Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84E03110A8E711EFB8EF4FA5762E951A.roa
File: 84E03110A8E711EFB8EF4FA5762E951A.roa (raw, json)
Hash identifier: l3XAhhwg2iqxsJLxBsJlT8coiJ76qKyo4cK96hd4fvk=
Subject key identifier: E2:8B:C5:C5:A5:C4:12:50:6C:C4:9B:B4:87:17:51:CC:E2:0E:42:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84E03110A8E711EFB8EF4FA5762E951A.roa
Signing time: Fri 22 Nov 2024 15:36:19 +0000
ROA not before: Fri 22 Nov 2024 15:36:16 +0000
ROA not after: Tue 03 Dec 2024 15:36:16 +0000
asID: 62240
IP address blocks: 154.194.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69857 (0x110e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:36:16 2024 GMT
Not After : Dec 3 15:36:16 2024 GMT
Subject: CN=6740a4f3-92f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:49:76:cc:78:bf:5d:28:49:f6:9f:15:cc:93:
e3:be:6d:b4:2c:a1:4c:76:62:57:ee:53:4e:6c:a4:
ff:18:4a:cc:e2:a9:f9:5a:50:fb:a1:d7:e6:6a:10:
44:5f:7c:97:a9:74:03:a8:19:e5:c3:ae:51:63:ff:
56:22:21:f2:09:5a:21:ab:f5:c5:1d:31:0a:68:53:
6a:90:04:7a:70:2a:77:de:4e:fa:48:67:51:7a:57:
bb:84:f2:0d:9a:fc:40:81:17:7e:20:59:9a:60:88:
b7:0e:4c:25:32:5f:9f:22:bb:88:22:96:60:71:35:
72:cd:4a:e8:86:c2:ec:20:2c:64:b5:2b:9f:c0:56:
1a:40:d6:2b:4b:93:97:15:83:05:b8:e5:c6:d3:93:
3e:08:60:48:cf:b2:79:61:ea:b9:01:13:8b:c3:70:
2d:06:af:4e:cf:11:bb:8e:f9:64:2c:4c:34:27:98:
19:85:a7:b4:cc:5e:c7:ce:ff:1b:0f:e4:9d:67:8d:
d4:4a:01:64:c8:7d:ef:a5:dd:c8:35:6f:79:c4:bb:
85:83:d5:16:68:76:53:1d:15:1d:7e:f9:ec:6c:23:
96:13:7d:fd:c6:1f:5d:b2:25:05:34:e1:eb:30:e8:
6a:1f:ab:a7:8f:a1:3b:8a:43:73:2c:d4:9a:86:23:
9c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8B:C5:C5:A5:C4:12:50:6C:C4:9B:B4:87:17:51:CC:E2:0E:42:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84E03110A8E711EFB8EF4FA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3c:f0:87:c7:23:b5:87:c8:60:68:40:97:54:c2:14:2c:fa:
f3:cf:cc:12:66:91:b6:df:dd:c8:ea:5a:c8:3a:2d:5c:61:c6:
be:a0:39:63:13:15:55:f2:c1:4c:b9:71:7e:d4:19:be:58:31:
d1:cf:96:bc:69:cf:65:81:e9:4f:d7:34:22:02:9d:30:e4:5d:
35:66:c2:f7:61:c6:d0:ba:ae:f2:13:61:70:59:1d:45:6f:9d:
40:04:ec:b4:52:1f:fb:fc:cf:a2:69:2d:02:9d:0d:b3:42:fd:
5b:95:26:eb:4f:b6:b7:d7:df:fb:7e:6b:d8:21:ca:7c:e2:c5:
cc:07:31:98:45:9e:80:72:32:b8:0e:af:8b:7f:0f:fa:35:e8:
98:29:9a:99:bb:8d:0f:89:54:16:7e:02:ed:03:ec:f2:a7:db:
43:de:82:56:78:90:2e:23:05:1e:fe:b1:79:5d:e6:4a:8e:b4:
da:d6:36:a2:74:19:ce:b6:30:4d:ee:de:ce:ac:ca:1d:45:7b:
ac:5a:46:ea:cb:1e:7d:ac:99:8e:a1:f3:dc:ce:c8:59:31:33:
83:69:b1:06:0c:1b:52:9a:8f:7f:3e:be:a5:ee:6c:f9:60:55:
ae:24:5f:46:95:cd:be:3a:22:a2:6b:d0:c7:88:4a:1c:85:48:
3f:8a:a2:96
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARDhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTUzNjE2WhcNMjQxMjAzMTUzNjE2WjAYMRYw
FAYDVQQDEw02NzQwYTRmMy05MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0El2zHi/XShJ9p8VzJPjvm20LKFMdmJX7lNObKT/GErM4qn5WlD7odfm
ahBEX3yXqXQDqBnlw65RY/9WIiHyCVohq/XFHTEKaFNqkAR6cCp33k76SGdRele7
hPINmvxAgRd+IFmaYIi3DkwlMl+fIruIIpZgcTVyzUrohsLsICxktSufwFYaQNYr
S5OXFYMFuOXG05M+CGBIz7J5Yeq5AROLw3AtBq9OzxG7jvlkLEw0J5gZhae0zF7H
zv8bD+SdZ43USgFkyH3vpd3INW95xLuFg9UWaHZTHRUdfvnsbCOWE339xh9dsiUF
NOHrMOhqH6unj6E7ikNzLNSahiOcjQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOKL
xcWlxBJQbMSbtIcXUcziDkIxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NEUwMzExMEE4RTcxMUVGQjhFRjRGQTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJxMA0GCSqGSIb3DQEB
CwUAA4IBAQA6PPCHxyO1h8hgaECXVMIULPrzz8wSZpG2393I6lrIOi1cYca+oDlj
ExVV8sFMuXF+1Bm+WDHRz5a8ac9lgelP1zQiAp0w5F01ZsL3YcbQuq7yE2FwWR1F
b51ABOy0Uh/7/M+iaS0CnQ2zQv1blSbrT7a319/7fmvYIcp84sXMBzGYRZ6AcjK4
Dq+Lfw/6NeiYKZqZu40PiVQWfgLtA+zyp9tD3oJWeJAuIwUe/rF5XeZKjrTa1jai
dBnOtjBN7t7OrModRXusWkbqyx59rJmOofPczshZMTODabEGDBtSmo9/Pr6l7mz5
YFWuJF9Glc2+OiKia9DHiEochUg/iqKW
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:21 2024 by rpki-client on console-ams.rpki-client.org