Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A74CE25E7B2211EFA3F009A9762E951A.roa
File: A74CE25E7B2211EFA3F009A9762E951A.roa (raw, json)
Hash identifier: fCczbAwClYwXAjz5zSHz3QGMkKT52l0S5tMlJtzWzKw=
Subject key identifier: D1:81:4D:8E:06:D4:D0:EB:20:52:E1:A5:A3:B5:5B:A7:3C:B8:1F:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F364
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A74CE25E7B2211EFA3F009A9762E951A.roa
Signing time: Wed 25 Sep 2024 09:43:44 +0000
ROA not before: Wed 25 Sep 2024 09:43:40 +0000
ROA not after: Tue 30 Sep 2025 09:43:40 +0000
asID: 209242
IP address blocks: 154.84.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62308 (0xf364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 09:43:40 2024 GMT
Not After : Sep 30 09:43:40 2025 GMT
Subject: CN=66f3db50-3c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:37:e3:24:b8:a1:27:8c:a1:b4:19:78:65:95:
8c:a6:77:fe:4c:57:81:20:bd:16:fd:4c:7b:22:2a:
a1:bf:f0:fd:06:50:dd:9f:57:8e:05:d9:b4:2e:9b:
a7:8e:72:27:d6:1e:fc:7a:f9:02:d7:16:1c:5c:1a:
3a:2a:bc:95:df:a2:ef:d5:d1:a5:01:73:6f:ec:f4:
3c:d5:24:f8:14:30:fc:eb:cf:a0:c9:75:41:ad:a0:
46:0f:35:d8:70:04:58:3e:f8:ba:fe:34:99:16:ca:
0d:4a:92:cf:78:c6:9a:60:24:91:9d:10:40:a6:40:
b0:47:50:61:d6:29:81:b8:10:10:23:45:82:5e:74:
08:ea:79:ff:05:e7:0f:5b:df:f3:4e:97:8b:a9:34:
f1:74:cd:36:b5:e8:04:68:a7:4d:5c:1a:1a:c9:7c:
fd:d5:d5:68:59:0b:7f:b5:89:c7:d3:3b:af:78:c1:
9d:95:7b:a0:90:f8:51:5f:d0:1c:c9:57:c2:da:9b:
28:40:9f:7f:14:43:b7:09:4a:25:3b:02:96:27:24:
33:9b:e2:b1:2d:7c:49:8a:c5:17:5f:9b:17:45:e8:
e7:9b:e5:d2:f7:7f:ca:1b:32:ea:1e:c8:9a:eb:33:
d1:b5:02:65:a6:8d:cf:dd:ba:83:75:a5:05:ba:89:
d1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:81:4D:8E:06:D4:D0:EB:20:52:E1:A5:A3:B5:5B:A7:3C:B8:1F:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A74CE25E7B2211EFA3F009A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.24.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:06:d4:a5:5e:e6:af:c6:4b:41:28:4e:4a:5e:67:40:c8:00:
77:51:9d:31:24:5d:be:a8:0a:7a:d6:08:40:e9:1e:80:26:73:
91:c4:05:b8:3d:66:5c:be:bb:61:f8:f8:95:42:b5:24:91:c3:
5e:15:67:15:1b:10:1d:54:fd:0b:9c:06:e4:d6:ca:d8:6d:e7:
57:aa:87:20:af:09:7e:67:8a:db:b6:c8:46:4b:ba:dd:a2:e9:
a1:2f:62:18:2b:89:11:99:a7:cb:8b:70:25:fc:89:cd:87:23:
64:35:d8:96:f3:62:5a:43:5a:07:df:4f:3c:b3:a2:14:33:13:
4b:af:63:bd:67:eb:50:3d:26:73:64:88:5c:c4:a7:47:52:50:
0c:ec:5c:56:3e:51:3c:eb:2e:66:68:49:7e:18:74:56:98:19:
e2:1a:8a:f9:52:ce:21:b4:2d:59:df:2c:8c:13:7c:f0:31:c5:
29:30:d3:1d:c8:09:c1:4f:08:05:76:0a:34:84:c1:a4:80:75:
3e:11:f8:b5:07:e1:d5:fd:ac:1c:92:84:a6:3e:de:e1:ae:85:
75:b9:b9:d9:bb:6a:5c:5f:3b:dc:6c:70:31:48:c7:c7:7b:7c:
0e:1b:1e:2d:0d:42:43:cc:0e:c2:c2:73:c2:09:44:5f:cf:f4:
7d:42:ab:86
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPNkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTI1MDk0MzQwWhcNMjUwOTMwMDk0MzQwWjAYMRYw
FAYDVQQDEw02NmYzZGI1MC0zYzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArDfjJLihJ4yhtBl4ZZWMpnf+TFeBIL0W/Ux7Iiqhv/D9BlDdn1eOBdm0
LpunjnIn1h78evkC1xYcXBo6KryV36Lv1dGlAXNv7PQ81ST4FDD868+gyXVBraBG
DzXYcARYPvi6/jSZFsoNSpLPeMaaYCSRnRBApkCwR1Bh1imBuBAQI0WCXnQI6nn/
BecPW9/zTpeLqTTxdM02tegEaKdNXBoayXz91dVoWQt/tYnH0zuveMGdlXugkPhR
X9AcyVfC2psoQJ9/FEO3CUolOwKWJyQzm+KxLXxJisUXX5sXRejnm+XS93/KGzLq
Hsia6zPRtQJlpo3P3bqDdaUFuonRQQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNGB
TY4G1NDrIFLhpaO1W6c8uB+8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNzRDRTI1RTdCMjIxMUVGQTNGMDA5QTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlQYMA0GCSqGSIb3DQEB
CwUAA4IBAQDHBtSlXuavxktBKE5KXmdAyAB3UZ0xJF2+qAp61ghA6R6AJnORxAW4
PWZcvrth+PiVQrUkkcNeFWcVGxAdVP0LnAbk1srYbedXqocgrwl+Z4rbtshGS7rd
oumhL2IYK4kRmafLi3Al/InNhyNkNdiW82JaQ1oH3088s6IUMxNLr2O9Z+tQPSZz
ZIhcxKdHUlAM7FxWPlE86y5maEl+GHRWmBniGor5Us4htC1Z3yyME3zwMcUpMNMd
yAnBTwgFdgo0hMGkgHU+Efi1B+HV/awckoSmPt7hroV1ubnZu2pcXzvcbHAxSMfH
e3wOGx4tDUJDzA7CwnPCCURfz/R9QquG
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:19 2024 by rpki-client on console-fra.rpki-client.org