Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F124885674CD11EF89CFEE4A762E951A.roa
File: F124885674CD11EF89CFEE4A762E951A.roa (raw, json)
Hash identifier: plk794ymccLtqDclbudNbyrR6OaNiGO1Ga2IOeiO2Io=
Subject key identifier: 17:8D:EA:DB:0E:7E:CD:CA:BF:7B:C6:A2:5C:9A:8B:64:B1:F4:2E:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EFFE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F124885674CD11EF89CFEE4A762E951A.roa
Signing time: Tue 17 Sep 2024 08:22:13 +0000
ROA not before: Tue 17 Sep 2024 08:22:10 +0000
ROA not after: Sat 30 Nov 2024 08:22:10 +0000
asID: 142403
IP address blocks: 154.209.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61438 (0xeffe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:22:10 2024 GMT
Not After : Nov 30 08:22:10 2024 GMT
Subject: CN=66e93c35-363a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d9:28:d6:88:77:38:a3:c3:98:39:91:23:ce:
82:d0:82:a7:bf:3f:a9:14:b2:4a:05:c7:51:df:73:
8c:b0:d5:d1:8c:db:8a:ab:22:ed:0e:10:c3:a5:f4:
cc:e1:2b:26:9a:52:53:a8:29:38:b0:05:ec:10:1d:
09:01:0e:50:b4:a1:de:96:4f:bc:37:54:c7:8a:59:
79:11:40:1d:4a:69:ca:5f:b3:9d:15:41:30:b5:20:
7a:c2:4b:4e:63:35:70:78:8d:a7:70:90:46:91:d7:
58:c3:b0:24:c4:b6:8b:26:5d:e9:a5:5c:20:fd:4f:
c2:19:6b:54:b7:44:2f:a8:7b:78:4d:6b:a7:60:3c:
a0:d9:b1:83:66:63:56:77:ed:8d:b3:9f:89:9c:35:
b6:aa:a0:b9:43:fb:37:20:18:b4:b8:1c:f9:b8:e8:
19:b6:9f:c8:ac:f0:11:17:71:46:91:84:c3:ee:b5:
cb:06:29:b9:d9:81:20:f7:0e:d3:53:ac:68:5d:53:
3f:9a:19:fa:40:55:5d:66:06:44:07:70:64:5b:98:
35:b4:6c:6b:de:81:ab:1e:62:bf:4f:74:0a:1b:3d:
ac:58:66:5d:19:68:33:ca:e3:e5:b1:07:d4:b9:90:
0a:89:26:7d:7b:a5:14:9b:8e:d0:6a:4d:98:46:46:
4c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8D:EA:DB:0E:7E:CD:CA:BF:7B:C6:A2:5C:9A:8B:64:B1:F4:2E:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F124885674CD11EF89CFEE4A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.4.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:7c:c2:11:70:9d:b3:67:a6:cf:29:6a:27:fe:b8:96:0e:0f:
2c:9c:4c:04:39:43:5f:45:91:40:47:db:8f:0b:0a:23:78:eb:
59:2d:c0:77:99:34:dc:81:45:28:66:85:02:ed:a1:c9:48:fe:
3f:14:99:a5:7a:b6:7f:3a:0a:06:4f:90:34:d4:c6:24:57:15:
e0:13:99:63:ed:bf:e6:e1:f9:ad:5e:28:8b:57:79:f0:a2:2a:
b2:be:4f:78:c7:00:d4:2a:56:02:d0:13:b5:88:9f:01:48:42:
9a:18:7f:2e:fd:44:48:2b:17:e3:1a:ff:11:8d:a2:7f:14:4a:
68:0d:e3:ca:c6:44:19:88:0e:cb:1c:a4:ad:22:b3:7c:63:26:
d1:a2:60:a5:e2:62:23:a4:f3:39:cd:55:5c:e8:50:ef:1a:7c:
da:a6:a8:e7:e6:1a:c3:f6:ab:ef:b9:e7:b7:de:d4:f5:dd:ca:
5b:20:c1:7e:76:02:17:10:6b:47:c6:8c:86:5d:97:4b:14:a4:
5c:c2:38:6c:31:6c:7e:8f:ae:18:46:87:be:db:85:ba:79:07:
b8:fb:35:46:b8:9f:1b:3d:47:06:5c:6a:83:52:51:7f:2c:9b:
61:da:5b:40:32:96:41:db:44:b7:f8:90:c5:f5:f8:7d:74:90:
28:74:ef:a4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO/+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE3MDgyMjEwWhcNMjQxMTMwMDgyMjEwWjAYMRYw
FAYDVQQDEw02NmU5M2MzNS0zNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmtko1oh3OKPDmDmRI86C0IKnvz+pFLJKBcdR33OMsNXRjNuKqyLtDhDD
pfTM4SsmmlJTqCk4sAXsEB0JAQ5QtKHelk+8N1THill5EUAdSmnKX7OdFUEwtSB6
wktOYzVweI2ncJBGkddYw7AkxLaLJl3ppVwg/U/CGWtUt0QvqHt4TWunYDyg2bGD
ZmNWd+2Ns5+JnDW2qqC5Q/s3IBi0uBz5uOgZtp/IrPARF3FGkYTD7rXLBim52YEg
9w7TU6xoXVM/mhn6QFVdZgZEB3BkW5g1tGxr3oGrHmK/T3QKGz2sWGZdGWgzyuPl
sQfUuZAKiSZ9e6UUm47Qak2YRkZMBQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBeN
6tsOfs3Kv3vGolyai2Sx9C6iMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GMTI0ODg1Njc0Q0QxMUVGODlDRkVFNEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtEEMA0GCSqGSIb3DQEB
CwUAA4IBAQBLfMIRcJ2zZ6bPKWon/riWDg8snEwEOUNfRZFAR9uPCwojeOtZLcB3
mTTcgUUoZoUC7aHJSP4/FJmlerZ/OgoGT5A01MYkVxXgE5lj7b/m4fmtXiiLV3nw
oiqyvk94xwDUKlYC0BO1iJ8BSEKaGH8u/URIKxfjGv8RjaJ/FEpoDePKxkQZiA7L
HKStIrN8YybRomCl4mIjpPM5zVVc6FDvGnzapqjn5hrD9qvvuee33tT13cpbIMF+
dgIXEGtHxoyGXZdLFKRcwjhsMWx+j64YRoe+24W6eQe4+zVGuJ8bPUcGXGqDUlF/
LJth2ltAMpZB20S3+JDF9fh9dJAodO+k
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:34 2024 by rpki-client on console-ams.rpki-client.org