Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF388008A8DE11EFB5C9666E762E951A.roa
File: DF388008A8DE11EFB5C9666E762E951A.roa (raw, json)
Hash identifier: 3JdQ12QQlMGrv0lbW5VX48xT421t+bTZqyugXQLejkY=
Subject key identifier: A0:47:DB:70:DF:A2:45:DB:7B:72:5C:C0:12:9F:95:FF:06:E4:B5:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011079
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF388008A8DE11EFB5C9666E762E951A.roa
Signing time: Fri 22 Nov 2024 14:34:26 +0000
ROA not before: Fri 22 Nov 2024 14:34:22 +0000
ROA not after: Tue 03 Dec 2024 14:34:22 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69753 (0x11079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:34:22 2024 GMT
Not After : Dec 3 14:34:22 2024 GMT
Subject: CN=67409671-3c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d1:6c:92:a7:5a:e0:e2:4a:36:42:d2:b2:e1:
d0:fd:cb:ee:64:c1:19:5e:1c:00:28:df:c8:5e:6b:
ee:06:8e:15:a5:55:84:18:d8:48:47:e3:e3:d5:ce:
22:5e:79:f0:9d:27:58:9e:0e:db:cf:fa:f5:a5:6a:
e1:19:b0:d9:c9:03:11:3d:89:e2:f3:25:5a:bc:ce:
ad:29:f5:e4:d8:ff:fd:a4:ff:d1:f6:bc:4a:0e:ad:
3c:49:7b:d2:29:00:94:f9:dc:73:d4:2c:ae:0b:e3:
48:22:84:63:44:9a:a6:9d:cc:dc:9a:94:49:e2:84:
ae:29:3b:f5:ed:6c:d0:d3:4f:aa:47:f3:9e:68:f7:
38:69:dc:25:a1:43:1a:e5:9a:33:c9:50:3f:3e:f6:
a0:98:d4:a4:cd:ae:bc:cf:e7:d2:a4:17:73:87:9a:
78:a5:da:4a:b1:b7:47:7d:09:e0:9f:21:02:52:00:
5f:c9:41:e3:40:12:2f:36:c6:d9:28:44:66:6e:9f:
f2:22:69:7c:7c:7a:0b:64:ec:a7:37:8f:3e:aa:02:
24:3e:c6:2a:e7:d8:8e:09:ee:40:b4:08:63:9b:a2:
de:35:ec:e3:b4:75:0e:3a:6c:15:de:12:5e:b1:c8:
21:93:d5:0d:a0:71:78:41:6f:36:df:d6:15:d1:c4:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:47:DB:70:DF:A2:45:DB:7B:72:5C:C0:12:9F:95:FF:06:E4:B5:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF388008A8DE11EFB5C9666E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b5:14:da:be:01:ca:bc:23:15:d4:81:8f:8a:3e:9c:8c:a0:
2e:48:c2:9d:5b:97:bc:01:14:33:45:ad:f4:eb:dd:1c:6f:c5:
17:bc:bc:ee:71:e3:61:6e:1a:13:48:41:17:b5:95:06:da:14:
b8:90:f0:e4:f1:ae:29:9d:9b:2e:6b:1f:30:54:51:ac:37:e5:
e0:6c:b5:8c:ef:a1:66:39:cb:b4:10:14:79:4c:4f:98:3a:8a:
d9:6e:90:20:79:0c:78:a9:2c:a0:f0:13:51:4f:e9:a1:4c:27:
85:61:f1:bb:fe:5a:c9:86:a4:ab:44:5e:37:58:72:0d:41:3f:
3e:f8:ca:f8:3f:c0:c2:60:df:30:ea:36:0e:bd:b5:fb:29:40:
da:8e:8b:da:87:26:30:47:5a:7a:e8:14:bb:8a:75:8e:b9:42:
0b:76:f7:05:59:c8:66:da:ba:b8:a1:ef:cc:97:25:b5:bb:de:
97:e8:af:d5:a6:3f:90:0d:79:a4:4e:12:e9:47:b4:60:bc:b4:
b2:4f:3f:0c:b3:c5:27:33:49:3f:a7:2b:f2:2b:4a:18:ff:6b:
f5:cb:9f:43:83:f5:30:3a:80:10:17:9f:25:1d:fa:af:52:8d:
d1:29:77:99:37:b6:d1:70:14:84:7e:7c:5d:61:09:57:84:0e:
c4:2e:de:ed
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARB5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTQzNDIyWhcNMjQxMjAzMTQzNDIyWjAYMRYw
FAYDVQQDEw02NzQwOTY3MS0zYzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArtFskqda4OJKNkLSsuHQ/cvuZMEZXhwAKN/IXmvuBo4VpVWEGNhIR+Pj
1c4iXnnwnSdYng7bz/r1pWrhGbDZyQMRPYni8yVavM6tKfXk2P/9pP/R9rxKDq08
SXvSKQCU+dxz1CyuC+NIIoRjRJqmnczcmpRJ4oSuKTv17WzQ00+qR/OeaPc4adwl
oUMa5ZozyVA/PvagmNSkza68z+fSpBdzh5p4pdpKsbdHfQngnyECUgBfyUHjQBIv
NsbZKERmbp/yIml8fHoLZOynN48+qgIkPsYq59iOCe5AtAhjm6LeNezjtHUOOmwV
3hJescghk9UNoHF4QW8239YV0cS2xwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKBH
23DfokXbe3JcwBKflf8G5LUgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ERjM4ODAwOEE4REUxMUVGQjVDOTY2NkU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIhMA0GCSqGSIb3DQEB
CwUAA4IBAQBLtRTavgHKvCMV1IGPij6cjKAuSMKdW5e8ARQzRa30690cb8UXvLzu
ceNhbhoTSEEXtZUG2hS4kPDk8a4pnZsuax8wVFGsN+XgbLWM76FmOcu0EBR5TE+Y
OorZbpAgeQx4qSyg8BNRT+mhTCeFYfG7/lrJhqSrRF43WHINQT8++Mr4P8DCYN8w
6jYOvbX7KUDajovahyYwR1p66BS7inWOuUILdvcFWchm2rq4oe/MlyW1u96X6K/V
pj+QDXmkThLpR7RgvLSyTz8Ms8UnM0k/pyvyK0oY/2v1y59Dg/UwOoAQF58lHfqv
Uo3RKXeZN7bRcBSEfnxdYQlXhA7ELt7t
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:50 2024 by rpki-client on console-fra.rpki-client.org