Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED08C96C993011EFBE4F688C762E951A.roa
File: ED08C96C993011EFBE4F688C762E951A.roa (raw, json)
Hash identifier: x4MzgfpMKHsJTljolPg5FpiOnzIRqDG9snw1yJ51mEU=
Subject key identifier: F8:B2:28:28:82:8C:EC:79:88:9E:4D:92:4E:94:92:AC:4D:5C:9F:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0105D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED08C96C993011EFBE4F688C762E951A.roa
Signing time: Sat 02 Nov 2024 15:41:29 +0000
ROA not before: Sat 02 Nov 2024 15:41:25 +0000
ROA not after: Mon 13 Jan 2025 15:41:25 +0000
asID: 135377
IP address blocks: 154.202.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67024 (0x105d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 2 15:41:25 2024 GMT
Not After : Jan 13 15:41:25 2025 GMT
Subject: CN=67264829-116f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:00:97:8e:48:90:ef:02:2f:d5:ad:b1:19:70:
fe:f9:98:45:03:62:bd:23:08:a4:4b:3a:24:88:f3:
55:4f:09:e9:c7:d1:0b:18:8c:d3:49:85:c9:6c:69:
c7:46:6e:3d:b5:11:14:d8:a8:4e:5c:5f:2b:dc:3a:
01:5f:50:de:42:71:5f:3c:22:3e:12:f6:78:ad:06:
48:3c:8a:d4:a9:6e:c2:4b:d4:67:63:ad:d2:4e:a3:
a5:d2:7b:fb:3c:1a:5c:8f:66:47:dc:23:c2:1e:35:
a3:aa:50:02:79:db:a1:88:1e:0a:c8:82:fd:5a:70:
55:5d:e6:0a:4a:f4:5f:f6:a5:47:ea:d5:c5:01:6c:
73:be:08:d8:bb:3b:55:8d:c3:f4:6a:df:17:ad:ba:
02:2d:b9:69:ae:18:2f:94:b8:9d:a4:ed:66:48:b3:
e2:c9:2c:91:ec:f7:fd:de:ea:9f:a1:8a:53:5c:3b:
2b:da:26:bf:dc:84:e0:44:1a:30:b7:f5:b8:2a:a0:
f1:50:1a:d7:4f:db:4d:67:57:64:5c:30:8b:b5:b3:
3d:a5:b1:b7:46:3c:45:fe:0b:c5:28:b0:1f:a6:a0:
b9:d7:a3:b2:d5:25:16:4d:61:04:45:fa:d1:29:4a:
d5:de:9a:7b:a4:47:f0:63:30:ac:0c:36:95:a4:f4:
63:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B2:28:28:82:8C:EC:79:88:9E:4D:92:4E:94:92:AC:4D:5C:9F:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED08C96C993011EFBE4F688C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.68.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:7c:f8:03:8e:0d:e3:3c:64:1d:76:a7:30:44:89:46:0e:64:
a4:bb:09:ae:07:0c:f5:2a:1c:27:b3:97:6c:1a:e5:dd:e3:a8:
df:24:14:5c:20:fa:cd:7a:e4:26:fa:bb:3b:c5:ce:d3:3b:7e:
a7:e1:9c:73:5b:57:4a:6c:be:c2:ab:36:6a:fe:14:f6:5d:90:
0d:ae:1c:bc:0f:14:dd:c1:a4:06:4e:be:e4:65:8f:10:9f:78:
e8:a0:ff:ac:91:6b:8d:08:3f:5e:af:00:a2:fe:9a:1c:9f:c2:
a0:53:16:74:eb:44:80:b4:aa:32:7b:18:36:80:cd:8b:4c:84:
f1:1f:ca:93:5d:9d:75:c0:73:3d:a1:f1:be:f4:ae:f2:43:80:
b4:57:12:80:d6:1a:03:aa:d0:9a:6a:58:e4:62:bb:ad:15:f6:
f8:2e:40:13:6d:66:0d:22:14:48:2b:d7:14:a6:65:e9:be:9f:
e7:1f:fe:12:f3:7c:21:56:c8:dd:e6:7f:b5:bb:c2:dd:19:89:
35:ed:4c:4d:00:3e:97:3f:49:8d:60:33:88:d8:6a:68:45:d0:
f5:46:72:9c:65:8a:ec:90:a8:f7:4d:74:33:3b:68:41:6c:c9:
a1:42:a2:e0:b0:3c:d0:5b:58:1e:ac:99:92:2d:d8:c0:65:95:
ac:04:4a:cb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQXQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTAyMTU0MTI1WhcNMjUwMTEzMTU0MTI1WjAYMRYw
FAYDVQQDEw02NzI2NDgyOS0xMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAlgCXjkiQ7wIv1a2xGXD++ZhFA2K9IwikSzokiPNVTwnpx9ELGIzTSYXJ
bGnHRm49tREU2KhOXF8r3DoBX1DeQnFfPCI+EvZ4rQZIPIrUqW7CS9RnY63STqOl
0nv7PBpcj2ZH3CPCHjWjqlACeduhiB4KyIL9WnBVXeYKSvRf9qVH6tXFAWxzvgjY
uztVjcP0at8XrboCLblprhgvlLidpO1mSLPiySyR7Pf93uqfoYpTXDsr2ia/3ITg
RBowt/W4KqDxUBrXT9tNZ1dkXDCLtbM9pbG3RjxF/gvFKLAfpqC516Oy1SUWTWEE
RfrRKUrV3pp7pEfwYzCsDDaVpPRjSwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPiy
KCiCjOx5iJ5Nkk6UkqxNXJ8UMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRDA4Qzk2Qzk5MzAxMUVGQkU0RjY4OEM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmspEMA0GCSqGSIb3DQEB
CwUAA4IBAQCcfPgDjg3jPGQddqcwRIlGDmSkuwmuBwz1Khwns5dsGuXd46jfJBRc
IPrNeuQm+rs7xc7TO36n4ZxzW1dKbL7CqzZq/hT2XZANrhy8DxTdwaQGTr7kZY8Q
n3jooP+skWuNCD9erwCi/pocn8KgUxZ060SAtKoyexg2gM2LTITxH8qTXZ11wHM9
ofG+9K7yQ4C0VxKA1hoDqtCaaljkYrutFfb4LkATbWYNIhRIK9cUpmXpvp/nH/4S
83whVsjd5n+1u8LdGYk17UxNAD6XP0mNYDOI2GpoRdD1RnKcZYrskKj3TXQzO2hB
bMmhQqLgsDzQW1gerJmSLdjAZZWsBErL
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:30 2024 by rpki-client on console-fra.rpki-client.org