Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9082BC94B10411EE81F9CF66775412E6.roa
File: 9082BC94B10411EE81F9CF66775412E6.roa (raw, json)
Hash identifier: VNZLwUE0juOINn+tNaqQ3lHtyD5XQVCBrlOywXJVYWc=
Subject key identifier: FA:BF:8D:44:60:86:A4:2B:B3:83:9F:43:9B:56:B7:47:B9:BE:E1:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 74AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9082BC94B10411EE81F9CF66775412E6.roa
Signing time: Fri 12 Jan 2024 04:39:26 +0000
ROA not before: Fri 12 Jan 2024 04:39:22 +0000
ROA not after: Fri 13 Dec 2024 04:39:22 +0000
asID: 140227
IP address blocks: 154.205.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29871 (0x74af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:39:22 2024 GMT
Not After : Dec 13 04:39:22 2024 GMT
Subject: CN=65a0c27e-8e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fc:37:9a:eb:6e:11:30:e8:b3:14:40:4e:83:
11:f8:2e:c2:c7:29:92:60:76:b2:fd:de:4e:a1:64:
52:71:cc:c3:43:6d:b6:c5:f1:53:ee:28:60:59:b1:
c7:d6:4d:9a:f9:cb:12:4a:f9:7e:7e:76:e4:80:78:
db:67:9b:51:7f:50:9e:4e:c7:b5:00:55:1a:6a:30:
3e:f9:cc:94:ab:62:8f:78:e1:ea:df:6f:00:a2:ad:
98:c1:de:75:e3:db:c3:42:dd:7f:33:ff:a4:07:5a:
49:03:7a:b5:6a:d4:cf:77:a0:e7:f5:63:b2:33:02:
92:29:d7:dd:b0:4e:84:42:1d:a3:b0:17:9a:cc:c0:
49:40:13:26:04:29:27:ac:d1:3e:2a:37:ba:12:53:
54:87:cb:23:5e:42:a6:72:e0:ae:81:bf:f5:97:2c:
18:ef:95:16:65:9c:f3:64:40:4a:2f:35:8c:2c:fe:
f1:48:21:79:b9:65:d5:35:43:9a:a6:7d:f1:84:f1:
fd:97:e0:04:d6:c3:75:6e:41:85:0f:90:e1:c7:9a:
99:58:5c:f7:a8:c5:f8:88:e3:5b:f5:c9:02:38:0a:
e6:a7:0e:b0:d8:c0:28:5a:bf:58:30:4e:52:6f:60:
aa:9b:89:1a:b0:da:44:f3:f9:44:c9:ed:eb:8b:06:
0e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BF:8D:44:60:86:A4:2B:B3:83:9F:43:9B:56:B7:47:B9:BE:E1:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9082BC94B10411EE81F9CF66775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.202.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:3f:ab:25:b1:6c:48:55:22:72:68:41:95:7c:bd:b4:b8:b6:
7e:11:a7:50:6d:40:6b:e9:3c:82:e6:8c:fa:3a:1e:1d:07:13:
e6:92:52:ed:73:dd:8a:3f:ed:11:b6:19:58:be:d0:92:55:ce:
f0:1d:b7:ee:60:df:73:c2:61:a9:31:79:db:e5:72:a2:54:ae:
f9:c3:11:49:aa:7d:17:d8:8f:fb:7a:5a:c4:11:13:3e:19:55:
c1:f2:26:8e:19:84:c8:37:a7:20:5b:be:66:19:bc:e4:3b:3b:
e7:b9:ac:3b:f9:1f:a3:f4:cd:1a:57:ad:9b:38:21:c6:f7:7b:
8d:bb:5a:7a:9e:7c:cf:03:44:5d:3c:c4:0d:b6:0e:7c:40:c7:
48:a8:49:6f:c0:1b:64:19:3e:ea:71:98:ab:d0:e6:34:03:fd:
10:58:b3:4d:3a:01:bf:df:3a:08:b9:1b:64:51:31:38:ee:0c:
16:22:05:e2:35:ea:fa:d5:56:1a:ee:54:14:7f:1a:75:46:f5:
72:19:6c:cb:fe:fa:ff:fc:10:da:47:7f:2c:27:d2:81:dc:4a:
5c:2a:a0:9b:ae:0a:2a:dc:62:5f:64:c4:d4:6a:f0:0f:5f:fd:
e2:bf:83:2b:bb:14:bc:53:c1:79:34:5f:ae:be:26:cc:26:f8:
1b:28:e3:60
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICdK8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yNDAxMTIwNDM5MjJaFw0yNDEyMTMwNDM5MjJaMBgxFjAU
BgNVBAMTDTY1YTBjMjdlLThlMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDC/Dea624RMOizFEBOgxH4LsLHKZJgdrL93k6hZFJxzMNDbbbF8VPuKGBZ
scfWTZr5yxJK+X5+duSAeNtnm1F/UJ5Ox7UAVRpqMD75zJSrYo944erfbwCirZjB
3nXj28NC3X8z/6QHWkkDerVq1M93oOf1Y7IzApIp192wToRCHaOwF5rMwElAEyYE
KSes0T4qN7oSU1SHyyNeQqZy4K6Bv/WXLBjvlRZlnPNkQEovNYws/vFIIXm5ZdU1
Q5qmffGE8f2X4ATWw3VuQYUPkOHHmplYXPeoxfiI41v1yQI4CuanDrDYwChav1gw
TlJvYKqbiRqw2kTz+UTJ7euLBg6zAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU+r+N
RGCGpCuzg59Dm1a3R7m+4TIwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzkwODJCQzk0QjEwNDExRUU4MUY5Q0Y2Njc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazcowDQYJKoZIhvcNAQEL
BQADggEBAA0/qyWxbEhVInJoQZV8vbS4tn4Rp1BtQGvpPILmjPo6Hh0HE+aSUu1z
3Yo/7RG2GVi+0JJVzvAdt+5g33PCYakxedvlcqJUrvnDEUmqfRfYj/t6WsQREz4Z
VcHyJo4ZhMg3pyBbvmYZvOQ7O+e5rDv5H6P0zRpXrZs4Icb3e427WnqefM8DRF08
xA22DnxAx0ioSW/AG2QZPupxmKvQ5jQD/RBYs006Ab/fOgi5G2RRMTjuDBYiBeI1
6vrVVhruVBR/GnVG9XIZbMv++v/8ENpHfywn0oHcSlwqoJuuCircYl9kxNRq8A9f
/eK/gyu7FLxTwXk0X66+Jswm+Bso42A=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:14 2024 by rpki-client on console-ams.rpki-client.org