Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6BBD756A8E311EFA5FA878D762E951A.roa
File: B6BBD756A8E311EFA5FA878D762E951A.roa (raw, json)
Hash identifier: tq6YmgG5R+y80qoeQDTpua2GqFu0KdgdLEYF8vmS8dw=
Subject key identifier: 82:38:7D:0E:08:9E:FD:01:D4:75:60:5C:00:19:CD:86:75:01:AB:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0110B3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6BBD756A8E311EFA5FA878D762E951A.roa
Signing time: Fri 22 Nov 2024 15:09:05 +0000
ROA not before: Fri 22 Nov 2024 15:09:01 +0000
ROA not after: Tue 03 Dec 2024 15:09:01 +0000
asID: 62240
IP address blocks: 154.194.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69811 (0x110b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 15:09:01 2024 GMT
Not After : Dec 3 15:09:01 2024 GMT
Subject: CN=67409e91-304a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:74:ed:f9:37:05:d7:1c:ab:66:ff:fa:a8:
c9:f0:e4:b9:f7:1b:18:b2:c3:c4:01:ba:70:04:31:
87:76:c7:0e:20:6b:8b:99:25:ca:e4:e3:70:36:0b:
1b:99:f6:b3:2f:79:79:9d:d4:22:2e:63:9c:3b:22:
d7:e7:62:d8:ae:70:61:91:f4:ba:bf:c3:15:f0:6e:
13:bb:37:b6:30:11:fe:d2:9e:61:9b:25:b8:a0:32:
ef:25:77:d1:7d:5f:f2:be:6f:ca:52:65:be:55:08:
2d:1c:b8:90:ef:8a:1b:17:ca:c9:89:30:16:61:5d:
46:45:ea:9c:70:74:26:da:32:14:00:32:62:bf:8d:
09:16:78:2a:d6:ed:c6:7d:28:94:55:79:f0:5e:45:
fb:5d:43:52:a3:e7:d6:37:e8:44:cb:26:bb:60:b3:
ed:6d:ff:7f:d0:f4:9d:1f:c1:36:9f:e5:38:7b:e7:
e7:6e:af:18:41:ca:ac:26:a5:2a:91:ee:a1:de:82:
39:6f:90:36:f7:6f:3a:7f:a1:f8:95:29:56:84:73:
b7:31:8a:06:9c:15:9d:4d:40:41:f2:2c:da:3a:ad:
c6:90:ae:ae:31:80:9d:fc:8e:e5:ef:91:0c:34:ad:
03:15:e3:af:5d:02:58:e4:51:a0:a5:56:a6:84:6a:
99:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:38:7D:0E:08:9E:FD:01:D4:75:60:5C:00:19:CD:86:75:01:AB:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6BBD756A8E311EFA5FA878D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.91.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:a5:37:c7:9b:99:f4:86:07:41:da:c0:89:46:e7:f6:87:d1:
50:21:16:33:43:5d:be:98:df:68:fd:41:c8:9b:7d:d2:5f:84:
6f:6b:e6:46:eb:46:ac:42:47:fc:a6:06:75:46:df:45:f1:05:
77:fa:fc:b5:4a:97:9a:91:41:14:9c:9e:12:c0:86:2c:43:48:
74:e4:12:b7:3c:63:c8:7a:7c:4a:fc:97:15:b4:b4:38:37:28:
10:86:66:27:44:a5:58:36:37:b7:23:85:ff:90:33:b2:52:cc:
cf:73:84:46:5e:48:97:89:35:77:d6:6a:73:f3:46:8d:77:ff:
0a:ed:05:90:83:9e:4b:bf:82:ba:af:56:14:40:9f:88:ff:73:
5d:25:14:29:9c:24:68:b6:62:89:e5:c2:c7:64:7d:0f:78:4c:
7a:e3:18:ce:8f:9c:48:bd:07:9b:38:8a:2b:c8:6e:0a:bc:70:
ed:7f:d0:f4:82:82:40:65:79:eb:9d:b6:41:73:bb:03:ef:42:
31:cb:28:38:c3:6a:31:78:3f:df:7d:72:6c:d1:e1:3c:a8:6d:
a6:95:f2:db:d8:fd:7c:c2:ec:74:3a:75:f3:b6:b8:9f:a3:02:
c7:a3:66:ff:ec:df:b1:68:da:f9:c0:ae:e1:e1:0a:eb:b4:bf:
f4:32:c1:96
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARCzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTUwOTAxWhcNMjQxMjAzMTUwOTAxWjAYMRYw
FAYDVQQDEw02NzQwOWU5MS0zMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvZ107fk3Bdccq2b/+qjJ8OS59xsYssPEAbpwBDGHdscOIGuLmSXK5ONw
NgsbmfazL3l5ndQiLmOcOyLX52LYrnBhkfS6v8MV8G4Tuze2MBH+0p5hmyW4oDLv
JXfRfV/yvm/KUmW+VQgtHLiQ74obF8rJiTAWYV1GReqccHQm2jIUADJiv40JFngq
1u3GfSiUVXnwXkX7XUNSo+fWN+hEyya7YLPtbf9/0PSdH8E2n+U4e+fnbq8YQcqs
JqUqke6h3oI5b5A29286f6H4lSlWhHO3MYoGnBWdTUBB8izaOq3GkK6uMYCd/I7l
75EMNK0DFeOvXQJY5FGgpVamhGqZtQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFII4
fQ4Inv0B1HVgXAAZzYZ1AaupMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNkJCRDc1NkE4RTMxMUVGQTVGQTg3OEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJbMA0GCSqGSIb3DQEB
CwUAA4IBAQDUpTfHm5n0hgdB2sCJRuf2h9FQIRYzQ12+mN9o/UHIm33SX4Rva+ZG
60asQkf8pgZ1Rt9F8QV3+vy1SpeakUEUnJ4SwIYsQ0h05BK3PGPIenxK/JcVtLQ4
NygQhmYnRKVYNje3I4X/kDOyUszPc4RGXkiXiTV31mpz80aNd/8K7QWQg55Lv4K6
r1YUQJ+I/3NdJRQpnCRotmKJ5cLHZH0PeEx64xjOj5xIvQebOIoryG4KvHDtf9D0
goJAZXnrnbZBc7sD70Ixyyg4w2oxeD/ffXJs0eE8qG2mlfLb2P18wux0OnXztrif
owLHo2b/7N+xaNr5wK7h4QrrtL/0MsGW
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:31 2024 by rpki-client on console-ams.rpki-client.org