Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7A1A9463DCA11EFBA7E8A56762E951A.roa
File: A7A1A9463DCA11EFBA7E8A56762E951A.roa (raw, json)
Hash identifier: ZrgB2vZZ471ict2J4ZcKJSlM0PpKq7ylw1NIANqmQnc=
Subject key identifier: AE:98:87:3B:8C:D8:D2:02:9F:54:52:B7:DC:A5:AB:24:71:E9:22:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CF80
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7A1A9463DCA11EFBA7E8A56762E951A.roa
Signing time: Tue 09 Jul 2024 08:10:08 +0000
ROA not before: Tue 09 Jul 2024 08:10:04 +0000
ROA not after: Tue 20 May 2025 08:10:04 +0000
asID: 23764
IP address blocks: 154.209.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53120 (0xcf80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 9 08:10:04 2024 GMT
Not After : May 20 08:10:04 2025 GMT
Subject: CN=668cf060-f90c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:16:75:60:3e:24:02:23:3b:be:24:c2:f0:e7:
e1:19:df:08:dc:42:18:b1:eb:5c:d1:77:82:fe:84:
10:61:5e:95:72:7b:d1:7e:1f:f6:6a:75:c1:dc:69:
e9:0a:b8:1e:b5:7f:d9:49:b7:20:e3:b0:17:dd:26:
8d:bd:e1:6f:b9:07:5d:af:d4:dc:e4:53:eb:44:b7:
e8:82:7d:0f:6b:d9:f2:25:f7:1b:e6:b0:f4:31:50:
1f:b8:a3:12:57:85:31:f9:cb:26:7f:19:79:ae:c9:
e8:66:62:c7:bb:41:09:2b:ed:be:d4:b8:63:bc:c9:
58:41:27:84:61:4f:84:4e:cf:63:43:e5:14:50:1c:
c2:2e:54:e6:f9:6e:c7:68:c8:6a:39:f5:43:f8:89:
d4:97:ff:c1:68:fe:e2:3b:74:e1:fb:80:9f:72:7c:
ae:a5:5f:30:36:f1:e7:b3:b5:21:8c:9c:e0:ab:cf:
7e:b2:e1:80:e4:3e:5d:29:c4:8f:9d:e3:f8:d1:d3:
50:82:0f:48:60:48:41:92:20:74:a5:e8:cc:9d:ca:
3e:65:70:be:01:3f:4a:1c:d0:1f:2e:55:ab:ad:e7:
49:76:46:f1:f5:0a:c2:76:9c:cc:8d:a6:33:4b:0b:
37:11:ae:9c:ce:5e:16:e7:f2:46:00:f3:db:bb:4c:
7a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:98:87:3B:8C:D8:D2:02:9F:54:52:B7:DC:A5:AB:24:71:E9:22:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7A1A9463DCA11EFBA7E8A56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.21.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4e:03:ff:52:f3:20:67:9f:76:8a:bc:48:d4:19:24:7c:20:
5b:d0:66:a5:b5:56:a7:79:96:51:b9:cb:20:da:4a:cf:e7:07:
1f:48:a3:26:4f:1c:d7:5a:50:26:8c:5c:e2:d7:42:f7:12:01:
8c:5e:1b:28:7e:92:bd:03:8f:44:fc:74:dc:0e:34:43:7a:0b:
08:9c:a2:f0:f0:4a:a6:9f:0c:53:68:7b:a7:2d:d8:ae:46:e2:
aa:20:29:c7:f9:82:d9:d4:9c:23:11:80:85:2f:6c:16:a8:24:
8b:7a:4c:39:fc:7b:2c:f2:b8:e0:2f:8e:fa:c8:e2:cc:59:20:
16:c9:80:63:b8:1b:e3:79:c1:e3:b6:ee:90:2d:cd:22:d0:b7:
93:13:9c:e4:b4:1f:52:31:30:e2:87:0b:55:b2:72:56:db:b6:
f4:3d:9a:92:40:66:7d:4c:c8:8e:40:47:e4:cc:af:b7:4e:b4:
a6:8c:f2:70:9a:0b:ea:3c:0f:7f:48:49:3e:ee:99:a9:05:b9:
ea:bf:8a:58:35:d3:37:58:e7:eb:a4:1e:61:39:87:6e:82:df:
ba:63:64:63:55:20:a1:4a:a4:b6:eb:d3:b8:d7:38:ff:91:4c:
50:0d:58:b6:48:37:86:7c:c0:e8:c3:6f:4a:2c:fe:18:ac:2b:
95:b4:49:ec
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAM+AMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzA5MDgxMDA0WhcNMjUwNTIwMDgxMDA0WjAYMRYw
FAYDVQQDEw02NjhjZjA2MC1mOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvxZ1YD4kAiM7viTC8OfhGd8I3EIYsetc0XeC/oQQYV6VcnvRfh/2anXB
3GnpCrgetX/ZSbcg47AX3SaNveFvuQddr9Tc5FPrRLfogn0Pa9nyJfcb5rD0MVAf
uKMSV4Ux+csmfxl5rsnoZmLHu0EJK+2+1LhjvMlYQSeEYU+ETs9jQ+UUUBzCLlTm
+W7HaMhqOfVD+InUl//BaP7iO3Th+4CfcnyupV8wNvHns7UhjJzgq89+suGA5D5d
KcSPneP40dNQgg9IYEhBkiB0pejMnco+ZXC+AT9KHNAfLlWrredJdkbx9QrCdpzM
jaYzSws3Ea6czl4W5/JGAPPbu0x6MQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK6Y
hzuM2NICn1RSt9ylqyRx6SIgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BN0ExQTk0NjNEQ0ExMUVGQkE3RThBNTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtEVMA0GCSqGSIb3DQEB
CwUAA4IBAQBQTgP/UvMgZ592irxI1BkkfCBb0GaltVaneZZRucsg2krP5wcfSKMm
TxzXWlAmjFzi10L3EgGMXhsofpK9A49E/HTcDjRDegsInKLw8EqmnwxTaHunLdiu
RuKqICnH+YLZ1JwjEYCFL2wWqCSLekw5/Hss8rjgL476yOLMWSAWyYBjuBvjecHj
tu6QLc0i0LeTE5zktB9SMTDihwtVsnJW27b0PZqSQGZ9TMiOQEfkzK+3TrSmjPJw
mgvqPA9/SEk+7pmpBbnqv4pYNdM3WOfrpB5hOYdugt+6Y2RjVSChSqS269O41zj/
kUxQDVi2SDeGfMDow29KLP4YrCuVtEns
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:21 2024 by rpki-client on console-ams.rpki-client.org