Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8F0F602A45411EF91168561762E951A.roa
File: B8F0F602A45411EF91168561762E951A.roa (raw, json)
Hash identifier: fkgR6Fstmme5xkKCaUmv4rTtTWcU3aIeh6LrLyHLJGI=
Subject key identifier: 6D:2D:89:45:65:EF:B4:6B:57:7F:39:6D:DA:F8:5A:6A:BD:6C:FF:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8F0F602A45411EF91168561762E951A.roa
Signing time: Sat 16 Nov 2024 19:55:26 +0000
ROA not before: Sat 16 Nov 2024 19:55:22 +0000
ROA not after: Tue 26 Nov 2024 19:55:22 +0000
asID: 398704
IP address blocks: 154.92.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69169 (0x10e31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 19:55:22 2024 GMT
Not After : Nov 26 19:55:22 2024 GMT
Subject: CN=6738f8ae-bcb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bf:f7:4b:27:9e:ca:5b:5e:29:9c:d6:14:6c:
3b:a4:f8:d5:c3:12:c4:f2:6a:1d:59:1d:da:ed:c7:
92:35:ef:27:67:64:1a:32:41:16:33:24:aa:d4:87:
ef:6c:ae:95:1c:0a:7c:ab:d8:7f:f8:22:f6:fc:71:
14:9a:36:fa:5b:51:33:fd:a5:ee:ff:2a:f6:ad:0a:
e0:19:10:5c:aa:47:ff:93:35:f6:4a:f8:c4:19:6a:
ca:a3:dd:61:2a:bd:fb:e0:27:5a:82:a8:3c:d6:da:
ce:f2:4d:f8:f4:f5:a8:7e:00:0b:be:c1:f2:52:f8:
07:6b:ef:09:6d:b1:dd:6c:ca:f7:45:44:b8:a3:8f:
b8:61:da:cd:3f:c8:43:dc:c6:d7:0e:ae:ff:ac:14:
7f:53:9e:22:ee:8a:a7:e9:1d:16:09:bf:2e:7e:d4:
9f:64:b1:72:30:27:4d:4c:f9:5f:4e:d0:a8:bc:f9:
eb:53:88:76:39:a2:0b:88:3b:34:1e:57:01:c6:97:
ca:a9:d7:36:3e:99:97:f8:2d:3f:1e:c0:7a:b1:cd:
0e:57:f9:2a:ec:5d:f2:ed:66:52:a4:bd:dc:9c:69:
c9:71:0a:02:0c:75:c4:ea:95:3b:4f:98:31:9f:bc:
ac:cb:3a:87:8d:47:db:80:53:b5:9d:19:a9:04:43:
9c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2D:89:45:65:EF:B4:6B:57:7F:39:6D:DA:F8:5A:6A:BD:6C:FF:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8F0F602A45411EF91168561762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.128.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:5f:2a:da:4f:2c:ff:2c:a2:b0:80:8a:e1:27:f5:8d:4b:29:
8c:19:12:92:cb:97:6e:ac:51:36:61:96:4c:41:e6:ae:7f:0e:
a7:db:84:14:9f:d5:10:e5:c1:8f:1e:7c:1e:8a:17:dc:15:76:
1b:0b:cd:58:aa:43:d7:0a:e0:e9:a5:f7:84:d2:c8:cb:a5:27:
d4:89:25:19:3f:42:75:d0:4a:68:12:48:8d:c9:8c:d5:dc:a5:
75:6a:19:9f:2e:b2:8e:86:a3:f1:1f:59:14:c3:1e:c4:b9:eb:
b0:27:34:79:67:d6:c7:56:67:c1:03:3c:2d:6d:e0:37:10:dc:
d0:fa:9b:87:d1:17:82:5f:2e:6d:c8:3b:0b:19:ec:62:cf:5d:
9b:bd:e7:5b:55:25:69:1c:e3:c1:55:08:a5:9d:25:7b:f0:d5:
f6:d4:f3:d4:8a:29:1e:43:f9:37:6f:e7:0e:5d:a1:4b:59:01:
7f:30:e0:cd:40:9d:f0:da:3b:16:cc:3d:9b:a9:9d:25:0d:7e:
6a:ed:77:23:8d:c9:56:1b:97:d7:a2:38:64:5e:4b:63:9e:97:
0d:95:30:d4:0b:5c:ba:69:1b:31:49:5f:0e:b6:83:ff:7f:c7:
87:d7:71:2b:dd:ca:d8:a5:29:7d:f0:4c:23:cd:83:f5:2d:66:
57:8a:06:c0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ4xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTk1NTIyWhcNMjQxMTI2MTk1NTIyWjAYMRYw
FAYDVQQDEw02NzM4ZjhhZS1iY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0r/3SyeeylteKZzWFGw7pPjVwxLE8modWR3a7ceSNe8nZ2QaMkEWMySq
1IfvbK6VHAp8q9h/+CL2/HEUmjb6W1Ez/aXu/yr2rQrgGRBcqkf/kzX2SvjEGWrK
o91hKr374Cdagqg81trO8k349PWofgALvsHyUvgHa+8JbbHdbMr3RUS4o4+4YdrN
P8hD3MbXDq7/rBR/U54i7oqn6R0WCb8uftSfZLFyMCdNTPlfTtCovPnrU4h2OaIL
iDs0HlcBxpfKqdc2PpmX+C0/HsB6sc0OV/kq7F3y7WZSpL3cnGnJcQoCDHXE6pU7
T5gxn7ysyzqHjUfbgFO1nRmpBEOcdQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG0t
iUVl77RrV385bdr4Wmq9bP9RMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9COEYwRjYwMkE0NTQxMUVGOTExNjg1NjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlyAMA0GCSqGSIb3DQEB
CwUAA4IBAQB/XyraTyz/LKKwgIrhJ/WNSymMGRKSy5durFE2YZZMQeaufw6n24QU
n9UQ5cGPHnweihfcFXYbC81YqkPXCuDppfeE0sjLpSfUiSUZP0J10EpoEkiNyYzV
3KV1ahmfLrKOhqPxH1kUwx7EueuwJzR5Z9bHVmfBAzwtbeA3ENzQ+puH0ReCXy5t
yDsLGexiz12bvedbVSVpHOPBVQilnSV78NX21PPUiikeQ/k3b+cOXaFLWQF/MODN
QJ3w2jsWzD2bqZ0lDX5q7XcjjclWG5fXojhkXktjnpcNlTDUC1y6aRsxSV8OtoP/
f8eH13Er3crYpSl98EwjzYP1LWZXigbA
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:22 2024 by rpki-client on console-fra.rpki-client.org