Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD7431473FC11EF90F64EA5762E951A.roa
File: 8DD7431473FC11EF90F64EA5762E951A.roa (raw, json)
Hash identifier: IdttrMRLuPPgS/gHJ1aw5xt00ryr9f73klE+hVJVP2o=
Subject key identifier: 21:31:EA:72:1C:86:7B:3D:57:7F:41:EE:8E:5D:D4:55:7B:C2:1D:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF77
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD7431473FC11EF90F64EA5762E951A.roa
Signing time: Mon 16 Sep 2024 07:23:22 +0000
ROA not before: Mon 16 Sep 2024 07:23:19 +0000
ROA not after: Sat 30 Nov 2024 07:23:19 +0000
asID: 142403
IP address blocks: 154.211.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61303 (0xef77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:23:19 2024 GMT
Not After : Nov 30 07:23:19 2024 GMT
Subject: CN=66e7dcea-71c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:87:db:81:ad:da:c0:0a:9a:87:3e:ad:53:08:
9e:ed:3d:7c:44:de:1e:e1:ff:26:dd:c0:c3:fd:52:
70:80:0d:72:a0:be:02:95:8b:52:d5:f6:f8:e1:f9:
47:16:fc:de:c5:1f:bb:3e:e8:b7:79:65:b0:0e:09:
99:1c:ba:e1:e6:7a:f8:f8:f0:c7:af:99:2e:73:f2:
c7:39:d5:d8:83:6a:b8:05:a2:5e:2a:f9:cb:2e:51:
46:78:aa:a7:e1:b5:a1:86:56:02:28:00:52:f5:cf:
63:63:8c:2b:03:a5:5f:ca:a4:ca:a1:f0:b3:85:db:
a2:08:90:a1:2a:61:56:79:fb:0a:db:ac:b9:e7:06:
11:8e:10:98:28:af:fe:87:03:d0:47:00:af:5f:ad:
2f:77:13:7c:c8:e0:06:56:04:9c:aa:3f:c3:d2:f2:
db:8a:26:d4:f6:82:10:dd:af:3e:a0:4c:90:07:62:
2e:d8:f3:95:6f:ae:5d:a9:60:50:cc:d2:e7:d3:ba:
d0:cc:9a:ae:23:f7:52:96:72:be:e7:cb:6c:95:e3:
3c:43:19:d7:c9:54:7f:7f:db:bd:38:86:cd:34:e3:
d9:9c:df:47:cf:60:a4:72:70:aa:14:76:93:08:ad:
5a:37:06:68:70:5f:2e:91:ed:22:58:03:40:88:09:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:31:EA:72:1C:86:7B:3D:57:7F:41:EE:8E:5D:D4:55:7B:C2:1D:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD7431473FC11EF90F64EA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.12.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:54:32:84:07:37:e4:22:2e:29:3d:92:d5:a7:e4:b6:39:a1:
5d:23:39:de:fc:5d:40:ca:c5:61:c8:0c:62:4d:d9:0e:c6:c0:
a5:44:66:11:e5:89:1e:0e:61:f2:10:49:83:07:2a:64:47:0e:
7c:7b:66:9c:e9:2e:07:41:c4:8e:69:2e:27:be:21:c5:7c:b4:
f2:1e:1c:55:6d:95:cd:2f:10:ee:b3:5e:17:e9:51:0d:ed:90:
ab:1a:69:14:cc:7d:e0:b9:3e:f1:d2:be:6f:81:71:75:50:b8:
8a:d0:91:75:c9:45:1f:5c:76:58:61:43:36:36:ba:7b:56:66:
58:41:34:32:eb:a5:3b:d1:b3:a8:28:5a:a0:32:b7:da:ab:77:
3f:14:e9:1f:11:53:b3:eb:71:64:f0:e2:65:33:28:7e:56:ce:
a5:c6:63:cb:c2:db:6a:48:da:ab:b0:8b:c4:aa:96:fc:55:c3:
16:e7:7f:f2:c7:ad:b3:11:85:34:ae:24:95:db:7d:08:5f:bb:
5f:8a:d0:9a:47:05:95:af:5d:2f:01:49:69:b5:64:5a:ba:96:
0d:a6:f1:b3:f8:a1:a2:34:53:35:32:32:15:9a:68:5c:dd:97:
31:05:59:d2:4e:4a:87:1e:92:a7:1a:e0:cd:2e:ac:45:0e:85:
e1:8f:4a:e5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO93MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE2MDcyMzE5WhcNMjQxMTMwMDcyMzE5WjAYMRYw
FAYDVQQDEw02NmU3ZGNlYS03MWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxofbga3awAqahz6tUwie7T18RN4e4f8m3cDD/VJwgA1yoL4ClYtS1fb4
4flHFvzexR+7Pui3eWWwDgmZHLrh5nr4+PDHr5kuc/LHOdXYg2q4BaJeKvnLLlFG
eKqn4bWhhlYCKABS9c9jY4wrA6VfyqTKofCzhduiCJChKmFWefsK26y55wYRjhCY
KK/+hwPQRwCvX60vdxN8yOAGVgScqj/D0vLbiibU9oIQ3a8+oEyQB2Iu2POVb65d
qWBQzNLn07rQzJquI/dSlnK+58tsleM8QxnXyVR/f9u9OIbNNOPZnN9Hz2CkcnCq
FHaTCK1aNwZocF8uke0iWANAiAmLxwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCEx
6nIchns9V39B7o5d1FV7wh0tMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84REQ3NDMxNDczRkMxMUVGOTBGNjRFQTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtMMMA0GCSqGSIb3DQEB
CwUAA4IBAQDBVDKEBzfkIi4pPZLVp+S2OaFdIzne/F1AysVhyAxiTdkOxsClRGYR
5YkeDmHyEEmDBypkRw58e2ac6S4HQcSOaS4nviHFfLTyHhxVbZXNLxDus14X6VEN
7ZCrGmkUzH3guT7x0r5vgXF1ULiK0JF1yUUfXHZYYUM2Nrp7VmZYQTQy66U70bOo
KFqgMrfaq3c/FOkfEVOz63Fk8OJlMyh+Vs6lxmPLwttqSNqrsIvEqpb8VcMW53/y
x62zEYU0riSV230IX7tfitCaRwWVr10vAUlptWRaupYNpvGz+KGiNFM1MjIVmmhc
3ZcxBVnSTkqHHpKnGuDNLqxFDoXhj0rl
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:15 2024 by rpki-client on console-fra.rpki-client.org