Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2198E9A9211EF920D4C4A762E951A.roa
File: D1C2198E9A9211EF920D4C4A762E951A.roa (raw, json)
Hash identifier: wIRD/EECpohekg2x7S6128EQTYfxy90+QH0mHXhEBnQ=
Subject key identifier: 97:5C:2F:5D:AC:7E:08:5D:5E:3F:B3:66:6A:45:4B:EA:09:83:06:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010680
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2198E9A9211EF920D4C4A762E951A.roa
Signing time: Mon 04 Nov 2024 09:54:45 +0000
ROA not before: Mon 04 Nov 2024 09:54:41 +0000
ROA not after: Fri 06 Dec 2024 09:54:41 +0000
asID: 150698
IP address blocks: 154.197.72.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67200 (0x10680)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 09:54:41 2024 GMT
Not After : Dec 6 09:54:41 2024 GMT
Subject: CN=672899e5-b4a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e6:5c:8d:06:80:24:d1:b9:e1:31:63:1b:4c:
62:50:ad:1b:ae:b6:ca:d0:ad:06:30:c5:a8:43:89:
f9:fc:47:fa:c4:4d:c2:30:e9:e1:27:84:d2:07:45:
79:8b:e7:d5:15:1b:f0:8d:3b:c6:b0:b4:4f:f1:15:
25:d9:42:a3:61:4e:7a:6e:37:b3:7f:d5:4f:de:79:
06:14:1e:31:b5:20:50:de:30:c5:e1:58:85:ab:bf:
36:45:2b:ac:9b:73:2a:80:42:41:db:95:03:b6:6c:
9c:df:b2:73:e0:85:63:5b:57:22:28:bc:17:0f:a4:
04:10:8c:62:44:7f:8d:66:b5:94:a5:fd:ee:70:92:
d6:9d:12:06:69:d4:b7:ef:0c:e8:ec:c9:93:27:3d:
33:08:07:fb:7b:74:67:7d:6d:ea:cc:f3:80:26:8f:
c1:da:84:75:d2:13:f7:03:ba:b9:6b:9f:7b:41:59:
86:f8:d9:af:04:58:b6:b1:e8:53:b9:66:e0:c5:5c:
f7:86:67:1b:a4:1f:a3:31:dc:b6:a8:ca:8d:49:5c:
d3:e0:f1:55:d8:43:4e:a6:93:1b:5f:8c:b6:7e:a1:
7c:da:b3:8c:b7:61:a3:95:5e:87:f1:48:07:6e:80:
d7:24:1a:f7:60:d6:87:72:6c:fb:c4:f1:24:4d:d5:
ba:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5C:2F:5D:AC:7E:08:5D:5E:3F:B3:66:6A:45:4B:EA:09:83:06:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1C2198E9A9211EF920D4C4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.72.0/23
Signature Algorithm: sha256WithRSAEncryption
01:d2:f7:c1:3d:35:aa:c4:b5:ef:61:2a:e8:27:b3:41:56:cf:
e2:97:92:e7:17:6c:d8:16:65:e2:c8:8a:80:f1:d3:51:36:9b:
6c:91:c1:24:69:ba:cd:ed:ee:8a:b0:5b:2f:c7:ae:5a:c1:2d:
d1:cc:f9:38:7e:40:bb:cd:0e:6f:88:c9:30:6f:4e:e7:e8:a1:
a2:10:48:f8:ee:72:01:56:7a:43:93:cf:d2:e6:c8:be:ec:4c:
9e:e9:49:a6:2c:68:a5:6d:ad:06:0f:f0:8d:4b:a5:98:46:68:
82:d0:7c:e2:44:b5:23:6b:88:b7:79:e2:5d:e6:68:a8:a8:6f:
65:86:4a:9d:33:79:fa:36:8f:bd:95:bd:92:54:b3:ff:22:24:
1c:bc:b9:07:77:5c:9c:0a:11:0f:1e:21:b7:38:b2:e0:7e:6f:
22:c9:33:74:2b:ee:7d:af:fd:f1:d7:cb:d3:d3:3a:96:38:43:
62:8e:a4:3d:8e:e8:17:bd:15:64:32:dd:7c:1e:29:3c:b9:08:
63:e0:04:40:4a:b4:0a:0a:8b:3f:bf:53:53:3b:a6:e5:77:c6:
77:64:70:4b:78:01:ed:6a:d2:59:6d:40:c3:53:7a:77:54:c8:
3a:49:37:83:11:d8:db:86:11:02:0f:0c:a6:e4:d2:c6:49:96:
c1:3d:d7:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQaAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA0MDk1NDQxWhcNMjQxMjA2MDk1NDQxWjAYMRYw
FAYDVQQDEw02NzI4OTllNS1iNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4OZcjQaAJNG54TFjG0xiUK0brrbK0K0GMMWoQ4n5/Ef6xE3CMOnhJ4TS
B0V5i+fVFRvwjTvGsLRP8RUl2UKjYU56bjezf9VP3nkGFB4xtSBQ3jDF4ViFq782
RSusm3MqgEJB25UDtmyc37Jz4IVjW1ciKLwXD6QEEIxiRH+NZrWUpf3ucJLWnRIG
adS37wzo7MmTJz0zCAf7e3RnfW3qzPOAJo/B2oR10hP3A7q5a597QVmG+NmvBFi2
sehTuWbgxVz3hmcbpB+jMdy2qMqNSVzT4PFV2ENOppMbX4y2fqF82rOMt2GjlV6H
8UgHboDXJBr3YNaHcmz7xPEkTdW6OQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJdc
L12sfghdXj+zZmpFS+oJgwY8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMUMyMTk4RTlBOTIxMUVGOTIwRDRDNEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsVIMA0GCSqGSIb3DQEB
CwUAA4IBAQAB0vfBPTWqxLXvYSroJ7NBVs/il5LnF2zYFmXiyIqA8dNRNptskcEk
abrN7e6KsFsvx65awS3RzPk4fkC7zQ5viMkwb07n6KGiEEj47nIBVnpDk8/S5si+
7Eye6UmmLGilba0GD/CNS6WYRmiC0HziRLUja4i3eeJd5mioqG9lhkqdM3n6No+9
lb2SVLP/IiQcvLkHd1ycChEPHiG3OLLgfm8iyTN0K+59r/3x18vT0zqWOENijqQ9
jugXvRVkMt18Hik8uQhj4ARASrQKCos/v1NTO6bld8Z3ZHBLeAHtatJZbUDDU3p3
VMg6STeDEdjbhhECDwym5NLGSZbBPdf+
-----END CERTIFICATE-----
Generated at Fri Nov 22 11:46:37 2024 by rpki-client on console-ams.rpki-client.org