Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE7FD694953011EF9AED9551762E951A.roa
File: AE7FD694953011EF9AED9551762E951A.roa (raw, json)
Hash identifier: Owz3kxQ3KRQAKaR0PmTh4Mfv92dFq7kyXGGE/SMr7OY=
Subject key identifier: 24:3F:87:D3:AE:82:62:69:8B:6C:38:AC:1C:1E:25:B8:69:0B:39:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0102ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE7FD694953011EF9AED9551762E951A.roa
Signing time: Mon 28 Oct 2024 13:29:39 +0000
ROA not before: Mon 28 Oct 2024 13:29:35 +0000
ROA not after: Mon 25 Nov 2024 13:29:35 +0000
asID: 5065
IP address blocks: 154.206.32.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66285 (0x102ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 13:29:35 2024 GMT
Not After : Nov 25 13:29:35 2024 GMT
Subject: CN=671f91c3-d918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b1:05:3a:61:e5:ae:9f:40:61:1c:91:e3:13:
ca:5f:ca:22:ef:c9:3b:36:d1:e6:22:df:81:3c:d0:
56:eb:ec:b1:f8:4e:61:80:11:dc:a4:da:a8:ad:85:
1d:4f:8a:30:a8:ab:2d:2c:f0:e1:27:e9:ab:52:f3:
3f:35:c6:51:88:a6:d9:8c:6c:8c:87:07:9a:9d:eb:
e9:39:8d:df:65:e4:75:b9:f7:28:7e:e4:97:7c:b3:
3b:68:a0:7b:06:d3:9f:7f:22:6b:0a:6f:0e:fe:de:
42:8d:78:2f:b0:c8:e8:7d:2f:a4:a9:e7:99:ef:04:
82:79:af:5a:3a:fc:00:97:5d:19:00:b7:70:2b:51:
ba:b1:80:9a:48:cb:00:47:17:40:2d:90:e4:17:3d:
c6:c4:4c:75:ea:f7:8b:f3:cd:17:24:97:5b:4a:29:
93:62:0f:1a:c8:0a:12:db:04:65:38:6a:a7:8e:3a:
a3:a2:ed:61:21:ac:f9:8d:a7:ce:3c:00:b1:f0:e6:
67:8e:ae:ab:79:45:9d:9a:ba:e4:f0:3f:f7:f7:b7:
07:6f:95:cc:79:63:40:7a:df:31:15:aa:7f:bc:6d:
38:ab:5a:d2:5e:97:3a:53:ad:c6:a1:d0:a4:bb:2a:
97:f5:14:81:28:a0:17:a9:30:d6:37:7e:6e:63:b5:
ee:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3F:87:D3:AE:82:62:69:8B:6C:38:AC:1C:1E:25:B8:69:0B:39:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE7FD694953011EF9AED9551762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.32.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:57:bd:8a:1f:6f:78:56:84:59:ec:2c:a4:d9:43:98:7e:38:
d6:e2:84:c2:38:30:c0:7f:ae:0a:fc:64:c8:89:c5:53:ec:ae:
a4:00:53:f7:73:c0:23:e1:e3:d2:8c:c5:56:d7:11:e6:a1:40:
0a:c7:63:31:46:3f:6e:e8:7e:2f:f2:37:1f:34:9c:7d:21:78:
cc:27:dc:38:da:e5:e0:8e:f3:4e:d6:6a:f4:6f:95:f4:40:e3:
c3:fd:87:58:b5:fb:a8:01:d1:d5:7c:e3:46:c5:5f:79:29:7d:
c2:df:9a:53:2e:10:de:87:a2:ea:72:a8:b5:dc:4c:1f:91:35:
4a:58:f8:06:1e:c2:f8:6f:43:d4:a7:1e:b3:18:91:d2:5a:aa:
d5:02:c0:5c:ca:11:7f:c8:29:9c:d9:ed:0c:4c:8c:bf:50:08:
ae:24:1f:c7:62:f8:5b:7a:d9:eb:d3:4b:0b:30:2e:8b:a5:ed:
4a:2d:51:19:f8:1f:d9:8e:8d:9c:5b:32:f6:07:57:e1:3a:00:
ec:4b:cf:32:f3:f7:85:33:68:c5:bd:e1:56:98:db:8c:e2:53:
7e:2c:d0:c4:89:fa:b6:a2:21:2b:b6:bd:fe:89:89:49:b0:46:
1f:df:e9:a6:fc:f6:5a:cd:4e:af:41:bc:f9:77:04:6d:dd:3e:
9b:3a:21:6b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQLtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI4MTMyOTM1WhcNMjQxMTI1MTMyOTM1WjAYMRYw
FAYDVQQDEw02NzFmOTFjMy1kOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3rEFOmHlrp9AYRyR4xPKX8oi78k7NtHmIt+BPNBW6+yx+E5hgBHcpNqo
rYUdT4owqKstLPDhJ+mrUvM/NcZRiKbZjGyMhweanevpOY3fZeR1ufcofuSXfLM7
aKB7BtOffyJrCm8O/t5CjXgvsMjofS+kqeeZ7wSCea9aOvwAl10ZALdwK1G6sYCa
SMsARxdALZDkFz3GxEx16veL880XJJdbSimTYg8ayAoS2wRlOGqnjjqjou1hIaz5
jafOPACx8OZnjq6reUWdmrrk8D/397cHb5XMeWNAet8xFap/vG04q1rSXpc6U63G
odCkuyqX9RSBKKAXqTDWN35uY7XuBQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCQ/
h9OugmJpi2w4rBweJbhpCzmXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BRTdGRDY5NDk1MzAxMUVGOUFFRDk1NTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms4gMA0GCSqGSIb3DQEB
CwUAA4IBAQAcV72KH294VoRZ7Cyk2UOYfjjW4oTCODDAf64K/GTIicVT7K6kAFP3
c8Aj4ePSjMVW1xHmoUAKx2MxRj9u6H4v8jcfNJx9IXjMJ9w42uXgjvNO1mr0b5X0
QOPD/YdYtfuoAdHVfONGxV95KX3C35pTLhDeh6Lqcqi13EwfkTVKWPgGHsL4b0PU
px6zGJHSWqrVAsBcyhF/yCmc2e0MTIy/UAiuJB/HYvhbetnr00sLMC6Lpe1KLVEZ
+B/Zjo2cWzL2B1fhOgDsS88y8/eFM2jFveFWmNuM4lN+LNDEifq2oiErtr3+iYlJ
sEYf3+mm/PZazU6vQbz5dwRt3T6bOiFr
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:01 2024 by rpki-client on console-fra.rpki-client.org