Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/929DD9ACA8DC11EF98607C61762E951A.roa
File: 929DD9ACA8DC11EF98607C61762E951A.roa (raw, json)
Hash identifier: kQM6yLgJMcqIkowlP4v1RdGM1F55g2RdB8w8jWrcC0g=
Subject key identifier: 39:B0:A4:A0:F9:8E:44:5A:82:2C:C8:C0:A1:DC:BD:3A:B3:69:23:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01105D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/929DD9ACA8DC11EF98607C61762E951A.roa
Signing time: Fri 22 Nov 2024 14:17:58 +0000
ROA not before: Fri 22 Nov 2024 14:17:54 +0000
ROA not after: Mon 09 Dec 2024 14:17:54 +0000
asID: 5065
IP address blocks: 154.206.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69725 (0x1105d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:17:54 2024 GMT
Not After : Dec 9 14:17:54 2024 GMT
Subject: CN=67409296-6374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:0b:27:74:45:da:b2:88:9c:9f:a4:11:7d:
de:c1:d1:48:4a:c3:63:f6:f3:ef:e8:a0:3f:2a:d2:
9d:2c:ba:1c:14:ef:fd:5d:cd:f6:ff:dc:d9:b2:83:
dd:a9:22:e5:d6:92:6b:cb:bb:18:13:58:b0:c3:f9:
de:66:e3:8c:9b:32:89:0f:3e:99:0e:26:99:41:b6:
0f:5d:ee:cd:c7:10:4a:41:ef:02:67:86:98:0e:6a:
b2:8b:7b:64:aa:33:fc:e7:4d:d4:af:ec:b4:b7:dd:
24:d6:8c:97:8b:04:1f:0c:d9:53:b1:36:17:c2:bb:
2f:45:f3:62:74:0a:55:e2:4f:a9:1b:db:ad:ed:f5:
ac:f2:58:e4:75:7b:fd:3c:1f:cd:67:70:51:d8:72:
be:42:99:b3:d7:77:09:98:25:f4:fb:9a:52:c2:41:
86:57:69:62:05:3a:4f:77:a9:ff:ce:56:1e:b1:12:
18:6c:c8:fa:75:a5:27:ac:c4:35:54:96:c0:3c:69:
65:b8:aa:45:5c:fe:e1:9f:89:80:58:17:3a:ba:24:
ab:90:79:6b:f9:1c:ee:dd:16:6a:d0:be:af:36:28:
23:f9:4c:2d:16:52:41:ca:76:a8:a9:76:31:48:28:
47:73:af:2f:a8:e5:a3:79:6b:4d:15:f2:f2:1d:48:
9d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B0:A4:A0:F9:8E:44:5A:82:2C:C8:C0:A1:DC:BD:3A:B3:69:23:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/929DD9ACA8DC11EF98607C61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.38.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:4a:6f:e3:74:bf:4a:2d:52:2e:5a:ca:0f:3d:d7:df:ce:b9:
38:e7:68:db:ac:34:66:0d:b1:a9:fe:9d:e1:3b:24:32:18:c2:
c3:6b:a9:1d:7c:30:f1:9c:e6:45:6f:79:42:8f:f3:d2:fb:f5:
0d:20:ed:a3:70:b1:f8:6d:32:d1:e8:97:b8:5a:9a:1a:4d:21:
de:a9:c3:30:9f:bf:02:72:f0:59:3f:c4:7e:e0:16:75:0f:f5:
98:7e:33:84:b6:f1:40:e7:f0:6b:6c:f3:c1:a9:41:8b:b4:d1:
7f:82:1b:41:48:47:4c:f9:75:0b:3d:32:e6:91:80:32:36:d8:
4a:bc:8c:a3:1f:6f:a4:81:db:17:49:99:20:f3:a2:9c:2a:54:
e8:25:2a:c6:50:e2:d8:60:a8:cf:79:93:23:af:ae:6b:4a:c6:
8a:83:4a:22:36:dc:eb:ff:29:af:f7:f7:2c:10:47:85:c0:e1:
8d:f5:8b:1a:18:65:79:ab:11:1a:15:6a:bc:a7:58:3b:0a:10:
80:24:f2:a3:ca:2c:b6:ef:cf:56:4b:04:25:ce:f4:b8:09:97:
cc:70:1d:9e:40:39:58:a0:ce:c1:b7:6a:83:4f:05:fd:04:35:
51:de:68:0a:a0:f5:2d:3f:6e:6d:e1:d4:ff:da:56:14:e3:e3:
3a:cb:a5:3f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARBdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTQxNzU0WhcNMjQxMjA5MTQxNzU0WjAYMRYw
FAYDVQQDEw02NzQwOTI5Ni02Mzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAusMLJ3RF2rKInJ+kEX3ewdFISsNj9vPv6KA/KtKdLLocFO/9Xc32/9zZ
soPdqSLl1pJry7sYE1iww/neZuOMmzKJDz6ZDiaZQbYPXe7NxxBKQe8CZ4aYDmqy
i3tkqjP8503Ur+y0t90k1oyXiwQfDNlTsTYXwrsvRfNidApV4k+pG9ut7fWs8ljk
dXv9PB/NZ3BR2HK+Qpmz13cJmCX0+5pSwkGGV2liBTpPd6n/zlYesRIYbMj6daUn
rMQ1VJbAPGlluKpFXP7hn4mAWBc6uiSrkHlr+Rzu3RZq0L6vNigj+UwtFlJBynao
qXYxSChHc68vqOWjeWtNFfLyHUid2QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDmw
pKD5jkRagizIwKHcvTqzaSN9MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85MjlERDlBQ0E4REMxMUVGOTg2MDdDNjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4mMA0GCSqGSIb3DQEB
CwUAA4IBAQCfSm/jdL9KLVIuWsoPPdffzrk452jbrDRmDbGp/p3hOyQyGMLDa6kd
fDDxnOZFb3lCj/PS+/UNIO2jcLH4bTLR6Je4WpoaTSHeqcMwn78CcvBZP8R+4BZ1
D/WYfjOEtvFA5/BrbPPBqUGLtNF/ghtBSEdM+XULPTLmkYAyNthKvIyjH2+kgdsX
SZkg86KcKlToJSrGUOLYYKjPeZMjr65rSsaKg0oiNtzr/ymv9/csEEeFwOGN9Ysa
GGV5qxEaFWq8p1g7ChCAJPKjyiy2789WSwQlzvS4CZfMcB2eQDlYoM7Bt2qDTwX9
BDVR3mgKoPUtP25t4dT/2lYU4+M6y6U/
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:36 2024 by rpki-client on console-fra.rpki-client.org