Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/860C97D4A45711EF9EA4AD72762E951A.roa
File: 860C97D4A45711EF9EA4AD72762E951A.roa (raw, json)
Hash identifier: RSStQpXrboNiVbpbAu4I4ooGNRT1UATyvxt/pfOqUAo=
Subject key identifier: 2A:1C:2D:D9:AF:5B:A4:B9:EA:99:B3:CB:A9:36:A4:6D:94:8F:00:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E3F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/860C97D4A45711EF9EA4AD72762E951A.roa
Signing time: Sat 16 Nov 2024 20:15:29 +0000
ROA not before: Sat 16 Nov 2024 20:15:25 +0000
ROA not after: Wed 27 Nov 2024 20:15:25 +0000
asID: 137951
IP address blocks: 154.215.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69183 (0x10e3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 20:15:25 2024 GMT
Not After : Nov 27 20:15:25 2024 GMT
Subject: CN=6738fd61-cf97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:58:e9:6d:72:3f:4b:80:ff:4f:f3:22:b8:89:
17:fd:1e:43:cd:e8:cd:96:9e:3a:25:58:eb:91:ae:
de:03:37:77:e6:70:b6:21:d5:75:cc:65:ff:c9:67:
47:18:27:ff:83:e8:dd:a4:af:1b:4f:33:b5:45:02:
a7:f4:f3:4e:b4:52:bc:4d:3f:d9:1a:07:d8:d9:7b:
49:50:9d:67:5e:42:9f:f5:0a:b3:d5:a4:d5:db:43:
7b:f9:49:61:e0:68:5e:c6:08:1b:aa:37:6b:64:72:
40:b0:83:b5:6d:01:db:95:8d:86:1b:22:98:76:22:
52:5f:cf:ba:67:43:cc:c7:a6:7f:22:6c:0e:c6:c2:
0a:87:24:4c:07:f2:a8:3b:d4:6a:bf:be:75:50:88:
dd:40:f3:b9:c8:b2:22:3b:c5:3c:10:28:f3:79:ed:
16:73:da:a6:97:86:dc:ac:dd:5f:73:5b:a2:1b:6b:
92:1b:07:39:d8:66:c8:61:d5:da:4d:ca:28:87:3c:
81:ea:87:c6:ec:4f:48:08:c1:5d:4a:f3:a4:b6:55:
19:da:54:38:1a:41:70:64:21:ec:26:09:25:1a:04:
de:69:38:fe:c7:e7:07:aa:b6:f4:33:6d:d2:07:31:
92:ba:3d:78:65:e5:1c:25:ae:66:16:83:2a:2b:21:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:1C:2D:D9:AF:5B:A4:B9:EA:99:B3:CB:A9:36:A4:6D:94:8F:00:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/860C97D4A45711EF9EA4AD72762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.4.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:66:86:84:f2:f2:7c:bf:3e:ba:69:63:b2:e0:a8:8c:ff:da:
10:d8:92:6e:c2:30:a4:30:be:1d:cf:40:e5:f0:fb:3b:a8:bf:
9b:61:4c:a5:af:bf:f1:e5:05:3a:c1:7e:d8:5b:21:6e:43:62:
fc:6c:ea:1f:b5:56:ed:f6:9a:28:ce:5d:c9:25:1b:82:ea:89:
be:dd:5f:ed:91:1d:f4:16:8a:c7:49:e1:b8:31:6d:89:44:68:
0c:fd:d4:27:3c:0b:dc:6d:c7:ab:0b:09:68:d1:d5:61:6c:7d:
50:eb:de:6b:c0:95:98:3f:5d:1b:bd:dd:d9:1e:0a:e3:2d:a6:
87:73:82:b0:68:90:7b:73:b3:ec:a5:c3:dd:0a:38:5c:49:ca:
25:fe:a1:c7:4d:81:a9:c6:14:aa:70:d2:a7:e8:9c:b4:56:70:
ac:19:5a:4e:fb:09:e7:8d:49:ca:84:95:2b:1a:4e:14:bb:bb:
c0:50:8a:d5:8a:3d:9f:0c:f5:a4:b1:cf:b8:6e:6e:e0:e4:bb:
e5:6a:a6:87:d6:c9:9a:d6:62:84:9f:f2:40:ab:31:e5:24:9f:
ae:63:21:8d:d4:15:c3:c9:dd:4c:e4:30:a0:d3:ae:80:1a:d2:
b0:34:70:ff:4e:94:6a:90:6d:03:14:99:7f:63:da:27:a0:85:
02:57:1f:4a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ4/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MjAxNTI1WhcNMjQxMTI3MjAxNTI1WjAYMRYw
FAYDVQQDEw02NzM4ZmQ2MS1jZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyVjpbXI/S4D/T/MiuIkX/R5DzejNlp46JVjrka7eAzd35nC2IdV1zGX/
yWdHGCf/g+jdpK8bTzO1RQKn9PNOtFK8TT/ZGgfY2XtJUJ1nXkKf9Qqz1aTV20N7
+Ulh4GhexggbqjdrZHJAsIO1bQHblY2GGyKYdiJSX8+6Z0PMx6Z/ImwOxsIKhyRM
B/KoO9Rqv751UIjdQPO5yLIiO8U8ECjzee0Wc9qml4bcrN1fc1uiG2uSGwc52GbI
YdXaTcoohzyB6ofG7E9ICMFdSvOktlUZ2lQ4GkFwZCHsJgklGgTeaTj+x+cHqrb0
M23SBzGSuj14ZeUcJa5mFoMqKyH8awIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCoc
LdmvW6S56pmzy6k2pG2UjwAaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NjBDOTdENEE0NTcxMUVGOUVBNEFENzI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmtcEMA0GCSqGSIb3DQEB
CwUAA4IBAQDTZoaE8vJ8vz66aWOy4KiM/9oQ2JJuwjCkML4dz0Dl8Ps7qL+bYUyl
r7/x5QU6wX7YWyFuQ2L8bOoftVbt9poozl3JJRuC6om+3V/tkR30ForHSeG4MW2J
RGgM/dQnPAvcbcerCwlo0dVhbH1Q695rwJWYP10bvd3ZHgrjLaaHc4KwaJB7c7Ps
pcPdCjhcScol/qHHTYGpxhSqcNKn6Jy0VnCsGVpO+wnnjUnKhJUrGk4Uu7vAUIrV
ij2fDPWksc+4bm7g5LvlaqaH1sma1mKEn/JAqzHlJJ+uYyGN1BXDyd1M5DCg066A
GtKwNHD/TpRqkG0DFJl/Y9onoIUCVx9K
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:11 2024 by rpki-client on console-ams.rpki-client.org