Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE40A192A8E811EFA856B7AB762E951A.roa
File: AE40A192A8E811EFA856B7AB762E951A.roa (raw, json)
Hash identifier: nsfOJDVZyP2YQwu63sguB+nkyIyPBGnWXqmksjsJomQ=
Subject key identifier: F2:6A:73:1A:7B:1E:53:04:50:C4:91:C8:1B:D2:28:91:23:DA:4C:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE40A192A8E811EFA856B7AB762E951A.roa
Signing time: Fri 22 Nov 2024 15:44:38 +0000
ROA not before: Fri 22 Nov 2024 15:44:34 +0000
ROA not after: Tue 03 Dec 2024 15:44:34 +0000
asID: 62240
IP address blocks: 154.194.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69871 (0x110ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:44:34 2024 GMT
Not After : Dec 3 15:44:34 2024 GMT
Subject: CN=6740a6e6-d8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:07:92:06:f2:d9:b8:a5:12:0f:72:a3:45:
45:6d:df:3b:8d:65:1a:1a:65:86:77:53:80:6a:2b:
4f:c8:6f:2d:ef:2d:9a:7b:dc:8e:14:70:b7:89:db:
21:28:6d:9c:3f:4b:b1:ab:18:72:ce:14:66:15:9a:
87:4c:03:63:02:40:6a:36:ef:bb:49:9b:66:26:5c:
13:6c:cd:19:06:7d:a5:ad:d1:6d:d6:98:80:5b:48:
3c:cf:28:8f:59:6b:15:cb:fb:87:83:1c:5d:84:1e:
f8:18:9c:f9:6b:0d:84:2a:d8:e4:9c:6b:c6:70:90:
80:2d:d7:52:33:95:e6:39:2d:28:0b:30:b1:4f:90:
9c:3e:c8:b2:44:0f:a2:e4:57:61:a3:ac:40:aa:04:
ae:ff:88:8d:2b:78:ff:b3:de:af:1e:8b:08:e7:2e:
6c:59:ad:7a:23:45:4c:7f:03:d1:b5:9c:9b:be:81:
88:d4:65:17:60:d0:86:89:37:b6:ba:61:5f:1b:6b:
4f:65:74:25:77:10:e1:66:f7:2b:1b:de:a6:c3:68:
fb:57:4c:2c:7b:c5:0c:58:ac:50:4a:c9:0d:fd:dd:
bb:ae:b6:a2:1b:76:36:27:d0:cb:ae:3f:2f:5d:6b:
84:f4:40:a0:bc:a5:f5:49:e5:cf:98:cb:35:ae:49:
35:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:6A:73:1A:7B:1E:53:04:50:C4:91:C8:1B:D2:28:91:23:DA:4C:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE40A192A8E811EFA856B7AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:43:4c:16:0a:2f:06:d8:a8:d7:6a:21:75:d0:92:03:17:70:
d7:c4:05:55:59:f2:eb:e6:77:65:39:e9:c1:c3:64:bd:3d:b5:
80:ee:16:13:54:45:6b:cc:26:f7:01:97:fd:36:2e:e6:19:7e:
9b:cf:dd:2d:a9:33:72:35:b9:2d:af:05:e4:d7:2b:55:de:79:
21:92:e7:7d:50:88:1f:f6:f5:b1:47:10:17:98:4f:5c:e7:35:
e5:c7:9c:bc:87:a4:c5:37:69:37:3d:1a:3d:2f:54:6a:9c:85:
2e:18:fe:ce:4d:82:58:8a:cd:92:2c:22:52:d2:02:8f:5a:86:
e4:ea:4b:8e:67:fc:36:fe:1e:26:c6:3d:6c:fa:4f:90:0b:73:
d4:12:2f:1d:55:06:71:3b:75:1c:c9:32:a0:2c:de:ef:c4:f3:
41:9a:f7:48:93:e3:fe:c2:c1:82:af:ba:22:e7:d5:40:64:d9:
28:fb:ee:36:e2:58:20:85:ee:d5:08:73:05:3e:8c:71:b9:4d:
8e:01:bf:e0:ca:0e:0d:6c:e6:73:09:a2:1d:e4:b3:f7:a5:eb:
b5:0a:a8:9e:c5:26:0a:7e:f0:4f:80:2d:b0:8e:2b:88:ab:87:
28:ce:5c:51:f1:e8:65:77:b6:28:4d:89:93:d1:58:4c:f3:37:
03:7c:f4:f0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARDvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTU0NDM0WhcNMjQxMjAzMTU0NDM0WjAYMRYw
FAYDVQQDEw02NzQwYTZlNi1kOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq6AHkgby2bilEg9yo0VFbd87jWUaGmWGd1OAaitPyG8t7y2ae9yOFHC3
idshKG2cP0uxqxhyzhRmFZqHTANjAkBqNu+7SZtmJlwTbM0ZBn2lrdFt1piAW0g8
zyiPWWsVy/uHgxxdhB74GJz5aw2EKtjknGvGcJCALddSM5XmOS0oCzCxT5CcPsiy
RA+i5Fdho6xAqgSu/4iNK3j/s96vHosI5y5sWa16I0VMfwPRtZybvoGI1GUXYNCG
iTe2umFfG2tPZXQldxDhZvcrG96mw2j7V0wse8UMWKxQSskN/d27rraiG3Y2J9DL
rj8vXWuE9ECgvKX1SeXPmMs1rkk1EQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPJq
cxp7HlMEUMSRyBvSKJEj2kwRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRTQwQTE5MkE4RTgxMUVGQTg1NkI3QUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJ4MA0GCSqGSIb3DQEB
CwUAA4IBAQBQQ0wWCi8G2KjXaiF10JIDF3DXxAVVWfLr5ndlOenBw2S9PbWA7hYT
VEVrzCb3AZf9Ni7mGX6bz90tqTNyNbktrwXk1ytV3nkhkud9UIgf9vWxRxAXmE9c
5zXlx5y8h6TFN2k3PRo9L1RqnIUuGP7OTYJYis2SLCJS0gKPWobk6kuOZ/w2/h4m
xj1s+k+QC3PUEi8dVQZxO3UcyTKgLN7vxPNBmvdIk+P+wsGCr7oi59VAZNko++42
4lgghe7VCHMFPoxxuU2OAb/gyg4NbOZzCaId5LP3peu1CqiexSYKfvBPgC2wjiuI
q4cozlxR8ehld7YoTYmT0VhM8zcDfPTw
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:43 2024 by rpki-client on console-fra.rpki-client.org