Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B74B5AD673FD11EFA266B1AB762E951A.roa
File: B74B5AD673FD11EFA266B1AB762E951A.roa (raw, json)
Hash identifier: 6bDdXTz9k0sMN3KtsiqdiUkc2txerYKV2WVM2gXEqGo=
Subject key identifier: B2:30:9A:09:47:9C:D1:FE:B5:96:C1:4C:ED:6D:D4:18:69:14:07:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EF85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B74B5AD673FD11EFA266B1AB762E951A.roa
Signing time: Mon 16 Sep 2024 07:31:41 +0000
ROA not before: Mon 16 Sep 2024 07:31:38 +0000
ROA not after: Sat 30 Nov 2024 07:31:38 +0000
asID: 138152
IP address blocks: 154.94.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61317 (0xef85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:31:38 2024 GMT
Not After : Nov 30 07:31:38 2024 GMT
Subject: CN=66e7dedd-ccfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:ab:27:50:68:5f:73:23:30:b1:8a:d9:47:
01:ab:22:e6:a4:3a:49:e8:0f:41:f3:f7:41:35:26:
34:e0:e4:3b:44:11:14:76:dd:ca:4d:90:5e:1c:45:
7c:06:6c:56:40:5a:d4:63:b7:88:85:5c:59:3b:39:
10:f1:c4:24:72:14:69:75:b1:9a:fc:4a:50:e2:d8:
54:e5:01:d5:b9:13:33:91:0d:4c:37:b0:dd:40:68:
fd:5c:81:73:0d:c6:f6:fc:4b:02:8c:b3:21:17:ea:
4e:38:07:ab:00:71:45:b0:61:94:64:19:8c:e9:f5:
01:c0:44:45:fe:f6:ed:71:9c:4d:8d:6c:5f:ce:9c:
70:a2:b8:a1:61:20:bf:14:1a:7f:ac:32:02:64:86:
63:da:88:81:db:44:fb:2f:45:a0:4c:67:8e:f5:58:
0a:40:17:6a:24:90:62:4e:ed:c2:08:2e:bb:f2:81:
0d:b1:4e:00:d5:0a:f8:d9:fd:15:3d:de:41:85:71:
bb:df:93:9b:7c:9d:6c:50:9c:6e:5d:ed:af:70:65:
8b:09:86:e7:dc:a0:71:43:68:a5:d0:00:3c:06:5d:
31:f1:88:fd:f1:76:c7:b5:53:7e:2c:db:71:f3:e1:
3c:89:b5:e7:15:ca:c7:2d:50:ea:74:9e:79:f8:eb:
d4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:30:9A:09:47:9C:D1:FE:B5:96:C1:4C:ED:6D:D4:18:69:14:07:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B74B5AD673FD11EFA266B1AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.4.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:20:19:3d:62:06:c9:49:bc:31:3a:63:7e:2d:09:f0:8e:75:
b0:83:56:59:6e:2f:c2:88:5b:6e:51:05:24:bf:14:93:c3:74:
23:96:13:c8:66:87:09:04:1c:31:bb:02:34:fb:53:b3:e3:05:
fe:1f:4f:3a:04:58:e4:ad:42:63:5a:66:56:47:c0:9f:62:7b:
18:42:07:5c:21:93:dc:7c:15:98:6c:8a:0d:1a:97:4c:a0:b3:
e9:90:92:74:82:71:c7:78:bb:f6:5c:92:8d:28:74:01:c4:68:
39:6e:b1:27:fd:50:87:b5:08:71:0c:25:c6:1c:7b:d1:67:73:
db:d0:a9:7f:15:c0:d0:d4:c1:be:b6:20:0c:2f:d0:cf:dc:83:
58:22:ea:0e:44:62:81:a2:66:ed:bb:8f:3a:d1:c4:28:d2:af:
1a:2e:cf:26:50:94:cd:3d:2c:9e:9b:7b:e9:90:9e:f7:4b:aa:
ed:cf:9b:20:89:cf:b6:ac:c6:6e:25:bf:15:d3:8c:ca:9f:da:
53:ba:98:3d:c9:04:d9:c4:9f:d5:66:ca:88:01:3b:52:fa:b6:
81:1b:08:0d:30:72:4a:90:f7:cc:e6:d3:4b:36:37:ca:6d:31:
46:81:32:93:78:f7:d1:1a:a6:02:a5:89:20:81:03:ff:12:c9:
6f:31:28:19
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO+FMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE2MDczMTM4WhcNMjQxMTMwMDczMTM4WjAYMRYw
FAYDVQQDEw02NmU3ZGVkZC1jY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoWSrJ1BoX3MjMLGK2UcBqyLmpDpJ6A9B8/dBNSY04OQ7RBEUdt3KTZBe
HEV8BmxWQFrUY7eIhVxZOzkQ8cQkchRpdbGa/EpQ4thU5QHVuRMzkQ1MN7DdQGj9
XIFzDcb2/EsCjLMhF+pOOAerAHFFsGGUZBmM6fUBwERF/vbtcZxNjWxfzpxworih
YSC/FBp/rDICZIZj2oiB20T7L0WgTGeO9VgKQBdqJJBiTu3CCC678oENsU4A1Qr4
2f0VPd5BhXG735ObfJ1sUJxuXe2vcGWLCYbn3KBxQ2il0AA8Bl0x8Yj98XbHtVN+
LNtx8+E8ibXnFcrHLVDqdJ55+OvU4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLIw
mglHnNH+tZbBTO1t1BhpFAcIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNzRCNUFENjczRkQxMUVGQTI2NkIxQUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4EMA0GCSqGSIb3DQEB
CwUAA4IBAQDTIBk9YgbJSbwxOmN+LQnwjnWwg1ZZbi/CiFtuUQUkvxSTw3QjlhPI
ZocJBBwxuwI0+1Oz4wX+H086BFjkrUJjWmZWR8CfYnsYQgdcIZPcfBWYbIoNGpdM
oLPpkJJ0gnHHeLv2XJKNKHQBxGg5brEn/VCHtQhxDCXGHHvRZ3Pb0Kl/FcDQ1MG+
tiAML9DP3INYIuoORGKBombtu4860cQo0q8aLs8mUJTNPSyem3vpkJ73S6rtz5sg
ic+2rMZuJb8V04zKn9pTupg9yQTZxJ/VZsqIATtS+raBGwgNMHJKkPfM5tNLNjfK
bTFGgTKTePfRGqYCpYkggQP/EslvMSgZ
-----END CERTIFICATE-----
Generated at Mon Nov 25 09:02:52 2024 by rpki-client on console-fra.rpki-client.org