f:1e:6b:44:b4:
58:da:be:fc:cb:89:90:6f:aa:2a:06:4f:e3:ba:f1:e2:1c:2e:
c5:5a:22:f4:54:30:8c:71:d9:34:71:0e:6f:17:4f:9c:2e:a4:
5f:43:0c:a8:6a:7a:ab:cd:4f:38:be:ac:ce:39:f2:3b:32:3b:
92:07:2e:8f:38:b2:fc:b4:b1:29:93:18:06:5c:ef:c7:5c:92:
ef:9a:4e:7b:e7:3f:62:63:e6:be:c5:83:0a:d9:04:84:99:98:
01:75:dd:81:15:5e:ff:6e:13:05:36:ff:ba:2c:f5:ad:17:77:
c1:72:d4:cc:7d:00:69:81:a8:f8:fb:e7:58:f6:2e:a2:dd:0c:
25:5e:9a:a9:cd:2c:42:67:2b:60:10:1d:b3:f7:fd:49:ae:12:
26:b9:29:bc:c2:2d:c9:40:8f:50:71:b1:35:92:32:75:84:13:
bf:8f:68:83:5f:94:f7:87:e8:2e:b6:c6:19:96:76:fb:02:87:
f9:73:76:9a:56:98:c5:bc:32:02:8c:96:25:0b:09:4a:7e:e5:
62:70:e3:53:3a:0f:01:f8:8e:ca:fb:6b:0a:67:a8:41:21:80:
f7:b7:eb:21
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPNiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTI1MDk0MjM0WhcNMjUwOTMwMDk0MjM0WjAYMRYw
FAYDVQQDEw02NmYzZGIwZS1mOGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyp4GoE+q/llvTKWRKXs9fZ92fhFYD0c/vmDuYoFHRAvkZT4kIk/i4hYP
alqwbUXukOl0BCLBTiSvK0DC1fJVMuEBkHVqKYpohrEsWdWBJtDZomCuH5A9f3a2
MKbQvyBHe0ofKTd4Sxpa8b4wVNembH5IRIrBW6y1zdsmgOSNm/D42P79uPx4ebip
ILtTez/vA/U7FOcbmAv9hqIsmrzhy1dycWbPgSQSiw+Rr24szn1RgwbHrqn5lgbB
uH8Rv09PBAaxzkFusiGV03K1y2ntxIaLkDUKFFP4lU79gsK1NMEkD2I1D5dfR0KY
3ztklseOZAfiwRnsoVzV7+Q0cEpThQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFYD
e1DdrnZ/z3bn2HyakvsmnVmFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MDFBQjQ1NDdCMjIxMUVGQUY1NjJDQTc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlUIMA0GCSqGSIb3DQEB
CwUAA4IBAQAxKi9Nhkl3xPQjiZ25njnEYpXRgkeTyX/TXd2GWrefbx5rRLRY2r78
y4mQb6oqBk/juvHiHC7FWiL0VDCMcdk0cQ5vF0+cLqRfQwyoanqrzU84vqzOOfI7
MjuSBy6POLL8tLEpkxgGXO/HXJLvmk575z9iY+a+xYMK2QSEmZgBdd2BFV7/bhMF
Nv+6LPWtF3fBctTMfQBpgaj4++dY9i6i3QwlXpqpzSxCZytgEB2z9/1JrhImuSm8
wi3JQI9QcbE1kjJ1hBO/j2iDX5T3h+gutsYZlnb7Aof5c3aaVpjFvDICjJYlCwlK
fuVicONTOg8B+I7K+2sKZ6hBIYD3t+sh
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org