Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8EDB516B10611EE802B806A775412E6.roa
File: A8EDB516B10611EE802B806A775412E6.roa (raw, json)
Hash identifier: 1bjikTl8M65BUFZ00/uMGYjsRqShxsjsuNSjoWDvdgI=
Subject key identifier: 4C:80:F4:CB:9A:A6:A8:AE:8F:73:18:10:41:E5:6A:B7:CB:20:C0:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 74C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8EDB516B10611EE802B806A775412E6.roa
Signing time: Fri 12 Jan 2024 04:54:26 +0000
ROA not before: Fri 12 Jan 2024 04:54:22 +0000
ROA not after: Fri 13 Dec 2024 04:54:22 +0000
asID: 140227
IP address blocks: 154.205.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29891 (0x74c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 04:54:22 2024 GMT
Not After : Dec 13 04:54:22 2024 GMT
Subject: CN=65a0c602-f1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5f:c5:99:8e:aa:8f:79:b5:4d:80:06:8e:ad:
42:dd:9d:65:b9:0c:37:e1:46:ba:e6:e2:6c:b6:a2:
54:c4:a2:bd:1d:87:f1:a1:ae:8f:6d:ca:8a:c7:b8:
8b:b2:c4:6d:fb:a7:d4:64:96:0a:8b:f8:69:96:78:
9b:25:20:2c:81:86:b7:47:b1:f2:e2:4b:73:3c:77:
f8:8b:11:ae:9a:27:6f:5e:c2:c9:49:25:ae:49:25:
19:57:9e:b7:1d:2e:2a:1d:20:83:87:13:bf:0b:32:
b1:4a:2a:8a:95:60:73:c1:e9:b6:1e:7f:3b:2c:c6:
cb:40:de:56:55:30:a9:5b:4a:f9:b2:bc:fb:cb:de:
d5:63:da:84:27:d5:93:f4:05:87:2e:4d:28:27:e9:
a0:a8:50:9c:b7:d9:e3:c7:2c:14:cf:c8:63:a6:ec:
92:c0:af:22:64:3c:dc:5f:02:44:10:2b:a5:97:67:
c1:4d:04:c1:23:35:47:18:80:b5:7e:e5:54:84:7f:
a8:93:12:cf:3f:c1:81:85:fc:98:21:4a:48:69:e3:
bd:e1:0b:da:cd:fa:cb:b0:0f:06:e8:61:72:bf:d1:
c5:4b:72:e0:03:12:4f:ce:45:0a:f6:95:b0:f7:f5:
81:4e:ed:9b:c9:b3:c9:04:60:66:fd:bd:85:28:a6:
5d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:80:F4:CB:9A:A6:A8:AE:8F:73:18:10:41:E5:6A:B7:CB:20:C0:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8EDB516B10611EE802B806A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.192.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f5:cc:0e:9c:5c:49:32:fc:6e:c2:98:b8:8a:cd:79:cf:b6:
56:8b:a7:49:f4:86:d1:be:d6:74:8c:a3:e5:00:cb:6a:ac:03:
e1:c6:95:7d:69:5a:0a:43:0f:ed:b8:31:56:8f:60:d9:f7:4d:
79:c1:95:39:38:aa:ad:1f:f0:bc:64:61:a5:74:60:d5:7f:29:
cb:c5:9b:4a:b9:72:21:fc:71:b9:3b:cd:6d:8d:e7:83:11:10:
c8:50:6a:01:54:f3:fa:75:1a:6e:6c:d4:1c:2b:2f:02:45:2c:
ae:6f:fe:15:74:0c:a3:7c:1b:da:b6:8b:6f:b2:1a:1b:3d:45:
b6:01:6c:4e:fb:d0:72:ff:fc:d4:1d:38:fa:1c:03:10:81:ae:
b6:cb:56:23:6e:21:99:5a:ef:f1:18:e3:cd:41:3f:62:46:e0:
4a:db:5f:1c:1e:85:10:25:3c:86:08:5e:8e:a5:7d:34:59:e7:
e2:23:d8:1b:d2:be:e4:8f:da:67:81:33:10:fc:71:4b:d7:6f:
26:f8:da:ea:de:38:ff:71:d9:83:43:b5:a8:c7:2c:de:16:97:
22:92:52:ac:51:c7:37:42:75:62:ac:2d:3e:9d:7f:f5:d9:b1:
87:57:f8:cb:98:0e:f8:24:52:24:c4:5b:01:af:ae:ab:64:32:
b8:61:08:f0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICdMMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yNDAxMTIwNDU0MjJaFw0yNDEyMTMwNDU0MjJaMBgxFjAU
BgNVBAMTDTY1YTBjNjAyLWYxZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGX8WZjqqPebVNgAaOrULdnWW5DDfhRrrm4my2olTEor0dh/Ghro9tyorH
uIuyxG37p9RklgqL+GmWeJslICyBhrdHsfLiS3M8d/iLEa6aJ29ewslJJa5JJRlX
nrcdLiodIIOHE78LMrFKKoqVYHPB6bYefzssxstA3lZVMKlbSvmyvPvL3tVj2oQn
1ZP0BYcuTSgn6aCoUJy32ePHLBTPyGOm7JLAryJkPNxfAkQQK6WXZ8FNBMEjNUcY
gLV+5VSEf6iTEs8/wYGF/JghSkhp473hC9rN+suwDwboYXK/0cVLcuADEk/ORQr2
lbD39YFO7ZvJs8kEYGb9vYUopl2ZAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTID0
y5qmqK6PcxgQQeVqt8sgwLEwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0E4RURCNTE2QjEwNjExRUU4MDJCODA2QTc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazcAwDQYJKoZIhvcNAQEL
BQADggEBAJr1zA6cXEky/G7CmLiKzXnPtlaLp0n0htG+1nSMo+UAy2qsA+HGlX1p
WgpDD+24MVaPYNn3TXnBlTk4qq0f8LxkYaV0YNV/KcvFm0q5ciH8cbk7zW2N54MR
EMhQagFU8/p1Gm5s1BwrLwJFLK5v/hV0DKN8G9q2i2+yGhs9RbYBbE770HL//NQd
OPocAxCBrrbLViNuIZla7/EY481BP2JG4ErbXxwehRAlPIYIXo6lfTRZ5+Ij2BvS
vuSP2meBMxD8cUvXbyb42ureOP9x2YNDtajHLN4WlyKSUqxRxzdCdWKsLT6df/XZ
sYdX+MuYDvgkUiTEWwGvrqtkMrhhCPA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:21 2024 by rpki-client on console-ams.rpki-client.org