Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931C698AA92111EFABE99D8C762E951A.roa
File: 931C698AA92111EFABE99D8C762E951A.roa (raw, json)
Hash identifier: hHS8mjNOIrBm+bmtkvZXvreo7HjB1kYDOnEHClb1pU8=
Subject key identifier: 98:4F:5C:D6:C0:52:E6:3C:79:F7:22:C3:74:09:BF:00:CE:AF:2D:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01116D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931C698AA92111EFABE99D8C762E951A.roa
Signing time: Fri 22 Nov 2024 22:31:54 +0000
ROA not before: Fri 22 Nov 2024 22:31:50 +0000
ROA not after: Tue 03 Dec 2024 22:31:50 +0000
asID: 133180
IP address blocks: 154.206.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69997 (0x1116d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 22:31:50 2024 GMT
Not After : Dec 3 22:31:50 2024 GMT
Subject: CN=6741065a-a1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:07:2f:a7:7e:9e:8c:d4:e7:d9:7b:e8:ac:
b3:90:34:80:d3:d7:77:4d:c0:27:68:98:b8:f3:28:
48:cc:20:d1:f7:6f:dd:6f:7a:20:92:04:ea:95:bb:
6a:7f:7b:9c:69:e2:03:05:43:7a:67:8c:7a:84:2b:
d7:0c:a4:ed:b7:d4:d1:e3:ec:34:e8:da:49:61:8c:
55:2f:91:4d:dd:3a:04:aa:c6:74:62:b4:d4:16:a8:
bb:16:c4:4f:f8:15:f9:ee:df:19:05:b1:66:e5:b3:
ec:11:76:17:a5:00:c7:2a:2a:88:fb:9c:b2:08:51:
18:d5:45:7c:d0:a1:a4:86:cd:26:16:4f:1d:8c:1f:
60:89:9a:6f:28:9d:7c:77:15:0a:71:4d:a0:5c:74:
01:c0:9f:8e:93:70:6d:53:7c:0c:40:af:e5:c9:74:
3e:c4:e7:9c:f9:03:d4:b5:62:34:bf:05:0e:27:73:
59:a9:83:55:f7:6e:59:ad:77:2f:bc:8b:b1:6e:67:
59:7e:c5:bb:d8:41:b0:87:6c:da:07:ec:3e:c0:0e:
f6:cf:8b:1b:17:fe:ff:02:5a:a3:ec:13:6c:af:b2:
5c:80:bf:88:8a:17:4b:50:84:3d:e0:74:3a:0a:0a:
10:e3:c6:55:87:aa:8d:18:d1:ee:ed:92:8a:a8:04:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4F:5C:D6:C0:52:E6:3C:79:F7:22:C3:74:09:BF:00:CE:AF:2D:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/931C698AA92111EFABE99D8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.128.0/18
Signature Algorithm: sha256WithRSAEncryption
5c:6c:42:20:99:da:c2:a1:14:91:6b:3e:15:59:69:4c:8b:6c:
b4:42:fa:d1:b0:3f:1a:f3:95:eb:1d:4a:b1:8e:49:b5:7a:3b:
51:b1:eb:56:8a:81:a6:cb:c2:09:3e:ce:3e:55:f2:94:60:76:
c3:4b:65:59:9b:19:d9:95:96:3b:89:6e:91:de:f9:ce:e3:2c:
45:49:c9:50:68:af:d2:46:19:b3:e7:f6:cc:73:dd:98:d5:5f:
c7:70:61:73:ea:ba:e3:1e:5c:bb:3a:7b:c4:b6:32:6d:12:b1:
9a:52:94:4c:6e:91:85:d0:f0:87:89:d1:b4:47:4f:4d:a7:98:
6b:4e:79:09:66:d7:ca:d6:e1:21:c8:5c:a5:ef:01:ca:9e:a5:
9b:33:06:6e:21:c1:5b:a0:20:41:5c:2f:16:1e:1d:0f:27:19:
27:1d:fc:17:48:03:ad:10:46:e7:57:6e:75:3b:fd:d4:fe:1d:
c9:ad:67:91:6f:6a:5c:d2:eb:36:b0:82:b3:6b:f8:71:ae:a2:
bf:cc:4a:fa:99:3e:fb:4b:98:cd:fc:99:87:76:34:84:59:9f:
f6:ca:a6:db:b5:1e:df:85:ab:d1:5c:82:ba:ad:b3:10:e1:f6:
58:3f:1e:9b:18:1c:9b:5a:4c:48:bd:d1:83:87:42:bf:23:25:
d6:b8:0c:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARFtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMjIzMTUwWhcNMjQxMjAzMjIzMTUwWjAYMRYw
FAYDVQQDEw02NzQxMDY1YS1hMWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAv4sHL6d+nozU59l76KyzkDSA09d3TcAnaJi48yhIzCDR92/db3ogkgTq
lbtqf3ucaeIDBUN6Z4x6hCvXDKTtt9TR4+w06NpJYYxVL5FN3ToEqsZ0YrTUFqi7
FsRP+BX57t8ZBbFm5bPsEXYXpQDHKiqI+5yyCFEY1UV80KGkhs0mFk8djB9giZpv
KJ18dxUKcU2gXHQBwJ+Ok3BtU3wMQK/lyXQ+xOec+QPUtWI0vwUOJ3NZqYNV925Z
rXcvvIuxbmdZfsW72EGwh2zaB+w+wA72z4sbF/7/Alqj7BNsr7JcgL+IihdLUIQ9
4HQ6CgoQ48ZVh6qNGNHu7ZKKqAQ3IQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJhP
XNbAUuY8efciw3QJvwDOry0sMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85MzFDNjk4QUE5MjExMUVGQUJFOTlEOEM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGms6AMA0GCSqGSIb3DQEB
CwUAA4IBAQBcbEIgmdrCoRSRaz4VWWlMi2y0QvrRsD8a85XrHUqxjkm1ejtRsetW
ioGmy8IJPs4+VfKUYHbDS2VZmxnZlZY7iW6R3vnO4yxFSclQaK/SRhmz5/bMc92Y
1V/HcGFz6rrjHly7OnvEtjJtErGaUpRMbpGF0PCHidG0R09Np5hrTnkJZtfK1uEh
yFyl7wHKnqWbMwZuIcFboCBBXC8WHh0PJxknHfwXSAOtEEbnV251O/3U/h3JrWeR
b2pc0us2sIKza/hxrqK/zEr6mT77S5jN/JmHdjSEWZ/2yqbbtR7fhavRXIK6rbMQ
4fZYPx6bGBybWkxIvdGDh0K/IyXWuAyn
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:39 2024 by rpki-client on console-fra.rpki-client.org