Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976FF0A09DA111EFA58E0C98762E951A.roa
File: 976FF0A09DA111EFA58E0C98762E951A.roa (raw, json)
Hash identifier: N9IMeUPF1sqzG0HUXlvQoFfUICv3wVzY0BgyHuXFQWQ=
Subject key identifier: D4:EB:CD:29:15:7A:BA:0E:C6:64:4F:21:73:25:1A:75:9E:66:D8:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976FF0A09DA111EFA58E0C98762E951A.roa
Signing time: Fri 08 Nov 2024 07:18:03 +0000
ROA not before: Fri 08 Nov 2024 07:17:59 +0000
ROA not after: Sat 30 Nov 2024 07:17:59 +0000
asID: 46071
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68012 (0x109ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:17:59 2024 GMT
Not After : Nov 30 07:17:59 2024 GMT
Subject: CN=672dbb2b-6ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c5:7f:26:a3:32:dc:03:4f:a0:0c:07:7e:c9:
00:81:04:ff:10:52:b2:25:54:1b:89:1b:be:9f:83:
34:41:81:c6:c7:71:eb:c2:82:76:79:2a:2a:b0:ed:
72:04:65:34:37:a0:e9:9f:de:eb:3e:aa:9d:17:ad:
61:e5:07:19:74:6d:c1:60:a5:67:11:4e:94:ee:6b:
78:54:fa:85:b0:9f:de:f0:a3:4d:b0:91:70:69:89:
37:21:9c:30:84:70:9f:c1:6a:86:12:d8:ee:d4:29:
34:2a:a1:00:ec:fd:1c:c3:5b:4e:f8:d5:5a:72:78:
59:90:d9:3f:e3:66:83:a7:cf:42:ac:55:2f:96:80:
21:92:8a:aa:ea:b6:7b:69:73:4c:86:c5:10:d1:04:
42:bf:46:de:f0:59:e7:19:e0:f6:94:ec:3b:1a:9c:
a3:38:91:4d:0f:aa:f3:6c:a3:7a:1f:63:45:06:89:
e9:c1:ad:63:8a:f2:06:79:ba:99:a5:1a:ca:b0:04:
56:f1:0c:51:52:60:b2:87:71:86:7a:a3:d5:cb:20:
0a:a1:c0:07:ef:d6:d6:15:b7:e5:53:e2:2d:71:5d:
2f:09:92:2a:88:66:d4:8b:79:b6:dc:98:d2:d8:73:
db:bd:bc:c4:46:bf:b8:4c:f2:96:ef:c1:a6:5b:5d:
af:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EB:CD:29:15:7A:BA:0E:C6:64:4F:21:73:25:1A:75:9E:66:D8:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976FF0A09DA111EFA58E0C98762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:de:19:48:01:ca:00:41:f6:09:9f:4a:a7:74:4a:85:b0:79:
c6:61:1d:b0:5a:2c:d6:50:3b:4d:f8:e1:52:77:b7:83:fe:ed:
bd:e7:21:0a:59:ec:be:7b:00:29:21:d8:77:0f:11:d8:d4:c9:
9c:f7:30:62:eb:ff:4c:5a:35:7b:7c:e6:f9:d1:bd:5a:95:27:
4b:06:87:43:01:26:c0:90:bc:a9:1f:94:ff:0d:24:23:1e:a1:
bc:37:6c:3b:1e:a5:79:da:60:ee:1c:65:78:94:47:e1:1e:10:
b9:e0:b3:69:93:f0:71:73:ea:28:5c:11:43:c2:eb:9b:dc:8e:
88:c7:f0:81:17:d3:17:12:79:8d:9b:10:8f:f5:58:64:84:68:
6d:2d:a7:ce:0f:a1:78:78:f3:ca:51:7a:ee:8d:28:62:24:30:
5e:a9:24:c2:c8:be:50:50:6b:17:55:01:e6:62:8b:d7:a6:b6:
b9:86:1b:a7:ea:81:14:e9:11:7a:7d:84:20:2d:99:9e:46:02:
e4:e1:1a:4d:cf:eb:47:47:db:37:32:73:94:27:81:be:3e:d5:
c7:01:25:00:1e:fa:42:44:d0:7d:2e:e3:d4:61:d6:e5:77:c4:
f6:66:ae:90:36:3a:68:7f:6c:d0:a2:74:6a:2b:97:f4:ae:27:
83:5d:78:29
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQmsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA4MDcxNzU5WhcNMjQxMTMwMDcxNzU5WjAYMRYw
FAYDVQQDEw02NzJkYmIyYi02ZmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAv8V/JqMy3ANPoAwHfskAgQT/EFKyJVQbiRu+n4M0QYHGx3HrwoJ2eSoq
sO1yBGU0N6Dpn97rPqqdF61h5QcZdG3BYKVnEU6U7mt4VPqFsJ/e8KNNsJFwaYk3
IZwwhHCfwWqGEtju1Ck0KqEA7P0cw1tO+NVacnhZkNk/42aDp89CrFUvloAhkoqq
6rZ7aXNMhsUQ0QRCv0be8FnnGeD2lOw7GpyjOJFND6rzbKN6H2NFBonpwa1jivIG
ebqZpRrKsARW8QxRUmCyh3GGeqPVyyAKocAH79bWFbflU+ItcV0vCZIqiGbUi3m2
3JjS2HPbvbzERr+4TPKW78GmW12vPQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNTr
zSkVeroOxmRPIXMlGnWeZtgqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NzZGRjBBMDlEQTExMUVGQTU4RTBDOTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtLeMA0GCSqGSIb3DQEB
CwUAA4IBAQA63hlIAcoAQfYJn0qndEqFsHnGYR2wWizWUDtN+OFSd7eD/u295yEK
Wey+ewApIdh3DxHY1Mmc9zBi6/9MWjV7fOb50b1alSdLBodDASbAkLypH5T/DSQj
HqG8N2w7HqV52mDuHGV4lEfhHhC54LNpk/Bxc+ooXBFDwuub3I6Ix/CBF9MXEnmN
mxCP9VhkhGhtLafOD6F4ePPKUXrujShiJDBeqSTCyL5QUGsXVQHmYovXpra5hhun
6oEU6RF6fYQgLZmeRgLk4RpNz+tHR9s3MnOUJ4G+PtXHASUAHvpCRNB9LuPUYdbl
d8T2Zq6QNjpof2zQonRqK5f0rieDXXgp
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:24 2024 by rpki-client on console-ams.rpki-client.org