Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE4BAE8951011EF8BD7538B762E951A.roa
File: EAE4BAE8951011EF8BD7538B762E951A.roa (raw, json)
Hash identifier: XIt4L/4mOdVTpHwBP+9xrQd33xPkDQOk9BFPtdTaWSA=
Subject key identifier: A7:19:14:65:8B:C5:37:4F:5D:64:3A:7F:46:05:A3:1E:E0:1E:2D:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0102C7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE4BAE8951011EF8BD7538B762E951A.roa
Signing time: Mon 28 Oct 2024 09:42:16 +0000
ROA not before: Mon 28 Oct 2024 09:42:13 +0000
ROA not after: Fri 29 Nov 2024 09:42:13 +0000
asID: 209242
IP address blocks: 154.206.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66247 (0x102c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 09:42:13 2024 GMT
Not After : Nov 29 09:42:13 2024 GMT
Subject: CN=671f5c78-ca3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b4:fb:b2:93:7f:c6:a4:89:ef:46:7a:bf:d8:
b6:a5:10:07:1c:b0:cc:7d:29:ec:43:00:70:fd:17:
16:61:40:b6:e2:f1:03:bd:a8:14:da:02:ec:f2:0a:
cb:7d:36:bf:b5:d8:86:af:f6:fe:cb:c4:2f:8e:66:
92:4b:7f:40:eb:78:7e:0f:be:21:8d:84:07:1a:09:
02:10:55:73:4f:a2:8d:cb:48:43:e6:ec:32:8f:2f:
9c:c5:ef:e8:23:e6:65:83:31:e8:69:cf:71:0f:aa:
ed:ac:7e:6f:8c:6f:2d:ce:8b:f0:65:fa:3a:56:7e:
ce:60:14:e2:6c:4c:18:eb:5b:79:c4:0d:10:82:c1:
65:fb:61:02:65:d3:1e:09:9f:b1:cf:48:5b:a4:88:
79:41:47:2f:0d:8e:5e:02:90:f8:09:42:4c:87:ef:
6c:9d:02:30:39:3b:ee:d8:70:62:29:6f:8d:73:36:
c6:43:97:94:6a:86:a9:cb:a9:d7:8f:86:95:93:fc:
fd:d1:a4:ac:40:8c:8c:08:6e:53:c5:6a:a3:e1:d1:
de:78:44:6b:76:d7:be:d0:5d:df:fa:e5:49:5f:2f:
cd:d4:50:fd:59:24:92:88:1d:e0:94:7f:12:09:9e:
5c:fc:54:58:ea:84:68:26:ac:d6:65:61:b5:c5:1d:
b2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:19:14:65:8B:C5:37:4F:5D:64:3A:7F:46:05:A3:1E:E0:1E:2D:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE4BAE8951011EF8BD7538B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.12.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:4e:6e:36:6e:25:4c:4b:cc:86:21:bb:21:6b:7d:e7:67:00:
46:7b:0c:76:b3:75:6b:b1:53:b9:e2:99:08:cf:c0:ff:ae:29:
1f:55:e2:7b:cd:18:9c:40:c3:03:50:70:9e:32:15:60:8e:69:
8b:25:bc:05:54:3f:9c:bb:bd:05:9c:e6:c0:97:f7:52:94:d6:
bb:d3:15:24:47:d3:4a:ff:7f:ff:c4:27:2d:7a:2b:68:f8:b4:
0b:a4:4c:d6:8c:1b:1e:bf:4d:5b:b9:c5:c3:dc:87:d2:ef:c4:
e3:bd:1e:39:c4:a2:a3:d5:94:bc:35:2f:a3:16:64:33:e2:a9:
9f:50:cc:ae:cd:45:26:cb:c2:33:be:76:c6:91:fd:41:c9:98:
7e:11:53:19:8e:23:1d:5c:15:b3:a4:f6:dc:ee:7f:9c:0e:74:
2e:51:d1:73:40:94:b8:04:c5:58:af:4d:49:a0:9d:a1:d0:9f:
a9:3b:e6:d0:2f:51:c1:73:bc:de:a0:8d:e7:1c:b3:a3:d0:be:
8d:bd:8e:cc:61:77:0d:9f:b1:ca:99:f8:3f:19:8f:25:c8:d5:
28:c5:f5:eb:00:12:17:b7:c3:c4:ab:1b:80:e4:29:44:09:ce:
94:ac:fc:55:f9:e6:9a:b9:4b:b7:4e:9d:67:74:87:e3:a0:a3:
f3:9b:a1:11
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQLHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI4MDk0MjEzWhcNMjQxMTI5MDk0MjEzWjAYMRYw
FAYDVQQDEw02NzFmNWM3OC1jYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyrT7spN/xqSJ70Z6v9i2pRAHHLDMfSnsQwBw/RcWYUC24vEDvagU2gLs
8grLfTa/tdiGr/b+y8QvjmaSS39A63h+D74hjYQHGgkCEFVzT6KNy0hD5uwyjy+c
xe/oI+ZlgzHoac9xD6rtrH5vjG8tzovwZfo6Vn7OYBTibEwY61t5xA0QgsFl+2EC
ZdMeCZ+xz0hbpIh5QUcvDY5eApD4CUJMh+9snQIwOTvu2HBiKW+NczbGQ5eUaoap
y6nXj4aVk/z90aSsQIyMCG5TxWqj4dHeeERrdte+0F3f+uVJXy/N1FD9WSSSiB3g
lH8SCZ5c/FRY6oRoJqzWZWG1xR2yZQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKcZ
FGWLxTdPXWQ6f0YFox7gHi0AMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQUU0QkFFODk1MTAxMUVGOEJENzUzOEI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4MMA0GCSqGSIb3DQEB
CwUAA4IBAQAsTm42biVMS8yGIbsha33nZwBGewx2s3VrsVO54pkIz8D/rikfVeJ7
zRicQMMDUHCeMhVgjmmLJbwFVD+cu70FnObAl/dSlNa70xUkR9NK/3//xCcteito
+LQLpEzWjBsev01bucXD3IfS78TjvR45xKKj1ZS8NS+jFmQz4qmfUMyuzUUmy8Iz
vnbGkf1ByZh+EVMZjiMdXBWzpPbc7n+cDnQuUdFzQJS4BMVYr01JoJ2h0J+pO+bQ
L1HBc7zeoI3nHLOj0L6NvY7MYXcNn7HKmfg/GY8lyNUoxfXrABIXt8PEqxuA5ClE
Cc6UrPxV+eaauUu3Tp1ndIfjoKPzm6ER
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:30 2024 by rpki-client on console-fra.rpki-client.org