Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D30BE76476A911EFA7CBAB71762E951A.roa
File: D30BE76476A911EFA7CBAB71762E951A.roa (raw, json)
Hash identifier: dRJJUK+9a/llkb07YJFUdQwAoAgPenNPlMz5PT1rzPo=
Subject key identifier: 36:3B:98:96:14:44:79:03:42:05:88:90:8C:AA:FD:87:B1:A2:18:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F13D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D30BE76476A911EFA7CBAB71762E951A.roa
Signing time: Thu 19 Sep 2024 17:08:43 +0000
ROA not before: Thu 19 Sep 2024 17:08:40 +0000
ROA not after: Fri 20 Dec 2024 17:08:40 +0000
asID: 16437
IP address blocks: 154.81.208.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61757 (0xf13d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 17:08:40 2024 GMT
Not After : Dec 20 17:08:40 2024 GMT
Subject: CN=66ec5a9b-58f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:84:52:3c:44:27:6f:ea:7c:9a:91:68:0a:94:
b4:bc:e8:db:49:74:96:72:41:03:58:8e:8f:0c:76:
63:be:8e:42:bd:9f:30:ef:a3:51:9c:38:1b:10:4b:
13:a9:16:34:3d:54:1f:7f:e5:92:16:3e:60:17:1d:
76:54:77:fe:1f:48:8d:e3:b4:be:aa:a8:c1:a4:52:
52:76:13:24:9c:72:02:b3:d8:8f:3b:19:3d:7f:1e:
8f:31:c1:fb:dc:5b:fb:b6:04:83:b5:fa:3c:e2:3f:
6b:f7:5f:7d:bc:91:11:dd:94:47:2b:e7:eb:dd:b5:
f9:9d:a2:4f:26:34:5b:14:4d:a1:36:53:10:3b:02:
e8:24:6c:0b:12:57:3b:c8:08:25:de:3a:2d:e0:d6:
f9:12:eb:78:40:6e:be:b9:c4:17:30:b6:38:db:c8:
f4:b3:9d:c4:c2:74:03:fd:45:2b:fc:5a:ee:27:f5:
2a:12:31:2c:b7:51:bf:dc:b5:87:48:17:9d:0f:9b:
7d:cc:69:8a:ef:0b:0d:35:cd:3c:14:bd:3a:21:08:
d2:88:78:53:0e:ad:26:d4:9d:25:88:99:98:b3:79:
4b:d8:fc:00:38:a0:90:c5:36:8c:5e:2c:f3:a5:97:
6a:92:bf:b1:de:f1:bc:91:82:a7:7f:45:37:8f:b8:
9c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:3B:98:96:14:44:79:03:42:05:88:90:8C:AA:FD:87:B1:A2:18:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D30BE76476A911EFA7CBAB71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.208.0/21
Signature Algorithm: sha256WithRSAEncryption
69:4f:75:cd:36:65:bc:41:5e:fc:c5:ce:77:d6:56:d3:ca:58:
00:d0:71:5a:4a:c6:95:9e:35:97:3d:76:6e:98:e4:b3:05:69:
0f:4c:3b:3c:6f:1b:1d:e3:9b:c8:f2:1b:07:00:ef:52:73:25:
ce:cd:aa:db:36:6c:ea:42:a5:8d:ee:e0:73:0c:8b:d3:9d:98:
60:69:93:9f:a6:7f:c1:2e:9b:7b:59:84:15:8b:bb:9d:1b:41:
aa:49:4e:20:8d:d6:fe:a8:f7:fe:e0:f5:d6:b4:eb:24:53:6b:
fe:82:2d:8c:04:74:82:82:7a:d1:92:c3:02:5c:cd:34:35:a0:
84:9a:d2:87:33:09:91:84:70:b1:79:25:7d:67:ef:98:94:bf:
73:17:2a:5e:d8:e1:39:55:05:02:9f:5f:59:6e:72:b2:3e:0f:
7c:9a:e0:ab:28:ce:a9:ca:02:ca:df:d1:50:f5:53:5f:ee:e5:
04:e5:d0:5e:21:93:6c:e7:9d:17:be:9e:94:1a:54:dc:cc:bc:
0d:85:3c:d1:de:db:2d:c1:71:3c:78:a1:43:3b:40:56:d9:5f:
ad:74:94:28:8b:a1:15:38:ad:df:6e:0f:c3:46:5a:47:b1:0b:
9f:07:2a:72:6c:45:b8:cd:61:d8:1e:74:8a:c7:6a:81:d3:e7:
6e:bd:21:59
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPE9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE5MTcwODQwWhcNMjQxMjIwMTcwODQwWjAYMRYw
FAYDVQQDEw02NmVjNWE5Yi01OGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyYRSPEQnb+p8mpFoCpS0vOjbSXSWckEDWI6PDHZjvo5CvZ8w76NRnDgb
EEsTqRY0PVQff+WSFj5gFx12VHf+H0iN47S+qqjBpFJSdhMknHICs9iPOxk9fx6P
McH73Fv7tgSDtfo84j9r9199vJER3ZRHK+fr3bX5naJPJjRbFE2hNlMQOwLoJGwL
Elc7yAgl3jot4Nb5Eut4QG6+ucQXMLY428j0s53EwnQD/UUr/FruJ/UqEjEst1G/
3LWHSBedD5t9zGmK7wsNNc08FL06IQjSiHhTDq0m1J0liJmYs3lL2PwAOKCQxTaM
XizzpZdqkr+x3vG8kYKnf0U3j7icCwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDY7
mJYURHkDQgWIkIyq/YexohhqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMzBCRTc2NDc2QTkxMUVGQTdDQkFCNzE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlHQMA0GCSqGSIb3DQEB
CwUAA4IBAQBpT3XNNmW8QV78xc531lbTylgA0HFaSsaVnjWXPXZumOSzBWkPTDs8
bxsd45vI8hsHAO9ScyXOzarbNmzqQqWN7uBzDIvTnZhgaZOfpn/BLpt7WYQVi7ud
G0GqSU4gjdb+qPf+4PXWtOskU2v+gi2MBHSCgnrRksMCXM00NaCEmtKHMwmRhHCx
eSV9Z++YlL9zFype2OE5VQUCn19ZbnKyPg98muCrKM6pygLK39FQ9VNf7uUE5dBe
IZNs550Xvp6UGlTczLwNhTzR3tstwXE8eKFDO0BW2V+tdJQoi6EVOK3fbg/DRlpH
sQufBypybEW4zWHYHnSKx2qB0+duvSFZ
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:38 2024 by rpki-client on console-ams.rpki-client.org