Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4AC1E72977F11EF8FCB8D64762E951A.roa
File: C4AC1E72977F11EF8FCB8D64762E951A.roa (raw, json)
Hash identifier: g5fLNcvbSAeZHTLj+gIZNMZ9NQajF00ana0EHveliaA=
Subject key identifier: 2D:25:A5:3D:65:54:F1:5B:49:39:5C:A3:13:B6:0D:7F:39:65:92:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010498
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4AC1E72977F11EF8FCB8D64762E951A.roa
Signing time: Thu 31 Oct 2024 12:00:49 +0000
ROA not before: Thu 31 Oct 2024 12:00:39 +0000
ROA not after: Fri 27 Dec 2024 12:00:39 +0000
asID: 210542
IP address blocks: 154.91.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66712 (0x10498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 31 12:00:39 2024 GMT
Not After : Dec 27 12:00:39 2024 GMT
Subject: CN=67237171-ea22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:49:2e:35:d8:f2:91:ea:cc:74:ff:9f:12:49:
d9:1b:0c:eb:12:64:6a:96:59:98:bd:80:fd:18:92:
d5:7a:48:c5:70:9b:da:76:55:c3:84:7c:aa:2e:26:
eb:7f:ff:83:98:44:b9:ea:60:28:68:6e:f9:3b:88:
05:66:3b:7a:ae:e4:0c:88:c0:1d:f1:d7:61:d0:be:
d3:74:60:af:a0:84:0e:5e:66:9c:73:23:a3:fa:5d:
1a:68:e1:e1:3b:79:36:3a:3c:0a:e7:90:9d:cf:f4:
28:4e:a3:08:31:26:ff:ca:a3:86:1e:9b:bb:0e:dd:
03:c4:94:2c:7c:0f:e9:ce:c0:67:ae:7d:a0:4f:df:
29:55:70:b9:53:47:e5:b2:e7:e5:0d:c1:13:9a:e7:
cd:7c:cc:7a:61:ce:df:26:89:10:15:50:7f:76:e4:
b0:3f:a2:0a:62:4a:46:36:2b:1c:8c:ec:12:46:92:
c7:cb:9f:63:d1:70:22:05:9f:07:e4:76:ca:a6:e2:
de:bb:67:7f:97:4c:43:e0:7e:de:84:67:27:88:1e:
f6:30:2c:ec:76:c6:7a:7c:11:f9:86:51:4e:34:85:
b4:2f:88:03:6f:8c:b6:81:94:63:25:f5:f3:ad:5c:
39:18:20:74:5a:63:e3:8a:d2:58:6c:08:88:59:62:
ef:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:25:A5:3D:65:54:F1:5B:49:39:5C:A3:13:B6:0D:7F:39:65:92:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4AC1E72977F11EF8FCB8D64762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.201.0/24
Signature Algorithm: sha256WithRSAEncryption
09:45:af:c7:4d:76:be:72:5d:b7:71:df:81:86:47:2e:fe:97:
7b:b5:c0:f0:11:fe:da:7e:66:0d:76:f3:2c:c4:8e:de:5c:6a:
12:4d:fd:a8:4a:c1:48:d8:49:fe:79:14:25:c5:11:0d:ac:e7:
03:fe:bb:9d:5e:40:35:2a:ec:69:ce:12:bc:8e:2a:b7:9d:61:
42:16:12:e2:4e:90:2d:99:bc:58:98:92:2f:47:b0:9a:6b:14:
df:15:1f:5c:ec:8b:6d:0b:38:9d:d9:82:ee:b9:5b:f8:59:d7:
74:dc:30:ab:2f:03:41:1c:74:34:c9:b9:38:f8:dd:d1:69:db:
4d:1e:f3:9a:c0:de:bc:6c:85:55:54:1c:9a:2f:40:8b:b8:38:
24:01:55:0f:b5:db:1c:ab:cb:a7:ee:ca:ad:4a:8d:eb:01:0b:
c9:4a:c6:6b:dc:b2:e3:91:46:74:d3:3c:78:6c:ca:d3:5f:79:
5c:ea:0c:f0:3e:8a:76:f8:eb:8d:5d:20:5f:04:37:b9:57:82:
ce:1a:a9:58:31:be:77:e2:76:4c:87:98:67:5b:2e:22:09:9f:
16:14:75:87:b8:31:bf:52:15:97:dd:74:c2:53:7d:0d:71:45:
e4:f5:3e:f4:e5:24:db:d1:e4:c1:0d:21:1d:43:7a:60:13:04:
42:9d:e1:e5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQSYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDMxMTIwMDM5WhcNMjQxMjI3MTIwMDM5WjAYMRYw
FAYDVQQDEw02NzIzNzE3MS1lYTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAm0kuNdjykerMdP+fEknZGwzrEmRqllmYvYD9GJLVekjFcJvadlXDhHyq
Librf/+DmES56mAoaG75O4gFZjt6ruQMiMAd8ddh0L7TdGCvoIQOXmaccyOj+l0a
aOHhO3k2OjwK55Cdz/QoTqMIMSb/yqOGHpu7Dt0DxJQsfA/pzsBnrn2gT98pVXC5
U0flsuflDcETmufNfMx6Yc7fJokQFVB/duSwP6IKYkpGNiscjOwSRpLHy59j0XAi
BZ8H5HbKpuLeu2d/l0xD4H7ehGcniB72MCzsdsZ6fBH5hlFONIW0L4gDb4y2gZRj
JfXzrVw5GCB0WmPjitJYbAiIWWLvlwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC0l
pT1lVPFbSTlcoxO2DX85ZZKYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DNEFDMUU3Mjk3N0YxMUVGOEZDQjhENjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlvJMA0GCSqGSIb3DQEB
CwUAA4IBAQAJRa/HTXa+cl23cd+Bhkcu/pd7tcDwEf7afmYNdvMsxI7eXGoSTf2o
SsFI2En+eRQlxRENrOcD/rudXkA1KuxpzhK8jiq3nWFCFhLiTpAtmbxYmJIvR7Ca
axTfFR9c7IttCzid2YLuuVv4Wdd03DCrLwNBHHQ0ybk4+N3RadtNHvOawN68bIVV
VByaL0CLuDgkAVUPtdscq8un7sqtSo3rAQvJSsZr3LLjkUZ00zx4bMrTX3lc6gzw
Pop2+OuNXSBfBDe5V4LOGqlYMb534nZMh5hnWy4iCZ8WFHWHuDG/UhWX3XTCU30N
cUXk9T705STb0eTBDSEdQ3pgEwRCneHl
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:26 2024 by rpki-client on console-ams.rpki-client.org