Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC181F20660211EFB8A3BE61762E951A.roa
File: CC181F20660211EFB8A3BE61762E951A.roa (raw, json)
Hash identifier: OvoEBGDyVgGiAeVQoqAlUazY+yrRDhh3fqaIjFF/rT4=
Subject key identifier: 17:97:37:11:C1:4C:BA:2D:37:AA:59:E1:73:40:94:7E:C6:C6:40:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E673
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC181F20660211EFB8A3BE61762E951A.roa
Signing time: Thu 29 Aug 2024 12:32:47 +0000
ROA not before: Thu 29 Aug 2024 12:32:44 +0000
ROA not after: Sun 24 Nov 2024 12:32:44 +0000
asID: 135377
IP address blocks: 154.197.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58995 (0xe673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 29 12:32:44 2024 GMT
Not After : Nov 24 12:32:44 2024 GMT
Subject: CN=66d06a6f-3b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2d:3c:d6:2d:b4:40:e6:c3:d9:64:7c:b8:0d:
36:30:f5:7b:77:db:ba:84:8f:00:6b:54:53:56:55:
27:ba:70:38:be:2a:5a:d3:3c:41:a7:72:8f:b0:34:
94:bf:af:8a:20:42:38:28:9a:af:31:ef:79:ef:7f:
12:3e:77:f7:0d:0b:df:a8:cc:7a:20:ea:61:43:7b:
57:9e:64:f5:f4:4e:67:84:b5:5a:9e:d3:d2:5c:4b:
28:f1:36:d7:79:f7:46:56:b8:7d:db:99:cc:af:23:
9b:b0:1c:4d:6a:09:0d:4e:ee:42:85:7f:52:b9:07:
e3:e7:8b:ac:a5:a5:a9:2d:c5:22:82:97:de:46:97:
27:d4:ac:34:93:73:36:9e:77:67:d6:7c:01:c9:b6:
f4:98:b8:66:82:a0:f8:35:ea:c9:da:24:14:9a:65:
80:2f:1c:ba:56:a5:7d:72:5a:a2:cd:8e:f9:ab:57:
2b:80:af:7d:24:f4:b8:82:61:a4:38:01:60:d7:76:
96:12:0d:83:57:82:b3:68:a3:18:15:05:e2:b6:80:
33:e0:3a:f0:df:83:cb:8a:b1:85:75:f0:68:5c:c4:
4e:d8:04:ed:2a:3c:e4:ce:f8:c5:5f:75:7d:bc:21:
69:0d:56:f3:a7:40:d7:7e:48:5f:97:1b:45:64:4a:
f0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:97:37:11:C1:4C:BA:2D:37:AA:59:E1:73:40:94:7E:C6:C6:40:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC181F20660211EFB8A3BE61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.56.0/23
Signature Algorithm: sha256WithRSAEncryption
00:44:7a:28:d3:ac:ca:f7:b5:a6:c1:42:c0:a9:3c:d8:ec:19:
cb:6e:eb:c6:77:80:00:2f:9c:12:09:e9:68:58:96:73:db:de:
7c:3b:2f:0a:7e:bf:d8:be:39:de:c5:19:d5:39:a3:d0:3f:32:
8d:8d:58:06:82:66:e6:b8:42:e6:a5:e7:e5:8e:04:d4:21:f1:
53:79:6c:22:2f:da:2a:d0:d7:ab:a6:b0:33:ae:c3:6b:e0:80:
88:87:93:31:7c:00:62:2e:5a:d1:df:dc:95:d2:c3:5e:2c:c0:
04:8e:4f:aa:f3:c1:d0:9b:fd:67:23:c7:6c:1d:4b:1a:03:ae:
ae:d2:d2:1b:26:95:12:b9:7f:bd:1b:9d:16:76:2e:a9:71:a0:
64:e8:e3:ba:80:89:b4:a0:2b:21:4e:20:8e:27:5d:8a:10:9f:
ec:07:37:21:dd:b1:22:64:d9:e1:69:d8:6b:84:12:13:44:f0:
c7:9a:f5:6e:6d:8e:e2:fe:56:be:9d:67:6c:63:94:6d:0c:58:
c9:11:e8:49:3e:6e:0d:ad:1a:95:d8:45:f2:fa:ba:dc:3c:e5:
68:d2:32:be:38:91:50:56:6b:63:cf:83:58:aa:5e:6f:2d:3a:
24:01:28:4a:b2:90:73:67:55:a1:bd:35:38:94:69:17:49:ea:
22:40:c0:67
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAOZzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwODI5MTIzMjQ0WhcNMjQxMTI0MTIzMjQ0WjAYMRYw
FAYDVQQDEw02NmQwNmE2Zi0zYjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3S081i20QObD2WR8uA02MPV7d9u6hI8Aa1RTVlUnunA4vipa0zxBp3KP
sDSUv6+KIEI4KJqvMe95738SPnf3DQvfqMx6IOphQ3tXnmT19E5nhLVantPSXEso
8TbXefdGVrh925nMryObsBxNagkNTu5ChX9SuQfj54uspaWpLcUigpfeRpcn1Kw0
k3M2nndn1nwBybb0mLhmgqD4NerJ2iQUmmWALxy6VqV9clqizY75q1crgK99JPS4
gmGkOAFg13aWEg2DV4KzaKMYFQXitoAz4Drw34PLirGFdfBoXMRO2ATtKjzkzvjF
X3V9vCFpDVbzp0DXfkhflxtFZErw4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBeX
NxHBTLotN6pZ4XNAlH7GxkBwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DQzE4MUYyMDY2MDIxMUVGQjhBM0JFNjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsU4MA0GCSqGSIb3DQEB
CwUAA4IBAQAARHoo06zK97WmwULAqTzY7BnLbuvGd4AAL5wSCeloWJZz2958Oy8K
fr/YvjnexRnVOaPQPzKNjVgGgmbmuELmpefljgTUIfFTeWwiL9oq0NerprAzrsNr
4ICIh5MxfABiLlrR39yV0sNeLMAEjk+q88HQm/1nI8dsHUsaA66u0tIbJpUSuX+9
G50Wdi6pcaBk6OO6gIm0oCshTiCOJ12KEJ/sBzch3bEiZNnhadhrhBITRPDHmvVu
bY7i/la+nWdsY5RtDFjJEehJPm4NrRqV2EXy+rrcPOVo0jK+OJFQVmtjz4NYql5v
LTokAShKspBzZ1WhvTU4lGkXSeoiQMBn
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:28 2024 by rpki-client on console-ams.rpki-client.org