Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D105A6983111EFBD7F6645762E951A.roa
File: A9D105A6983111EFBD7F6645762E951A.roa (raw, json)
Hash identifier: gsWouDyKfTP/pzX633coauM1BY6S5cmUQvTx2nl+JD0=
Subject key identifier: C5:8E:91:01:28:1C:55:FE:E1:41:CE:77:BE:16:90:4C:13:68:B5:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0104AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D105A6983111EFBD7F6645762E951A.roa
Signing time: Fri 01 Nov 2024 09:14:14 +0000
ROA not before: Fri 01 Nov 2024 09:14:10 +0000
ROA not after: Wed 04 Dec 2024 09:14:10 +0000
asID: 14315
IP address blocks: 154.196.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66735 (0x104af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 09:14:10 2024 GMT
Not After : Dec 4 09:14:10 2024 GMT
Subject: CN=67249be6-bc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:00:29:c4:41:2c:cd:bc:18:07:4a:26:62:06:
52:a3:37:26:d4:18:be:4d:0a:1e:ca:c9:cc:d6:81:
03:b0:c9:ef:81:3f:9b:c4:ca:de:bf:95:68:82:d8:
2a:77:9e:e6:a7:54:f6:47:11:c4:0f:6a:67:47:d6:
af:82:fd:23:65:a3:f7:fe:6c:e3:79:96:d2:0d:c0:
31:ff:5f:97:24:9f:e8:f7:4b:9b:83:b9:69:6d:06:
67:43:43:c3:24:9b:e2:66:b7:ac:78:9e:56:bb:a1:
95:bb:e6:72:c1:53:10:0b:94:c2:11:53:34:6f:5b:
ed:52:49:93:c8:6c:86:3e:93:2c:5a:4d:26:b6:6e:
27:41:8a:88:5e:b9:e8:eb:7c:86:eb:b2:d6:6d:ce:
12:0c:67:2b:2b:6c:bd:64:a3:cb:35:36:18:9c:d4:
6d:80:25:25:2d:90:54:32:96:11:02:1a:ae:cc:8e:
1b:91:eb:55:e6:f8:d6:36:1d:69:2b:66:14:a9:17:
33:53:d4:8a:01:d5:d0:a7:93:ed:c5:3a:36:ee:e9:
b9:02:f1:17:d5:66:bb:fb:67:9b:8e:d2:53:17:9f:
21:a7:89:b2:77:dc:1e:de:76:61:3d:12:85:04:93:
9a:3b:5b:c2:70:30:88:02:49:ed:63:83:d7:a7:da:
2b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8E:91:01:28:1C:55:FE:E1:41:CE:77:BE:16:90:4C:13:68:B5:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9D105A6983111EFBD7F6645762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.8.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:58:2f:d6:0d:5a:fe:1d:55:3d:18:f7:ce:04:13:7e:12:a3:
d8:56:6f:b3:ff:a7:fb:97:e1:14:52:9e:39:05:a8:a2:11:53:
6a:95:cd:45:09:ec:93:5e:da:8c:73:97:ce:de:1a:0e:76:86:
8f:16:e4:57:25:7a:0b:0f:5d:c3:29:b4:c0:04:99:0d:cf:8d:
5b:e6:fc:69:b5:f4:a3:e1:b3:83:65:e0:ff:b0:fc:46:9a:f6:
55:00:d7:75:a0:ae:95:a9:78:56:ca:dd:b2:58:3e:3f:9c:74:
cd:06:4c:a1:fa:1e:97:d8:bd:9d:f1:e7:42:94:3b:6f:37:dd:
aa:9f:f2:a7:1b:c4:15:1d:73:f7:6c:93:53:a8:ad:4d:e0:b6:
8a:14:38:04:f1:b8:a5:13:fc:02:80:86:2c:2c:68:86:07:a4:
e3:7e:44:51:5d:4d:11:88:ee:54:9c:1e:5d:4a:97:c9:55:e4:
a0:1c:80:fe:41:c7:8d:5c:8f:fa:27:fc:88:0a:bd:75:53:59:
fc:50:b2:35:19:51:2f:5d:47:87:1e:35:04:1d:7d:46:5b:96:
d0:4f:ac:35:b9:0f:71:c6:1b:b5:c9:d7:fe:b9:ee:b7:6a:26:
99:d1:44:cf:2b:18:3a:72:24:62:8f:2e:e5:5b:5a:08:54:00:
fe:96:66:03
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQSvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAxMDkxNDEwWhcNMjQxMjA0MDkxNDEwWjAYMRYw
FAYDVQQDEw02NzI0OWJlNi1iYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvAApxEEszbwYB0omYgZSozcm1Bi+TQoeysnM1oEDsMnvgT+bxMrev5Vo
gtgqd57mp1T2RxHED2pnR9avgv0jZaP3/mzjeZbSDcAx/1+XJJ/o90ubg7lpbQZn
Q0PDJJviZreseJ5Wu6GVu+ZywVMQC5TCEVM0b1vtUkmTyGyGPpMsWk0mtm4nQYqI
Xrno63yG67LWbc4SDGcrK2y9ZKPLNTYYnNRtgCUlLZBUMpYRAhquzI4bketV5vjW
Nh1pK2YUqRczU9SKAdXQp5PtxTo27um5AvEX1Wa7+2ebjtJTF58hp4myd9we3nZh
PRKFBJOaO1vCcDCIAkntY4PXp9orAwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMWO
kQEoHFX+4UHOd74WkEwTaLXEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BOUQxMDVBNjk4MzExMUVGQkQ3RjY2NDU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsQIMA0GCSqGSIb3DQEB
CwUAA4IBAQAbWC/WDVr+HVU9GPfOBBN+EqPYVm+z/6f7l+EUUp45BaiiEVNqlc1F
CeyTXtqMc5fO3hoOdoaPFuRXJXoLD13DKbTABJkNz41b5vxptfSj4bODZeD/sPxG
mvZVANd1oK6VqXhWyt2yWD4/nHTNBkyh+h6X2L2d8edClDtvN92qn/KnG8QVHXP3
bJNTqK1N4LaKFDgE8bilE/wCgIYsLGiGB6TjfkRRXU0RiO5UnB5dSpfJVeSgHID+
QceNXI/6J/yICr11U1n8ULI1GVEvXUeHHjUEHX1GW5bQT6w1uQ9xxhu1ydf+ue63
aiaZ0UTPKxg6ciRijy7lW1oIVAD+lmYD
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:28 2024 by rpki-client on console-ams.rpki-client.org