Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EE6BEA986211EF8B9D5177762E951A.roa
File: 83EE6BEA986211EF8B9D5177762E951A.roa (raw, json)
Hash identifier: 4IPYHCAb6+5uZXDAswVplq85PP7pn5YVP7CIBiZOF40=
Subject key identifier: D4:0E:CC:0F:F3:9C:26:65:C6:03:AB:01:4C:BB:A6:59:B8:41:01:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010503
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EE6BEA986211EF8B9D5177762E951A.roa
Signing time: Fri 01 Nov 2024 15:03:56 +0000
ROA not before: Fri 01 Nov 2024 15:03:52 +0000
ROA not after: Tue 03 Dec 2024 15:03:52 +0000
asID: 203020
IP address blocks: 154.207.254.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66819 (0x10503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 15:03:52 2024 GMT
Not After : Dec 3 15:03:52 2024 GMT
Subject: CN=6724eddc-c276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:83:6f:24:2e:93:4e:7b:33:1e:ec:a1:59:64:
0b:8b:48:8d:78:26:cc:1e:0f:13:1f:4f:8f:af:6d:
4d:b9:1c:63:93:06:9b:e7:69:49:47:5f:02:e6:63:
83:29:c8:df:1a:8d:78:3c:a0:23:f4:be:21:5b:8c:
ed:7c:9e:ca:65:c6:5e:a4:7c:69:a7:b9:dc:31:88:
d3:1b:8d:d1:44:92:29:b2:19:80:bb:c1:f2:dc:9c:
ad:ad:37:60:17:77:23:e4:58:e3:1f:f9:06:c7:d4:
8a:8a:03:f1:30:97:7a:e3:d8:13:08:b4:9b:fd:ec:
23:5d:99:04:a3:aa:0d:a2:18:55:1c:72:dc:6d:41:
e2:65:42:f2:71:3e:f1:13:41:49:ec:4d:38:96:bd:
f0:36:6b:e8:75:c1:f4:b6:1e:e2:03:4c:f6:67:cc:
85:b0:67:da:56:86:6e:7a:a1:ff:57:9d:2e:d5:c8:
5f:d6:ad:65:90:dc:66:d0:76:80:30:2e:71:e9:39:
3d:97:79:72:4a:cd:f3:e0:2a:0e:55:97:c0:eb:e2:
71:71:53:3b:70:75:c5:78:49:fd:7c:86:f3:4b:80:
ab:5c:ed:ac:63:dc:d6:d6:6d:3c:0e:35:58:cd:28:
e8:90:08:f5:22:1b:80:95:d9:56:b9:e9:89:e2:0a:
c3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0E:CC:0F:F3:9C:26:65:C6:03:AB:01:4C:BB:A6:59:B8:41:01:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83EE6BEA986211EF8B9D5177762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.254.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:c3:48:67:95:77:fb:b2:22:f0:fa:5f:fd:4c:82:a4:af:d6:
c8:5b:3d:ae:31:73:fc:58:ab:ec:38:ac:08:34:2f:9f:7a:aa:
23:92:b4:d7:f4:12:6b:55:4c:6b:c4:1d:a0:e9:1c:b9:e4:68:
12:18:f6:7a:9a:18:4b:35:1d:ec:a4:49:4d:80:7c:9b:22:14:
a8:50:0b:30:12:34:1c:51:6c:0e:9d:a6:8f:8f:7c:a4:ed:ee:
81:8b:8f:bd:8c:af:10:b3:a6:3e:c3:b2:2b:fd:3c:12:8b:69:
92:00:88:b5:cc:80:8a:6b:a5:2e:2c:3d:8d:7f:0f:26:f6:6c:
6d:4d:69:5a:39:ad:87:2d:38:b1:41:cc:5b:4d:50:97:7b:f4:
39:aa:8f:00:d6:8f:9d:7a:f5:4e:88:ff:5a:bb:57:84:33:74:
a2:54:ea:ef:4f:68:6a:c3:ff:81:85:bb:0d:e3:60:3d:ef:b4:
66:b8:79:d7:b4:7a:28:ec:f7:d8:57:16:d6:1a:e7:bb:61:92:
52:86:83:2c:9e:8b:68:ef:c5:30:32:8e:b0:29:9e:8b:b9:26:
2f:eb:98:1d:03:be:5c:2a:21:94:14:f6:31:77:67:40:36:84:
c6:5e:84:74:e6:53:5a:a9:fc:86:41:d3:63:7f:32:de:6a:bb:
74:39:39:16
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQUDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAxMTUwMzUyWhcNMjQxMjAzMTUwMzUyWjAYMRYw
FAYDVQQDEw02NzI0ZWRkYy1jMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2YNvJC6TTnszHuyhWWQLi0iNeCbMHg8TH0+Pr21NuRxjkwab52lJR18C
5mODKcjfGo14PKAj9L4hW4ztfJ7KZcZepHxpp7ncMYjTG43RRJIpshmAu8Hy3Jyt
rTdgF3cj5FjjH/kGx9SKigPxMJd649gTCLSb/ewjXZkEo6oNohhVHHLcbUHiZULy
cT7xE0FJ7E04lr3wNmvodcH0th7iA0z2Z8yFsGfaVoZueqH/V50u1chf1q1lkNxm
0HaAMC5x6Tk9l3lySs3z4CoOVZfA6+JxcVM7cHXFeEn9fIbzS4CrXO2sY9zW1m08
DjVYzSjokAj1IhuAldlWuemJ4grD6wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNQO
zA/znCZlxgOrAUy7plm4QQGpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84M0VFNkJFQTk4NjIxMUVGOEI5RDUxNzc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms/+MA0GCSqGSIb3DQEB
CwUAA4IBAQBNw0hnlXf7siLw+l/9TIKkr9bIWz2uMXP8WKvsOKwINC+feqojkrTX
9BJrVUxrxB2g6Ry55GgSGPZ6mhhLNR3spElNgHybIhSoUAswEjQcUWwOnaaPj3yk
7e6Bi4+9jK8Qs6Y+w7Ir/TwSi2mSAIi1zICKa6UuLD2Nfw8m9mxtTWlaOa2HLTix
QcxbTVCXe/Q5qo8A1o+devVOiP9au1eEM3SiVOrvT2hqw/+BhbsN42A977RmuHnX
tHoo7PfYVxbWGue7YZJShoMsnoto78UwMo6wKZ6LuSYv65gdA75cKiGUFPYxd2dA
NoTGXoR05lNaqfyGQdNjfzLeart0OTkW
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org