Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E003FF44736411EF8E2E51B5762E951A.roa
File: E003FF44736411EF8E2E51B5762E951A.roa (raw, json)
Hash identifier: 5mv6JrKiYfqrFCCqbyltuLEbCTTQsWMcJN+bfC+q3Rc=
Subject key identifier: 63:2E:42:64:55:99:A2:CD:5B:28:76:DC:25:2F:09:8D:3D:5E:99:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EEFC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E003FF44736411EF8E2E51B5762E951A.roa
Signing time: Sun 15 Sep 2024 13:17:36 +0000
ROA not before: Sun 15 Sep 2024 13:17:33 +0000
ROA not after: Sat 30 Nov 2024 13:17:33 +0000
asID: 142403
IP address blocks: 154.221.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61180 (0xeefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 15 13:17:33 2024 GMT
Not After : Nov 30 13:17:33 2024 GMT
Subject: CN=66e6de70-9bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:18:a1:ea:e0:03:0e:c8:9b:7e:cb:19:de:66:
48:bd:75:cf:61:e0:a5:2c:4b:e0:66:1c:e1:05:fd:
43:71:c1:69:06:f0:65:af:20:8a:b3:47:f4:d1:bd:
61:39:cb:64:40:f8:5d:4f:51:d5:1c:9c:0a:03:ef:
2e:33:1a:2c:95:de:19:0e:09:6b:4b:b2:19:84:52:
45:b0:8d:da:fa:b2:e5:c9:cb:44:6d:9a:66:92:37:
a6:b0:b3:97:6b:5c:a4:37:67:7e:12:58:da:ae:9f:
d1:67:a6:fc:8d:8d:56:82:3e:12:d8:57:26:9e:c6:
f0:11:9c:ac:1d:f6:9d:aa:c7:f0:10:38:34:9d:34:
7f:e4:28:3f:a9:d5:21:f9:37:9e:ce:c4:ca:8a:40:
97:b4:8c:f3:be:a3:6c:96:3d:56:34:03:08:7f:f2:
6f:37:31:94:a8:7c:75:6d:7d:71:14:11:a0:0a:fc:
18:dd:a8:a8:0a:2b:86:71:10:47:34:02:83:7a:8b:
2c:d0:f9:45:88:ba:4c:aa:da:95:76:9f:2d:b6:e1:
fa:92:06:46:bd:44:af:c3:2f:51:3e:09:56:09:13:
23:be:a0:ae:9b:1c:70:29:db:78:ea:3d:68:ad:c4:
d1:e3:7d:3d:63:53:a3:55:df:92:6a:80:4e:18:5c:
3e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:2E:42:64:55:99:A2:CD:5B:28:76:DC:25:2F:09:8D:3D:5E:99:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E003FF44736411EF8E2E51B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.20.0/24
Signature Algorithm: sha256WithRSAEncryption
17:53:06:37:47:d9:06:ae:cd:11:fe:6b:04:6c:eb:4f:84:41:
79:7a:65:6a:45:74:25:ce:a4:f7:2f:54:41:2d:6f:38:66:ea:
fe:4b:97:8d:df:28:71:6d:43:0a:2c:5e:c5:22:4e:19:8f:41:
16:57:fb:0b:06:28:00:08:6d:e1:c1:1d:26:df:99:1e:06:14:
b5:61:7c:b8:fb:f7:c6:7e:49:45:18:fb:23:54:06:b0:cf:67:
ed:ae:1e:3f:cb:54:19:8e:3c:ef:03:18:f7:49:fe:e5:ce:cd:
9c:51:a6:2e:fb:5f:19:1e:24:4d:ba:c4:6a:f1:12:3f:70:3a:
ec:ed:e9:cd:95:c3:84:d8:a1:05:a5:17:2e:14:1a:0d:c7:43:
46:bf:6b:81:54:21:25:db:66:36:a6:c7:d4:d6:8a:8a:8d:dc:
a7:16:12:bd:0b:1f:7d:a9:a9:e6:a0:f2:46:73:42:49:a6:6e:
8a:fc:af:44:e0:4c:c4:28:76:5c:ee:39:47:a5:b3:b7:5e:f1:
08:dd:a4:61:39:dd:f3:35:96:9b:2b:f3:66:64:70:75:f1:05:
eb:07:f8:db:df:fe:15:cb:a6:05:3a:ee:70:d4:b6:e9:22:9c:
6b:6e:6f:ef:8f:c1:4f:66:8d:61:81:49:39:69:47:e0:9c:ad:
f1:25:9d:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO78MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE1MTMxNzMzWhcNMjQxMTMwMTMxNzMzWjAYMRYw
FAYDVQQDEw02NmU2ZGU3MC05YmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+Bih6uADDsibfssZ3mZIvXXPYeClLEvgZhzhBf1DccFpBvBlryCKs0f0
0b1hOctkQPhdT1HVHJwKA+8uMxosld4ZDglrS7IZhFJFsI3a+rLlyctEbZpmkjem
sLOXa1ykN2d+Eljarp/RZ6b8jY1Wgj4S2FcmnsbwEZysHfadqsfwEDg0nTR/5Cg/
qdUh+TeezsTKikCXtIzzvqNslj1WNAMIf/JvNzGUqHx1bX1xFBGgCvwY3aioCiuG
cRBHNAKDeoss0PlFiLpMqtqVdp8ttuH6kgZGvUSvwy9RPglWCRMjvqCumxxwKdt4
6j1orcTR4309Y1OjVd+SaoBOGFw+pwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGMu
QmRVmaLNWyh23CUvCY09Xpl2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMDAzRkY0NDczNjQxMUVGOEUyRTUxQjU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0UMA0GCSqGSIb3DQEB
CwUAA4IBAQAXUwY3R9kGrs0R/msEbOtPhEF5emVqRXQlzqT3L1RBLW84Zur+S5eN
3yhxbUMKLF7FIk4Zj0EWV/sLBigACG3hwR0m35keBhS1YXy4+/fGfklFGPsjVAaw
z2ftrh4/y1QZjjzvAxj3Sf7lzs2cUaYu+18ZHiRNusRq8RI/cDrs7enNlcOE2KEF
pRcuFBoNx0NGv2uBVCEl22Y2psfU1oqKjdynFhK9Cx99qanmoPJGc0JJpm6K/K9E
4EzEKHZc7jlHpbO3XvEI3aRhOd3zNZabK/NmZHB18QXrB/jb3/4Vy6YFOu5w1Lbp
Ipxrbm/vj8FPZo1hgUk5aUfgnK3xJZ0M
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:28 2024 by rpki-client on console-fra.rpki-client.org