Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE48DEDAA75211EF80F8F6AF762E951A.roa
File: AE48DEDAA75211EF80F8F6AF762E951A.roa (raw, json)
Hash identifier: 2CR5aVtZwJ0nCunrtlMn9HwqUBrsibdo7XSfSWrmiVw=
Subject key identifier: 8C:E4:A5:0E:B9:60:A2:20:17:7A:F0:2E:7C:CD:BA:48:BA:44:4D:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FBF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE48DEDAA75211EF80F8F6AF762E951A.roa
Signing time: Wed 20 Nov 2024 15:18:22 +0000
ROA not before: Wed 20 Nov 2024 15:18:19 +0000
ROA not after: Sun 01 Dec 2024 15:18:19 +0000
asID: 151800
IP address blocks: 154.197.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69567 (0x10fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 15:18:19 2024 GMT
Not After : Dec 1 15:18:19 2024 GMT
Subject: CN=673dfdbe-ba5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:ca:ca:1d:05:60:b8:30:9e:bf:43:e6:bb:
22:bc:cc:08:af:79:92:bf:11:c2:1f:b4:ae:0b:89:
fd:fe:c0:ba:f6:e7:cf:2f:20:aa:4f:2a:bc:38:6e:
4d:a4:f7:75:22:c7:1e:2f:dd:93:82:6a:cb:52:7b:
db:67:46:e5:71:40:28:ec:76:a2:43:2c:f6:6f:03:
1a:ce:2e:92:9f:91:13:a6:f6:3d:16:88:7f:0b:e8:
f1:ab:7c:74:ad:ea:05:24:73:60:08:6b:85:09:29:
e6:37:41:e7:50:10:9c:b3:62:19:5c:0d:00:88:33:
e4:77:a8:c4:f3:4f:ad:e4:46:77:43:0d:84:1d:af:
78:f2:64:aa:c8:47:6f:2f:65:83:69:c2:4c:72:23:
a4:40:69:23:87:b0:77:ff:4f:c8:8a:9d:14:f9:42:
7c:17:19:58:49:14:21:19:c4:4c:d5:f3:37:20:8e:
7c:34:45:63:ad:9b:0a:54:be:56:e6:41:2d:3f:0c:
eb:eb:13:9d:e9:d7:1b:dd:d0:36:ac:1f:dd:bd:4a:
6d:79:9e:11:41:a6:9e:08:34:b8:b1:bb:1c:07:e8:
e7:bb:a7:a0:cc:7f:0f:98:8e:4e:a1:74:58:d9:b3:
72:59:bf:a8:b7:5a:ea:96:08:4e:2d:de:e1:ba:ac:
c3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E4:A5:0E:B9:60:A2:20:17:7A:F0:2E:7C:CD:BA:48:BA:44:4D:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE48DEDAA75211EF80F8F6AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.79.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ea:a6:e2:3c:5f:3c:63:01:9c:3f:11:dd:db:16:45:a4:8c:
8b:bc:db:79:51:95:b9:ff:03:a4:68:01:77:ae:bb:c9:ce:79:
b2:d5:9a:b8:32:d5:e6:bb:80:50:f4:f7:52:85:27:aa:92:54:
f3:7a:c1:b9:47:bf:14:0a:f6:37:8e:a7:9b:10:75:23:e3:f0:
58:3a:05:5d:1a:1c:91:9b:75:6d:7a:23:5e:e3:69:a6:5c:70:
ef:4a:87:9f:b8:07:9b:4e:75:1d:b0:5f:45:93:d0:ce:fc:c6:
f6:a2:5a:55:28:81:07:74:80:a8:ee:97:24:c5:90:34:34:cd:
06:ff:c8:23:0a:25:2c:60:c7:cf:13:26:f1:40:c6:8b:63:4e:
38:4e:fd:d3:b3:75:d0:4f:f2:7e:e1:9c:7d:6b:fa:95:90:29:
35:8c:f8:61:73:35:74:f3:88:c9:9e:3c:a7:1d:da:55:66:cc:
9d:5b:23:81:d5:0a:40:24:ab:cf:7c:2b:ba:5c:24:2e:2c:06:
e2:a5:af:9a:c4:fe:e3:4c:95:00:db:ff:5f:ba:f4:b0:76:3b:
62:18:c9:12:d4:60:65:71:52:79:98:5f:67:e3:31:64:c5:73:
8a:48:c8:51:cb:e9:7c:0a:9b:6d:4e:f5:f4:c4:bc:54:d7:cb:
78:aa:30:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ+/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIwMTUxODE5WhcNMjQxMjAxMTUxODE5WjAYMRYw
FAYDVQQDEw02NzNkZmRiZS1iYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuMnKyh0FYLgwnr9D5rsivMwIr3mSvxHCH7SuC4n9/sC69ufPLyCqTyq8
OG5NpPd1IsceL92TgmrLUnvbZ0blcUAo7HaiQyz2bwMazi6Sn5ETpvY9Foh/C+jx
q3x0reoFJHNgCGuFCSnmN0HnUBCcs2IZXA0AiDPkd6jE80+t5EZ3Qw2EHa948mSq
yEdvL2WDacJMciOkQGkjh7B3/0/Iip0U+UJ8FxlYSRQhGcRM1fM3II58NEVjrZsK
VL5W5kEtPwzr6xOd6dcb3dA2rB/dvUpteZ4RQaaeCDS4sbscB+jnu6egzH8PmI5O
oXRY2bNyWb+ot1rqlghOLd7huqzDtwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIzk
pQ65YKIgF3rwLnzNuki6RE3EMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRTQ4REVEQUE3NTIxMUVGODBGOEY2QUY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVPMA0GCSqGSIb3DQEB
CwUAA4IBAQBX6qbiPF88YwGcPxHd2xZFpIyLvNt5UZW5/wOkaAF3rrvJznmy1Zq4
MtXmu4BQ9PdShSeqklTzesG5R78UCvY3jqebEHUj4/BYOgVdGhyRm3VteiNe42mm
XHDvSoefuAebTnUdsF9Fk9DO/Mb2olpVKIEHdICo7pckxZA0NM0G/8gjCiUsYMfP
EybxQMaLY044Tv3Ts3XQT/J+4Zx9a/qVkCk1jPhhczV084jJnjynHdpVZsydWyOB
1QpAJKvPfCu6XCQuLAbipa+axP7jTJUA2/9fuvSwdjtiGMkS1GBlcVJ5mF9n4zFk
xXOKSMhRy+l8CpttTvX0xLxU18t4qjCn
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:22 2024 by rpki-client on console-ams.rpki-client.org