Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A82745E4CCA311EEBA5A575B775412E6.roa
File: A82745E4CCA311EEBA5A575B775412E6.roa (raw, json)
Hash identifier: y3yJFDdd0An1hveAMtakudsOZSM5GDfaITw2SaTPevM=
Subject key identifier: 7F:FB:7D:47:2D:BE:04:E5:AF:D7:3A:3C:E9:B7:69:2F:FE:78:59:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8A25
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A82745E4CCA311EEBA5A575B775412E6.roa
Signing time: Fri 16 Feb 2024 08:16:17 +0000
ROA not before: Fri 16 Feb 2024 08:16:13 +0000
ROA not after: Mon 17 Feb 2025 08:16:13 +0000
asID: 197730
IP address blocks: 154.201.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35365 (0x8a25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Feb 16 08:16:13 2024 GMT
Not After : Feb 17 08:16:13 2025 GMT
Subject: CN=65cf19d1-cc8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3e:cf:3a:6a:1d:89:af:2e:a7:37:c5:9f:1a:
f8:fb:62:6c:de:2e:98:66:d4:c6:56:65:b3:9e:75:
b4:0b:da:cc:4d:e0:38:81:74:24:fc:27:e4:32:04:
9a:b7:55:79:d0:bc:99:75:b7:42:d8:4f:ba:67:0a:
08:e8:74:97:f1:01:0b:77:c5:c7:9c:4a:cd:17:e9:
b3:16:a2:71:45:3a:cd:05:09:18:d6:96:13:92:48:
f6:a3:b3:be:e2:c3:da:14:e5:c3:34:50:f4:a7:fd:
5b:f0:79:8d:eb:dc:7a:0a:4c:51:fe:bb:3e:f9:a0:
0c:68:8e:e4:b6:a8:c9:41:74:8c:5f:29:f3:88:47:
7e:53:5f:e8:de:f7:7d:e7:9a:44:24:d8:41:be:bf:
0e:49:7a:16:14:f3:ce:2a:f8:18:2c:1c:09:ae:3c:
76:58:7d:b3:f7:9d:f7:6e:fe:c0:29:0a:8a:a4:63:
28:5a:37:bc:0b:2a:a1:99:22:3e:55:8c:39:dc:33:
81:c0:d1:3d:cb:8e:60:c2:61:dd:48:56:a9:2b:1e:
77:cc:c5:c4:ca:fe:20:58:e2:75:ee:41:90:2a:d8:
6d:0f:d4:75:4a:60:b4:c3:d5:3b:45:3f:b1:4b:58:
bf:51:6d:84:5d:4f:de:ab:66:51:84:4f:62:cf:d3:
b7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FB:7D:47:2D:BE:04:E5:AF:D7:3A:3C:E9:B7:69:2F:FE:78:59:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A82745E4CCA311EEBA5A575B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.120.0/22
Signature Algorithm: sha256WithRSAEncryption
97:05:80:be:54:21:f9:53:e6:ad:a1:1e:5a:a1:0d:c1:d1:34:
b0:60:ca:c4:92:9b:98:9e:e3:3f:f9:2e:23:34:1b:31:61:6d:
37:35:1e:32:3b:46:1f:8e:8d:37:5a:7c:9b:46:06:4a:01:98:
eb:01:74:9a:a9:6e:e2:71:0e:1b:e3:ab:4e:1c:90:97:b6:b1:
78:d2:ad:da:53:2c:2c:b4:9e:e9:ca:e2:72:b1:20:10:1a:55:
07:9d:4e:39:4f:f5:05:16:f7:ca:96:ba:3f:24:be:cb:f0:b7:
db:42:b4:48:80:30:36:f7:8f:43:b3:ab:15:4e:00:3e:93:a9:
ef:66:55:44:e7:31:62:d1:c5:64:6a:bf:6c:cf:02:2b:0d:d6:
d3:e5:4d:e4:20:d1:af:cd:09:53:62:17:3f:51:d2:67:f4:a6:
5d:ab:ff:44:19:49:8c:9d:75:22:5e:e0:0b:71:cf:38:de:a8:
3b:c5:c0:c9:8a:ff:e2:8d:04:4c:1d:73:43:3e:ef:a9:dc:20:
a9:27:ad:38:1b:59:9c:f9:17:11:ab:10:73:5a:b2:d9:92:7f:
c7:6a:13:1d:a5:fb:82:52:48:d0:45:b0:ed:30:2e:59:02:96:
ae:5e:18:36:0f:b7:39:75:5c:82:59:30:3b:6c:40:ee:70:0a:
fe:9e:45:3b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAIolMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMjE2MDgxNjEzWhcNMjUwMjE3MDgxNjEzWjAYMRYw
FAYDVQQDEw02NWNmMTlkMS1jYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyz7POmodia8upzfFnxr4+2Js3i6YZtTGVmWznnW0C9rMTeA4gXQk/Cfk
MgSat1V50LyZdbdC2E+6ZwoI6HSX8QELd8XHnErNF+mzFqJxRTrNBQkY1pYTkkj2
o7O+4sPaFOXDNFD0p/1b8HmN69x6CkxR/rs++aAMaI7ktqjJQXSMXynziEd+U1/o
3vd955pEJNhBvr8OSXoWFPPOKvgYLBwJrjx2WH2z9533bv7AKQqKpGMoWje8Cyqh
mSI+VYw53DOBwNE9y45gwmHdSFapKx53zMXEyv4gWOJ17kGQKthtD9R1SmC0w9U7
RT+xS1i/UW2EXU/eq2ZRhE9iz9O3nwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH/7
fUctvgTlr9c6POm3aS/+eFlqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BODI3NDVFNENDQTMxMUVFQkE1QTU3NUI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsl4MA0GCSqGSIb3DQEB
CwUAA4IBAQCXBYC+VCH5U+atoR5aoQ3B0TSwYMrEkpuYnuM/+S4jNBsxYW03NR4y
O0Yfjo03WnybRgZKAZjrAXSaqW7icQ4b46tOHJCXtrF40q3aUywstJ7pyuJysSAQ
GlUHnU45T/UFFvfKlro/JL7L8LfbQrRIgDA2949Ds6sVTgA+k6nvZlVE5zFi0cVk
ar9szwIrDdbT5U3kINGvzQlTYhc/UdJn9KZdq/9EGUmMnXUiXuALcc843qg7xcDJ
iv/ijQRMHXNDPu+p3CCpJ604G1mc+RcRqxBzWrLZkn/HahMdpfuCUkjQRbDtMC5Z
ApauXhg2D7c5dVyCWTA7bEDucAr+nkU7
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:42 2024 by rpki-client on console-fra.rpki-client.org