Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE1CF1E499F811EFA59BA679762E951A.roa
File: DE1CF1E499F811EFA59BA679762E951A.roa (raw, json)
Hash identifier: 3u3MbrHlTxpBRy2/HUn9w+t4zain73oD7iaRlDaYKGM=
Subject key identifier: 84:0B:0E:5A:70:8C:61:03:A4:C4:CF:15:28:F7:80:C9:20:18:C4:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01066B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE1CF1E499F811EFA59BA679762E951A.roa
Signing time: Sun 03 Nov 2024 15:32:43 +0000
ROA not before: Sun 03 Nov 2024 15:32:39 +0000
ROA not after: Wed 05 Nov 2025 15:32:39 +0000
asID: 18186
IP address blocks: 154.200.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67179 (0x1066b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 3 15:32:39 2024 GMT
Not After : Nov 5 15:32:39 2025 GMT
Subject: CN=6727979b-a89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:04:25:08:73:96:4b:67:79:02:71:e7:c1:0c:
3b:c9:e4:2d:99:ee:84:2a:67:de:0d:6a:f0:9f:90:
04:0e:37:19:92:fa:95:3f:da:b3:68:5c:ca:aa:bf:
7d:0f:b0:8b:6f:e9:cc:8a:02:05:59:c8:80:3d:07:
58:0c:c4:98:f2:75:9b:5f:87:c4:89:1f:1d:9c:66:
bb:cb:6f:6b:c3:7f:1c:6b:23:5e:86:5b:cd:51:3d:
68:00:b2:6b:56:a7:88:a3:f7:23:e4:86:ec:a8:c1:
18:ba:3e:6d:e8:ee:f9:82:63:71:96:c2:b3:9c:68:
44:a8:0b:d0:bf:a0:30:20:c7:5c:b8:ac:13:e6:58:
89:21:09:46:3b:e0:d7:72:96:b8:91:df:a5:c2:0f:
f8:87:01:4d:81:e7:95:9e:8d:3b:f6:f7:61:c4:b3:
80:14:3c:87:dd:47:cd:0f:94:dc:4a:15:ce:2f:92:
80:44:ad:dd:c8:8b:c6:76:96:82:4e:af:7d:8e:7a:
bc:54:56:ad:d6:53:a6:08:66:b9:c5:15:c1:b3:4f:
3e:c5:31:1f:29:39:0f:05:35:e0:fd:26:6b:b9:f5:
d7:eb:d0:d4:c5:5d:22:06:ba:63:ab:f7:9f:63:a9:
0c:ce:29:15:85:7d:14:b3:61:f4:76:f2:8b:11:f0:
e3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0B:0E:5A:70:8C:61:03:A4:C4:CF:15:28:F7:80:C9:20:18:C4:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE1CF1E499F811EFA59BA679762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.97.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7d:5a:0c:09:19:a0:62:55:58:88:bb:ea:ba:aa:c1:44:e1:
33:c7:9e:64:b7:22:27:e9:71:8a:c4:f7:63:24:fc:4f:ce:bf:
88:5f:95:ae:ab:c2:46:9d:4f:a9:a2:80:7a:40:27:97:95:fc:
dc:36:1a:2a:cf:69:81:9d:e8:f0:87:29:fc:c9:dc:56:95:4d:
38:f1:7b:28:68:14:8d:0f:42:af:de:aa:7c:37:ca:53:91:73:
6d:88:20:58:f1:e3:2f:f8:be:86:df:1d:b4:93:5c:b7:c6:d1:
12:15:12:48:ff:b1:29:69:27:86:cf:43:91:af:95:4a:c7:da:
bf:c1:3b:1b:6a:68:16:ba:0c:88:95:85:ea:44:2f:2c:40:89:
57:f1:26:06:d4:44:56:5f:01:f4:8e:49:87:4f:aa:88:61:10:
28:70:42:41:c8:b1:ea:ab:a1:01:22:5c:e3:fd:7f:83:6b:38:
30:f7:a6:e6:a4:a5:36:67:0e:f5:e1:b8:ec:ef:3b:38:bb:a6:
7f:1c:da:9b:f1:67:f0:03:d0:85:d7:5e:c8:08:96:04:6f:f4:
a2:0d:b3:38:bf:76:2f:4a:8c:46:d7:40:4b:84:14:d9:a2:98:
37:c5:a1:00:ce:15:3c:d1:c3:b0:4a:52:ab:71:3f:85:2a:08:
25:2d:98:00
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQZrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAzMTUzMjM5WhcNMjUxMTA1MTUzMjM5WjAYMRYw
FAYDVQQDEw02NzI3OTc5Yi1hODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzgQlCHOWS2d5AnHnwQw7yeQtme6EKmfeDWrwn5AEDjcZkvqVP9qzaFzK
qr99D7CLb+nMigIFWciAPQdYDMSY8nWbX4fEiR8dnGa7y29rw38cayNehlvNUT1o
ALJrVqeIo/cj5IbsqMEYuj5t6O75gmNxlsKznGhEqAvQv6AwIMdcuKwT5liJIQlG
O+DXcpa4kd+lwg/4hwFNgeeVno079vdhxLOAFDyH3UfND5TcShXOL5KARK3dyIvG
dpaCTq99jnq8VFat1lOmCGa5xRXBs08+xTEfKTkPBTXg/SZrufXX69DUxV0iBrpj
q/efY6kMzikVhX0Us2H0dvKLEfDj1wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIQL
DlpwjGEDpMTPFSj3gMkgGMSLMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ERTFDRjFFNDk5RjgxMUVGQTU5QkE2Nzk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmshhMA0GCSqGSIb3DQEB
CwUAA4IBAQB7fVoMCRmgYlVYiLvquqrBROEzx55ktyIn6XGKxPdjJPxPzr+IX5Wu
q8JGnU+pooB6QCeXlfzcNhoqz2mBnejwhyn8ydxWlU048XsoaBSND0Kv3qp8N8pT
kXNtiCBY8eMv+L6G3x20k1y3xtESFRJI/7EpaSeGz0ORr5VKx9q/wTsbamgWugyI
lYXqRC8sQIlX8SYG1ERWXwH0jkmHT6qIYRAocEJByLHqq6EBIlzj/X+Dazgw96bm
pKU2Zw714bjs7zs4u6Z/HNqb8WfwA9CF117ICJYEb/SiDbM4v3YvSoxG10BLhBTZ
opg3xaEAzhU80cOwSlKrcT+FKgglLZgA
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:28 2024 by rpki-client on console-fra.rpki-client.org