Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4DA835E9B8B11EFBE2CE369762E951A.roa
File: E4DA835E9B8B11EFBE2CE369762E951A.roa (raw, json)
Hash identifier: YNNCkPzEi2QuSWRlPya+X9lskQ1yf9RsUMg0YTJsFK0=
Subject key identifier: CA:72:AE:FA:53:00:A8:FC:3A:E6:86:AC:25:51:0B:3E:79:79:09:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010825
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4DA835E9B8B11EFBE2CE369762E951A.roa
Signing time: Tue 05 Nov 2024 15:37:41 +0000
ROA not before: Tue 05 Nov 2024 15:37:38 +0000
ROA not after: Wed 04 Dec 2024 15:37:38 +0000
asID: 200373
IP address blocks: 154.213.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67621 (0x10825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 15:37:38 2024 GMT
Not After : Dec 4 15:37:38 2024 GMT
Subject: CN=672a3bc5-fd51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:dc:f7:c7:30:f6:3d:c6:6e:a9:2d:cb:a4:
8c:06:67:2a:3e:08:64:19:9a:67:98:1c:4a:34:87:
64:21:c8:03:23:87:cb:18:0e:4e:fa:46:06:10:e2:
f7:db:12:18:7e:b2:8e:5e:08:4e:05:48:94:df:c2:
e5:6e:35:4e:66:05:9f:bb:e9:fb:0c:fe:67:4e:c3:
70:ca:46:41:0f:8c:58:3b:6d:43:5b:ce:d7:dc:59:
49:5c:46:1a:de:98:d3:05:0c:af:05:4c:91:1c:de:
0d:26:35:d1:71:31:b8:5f:31:43:bc:30:b8:9f:8e:
e8:71:43:29:57:bd:23:18:40:ce:4d:be:a5:3f:20:
06:b3:8a:b8:3c:a5:f9:e0:c5:94:c4:89:76:c5:9a:
b6:ab:35:97:1c:f3:74:27:ee:43:3a:88:f9:e6:48:
72:f1:68:0a:e4:39:c5:b2:12:16:db:aa:60:95:04:
31:76:be:5c:c4:40:aa:ef:16:72:66:52:a6:5f:5b:
3b:21:ec:4a:5a:6e:37:b5:9e:1d:40:4c:65:59:b5:
19:f5:f2:c4:e5:71:34:90:3e:71:9c:82:0a:6c:27:
81:5d:b6:4d:e2:4f:cc:b3:57:57:d8:6d:43:d3:d1:
ce:26:15:86:21:0e:53:cb:85:4b:15:7a:20:b5:6e:
7e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:72:AE:FA:53:00:A8:FC:3A:E6:86:AC:25:51:0B:3E:79:79:09:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4DA835E9B8B11EFBE2CE369762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.204.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:53:ec:79:e7:d3:f1:d5:d1:19:a8:83:ac:ca:aa:da:d4:67:
6e:cc:63:22:0f:2c:be:3f:8f:0c:25:df:42:de:0c:83:be:57:
37:6e:da:e9:ed:4b:f7:7c:d9:7f:91:ea:0e:17:d5:d1:2f:b5:
42:a4:03:c6:1f:d4:bb:5e:4a:c4:b9:a1:96:d3:91:87:f8:9c:
41:4b:b2:6f:1e:89:b0:60:1a:00:81:e3:06:d5:04:a2:ed:8e:
3b:ca:a2:62:e5:f6:54:a9:d4:22:99:81:98:44:63:57:cd:e0:
5c:39:27:d0:04:ba:a7:09:1e:c0:c7:1c:fd:30:83:2f:50:25:
bc:02:50:6c:1b:e0:c2:19:89:4c:18:45:31:ed:89:5f:be:8b:
43:7e:97:ae:23:18:1a:72:bf:6b:ec:f2:d6:12:be:b6:72:43:
4f:94:28:bd:cc:fb:f3:81:1a:a6:af:a6:17:53:6d:48:aa:78:
08:cf:95:f5:e0:d2:0a:37:7b:56:0d:b8:8f:83:9f:6a:ed:6c:
06:b7:e5:55:10:9a:96:b4:ed:61:6a:df:4e:21:d7:c3:35:4c:
10:d4:33:a8:34:28:28:f2:11:26:f7:86:d0:5d:82:a1:1f:65:
a3:8d:ee:10:17:b4:46:2e:01:59:57:66:cf:37:39:9e:9f:09:
46:be:26:ba
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQglMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA1MTUzNzM4WhcNMjQxMjA0MTUzNzM4WjAYMRYw
FAYDVQQDEw02NzJhM2JjNS1mZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1Grc98cw9j3Gbqkty6SMBmcqPghkGZpnmBxKNIdkIcgDI4fLGA5O+kYG
EOL32xIYfrKOXghOBUiU38LlbjVOZgWfu+n7DP5nTsNwykZBD4xYO21DW87X3FlJ
XEYa3pjTBQyvBUyRHN4NJjXRcTG4XzFDvDC4n47ocUMpV70jGEDOTb6lPyAGs4q4
PKX54MWUxIl2xZq2qzWXHPN0J+5DOoj55khy8WgK5DnFshIW26pglQQxdr5cxECq
7xZyZlKmX1s7IexKWm43tZ4dQExlWbUZ9fLE5XE0kD5xnIIKbCeBXbZN4k/Ms1dX
2G1D09HOJhWGIQ5Ty4VLFXogtW5+swIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMpy
rvpTAKj8OuaGrCVRCz55eQmUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNERBODM1RTlCOEIxMUVGQkUyQ0UzNjk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtXMMA0GCSqGSIb3DQEB
CwUAA4IBAQAOU+x559Px1dEZqIOsyqra1GduzGMiDyy+P48MJd9C3gyDvlc3btrp
7Uv3fNl/keoOF9XRL7VCpAPGH9S7XkrEuaGW05GH+JxBS7JvHomwYBoAgeMG1QSi
7Y47yqJi5fZUqdQimYGYRGNXzeBcOSfQBLqnCR7Axxz9MIMvUCW8AlBsG+DCGYlM
GEUx7YlfvotDfpeuIxgacr9r7PLWEr62ckNPlCi9zPvzgRqmr6YXU21IqngIz5X1
4NIKN3tWDbiPg59q7WwGt+VVEJqWtO1hat9OIdfDNUwQ1DOoNCgo8hEm94bQXYKh
H2Wjje4QF7RGLgFZV2bPNzmenwlGvia6
-----END CERTIFICATE-----
Generated at Mon Nov 25 10:50:53 2024 by rpki-client on console-fra.rpki-client.org