Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2ECB2429B5D11EF92BE3F4B762E951A.roa
File: A2ECB2429B5D11EF92BE3F4B762E951A.roa (raw, json)
Hash identifier: pkV0szh2fRPegMkll5nknl07m5+QcEqu8mtwvFSv+NQ=
Subject key identifier: 1F:3B:47:7D:BB:93:C0:F6:64:EF:2B:C4:0C:6E:33:51:F7:71:B6:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01078D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2ECB2429B5D11EF92BE3F4B762E951A.roa
Signing time: Tue 05 Nov 2024 10:06:34 +0000
ROA not before: Tue 05 Nov 2024 10:06:30 +0000
ROA not after: Mon 13 Jan 2025 10:06:30 +0000
asID: 7018
IP address blocks: 154.83.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67469 (0x1078d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 10:06:30 2024 GMT
Not After : Jan 13 10:06:30 2025 GMT
Subject: CN=6729ee2a-6e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8b:c1:f3:11:71:5e:38:4b:6a:27:c5:1e:40:
fe:07:09:fe:37:df:d8:f2:be:8e:b4:55:24:79:e6:
f5:bc:bf:93:26:2d:73:29:b0:d7:60:5c:83:e8:70:
58:61:ae:c5:c7:46:da:7e:20:34:53:12:37:15:45:
60:32:46:07:52:e8:b1:e9:3b:3d:4c:e6:ec:39:d4:
2e:12:ec:4e:77:b6:f8:b2:0f:34:f4:3a:a8:28:8f:
e8:96:0b:9b:d4:e2:59:30:75:02:bf:8a:cd:46:a8:
39:da:81:09:3b:3d:41:c9:1a:8f:ef:f1:80:fa:c6:
86:b1:65:a5:36:0d:23:44:8f:b4:8a:c4:22:f9:c3:
bf:71:d7:ff:eb:de:42:67:fb:79:0a:c7:4e:47:cd:
d3:d2:6a:e7:fb:63:46:6f:2c:5c:b1:5f:e2:88:7e:
a3:a5:54:c9:1a:1d:0d:5f:c8:85:de:66:d1:94:c7:
17:a2:a6:ad:26:32:4a:e3:9d:8e:aa:41:69:48:c0:
94:cc:ce:77:b3:fd:dc:ec:b3:e4:cb:72:e9:75:6c:
64:9d:8c:64:9c:63:6e:b6:50:5c:d4:dc:73:fd:cf:
78:d6:e3:8f:70:42:be:bb:23:ca:93:b9:fd:36:75:
53:04:dc:4e:0d:a1:2f:ac:90:1b:a2:e8:9e:3d:41:
18:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3B:47:7D:BB:93:C0:F6:64:EF:2B:C4:0C:6E:33:51:F7:71:B6:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2ECB2429B5D11EF92BE3F4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.232.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:62:32:4c:50:59:d2:74:1f:35:d4:64:05:ba:d5:b7:60:75:
d0:1c:c9:fd:c3:39:8e:3d:03:64:d7:86:25:03:a8:54:ca:40:
54:34:6d:73:d6:fd:23:84:d3:5a:ea:a1:a4:71:04:f5:68:81:
03:d0:32:58:07:5e:ce:23:67:33:04:27:c6:b7:55:51:e8:97:
f3:06:1f:08:be:99:7b:31:09:ed:6f:74:0c:83:5d:0a:34:3a:
47:fa:d2:8b:66:46:22:36:de:b7:3d:b9:c9:2f:e9:20:a3:d6:
a4:a2:dc:cc:b5:58:2c:97:2b:ca:8a:a6:5c:08:9e:2d:16:bd:
bf:e2:78:4e:e5:f7:a3:2a:11:e9:fb:52:df:ec:64:a5:72:07:
bf:d4:12:fa:7c:27:40:d4:46:54:68:5e:b3:80:7f:09:6f:37:
ce:29:a2:51:f9:2f:f9:6c:15:aa:18:a2:9c:cf:7d:bf:31:28:
dd:79:6d:d6:eb:89:db:f4:11:42:31:33:5a:dd:91:69:cb:17:
d8:6c:ef:f4:8c:46:4a:23:c6:f4:51:d1:66:66:4d:c9:67:97:
c6:f8:13:ec:e8:62:44:75:a1:19:62:d8:9f:1d:27:22:32:df:
eb:90:f8:24:e3:eb:3c:d8:78:bb:7a:3b:c8:b8:7f:65:98:fe:
0b:95:4c:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQeNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA1MTAwNjMwWhcNMjUwMTEzMTAwNjMwWjAYMRYw
FAYDVQQDEw02NzI5ZWUyYS02ZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwYvB8xFxXjhLaifFHkD+Bwn+N9/Y8r6OtFUkeeb1vL+TJi1zKbDXYFyD
6HBYYa7Fx0bafiA0UxI3FUVgMkYHUuix6Ts9TObsOdQuEuxOd7b4sg809DqoKI/o
lgub1OJZMHUCv4rNRqg52oEJOz1ByRqP7/GA+saGsWWlNg0jRI+0isQi+cO/cdf/
695CZ/t5CsdOR83T0mrn+2NGbyxcsV/iiH6jpVTJGh0NX8iF3mbRlMcXoqatJjJK
452OqkFpSMCUzM53s/3c7LPky3LpdWxknYxknGNutlBc1Nxz/c941uOPcEK+uyPK
k7n9NnVTBNxODaEvrJAbouiePUEY4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB87
R327k8D2ZO8rxAxuM1H3cbZkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMkVDQjI0MjlCNUQxMUVGOTJCRTNGNEI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlPoMA0GCSqGSIb3DQEB
CwUAA4IBAQAOYjJMUFnSdB811GQFutW3YHXQHMn9wzmOPQNk14YlA6hUykBUNG1z
1v0jhNNa6qGkcQT1aIED0DJYB17OI2czBCfGt1VR6JfzBh8Ivpl7MQntb3QMg10K
NDpH+tKLZkYiNt63PbnJL+kgo9akotzMtVgslyvKiqZcCJ4tFr2/4nhO5fejKhHp
+1Lf7GSlcge/1BL6fCdA1EZUaF6zgH8JbzfOKaJR+S/5bBWqGKKcz32/MSjdeW3W
64nb9BFCMTNa3ZFpyxfYbO/0jEZKI8b0UdFmZk3JZ5fG+BPs6GJEdaEZYtifHSci
Mt/rkPgk4+s82Hi7ejvIuH9lmP4LlUz/
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:58 2024 by rpki-client on console-ams.rpki-client.org