Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0E667AAB0FC11EE9D6B7859775412E6.roa
File: F0E667AAB0FC11EE9D6B7859775412E6.roa (raw, json)
Hash identifier: b8JL7QdB64gX8Y6c3CDx+D/FcPkVxemS+Kpvtcv0a7s=
Subject key identifier: 55:70:06:82:C9:94:13:DD:E7:17:9B:BB:F3:38:2A:ED:37:4D:A2:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7471
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0E667AAB0FC11EE9D6B7859775412E6.roa
Signing time: Fri 12 Jan 2024 03:44:51 +0000
ROA not before: Fri 12 Jan 2024 03:44:48 +0000
ROA not after: Fri 13 Dec 2024 03:44:48 +0000
asID: 140224
IP address blocks: 154.205.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29809 (0x7471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 12 03:44:48 2024 GMT
Not After : Dec 13 03:44:48 2024 GMT
Subject: CN=65a0b5b3-25f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f4:8a:44:91:29:08:87:5d:60:30:fe:d2:c4:
37:14:4d:3c:8d:7d:6e:37:ee:1f:fc:8e:72:11:1a:
8f:bd:1e:d8:db:62:a6:5a:4b:53:aa:66:3b:9f:b9:
1a:74:5e:06:61:2e:34:59:ca:e8:0c:84:5b:e1:32:
9d:c2:63:f9:26:ef:2d:b8:cd:bd:04:8a:2b:a7:fb:
a8:00:6a:df:d6:7d:91:52:3c:49:2b:cf:41:84:69:
93:15:6e:7d:9f:cb:5e:76:6e:fd:1a:86:cc:1d:bd:
d4:76:f6:c1:a8:fa:2e:69:23:e6:d7:0e:d4:a5:61:
26:51:84:3d:4a:e7:45:b1:12:6e:79:3c:9d:4b:cc:
34:c2:be:ee:56:a7:01:d1:65:b5:53:67:14:53:93:
f9:a8:9a:5c:c1:fd:fa:eb:ec:21:ae:32:ce:63:59:
69:36:a7:d5:67:34:d2:f0:58:af:83:41:89:99:cc:
1e:ef:4b:a9:e6:96:ad:d6:85:42:e6:57:66:09:c1:
85:22:6a:0e:54:99:73:96:0b:cf:f5:b2:83:c9:09:
b4:f0:28:2a:5d:d5:cc:6f:ed:36:1e:f3:0b:3b:82:
63:c2:99:d6:5a:57:f4:5d:10:77:97:55:d5:fd:35:
ed:64:0d:7d:98:8b:b7:34:0a:74:21:bd:d3:86:f5:
1b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:70:06:82:C9:94:13:DD:E7:17:9B:BB:F3:38:2A:ED:37:4D:A2:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F0E667AAB0FC11EE9D6B7859775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.193.0/24
Signature Algorithm: sha256WithRSAEncryption
46:e1:96:ef:db:15:fa:64:13:69:44:45:64:2a:b6:49:d4:76:
28:36:fc:1a:4e:74:99:6b:e6:54:58:eb:57:34:5b:7e:1b:ef:
8b:55:f0:c7:c0:7e:18:63:0c:8b:24:12:72:17:ab:f1:3d:cd:
e3:74:a7:0e:2a:3f:fa:fc:b8:c1:a3:84:06:9b:c0:15:f0:25:
a2:d1:ec:45:03:e5:3f:60:3c:98:bd:84:21:84:a0:6c:4f:71:
03:66:6b:cc:29:7d:3d:5e:ec:31:49:57:93:b9:a3:0c:bd:7a:
e4:6d:3f:bf:c5:45:5e:21:5b:31:fc:cb:7a:0f:eb:d2:28:df:
77:8b:2f:40:dd:c9:4b:6c:b1:7e:45:7a:65:b5:44:34:fa:8b:
1b:9e:f6:17:71:d7:10:13:1b:ed:1b:a0:51:d6:de:cf:28:21:
9f:da:d4:f1:0d:d5:1c:5a:ee:94:50:d5:da:07:72:62:62:f4:
eb:37:e5:7d:c1:fc:f5:ab:83:c0:09:28:b2:5e:b6:98:51:20:
ee:6b:a5:cf:3d:3c:92:38:4a:54:72:44:84:d4:76:f0:6c:ac:
69:a6:a1:18:8a:59:95:a0:ad:77:db:c0:b1:be:60:c1:53:44:
ca:da:ef:59:33:2f:01:cf:9a:ae:8e:01:5f:71:9e:35:e2:c7:
9b:38:97:0c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICdHEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yNDAxMTIwMzQ0NDhaFw0yNDEyMTMwMzQ0NDhaMBgxFjAU
BgNVBAMTDTY1YTBiNWIzLTI1ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCr9IpEkSkIh11gMP7SxDcUTTyNfW437h/8jnIRGo+9HtjbYqZaS1OqZjuf
uRp0XgZhLjRZyugMhFvhMp3CY/km7y24zb0Eiiun+6gAat/WfZFSPEkrz0GEaZMV
bn2fy152bv0ahswdvdR29sGo+i5pI+bXDtSlYSZRhD1K50WxEm55PJ1LzDTCvu5W
pwHRZbVTZxRTk/momlzB/frr7CGuMs5jWWk2p9VnNNLwWK+DQYmZzB7vS6nmlq3W
hULmV2YJwYUiag5UmXOWC8/1soPJCbTwKCpd1cxv7TYe8ws7gmPCmdZaV/RdEHeX
VdX9Ne1kDX2Yi7c0CnQhvdOG9RvdAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUVXAG
gsmUE93nF5u78zgq7TdNorYwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4L0YwRTY2N0FBQjBGQzExRUU5RDZCNzg1OTc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACazcEwDQYJKoZIhvcNAQEL
BQADggEBAEbhlu/bFfpkE2lERWQqtknUdig2/BpOdJlr5lRY61c0W34b74tV8MfA
fhhjDIskEnIXq/E9zeN0pw4qP/r8uMGjhAabwBXwJaLR7EUD5T9gPJi9hCGEoGxP
cQNma8wpfT1e7DFJV5O5owy9euRtP7/FRV4hWzH8y3oP69Io33eLL0DdyUtssX5F
emW1RDT6ixue9hdx1xATG+0boFHW3s8oIZ/a1PEN1Rxa7pRQ1doHcmJi9Os35X3B
/PWrg8AJKLJetphRIO5rpc89PJI4SlRyRITUdvBsrGmmoRiKWZWgrXfbwLG+YMFT
RMra71kzLwHPmq6OAV9xnjXix5s4lww=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:34 2024 by rpki-client on console-ams.rpki-client.org