Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2435A1A74CC11EFB789FE41762E951A.roa
File: A2435A1A74CC11EFB789FE41762E951A.roa (raw, json)
Hash identifier: 2Wi2FBVvfJc9a0FGPvHjiIkbWKbR7jyq2iCubPnLSX0=
Subject key identifier: 17:73:CB:5E:6B:00:78:33:AB:B5:79:10:E5:BA:EB:CE:21:7E:B8:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EFEE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2435A1A74CC11EFB789FE41762E951A.roa
Signing time: Tue 17 Sep 2024 08:12:52 +0000
ROA not before: Tue 17 Sep 2024 08:12:48 +0000
ROA not after: Sat 30 Nov 2024 08:12:48 +0000
asID: 142403
IP address blocks: 154.221.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61422 (0xefee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:12:48 2024 GMT
Not After : Nov 30 08:12:48 2024 GMT
Subject: CN=66e93a04-bb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ae:b4:20:ad:88:ec:d0:80:c8:56:68:ef:a7:
c9:97:48:c5:0e:16:d4:dd:2b:26:44:3d:51:1c:d0:
e7:40:a0:91:34:44:9f:d8:58:c1:a7:30:c0:e2:22:
e6:cf:32:d9:15:9b:26:20:2c:4c:f4:92:44:ea:78:
60:e3:3d:ea:b2:d5:0c:80:b0:ed:8b:2a:08:0f:d5:
2e:c2:7c:e7:6a:07:97:37:19:11:a2:46:59:d4:09:
87:2c:04:f2:06:7b:9c:ce:52:be:56:71:ca:f0:8e:
57:e8:87:7e:13:7a:83:66:49:34:95:e5:6d:50:ec:
82:a4:94:ec:fb:ef:01:96:10:73:41:42:b2:44:35:
d1:b2:62:d3:2e:cc:8e:9b:f7:2f:7b:d7:a9:bd:b3:
8a:15:a6:1e:52:e2:31:71:27:7e:c4:96:a4:94:fa:
51:60:83:d0:c0:88:30:4c:6f:2b:54:d8:8e:81:b2:
12:a5:63:50:59:78:14:6b:b6:98:c5:dc:b0:ed:ec:
2c:e2:42:ea:d3:d0:4c:2b:dc:3e:66:5a:0c:c2:82:
3b:80:7c:40:72:3b:db:b0:b7:55:e9:c5:85:d1:05:
76:db:d2:7f:d2:77:78:36:62:9c:da:39:93:60:f8:
90:3e:bf:aa:c0:cd:5f:26:c7:4b:07:34:d3:89:95:
61:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:73:CB:5E:6B:00:78:33:AB:B5:79:10:E5:BA:EB:CE:21:7E:B8:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2435A1A74CC11EFB789FE41762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.18.0/24
Signature Algorithm: sha256WithRSAEncryption
50:2b:8c:df:34:23:57:72:a9:55:3d:55:e7:48:b9:1e:46:3d:
22:14:49:84:8a:f2:a4:67:83:88:52:0d:60:37:31:a2:36:d3:
62:60:fc:6c:40:a0:18:d5:97:89:b3:01:7a:a9:61:3b:ca:42:
4d:bf:5d:48:5f:e6:b0:73:f7:49:ce:9a:d4:0b:4e:af:c8:b1:
6f:05:36:5b:61:78:aa:c1:35:de:b1:2d:94:7e:67:e1:b8:60:
4f:96:c8:6f:f4:b0:b2:73:3d:a6:73:0a:87:6a:f5:82:52:8b:
77:7e:15:f6:5b:7e:a2:7c:e1:29:9a:0c:76:7d:7b:97:81:17:
05:1b:51:db:c0:f1:12:26:57:35:e0:75:2a:0d:ca:4e:f2:84:
c6:5e:1d:3d:4e:f0:b0:50:4b:9d:16:f6:08:4b:a6:c6:86:e2:
ee:59:90:70:6a:f9:57:cc:f7:17:c0:ad:71:ae:6f:3c:1d:aa:
ab:43:3b:d7:8e:2d:ca:bf:ca:23:7f:41:08:f5:a1:27:98:b6:
fe:ee:5e:b4:a2:20:60:1a:32:2f:a9:65:43:80:f0:19:f8:24:
e5:29:52:32:f5:f0:6e:a8:4e:61:88:32:3b:86:8a:86:95:42:
f6:ca:c8:72:11:b2:89:77:40:ad:82:6d:41:30:45:b4:22:3d:
ec:41:99:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO/uMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE3MDgxMjQ4WhcNMjQxMTMwMDgxMjQ4WjAYMRYw
FAYDVQQDEw02NmU5M2EwNC1iYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp660IK2I7NCAyFZo76fJl0jFDhbU3SsmRD1RHNDnQKCRNESf2FjBpzDA
4iLmzzLZFZsmICxM9JJE6nhg4z3qstUMgLDtiyoID9UuwnznageXNxkRokZZ1AmH
LATyBnuczlK+VnHK8I5X6Id+E3qDZkk0leVtUOyCpJTs++8BlhBzQUKyRDXRsmLT
LsyOm/cve9epvbOKFaYeUuIxcSd+xJaklPpRYIPQwIgwTG8rVNiOgbISpWNQWXgU
a7aYxdyw7ews4kLq09BMK9w+ZloMwoI7gHxAcjvbsLdV6cWF0QV229J/0nd4NmKc
2jmTYPiQPr+qwM1fJsdLBzTTiZVhXQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBdz
y15rAHgzq7V5EOW6684hfrhWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMjQzNUExQTc0Q0MxMUVGQjc4OUZFNDE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0SMA0GCSqGSIb3DQEB
CwUAA4IBAQBQK4zfNCNXcqlVPVXnSLkeRj0iFEmEivKkZ4OIUg1gNzGiNtNiYPxs
QKAY1ZeJswF6qWE7ykJNv11IX+awc/dJzprUC06vyLFvBTZbYXiqwTXesS2Ufmfh
uGBPlshv9LCycz2mcwqHavWCUot3fhX2W36ifOEpmgx2fXuXgRcFG1HbwPESJlc1
4HUqDcpO8oTGXh09TvCwUEudFvYIS6bGhuLuWZBwavlXzPcXwK1xrm88HaqrQzvX
ji3Kv8ojf0EI9aEnmLb+7l60oiBgGjIvqWVDgPAZ+CTlKVIy9fBuqE5hiDI7hoqG
lUL2yshyEbKJd0Ctgm1BMEW0Ij3sQZmp
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:20 2024 by rpki-client on console-ams.rpki-client.org