Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA9194C89DA011EFA5D4E691762E951A.roa
File: AA9194C89DA011EFA5D4E691762E951A.roa (raw, json)
Hash identifier: 4bCtdwmGpynBclvAxwHB/CMR5PAVeOh2AkxFPgqtSeE=
Subject key identifier: 33:AC:68:A4:55:30:57:70:01:34:5E:B5:6A:DA:7A:5E:E2:2C:E3:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA9194C89DA011EFA5D4E691762E951A.roa
Signing time: Fri 08 Nov 2024 07:11:25 +0000
ROA not before: Fri 08 Nov 2024 07:11:22 +0000
ROA not after: Thu 12 Dec 2024 07:11:22 +0000
asID: 398823
IP address blocks: 154.212.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68008 (0x109a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:11:22 2024 GMT
Not After : Dec 12 07:11:22 2024 GMT
Subject: CN=672db99d-ef84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:59:9a:c5:33:ae:ef:d5:05:e2:6c:0c:ef:75:
37:98:11:ae:75:9b:e3:d6:fa:f2:de:bc:f6:a6:a7:
8a:58:dc:a3:8f:40:54:6b:27:14:34:d9:52:19:5f:
7b:de:43:c6:31:f0:df:22:d7:c6:87:fc:1d:ae:3c:
0d:a3:e6:60:9f:41:b2:a1:c5:38:c0:10:8a:6a:94:
ad:30:f6:a5:fa:54:de:7d:e2:48:c9:31:93:ac:cb:
9e:76:e5:bf:e6:21:a8:71:63:a2:1b:48:13:26:fb:
4d:42:6a:f6:b1:26:15:ed:b6:ad:cd:4f:c4:f2:97:
0f:72:1a:63:f2:71:b5:42:42:ff:87:5d:1b:b6:a4:
eb:ee:01:a5:3c:7f:f0:4e:fc:e1:cb:f1:7b:3e:12:
87:38:84:a4:77:82:c4:4e:f9:1c:07:5a:be:11:ea:
e0:5b:ab:68:89:85:90:9a:82:3f:2f:03:ec:e3:be:
89:49:1c:e9:7b:e7:11:38:aa:c1:fb:16:be:03:3c:
a9:e8:ca:5b:74:5f:35:63:8b:c3:af:5d:cb:cc:f9:
8c:98:22:af:42:51:99:46:85:34:a2:c7:d9:68:11:
0a:3f:85:db:8c:ea:d1:c7:3e:c4:8e:e0:83:4c:49:
5a:1b:59:9b:78:bb:1d:5b:3a:49:e4:5a:aa:60:1f:
4f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AC:68:A4:55:30:57:70:01:34:5E:B5:6A:DA:7A:5E:E2:2C:E3:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA9194C89DA011EFA5D4E691762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.32.0/19
Signature Algorithm: sha256WithRSAEncryption
33:23:42:26:76:62:44:bd:05:07:d9:38:14:f4:a0:eb:b0:c2:
3c:09:96:df:99:04:fb:8f:f3:2f:8a:9e:50:c8:a7:81:2a:a0:
9b:35:bc:41:6b:82:80:dd:dd:0a:cc:83:c1:8f:9d:9e:b9:ad:
73:b6:7e:2b:0c:7b:29:00:3e:24:3f:25:9d:92:48:3b:32:a6:
e4:d2:de:9f:b2:fd:86:af:c1:fb:5c:94:1b:08:e6:9b:70:18:
93:1e:c6:46:7f:34:3b:46:44:52:b7:14:ca:9f:92:ed:5c:7e:
3e:19:78:f1:dd:37:e9:3e:3d:9c:fa:84:50:72:42:fc:88:fe:
99:29:e0:a6:e1:36:b2:be:fa:20:cb:44:7d:f0:ab:7d:cd:e4:
75:e3:c1:c0:77:62:0c:86:6c:97:76:1a:8f:2f:a4:ae:44:07:
ba:b8:19:2c:28:bb:43:cd:1e:7a:20:b7:38:59:c5:0d:99:96:
3e:f1:2f:5e:e7:11:e8:c2:c9:87:26:40:e7:8f:88:5e:07:49:
56:06:ca:27:31:e5:ba:8b:8c:23:10:06:cb:2c:0f:ea:d7:dc:
23:5f:35:99:6d:bd:24:2f:65:fa:63:a6:75:29:0b:d1:6c:74:
2a:1c:aa:12:43:fb:7d:34:fd:84:48:31:be:73:a9:b8:e5:68:
71:b3:a0:ce
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQmoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA4MDcxMTIyWhcNMjQxMjEyMDcxMTIyWjAYMRYw
FAYDVQQDEw02NzJkYjk5ZC1lZjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4FmaxTOu79UF4mwM73U3mBGudZvj1vry3rz2pqeKWNyjj0BUaycUNNlS
GV973kPGMfDfItfGh/wdrjwNo+Zgn0GyocU4wBCKapStMPal+lTefeJIyTGTrMue
duW/5iGocWOiG0gTJvtNQmr2sSYV7batzU/E8pcPchpj8nG1QkL/h10btqTr7gGl
PH/wTvzhy/F7PhKHOISkd4LETvkcB1q+EergW6toiYWQmoI/LwPs476JSRzpe+cR
OKrB+xa+Azyp6MpbdF81Y4vDr13LzPmMmCKvQlGZRoU0osfZaBEKP4XbjOrRxz7E
juCDTElaG1mbeLsdWzpJ5FqqYB9PfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDOs
aKRVMFdwATRetWrael7iLOP4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BQTkxOTRDODlEQTAxMUVGQTVENEU2OTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmtQgMA0GCSqGSIb3DQEB
CwUAA4IBAQAzI0ImdmJEvQUH2TgU9KDrsMI8CZbfmQT7j/Mvip5QyKeBKqCbNbxB
a4KA3d0KzIPBj52eua1ztn4rDHspAD4kPyWdkkg7Mqbk0t6fsv2Gr8H7XJQbCOab
cBiTHsZGfzQ7RkRStxTKn5LtXH4+GXjx3TfpPj2c+oRQckL8iP6ZKeCm4Tayvvog
y0R98Kt9zeR148HAd2IMhmyXdhqPL6SuRAe6uBksKLtDzR56ILc4WcUNmZY+8S9e
5xHowsmHJkDnj4heB0lWBsonMeW6i4wjEAbLLA/q19wjXzWZbb0kL2X6Y6Z1KQvR
bHQqHKoSQ/t9NP2ESDG+c6m45Whxs6DO
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org