Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21815648BA011EF9C5D3293762E951A.roa
File: E21815648BA011EF9C5D3293762E951A.roa (raw, json)
Hash identifier: FtWW0SKqah8QQFMerV7icnpGHtdMhaVO26JDK7UbRzk=
Subject key identifier: BD:35:96:43:43:89:41:DF:4A:95:CF:7D:72:BF:4B:8C:B4:DB:B2:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FEB1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21815648BA011EF9C5D3293762E951A.roa
Signing time: Wed 16 Oct 2024 09:27:38 +0000
ROA not before: Wed 16 Oct 2024 09:27:34 +0000
ROA not after: Wed 27 Nov 2024 09:27:34 +0000
asID: 152179
IP address blocks: 154.91.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65201 (0xfeb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 09:27:34 2024 GMT
Not After : Nov 27 09:27:34 2024 GMT
Subject: CN=670f8709-fbe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ae:c7:52:91:b8:b0:eb:0e:34:3b:7e:d7:c1:
ac:c6:e1:c4:22:73:24:7d:11:2a:c9:8b:7c:b4:bc:
44:23:b3:6f:bc:32:fe:53:72:03:9f:7a:a0:60:44:
76:67:6c:99:7f:4f:e1:64:fc:01:a5:28:7c:57:c8:
1e:68:c8:0d:8d:a3:20:50:a9:f7:e0:97:4a:30:53:
a4:4b:45:f5:5c:a7:27:48:6e:01:39:8f:8e:d6:29:
5c:ea:44:e3:5b:23:1c:04:9e:4c:6a:4e:bb:67:44:
e4:cc:ed:34:31:51:4d:6b:56:d4:a2:2f:51:80:f4:
93:4c:4d:e1:93:40:4b:9d:85:7b:8d:2c:97:1e:fb:
84:7d:e3:4f:87:25:c2:72:e5:9a:27:1c:f5:1d:92:
01:10:e0:f2:d8:28:4a:f2:be:b4:b0:7f:fc:fe:ed:
85:fc:61:05:3f:7b:14:85:bc:e0:f5:84:60:b1:b8:
aa:12:f3:ae:7b:62:8a:c6:90:52:07:40:63:41:88:
0f:58:a5:18:03:82:ee:e7:23:95:ac:07:9b:2f:87:
3d:f3:d7:ae:f6:15:58:d8:f4:97:2c:be:a4:92:94:
6a:67:53:b0:4e:54:70:7c:e1:ef:dc:62:02:9a:47:
f7:b0:21:56:e2:02:04:a0:ad:48:ac:0a:00:31:ac:
96:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:35:96:43:43:89:41:DF:4A:95:CF:7D:72:BF:4B:8C:B4:DB:B2:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E21815648BA011EF9C5D3293762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:1c:65:f1:ac:cb:c6:c3:45:cc:44:3f:fc:90:14:cb:1b:99:
e7:c6:b0:53:0e:9a:9a:d9:0d:61:0a:a2:6d:0a:88:91:8f:46:
eb:cb:b3:5c:b1:ac:64:0c:c4:84:b0:80:e4:82:42:0b:d0:2a:
20:12:33:fc:66:88:b4:95:3f:87:fd:8a:20:d7:c8:5d:34:df:
dc:43:08:6c:23:a9:09:b0:ab:13:ab:63:1a:6e:cf:5c:99:96:
09:34:b8:01:28:33:7e:ea:f2:fa:f9:f4:a7:12:02:d0:b9:5a:
af:1b:fe:53:aa:77:e9:2a:d7:9a:83:ea:71:d4:e5:7d:62:9b:
41:78:07:01:ca:4f:b2:f5:07:e0:fb:62:ea:c6:5e:bd:e5:d0:
17:f9:72:65:7a:ad:f0:03:2b:a7:7b:0b:fb:41:16:37:c4:4b:
b0:6a:b4:88:5e:10:9a:11:9a:ab:08:c8:49:21:5a:a9:07:85:
a4:ed:92:fc:5a:f1:3d:ea:56:f4:71:f1:77:f2:d9:fe:19:3e:
be:ab:11:0e:40:89:1e:1f:7e:8e:5a:54:31:15:03:c4:da:46:
34:bf:62:00:49:40:5b:b3:98:19:40:b6:ec:d4:93:ff:1f:65:
7d:f8:01:93:e1:a2:33:b7:7c:79:1f:23:93:1a:e6:7d:e5:67:
b0:99:1f:94
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAP6xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDE2MDkyNzM0WhcNMjQxMTI3MDkyNzM0WjAYMRYw
FAYDVQQDEw02NzBmODcwOS1mYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx67HUpG4sOsONDt+18GsxuHEInMkfREqyYt8tLxEI7NvvDL+U3IDn3qg
YER2Z2yZf0/hZPwBpSh8V8geaMgNjaMgUKn34JdKMFOkS0X1XKcnSG4BOY+O1ilc
6kTjWyMcBJ5Mak67Z0TkzO00MVFNa1bUoi9RgPSTTE3hk0BLnYV7jSyXHvuEfeNP
hyXCcuWaJxz1HZIBEODy2ChK8r60sH/8/u2F/GEFP3sUhbzg9YRgsbiqEvOue2KK
xpBSB0BjQYgPWKUYA4Lu5yOVrAebL4c989eu9hVY2PSXLL6kkpRqZ1OwTlRwfOHv
3GICmkf3sCFW4gIEoK1IrAoAMayWxQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL01
lkNDiUHfSpXPfXK/S4y027LSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMjE4MTU2NDhCQTAxMUVGOUM1RDMyOTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlvJMA0GCSqGSIb3DQEB
CwUAA4IBAQALHGXxrMvGw0XMRD/8kBTLG5nnxrBTDpqa2Q1hCqJtCoiRj0bry7Nc
saxkDMSEsIDkgkIL0CogEjP8Zoi0lT+H/Yog18hdNN/cQwhsI6kJsKsTq2Mabs9c
mZYJNLgBKDN+6vL6+fSnEgLQuVqvG/5TqnfpKteag+px1OV9YptBeAcByk+y9Qfg
+2Lqxl695dAX+XJleq3wAyunewv7QRY3xEuwarSIXhCaEZqrCMhJIVqpB4Wk7ZL8
WvE96lb0cfF38tn+GT6+qxEOQIkeH36OWlQxFQPE2kY0v2IASUBbs5gZQLbs1JP/
H2V9+AGT4aIzt3x5HyOTGuZ95WewmR+U
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:51 2024 by rpki-client on console-fra.rpki-client.org