Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB031492A44311EF84A0DF77762E951A.roa
File: EB031492A44311EF84A0DF77762E951A.roa (raw, json)
Hash identifier: wHK3YZYyXaQGY6UK2XNROVbppVygKl1r24tLt5mruD0=
Subject key identifier: 2F:F6:03:F1:A2:98:1A:6B:4A:6A:38:D8:D3:83:D4:31:B3:90:B5:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DD3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB031492A44311EF84A0DF77762E951A.roa
Signing time: Sat 16 Nov 2024 17:55:08 +0000
ROA not before: Sat 16 Nov 2024 17:55:05 +0000
ROA not after: Mon 25 Nov 2024 17:55:05 +0000
asID: 135423
IP address blocks: 154.205.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69075 (0x10dd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:55:05 2024 GMT
Not After : Nov 25 17:55:05 2024 GMT
Subject: CN=6738dc7c-079e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:c3:e7:ae:a0:8a:42:ad:33:67:1e:95:ba:
01:3c:af:fa:97:fc:3f:0f:d6:bf:52:3d:c6:35:97:
39:7a:23:ab:9d:c6:64:e8:d2:c7:dc:db:7b:a9:fc:
78:47:7e:c2:04:25:a2:b3:a8:c6:74:1f:70:6b:aa:
c0:2b:18:ff:0b:94:3d:ac:c6:64:a1:96:0d:01:45:
86:dc:d4:60:42:24:b7:ff:fa:74:f2:d4:82:bd:6e:
2c:7c:55:20:9a:45:54:2c:aa:8a:22:80:ef:f3:bb:
7b:c3:84:3f:ce:a2:ed:80:04:b8:c2:10:5b:6b:66:
e5:21:a3:13:c4:64:6c:85:c7:0d:04:31:bd:08:cf:
3b:6f:1c:6a:bb:1b:50:4d:dc:19:29:3c:0e:6b:f7:
b7:a6:af:33:00:dd:13:e0:d0:06:6f:aa:63:35:43:
9c:74:7d:93:ea:5f:b6:03:1a:3f:b4:8c:80:e7:e6:
f4:70:63:19:f6:4d:cc:f6:fe:58:84:3d:83:8f:74:
80:a7:56:48:00:a6:84:57:e9:7f:66:e7:6f:8d:d3:
9c:97:6a:54:dc:31:47:e1:57:ff:62:68:ee:c9:95:
ed:d7:a6:cc:63:f5:74:c4:2d:6f:ef:ab:cf:43:57:
c7:83:26:f8:72:71:0b:bf:6f:15:05:be:22:c9:0e:
a9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F6:03:F1:A2:98:1A:6B:4A:6A:38:D8:D3:83:D4:31:B3:90:B5:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB031492A44311EF84A0DF77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:f2:ab:95:b4:98:f3:1e:a7:e0:39:93:88:89:20:b2:9c:ed:
68:12:61:aa:15:bf:1a:76:03:ac:40:18:6f:ec:0f:c6:7d:c6:
c1:98:6e:81:a1:58:84:0e:95:e0:dc:98:4c:f5:85:b1:df:81:
0c:85:b7:b2:23:80:fb:58:5b:f4:9e:19:e0:af:18:d5:c0:5d:
63:a9:85:fa:22:84:67:10:b9:36:f2:fb:a1:93:04:04:71:ad:
db:ba:cc:bf:20:3c:f3:5d:c2:ba:b1:24:fb:47:fb:08:c5:29:
8b:97:78:c1:fd:7c:05:04:60:ae:82:bb:d9:0a:50:20:11:22:
b4:42:f8:62:32:43:20:13:03:f2:2f:fa:96:5f:f3:53:08:bc:
40:89:03:65:38:d9:ba:df:8b:d2:7b:72:88:14:67:84:15:21:
85:bc:b7:67:6d:7b:6f:25:f7:c6:f8:a9:ec:26:5f:29:28:cb:
6a:35:19:41:e1:62:c4:68:ec:c6:37:4d:6e:48:6e:07:34:9f:
aa:85:cc:39:15:bc:88:a5:ad:37:11:15:57:d7:70:26:79:a9:
ee:37:40:cd:19:0d:f9:84:d7:c0:02:ce:14:6d:7d:88:4b:0e:
bd:77:d1:ca:3b:35:98:25:7c:38:27:4b:37:9d:70:38:f3:ce:
f1:86:46:05
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ3TMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTc1NTA1WhcNMjQxMTI1MTc1NTA1WjAYMRYw
FAYDVQQDEw02NzM4ZGM3Yy0wNzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxtDD566gikKtM2celboBPK/6l/w/D9a/Uj3GNZc5eiOrncZk6NLH3Nt7
qfx4R37CBCWis6jGdB9wa6rAKxj/C5Q9rMZkoZYNAUWG3NRgQiS3//p08tSCvW4s
fFUgmkVULKqKIoDv87t7w4Q/zqLtgAS4whBba2blIaMTxGRshccNBDG9CM87bxxq
uxtQTdwZKTwOa/e3pq8zAN0T4NAGb6pjNUOcdH2T6l+2Axo/tIyA5+b0cGMZ9k3M
9v5YhD2Dj3SAp1ZIAKaEV+l/ZudvjdOcl2pU3DFH4Vf/YmjuyZXt16bMY/V0xC1v
76vPQ1fHgyb4cnELv28VBb4iyQ6pewIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC/2
A/GimBprSmo42NOD1DGzkLVPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQjAzMTQ5MkE0NDMxMUVGODRBMERGNzc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms0UMA0GCSqGSIb3DQEB
CwUAA4IBAQAK8quVtJjzHqfgOZOIiSCynO1oEmGqFb8adgOsQBhv7A/GfcbBmG6B
oViEDpXg3JhM9YWx34EMhbeyI4D7WFv0nhngrxjVwF1jqYX6IoRnELk28vuhkwQE
ca3busy/IDzzXcK6sST7R/sIxSmLl3jB/XwFBGCugrvZClAgESK0QvhiMkMgEwPy
L/qWX/NTCLxAiQNlONm634vSe3KIFGeEFSGFvLdnbXtvJffG+KnsJl8pKMtqNRlB
4WLEaOzGN01uSG4HNJ+qhcw5FbyIpa03ERVX13AmeanuN0DNGQ35hNfAAs4UbX2I
Sw69d9HKOzWYJXw4J0s3nXA4887xhkYF
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:52 2024 by rpki-client on console-fra.rpki-client.org