Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EFEB20A4D311EF8DCD8F88762E951A.roa
File: C7EFEB20A4D311EF8DCD8F88762E951A.roa (raw, json)
Hash identifier: beTWqL/dkM5J40njXr1GSwqPlBGIrICe0WBM1QDMkV8=
Subject key identifier: FE:B3:92:F9:9F:99:28:A7:3F:6B:CA:80:61:08:61:42:F6:3F:3E:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010ED6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EFEB20A4D311EF8DCD8F88762E951A.roa
Signing time: Sun 17 Nov 2024 11:04:57 +0000
ROA not before: Sun 17 Nov 2024 11:04:53 +0000
ROA not after: Wed 27 Nov 2024 11:04:53 +0000
asID: 204721
IP address blocks: 154.215.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69334 (0x10ed6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 11:04:53 2024 GMT
Not After : Nov 27 11:04:53 2024 GMT
Subject: CN=6739cdd9-e846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9b:f8:97:47:00:3d:3c:b5:20:e5:68:fd:9e:
e9:0d:8c:7e:66:f4:b3:39:4c:f7:a4:56:ae:98:2f:
d2:d9:57:1a:16:cb:32:ff:81:1e:f8:71:de:b0:a5:
ba:75:de:9d:94:33:ed:34:96:ab:12:92:af:1f:17:
f5:62:62:5a:48:82:77:ab:11:e8:79:3b:59:f7:cb:
c5:08:4c:62:4e:e7:95:30:c6:33:ca:62:86:ae:ee:
ed:d6:9e:79:8a:77:74:d2:c4:46:d6:70:0f:3b:aa:
5b:38:45:98:a7:f9:0a:a5:76:41:20:1d:c4:d2:18:
c7:e8:32:11:13:b2:07:d2:70:ed:e4:60:68:46:65:
1c:74:c8:cf:37:9f:9c:44:fc:58:76:b2:a6:71:b8:
6c:6b:62:14:43:e0:bb:2a:e1:9c:1d:a8:0d:00:8d:
57:78:37:3e:8f:ae:77:ed:2e:8e:c4:66:d3:5d:7a:
71:67:96:1e:ea:41:eb:24:10:63:46:fc:41:17:0f:
a4:18:5c:cc:ef:b5:f6:8c:55:b7:92:6c:25:03:dc:
a3:92:8a:ed:f3:80:b6:5f:15:df:14:2d:b7:79:0a:
28:2c:65:78:f3:04:c9:0e:50:0a:43:fd:f1:aa:5b:
d0:09:73:1c:ef:4d:1f:ba:8f:85:6a:af:77:d4:65:
8f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B3:92:F9:9F:99:28:A7:3F:6B:CA:80:61:08:61:42:F6:3F:3E:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C7EFEB20A4D311EF8DCD8F88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.2.0/23
Signature Algorithm: sha256WithRSAEncryption
32:19:ae:64:67:3c:c6:c9:ff:b1:de:d5:a4:74:92:b5:48:ae:
c9:7c:32:a5:1b:e9:60:4b:01:cb:69:be:dc:db:b2:3f:d9:2a:
d6:8a:82:5c:bf:69:ab:3d:b0:51:53:f5:f3:48:35:07:78:ef:
50:e1:d8:52:37:37:f0:33:1a:15:69:0d:cd:b6:37:bc:38:e0:
83:5e:05:ca:1f:34:8e:c9:15:cc:6f:b4:63:c5:38:6c:32:0c:
4e:f0:05:98:b3:3a:c9:8a:25:3f:c1:18:3e:6c:35:95:68:5d:
a7:f0:29:5c:55:50:c1:45:11:65:03:b3:1f:1f:b3:fc:4d:a6:
42:db:68:76:25:f8:3c:29:56:37:cd:89:06:c8:54:97:cc:46:
bf:d1:99:7f:c6:e2:ce:1b:10:5b:75:c1:d2:14:0f:c0:47:2a:
5b:a0:1c:ea:9c:c4:60:cd:2e:2b:59:12:0a:b6:ad:08:e7:01:
fe:cf:49:13:f3:49:3f:77:73:37:4b:c6:a2:3c:23:d2:19:7a:
6b:80:c3:5e:1b:be:06:79:57:0c:3d:45:08:95:43:30:14:b4:
da:5b:66:e5:6c:33:7f:76:26:76:d7:80:e2:7a:94:ff:e5:14:
ee:5a:8a:b2:19:32:a1:9a:88:1b:ee:ea:e9:38:3a:62:55:cb:
af:c3:82:64
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ7WMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE3MTEwNDUzWhcNMjQxMTI3MTEwNDUzWjAYMRYw
FAYDVQQDEw02NzM5Y2RkOS1lODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw5v4l0cAPTy1IOVo/Z7pDYx+ZvSzOUz3pFaumC/S2VcaFssy/4Ee+HHe
sKW6dd6dlDPtNJarEpKvHxf1YmJaSIJ3qxHoeTtZ98vFCExiTueVMMYzymKGru7t
1p55ind00sRG1nAPO6pbOEWYp/kKpXZBIB3E0hjH6DIRE7IH0nDt5GBoRmUcdMjP
N5+cRPxYdrKmcbhsa2IUQ+C7KuGcHagNAI1XeDc+j6537S6OxGbTXXpxZ5Ye6kHr
JBBjRvxBFw+kGFzM77X2jFW3kmwlA9yjkort84C2XxXfFC23eQooLGV48wTJDlAK
Q/3xqlvQCXMc700fuo+Faq931GWPaQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP6z
kvmfmSinP2vKgGEIYUL2Pz4yMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DN0VGRUIyMEE0RDMxMUVGOERDRDhGODg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmtcCMA0GCSqGSIb3DQEB
CwUAA4IBAQAyGa5kZzzGyf+x3tWkdJK1SK7JfDKlG+lgSwHLab7c27I/2SrWioJc
v2mrPbBRU/XzSDUHeO9Q4dhSNzfwMxoVaQ3Ntje8OOCDXgXKHzSOyRXMb7RjxThs
MgxO8AWYszrJiiU/wRg+bDWVaF2n8ClcVVDBRRFlA7MfH7P8TaZC22h2Jfg8KVY3
zYkGyFSXzEa/0Zl/xuLOGxBbdcHSFA/ARypboBzqnMRgzS4rWRIKtq0I5wH+z0kT
80k/d3M3S8aiPCPSGXprgMNeG74GeVcMPUUIlUMwFLTaW2blbDN/diZ214DiepT/
5RTuWoqyGTKhmogb7urpODpiVcuvw4Jk
-----END CERTIFICATE-----
Generated at Fri Nov 22 23:38:27 2024 by rpki-client on console-fra.rpki-client.org