Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/851A664AA44C11EF85CE49AB762E951A.roa
File: 851A664AA44C11EF85CE49AB762E951A.roa (raw, json)
Hash identifier: 1uzqgFDY14lqguur9bPU4zVcmsdNQcX/Vhbu33Wb9LY=
Subject key identifier: F9:3A:E8:8D:2A:6E:2D:A2:BF:87:99:9A:26:F4:F7:04:60:BA:BC:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/851A664AA44C11EF85CE49AB762E951A.roa
Signing time: Sat 16 Nov 2024 18:56:43 +0000
ROA not before: Sat 16 Nov 2024 18:56:38 +0000
ROA not after: Mon 25 Nov 2024 18:56:38 +0000
asID: 5650
IP address blocks: 154.194.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69119 (0x10dff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 18:56:38 2024 GMT
Not After : Nov 25 18:56:38 2024 GMT
Subject: CN=6738eaeb-3baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:7b:74:15:32:4c:a2:89:31:88:e8:39:5e:
9d:1e:ab:99:00:03:65:de:ba:ce:ac:4e:9b:5a:b2:
4a:42:d4:ab:5c:6b:92:35:fe:b9:d5:50:7e:4a:3c:
01:18:24:d0:5c:41:56:be:5b:9c:8c:ad:c2:05:97:
6b:63:95:d6:ee:4e:88:2f:d8:37:e7:79:21:06:00:
c6:2d:14:ca:d8:03:ef:fb:83:c9:79:2c:f9:7a:19:
b5:e0:10:9d:ef:43:88:57:d7:f7:84:24:1a:8d:44:
c5:fa:3a:9c:1e:3e:50:71:66:dc:63:01:cc:60:0f:
a6:8e:1f:2d:5e:9c:25:10:26:1c:84:3b:4d:b4:d2:
7e:9a:3d:5d:d0:6c:bf:c4:3b:d3:b4:1f:2d:d6:09:
47:bf:eb:6d:99:9a:0a:ff:0f:44:a2:ff:81:2c:33:
a7:b9:e6:1e:26:4e:ad:3f:2b:3f:f0:98:3c:83:e8:
dc:ed:3c:97:51:5c:0d:3a:2f:35:85:9b:eb:bb:03:
5e:4d:39:ba:7c:75:8c:d5:f0:ab:ab:ec:8c:4c:eb:
fa:16:c8:e1:3a:9b:8a:41:eb:ad:eb:72:b0:da:db:
19:77:60:65:13:b3:91:37:8d:5f:cb:c6:ec:ea:d3:
b8:9f:22:0c:b6:eb:0e:2e:10:1d:81:e1:34:04:1f:
93:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3A:E8:8D:2A:6E:2D:A2:BF:87:99:9A:26:F4:F7:04:60:BA:BC:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/851A664AA44C11EF85CE49AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:8b:ab:a4:11:fb:62:ef:83:df:7b:7d:a2:4f:24:4f:59:51:
43:4b:42:41:52:53:9f:77:8c:93:87:a1:c8:02:b8:c8:b4:9b:
7b:7a:d3:e4:88:ba:68:48:09:a7:25:3d:a4:a1:2b:39:e1:c9:
ea:06:a8:2f:71:51:20:59:71:42:1d:43:23:db:82:1f:d5:4e:
9b:94:d3:07:b1:67:36:b2:8b:31:f4:06:60:4d:ff:6c:7a:7e:
9a:a7:66:f3:cd:db:aa:ff:bf:45:45:12:b6:ea:d5:71:7b:87:
e2:6f:8a:ad:1c:f2:96:01:a9:3a:d8:4f:6c:c6:84:73:2c:ef:
47:1f:34:9f:11:af:39:7a:98:8d:ff:94:a7:9f:96:47:d5:81:
de:c0:f7:92:8e:b9:bf:69:d9:ae:25:54:d2:61:d6:e6:8e:b0:
1d:37:a7:b6:cc:5b:d6:9f:08:95:50:e3:12:bd:19:85:fd:a5:
7a:53:c1:00:f0:87:e4:0a:c0:8d:9f:fa:76:72:ac:be:3b:1e:
2e:02:ca:ec:74:18:f6:a6:c3:6d:58:09:08:6f:50:15:6d:5a:
ba:3b:36:88:36:5a:64:f4:ad:d4:7f:7b:ed:ad:eb:3f:e0:e2:
a4:b2:de:b3:30:ee:af:54:a4:cc:80:1f:dc:19:55:21:6e:79:
dc:80:26:fd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ3/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTg1NjM4WhcNMjQxMTI1MTg1NjM4WjAYMRYw
FAYDVQQDEw02NzM4ZWFlYi0zYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuc17dBUyTKKJMYjoOV6dHquZAANl3rrOrE6bWrJKQtSrXGuSNf651VB+
SjwBGCTQXEFWvlucjK3CBZdrY5XW7k6IL9g353khBgDGLRTK2APv+4PJeSz5ehm1
4BCd70OIV9f3hCQajUTF+jqcHj5QcWbcYwHMYA+mjh8tXpwlECYchDtNtNJ+mj1d
0Gy/xDvTtB8t1glHv+ttmZoK/w9Eov+BLDOnueYeJk6tPys/8Jg8g+jc7TyXUVwN
Oi81hZvruwNeTTm6fHWM1fCrq+yMTOv6FsjhOpuKQeut63Kw2tsZd2BlE7ORN41f
y8bs6tO4nyIMtusOLhAdgeE0BB+TlwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPk6
6I0qbi2iv4eZmib09wRgurxmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NTFBNjY0QUE0NEMxMUVGODVDRTQ5QUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsIUMA0GCSqGSIb3DQEB
CwUAA4IBAQAOi6ukEfti74Pfe32iTyRPWVFDS0JBUlOfd4yTh6HIArjItJt7etPk
iLpoSAmnJT2koSs54cnqBqgvcVEgWXFCHUMj24If1U6blNMHsWc2sosx9AZgTf9s
en6ap2bzzduq/79FRRK26tVxe4fib4qtHPKWAak62E9sxoRzLO9HHzSfEa85epiN
/5Snn5ZH1YHewPeSjrm/admuJVTSYdbmjrAdN6e2zFvWnwiVUOMSvRmF/aV6U8EA
8IfkCsCNn/p2cqy+Ox4uAsrsdBj2psNtWAkIb1AVbVq6OzaINlpk9K3Uf3vtres/
4OKkst6zMO6vVKTMgB/cGVUhbnncgCb9
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org