Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E92A94D69DA111EFBD90699A762E951A.roa
File: E92A94D69DA111EFBD90699A762E951A.roa (raw, json)
Hash identifier: V5ZnXtFUb2VhsyyT7pG+aYMqHS1MW7LX0/EqOm6N9fU=
Subject key identifier: 10:68:A0:01:7B:EC:A0:2F:CC:1B:7E:49:2D:C0:84:D2:DF:0A:B2:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0109B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E92A94D69DA111EFBD90699A762E951A.roa
Signing time: Fri 08 Nov 2024 07:20:20 +0000
ROA not before: Fri 08 Nov 2024 07:20:16 +0000
ROA not after: Sat 30 Nov 2024 07:20:16 +0000
asID: 150008
IP address blocks: 154.209.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68016 (0x109b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 8 07:20:16 2024 GMT
Not After : Nov 30 07:20:16 2024 GMT
Subject: CN=672dbbb4-6ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3d:08:a5:79:17:23:bc:b0:71:14:7b:2a:c4:
4d:ab:a5:5b:2c:81:a7:1f:0f:d5:66:48:25:9d:b4:
94:7b:59:b9:b0:6c:30:23:6e:2f:83:12:1f:30:ec:
98:91:dc:1b:d2:28:5d:d7:7b:14:01:35:1c:64:3b:
0f:af:ed:7d:85:09:b9:0e:f5:2c:3f:2c:5b:8b:11:
d0:96:bd:74:42:44:ef:92:b9:06:9a:e5:fb:b7:0f:
06:74:c2:56:60:df:02:a5:93:e0:44:4a:1e:00:57:
7b:6a:9b:aa:d2:9d:d9:98:18:50:de:4c:85:97:dc:
4f:68:3d:f0:21:5d:0c:c5:6c:5d:a5:1b:2e:b0:1e:
f4:64:dd:a0:b3:5f:42:5f:4b:23:4e:a3:63:e6:f3:
32:9d:f5:64:a0:3a:ef:ee:ba:88:28:b9:a9:85:47:
89:6a:17:48:cf:0f:36:8e:89:6b:79:40:d4:df:e4:
36:75:a2:f0:99:1a:46:73:6d:41:b5:70:d6:12:b8:
3a:25:9f:29:0c:7b:dc:36:e9:e7:fb:de:ba:89:bd:
39:ed:5b:18:f8:05:41:da:85:17:34:e3:ae:df:cf:
1e:b5:92:57:67:6e:77:75:db:80:d5:ca:49:1b:67:
b8:98:eb:e5:35:79:97:c7:e5:c4:75:7d:ae:df:17:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:68:A0:01:7B:EC:A0:2F:CC:1B:7E:49:2D:C0:84:D2:DF:0A:B2:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E92A94D69DA111EFBD90699A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.252.0/22
Signature Algorithm: sha256WithRSAEncryption
54:b5:22:a6:5a:29:c3:9c:a7:4e:0b:4b:ed:b3:29:1b:ea:19:
26:c5:e8:13:79:e5:22:36:0a:5b:5c:97:52:b2:54:84:42:ee:
83:95:4a:56:3a:f7:47:1e:8d:23:4b:10:ee:61:69:b9:3b:61:
89:22:0a:a8:e0:92:36:c9:bb:53:9a:60:98:09:55:f7:f9:5f:
25:bf:4a:5b:fe:7f:76:ce:b9:1c:f5:cb:1b:79:70:bf:65:fc:
a7:01:df:4c:e5:ad:b5:20:fb:cd:52:96:9b:69:08:5a:8f:ec:
6b:96:90:a8:21:b6:67:7b:d8:5a:d5:62:f2:55:5b:3b:64:17:
f0:2f:11:b4:0c:4e:b9:9a:c3:19:60:02:c4:0a:48:fe:66:9e:
d7:84:05:b1:8b:bb:f6:9b:b2:73:3a:ce:69:ad:b8:1b:19:43:
80:80:63:c0:cb:7e:a1:30:d5:fd:6a:19:08:bb:cf:4a:9e:94:
b3:c0:b8:96:a8:fe:18:9f:5d:e0:22:87:28:3a:3e:8b:ca:b4:
3f:e4:95:be:79:ab:af:45:c5:25:7b:06:4d:e2:39:30:66:18:
8d:04:56:10:16:a2:af:cc:07:0b:73:01:c7:ec:2d:cb:75:f1:
7e:d5:37:9e:89:f8:ed:37:f1:5d:de:a5:86:b4:62:26:ce:52:
d5:a8:6b:f8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQmwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA4MDcyMDE2WhcNMjQxMTMwMDcyMDE2WjAYMRYw
FAYDVQQDEw02NzJkYmJiNC02YmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoj0IpXkXI7ywcRR7KsRNq6VbLIGnHw/VZkglnbSUe1m5sGwwI24vgxIf
MOyYkdwb0ihd13sUATUcZDsPr+19hQm5DvUsPyxbixHQlr10QkTvkrkGmuX7tw8G
dMJWYN8CpZPgREoeAFd7apuq0p3ZmBhQ3kyFl9xPaD3wIV0MxWxdpRsusB70ZN2g
s19CX0sjTqNj5vMynfVkoDrv7rqIKLmphUeJahdIzw82jolreUDU3+Q2daLwmRpG
c21BtXDWErg6JZ8pDHvcNunn+966ib057VsY+AVB2oUXNOOu388etZJXZ253dduA
1cpJG2e4mOvlNXmXx+XEdX2u3xfoKwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBBo
oAF77KAvzBt+SS3AhNLfCrLtMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FOTJBOTRENjlEQTExMUVGQkQ5MDY5OUE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmtH8MA0GCSqGSIb3DQEB
CwUAA4IBAQBUtSKmWinDnKdOC0vtsykb6hkmxegTeeUiNgpbXJdSslSEQu6DlUpW
OvdHHo0jSxDuYWm5O2GJIgqo4JI2ybtTmmCYCVX3+V8lv0pb/n92zrkc9csbeXC/
ZfynAd9M5a21IPvNUpabaQhaj+xrlpCoIbZne9ha1WLyVVs7ZBfwLxG0DE65msMZ
YALECkj+Zp7XhAWxi7v2m7JzOs5prbgbGUOAgGPAy36hMNX9ahkIu89KnpSzwLiW
qP4Yn13gIocoOj6LyrQ/5JW+eauvRcUlewZN4jkwZhiNBFYQFqKvzAcLcwHH7C3L
dfF+1TeeifjtN/Fd3qWGtGImzlLVqGv4
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:51 2024 by rpki-client on console-fra.rpki-client.org