Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E7DB7F0A8D811EF8123D147762E951A.roa
File: 9E7DB7F0A8D811EF8123D147762E951A.roa (raw, json)
Hash identifier: 9GW00Mf5jr/apZaBEEJ7DZmf026QMpmgbDY6l7ABWzU=
Subject key identifier: 81:00:C9:54:DF:26:5B:ED:E4:19:3F:F8:87:E4:E8:0B:0E:BF:20:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011039
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E7DB7F0A8D811EF8123D147762E951A.roa
Signing time: Fri 22 Nov 2024 13:49:40 +0000
ROA not before: Fri 22 Nov 2024 13:49:36 +0000
ROA not after: Mon 02 Dec 2024 13:49:36 +0000
asID: 44559
IP address blocks: 154.211.48.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69689 (0x11039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 13:49:36 2024 GMT
Not After : Dec 2 13:49:36 2024 GMT
Subject: CN=67408bf4-964a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:8e:71:14:28:6b:59:1f:f8:0f:e2:06:31:
58:6d:c5:af:c2:15:f7:49:b7:74:dc:df:07:9b:db:
0c:35:88:ea:b3:fa:31:e5:7f:b6:59:2f:9c:81:55:
e8:ac:cf:57:dc:5a:ab:7b:e9:a0:7a:06:fb:b4:3e:
4c:f1:60:98:e7:bb:f3:47:52:83:52:b4:ff:b7:9a:
e0:d2:47:2a:69:da:26:07:e9:f1:3c:37:34:99:b5:
9d:e4:da:8e:22:c5:9d:66:3a:a9:48:94:f1:44:c8:
e7:0a:70:8e:7f:9e:dd:f3:35:f8:11:85:c7:d8:ff:
1a:c1:aa:da:81:cf:a5:dd:ea:3c:32:4f:e2:58:cf:
69:e4:85:c2:93:7c:a4:0e:a5:ff:aa:8b:4e:79:b4:
08:eb:64:1b:7e:68:f6:66:dd:dd:d9:52:5e:33:f8:
aa:73:73:77:2f:cf:6a:1b:2e:dc:b9:a2:a1:3b:ec:
1f:b1:a1:e5:48:7e:75:de:e1:06:d3:d8:bf:59:f6:
76:ec:eb:c0:28:e6:08:e5:4f:be:d7:ae:b9:54:a9:
0b:f6:38:5b:f7:e8:27:02:5b:ad:c1:65:04:5e:30:
fd:8f:25:4f:19:3a:91:ef:38:48:b9:ac:e9:e3:aa:
55:a5:99:a0:9f:72:48:2c:b0:7c:88:b3:47:96:e4:
af:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:00:C9:54:DF:26:5B:ED:E4:19:3F:F8:87:E4:E8:0B:0E:BF:20:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E7DB7F0A8D811EF8123D147762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.48.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:33:17:d0:fd:97:2b:1f:ca:78:5f:f0:81:32:68:01:47:fd:
59:46:59:bb:12:68:34:40:ac:d3:42:d8:50:77:5a:f0:9c:80:
6a:cd:e7:bc:60:d5:e7:f8:4d:3e:3c:58:6c:8b:86:fc:18:d1:
9e:cf:db:13:c3:1f:e4:5f:20:f0:bc:60:42:a8:92:8a:0a:40:
59:da:a5:21:d4:68:70:8c:66:7c:92:b4:86:8e:6b:9b:c4:07:
08:a4:35:41:17:c2:5d:e1:7a:0c:a7:b7:b0:4d:4e:6b:35:49:
a8:71:db:e0:43:41:3f:22:b8:73:a9:03:5d:69:9c:d7:cd:d6:
2b:90:31:17:cd:01:f4:55:ff:87:0b:01:97:f1:75:47:85:ca:
3d:2f:97:f1:58:ba:73:5c:b2:7d:20:eb:0a:d3:f7:47:28:55:
aa:4e:94:7a:c4:4a:37:1e:27:34:e7:4d:18:ac:93:aa:be:1f:
75:e5:da:40:a3:19:40:86:f6:46:5c:41:a6:56:e4:d0:8e:c5:
5d:d2:6d:8c:ff:55:7c:5c:69:f1:04:13:ee:00:52:ef:59:3f:
9a:8e:bb:77:d8:7f:08:06:ac:4f:ad:eb:23:3e:e2:ea:fe:55:
d5:be:36:88:b5:91:68:f5:4f:4c:e1:22:87:e8:d6:00:f5:64:
6e:58:bd:0d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARA5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTM0OTM2WhcNMjQxMjAyMTM0OTM2WjAYMRYw
FAYDVQQDEw02NzQwOGJmNC05NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoDyOcRQoa1kf+A/iBjFYbcWvwhX3Sbd03N8Hm9sMNYjqs/ox5X+2WS+c
gVXorM9X3Fqre+mgegb7tD5M8WCY57vzR1KDUrT/t5rg0kcqadomB+nxPDc0mbWd
5NqOIsWdZjqpSJTxRMjnCnCOf57d8zX4EYXH2P8awaragc+l3eo8Mk/iWM9p5IXC
k3ykDqX/qotOebQI62Qbfmj2Zt3d2VJeM/iqc3N3L89qGy7cuaKhO+wfsaHlSH51
3uEG09i/WfZ27OvAKOYI5U++1665VKkL9jhb9+gnAlutwWUEXjD9jyVPGTqR7zhI
uazp46pVpZmgn3JILLB8iLNHluSvsQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIEA
yVTfJlvt5Bk/+Ifk6AsOvyBNMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85RTdEQjdGMEE4RDgxMUVGODEyM0QxNDc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtMwMA0GCSqGSIb3DQEB
CwUAA4IBAQCMMxfQ/ZcrH8p4X/CBMmgBR/1ZRlm7Emg0QKzTQthQd1rwnIBqzee8
YNXn+E0+PFhsi4b8GNGez9sTwx/kXyDwvGBCqJKKCkBZ2qUh1GhwjGZ8krSGjmub
xAcIpDVBF8Jd4XoMp7ewTU5rNUmocdvgQ0E/IrhzqQNdaZzXzdYrkDEXzQH0Vf+H
CwGX8XVHhco9L5fxWLpzXLJ9IOsK0/dHKFWqTpR6xEo3Hic0500YrJOqvh915dpA
oxlAhvZGXEGmVuTQjsVd0m2M/1V8XGnxBBPuAFLvWT+ajrt32H8IBqxPresjPuLq
/lXVvjaItZFo9U9M4SKH6NYA9WRuWL0N
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:38 2024 by rpki-client on console-fra.rpki-client.org