Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEB4D826A32F11EF8FE250BD762E951A.roa
File: CEB4D826A32F11EF8FE250BD762E951A.roa (raw, json)
Hash identifier: cV67QNsz28x+lMXwyJUIvhpBzvNBq87z37Nr9SNmxT0=
Subject key identifier: 83:89:0D:18:83:5F:A2:30:67:88:49:F2:93:BE:5D:A6:F3:40:BF:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D64
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEB4D826A32F11EF8FE250BD762E951A.roa
Signing time: Fri 15 Nov 2024 08:58:40 +0000
ROA not before: Fri 15 Nov 2024 08:58:36 +0000
ROA not after: Sun 22 Dec 2024 08:58:36 +0000
asID: 18779
IP address blocks: 154.203.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68964 (0x10d64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 08:58:36 2024 GMT
Not After : Dec 22 08:58:36 2024 GMT
Subject: CN=67370d40-7a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:52:62:5f:9d:43:48:ef:c6:2e:10:74:78:69:
ec:68:cf:8e:57:13:92:03:fe:08:a4:6f:24:7a:3e:
69:58:f6:8f:f0:0b:5b:af:d6:86:1c:5d:93:58:0c:
6f:2c:fe:74:5b:b7:4c:03:f1:77:f5:42:39:02:de:
bc:70:90:05:4b:23:d9:94:ba:67:dd:c5:e9:2b:f5:
10:ef:41:d0:50:48:b5:e1:b3:9b:55:a8:ae:3d:0a:
1c:69:ee:86:2d:5c:22:76:66:a2:2f:cb:fc:de:4c:
1c:e4:f7:d0:f8:11:9f:98:7c:26:6f:92:db:8d:31:
01:6c:0e:0f:ac:fd:51:c3:4d:60:c0:02:a2:7a:0b:
8f:f6:8c:2b:8a:0e:53:13:04:3e:4a:fa:16:e4:54:
5d:f6:cc:75:f0:8c:5f:ac:0f:d3:f4:16:4d:7f:ab:
03:12:ee:59:c8:51:6f:b7:de:59:f3:5b:03:86:d6:
ce:74:ee:e2:b1:fc:b8:53:ab:ec:9a:a8:36:f1:bf:
f5:82:68:0b:7e:cc:31:f7:8e:86:fa:cb:4a:b6:76:
46:a1:ef:d7:c5:de:32:82:64:96:03:f0:b9:63:2a:
59:82:c5:d2:9b:34:5d:6c:d0:c7:29:5c:5a:09:22:
54:fc:c8:15:a6:b0:9b:c6:22:ee:11:41:e7:ae:8d:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:89:0D:18:83:5F:A2:30:67:88:49:F2:93:BE:5D:A6:F3:40:BF:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CEB4D826A32F11EF8FE250BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.62.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:64:01:44:b4:0e:e5:73:8c:f1:70:eb:a4:95:a6:c1:77:4b:
1d:31:d0:08:19:77:ba:99:11:f3:fd:be:a7:d2:20:6e:71:08:
e3:f4:ac:5a:0f:35:04:6a:0f:c8:80:a4:f5:5d:99:57:6a:40:
2d:7f:a1:e4:5c:37:1c:bc:fc:37:6f:c9:17:3d:fa:89:7c:8b:
89:2a:64:46:17:da:33:b9:e3:65:7c:01:07:9f:7f:a4:37:a7:
fc:56:ee:bc:77:f1:c2:02:9f:29:78:02:ab:bb:d9:33:3b:a0:
34:6d:31:c6:6a:55:fe:14:5a:80:b9:80:09:00:13:12:2a:f1:
bf:f3:74:1f:45:9a:3a:59:1d:cd:c7:15:c6:59:eb:ab:41:be:
a1:92:29:8c:1d:ba:ab:a3:d5:6e:18:98:f3:f4:38:34:b7:46:
bf:c8:aa:a7:85:5d:11:8f:ee:00:31:fc:0b:80:5a:5c:00:82:
35:0d:cd:d8:ad:92:ba:03:e2:0b:88:9a:1b:68:a2:a3:9c:6e:
81:48:1a:bb:53:ac:8b:a4:c1:d7:88:4d:db:77:ae:7b:d3:43:
e8:09:fb:ed:64:1f:8a:7b:ac:e8:e0:c2:9e:8c:ad:12:e4:37:
1c:a2:40:7e:e4:ca:40:54:e2:f8:a7:b5:4a:98:09:bf:f3:bf:
3a:50:e5:84
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ1kMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE1MDg1ODM2WhcNMjQxMjIyMDg1ODM2WjAYMRYw
FAYDVQQDEw02NzM3MGQ0MC03YTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzVJiX51DSO/GLhB0eGnsaM+OVxOSA/4IpG8kej5pWPaP8Atbr9aGHF2T
WAxvLP50W7dMA/F39UI5At68cJAFSyPZlLpn3cXpK/UQ70HQUEi14bObVaiuPQoc
ae6GLVwidmaiL8v83kwc5PfQ+BGfmHwmb5LbjTEBbA4PrP1Rw01gwAKieguP9owr
ig5TEwQ+SvoW5FRd9sx18IxfrA/T9BZNf6sDEu5ZyFFvt95Z81sDhtbOdO7isfy4
U6vsmqg28b/1gmgLfswx946G+stKtnZGoe/Xxd4ygmSWA/C5YypZgsXSmzRdbNDH
KVxaCSJU/MgVprCbxiLuEUHnro3x4QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIOJ
DRiDX6IwZ4hJ8pO+XabzQL+DMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DRUI0RDgyNkEzMkYxMUVGOEZFMjUwQkQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmss+MA0GCSqGSIb3DQEB
CwUAA4IBAQDHZAFEtA7lc4zxcOuklabBd0sdMdAIGXe6mRHz/b6n0iBucQjj9Kxa
DzUEag/IgKT1XZlXakAtf6HkXDccvPw3b8kXPfqJfIuJKmRGF9ozueNlfAEHn3+k
N6f8Vu68d/HCAp8peAKru9kzO6A0bTHGalX+FFqAuYAJABMSKvG/83QfRZo6WR3N
xxXGWeurQb6hkimMHbqro9VuGJjz9Dg0t0a/yKqnhV0Rj+4AMfwLgFpcAII1Dc3Y
rZK6A+ILiJobaKKjnG6BSBq7U6yLpMHXiE3bd65700PoCfvtZB+Ke6zo4MKejK0S
5DccokB+5MpAVOL4p7VKmAm/8786UOWE
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:07 2024 by rpki-client on console-ams.rpki-client.org