Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F430A01EA26011EF9EDF8B96762E951A.roa
File: F430A01EA26011EF9EDF8B96762E951A.roa (raw, json)
Hash identifier: Q9gTX/oTyzQSAb0xWDKvsqxxr0/CSoRvrW074XnPKps=
Subject key identifier: 1D:49:95:B6:2A:0D:85:DB:D4:F5:F1:D1:6E:7E:D6:DA:41:1A:33:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F430A01EA26011EF9EDF8B96762E951A.roa
Signing time: Thu 14 Nov 2024 08:17:57 +0000
ROA not before: Thu 14 Nov 2024 08:17:53 +0000
ROA not after: Sun 12 Jul 2026 08:17:53 +0000
asID: 55967
IP address blocks: 154.85.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68842 (0x10cea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 08:17:53 2024 GMT
Not After : Jul 12 08:17:53 2026 GMT
Subject: CN=6735b235-ff0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ff:12:47:6d:7a:43:9a:ea:9e:c1:ac:be:ca:
f2:b7:51:d0:bf:73:be:ca:57:bd:a7:4c:39:b5:cb:
59:86:a6:a3:52:94:22:2f:5f:23:24:65:42:65:db:
a6:2c:bc:88:bd:88:85:62:8e:76:d6:9e:a9:f2:2a:
53:99:40:4f:da:cb:d9:ec:ad:21:58:4c:7d:98:f1:
b3:af:1d:a1:d3:28:38:9f:76:ab:3a:99:bc:e9:34:
e5:32:40:2c:da:0f:8d:76:1c:31:b1:ef:83:c5:e7:
b6:91:13:f4:db:1c:70:96:6e:7d:61:6b:de:15:a0:
f2:f5:48:45:a5:01:e5:41:9f:87:22:5b:e2:54:d3:
dd:73:4d:d6:30:ee:0a:3d:4e:35:58:8a:d7:1c:fb:
ba:d1:0b:9f:a9:e7:ad:3d:43:04:a1:5d:e3:c2:7f:
1a:e2:49:ba:c6:6b:7c:61:72:dc:70:57:ec:53:1c:
98:66:f1:f8:bc:6a:c8:ec:fc:c4:ec:79:31:3e:db:
d2:47:4d:84:89:27:8b:8a:6f:d5:cb:2b:7c:85:9c:
5f:ec:1e:2a:c1:64:e8:7c:d0:58:43:93:fe:64:37:
9f:fa:76:db:fe:21:25:44:66:95:df:4b:35:85:ca:
cf:30:74:a2:76:b6:66:6f:46:12:d7:22:08:d7:a0:
b4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:49:95:B6:2A:0D:85:DB:D4:F5:F1:D1:6E:7E:D6:DA:41:1A:33:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F430A01EA26011EF9EDF8B96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.40.0/22
Signature Algorithm: sha256WithRSAEncryption
88:b9:5d:93:1d:e9:8f:20:18:71:7e:cb:d5:39:41:3e:70:26:
1f:6a:9c:35:97:8d:ed:24:e9:81:02:ad:e4:d2:1f:bc:e4:dd:
d2:70:d0:af:93:8d:50:11:ad:f3:36:d6:a0:ea:21:84:4e:22:
4f:1b:96:d2:44:78:16:03:30:32:a3:fa:38:ac:d5:56:cd:4e:
c0:4f:fd:5a:4e:3b:c4:d3:ac:19:27:cd:70:0d:e4:49:5f:1a:
34:11:f1:31:c6:7d:91:4a:b2:94:e4:9d:be:db:3a:46:59:90:
b1:19:22:e4:65:b8:9c:54:e4:30:9d:8e:65:ce:7b:ce:ea:78:
1f:6e:12:71:f7:7e:25:aa:0b:64:80:8d:68:f8:19:a9:93:b6:
07:d2:47:20:89:57:72:7d:56:cf:7b:ff:ff:55:f4:f8:1f:c6:
71:bf:47:3d:a3:18:6e:4c:89:22:a6:70:46:79:e3:b7:d5:5f:
cd:55:e4:f6:b2:f6:e1:27:6c:71:9c:8a:fe:58:63:ad:37:e0:
d9:a7:e9:ed:3d:8f:96:54:a3:39:d1:b1:af:b3:84:b7:ef:b7:
9a:36:29:7e:40:43:ec:80:fe:9d:6b:d5:f5:e9:bf:75:22:47:
cb:19:07:44:f4:7b:80:73:97:f1:2a:ba:59:09:b2:ea:ed:6d:
fc:5a:ed:bf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQzqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE0MDgxNzUzWhcNMjYwNzEyMDgxNzUzWjAYMRYw
FAYDVQQDEw02NzM1YjIzNS1mZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0P8SR216Q5rqnsGsvsryt1HQv3O+yle9p0w5tctZhqajUpQiL18jJGVC
ZdumLLyIvYiFYo521p6p8ipTmUBP2svZ7K0hWEx9mPGzrx2h0yg4n3arOpm86TTl
MkAs2g+Ndhwxse+Dxee2kRP02xxwlm59YWveFaDy9UhFpQHlQZ+HIlviVNPdc03W
MO4KPU41WIrXHPu60QufqeetPUMEoV3jwn8a4km6xmt8YXLccFfsUxyYZvH4vGrI
7PzE7HkxPtvSR02EiSeLim/Vyyt8hZxf7B4qwWTofNBYQ5P+ZDef+nbb/iElRGaV
30s1hcrPMHSidrZmb0YS1yII16C0PQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB1J
lbYqDYXb1PXx0W5+1tpBGjMZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNDMwQTAxRUEyNjAxMUVGOUVERjhCOTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlUoMA0GCSqGSIb3DQEB
CwUAA4IBAQCIuV2THemPIBhxfsvVOUE+cCYfapw1l43tJOmBAq3k0h+85N3ScNCv
k41QEa3zNtag6iGETiJPG5bSRHgWAzAyo/o4rNVWzU7AT/1aTjvE06wZJ81wDeRJ
Xxo0EfExxn2RSrKU5J2+2zpGWZCxGSLkZbicVOQwnY5lznvO6ngfbhJx934lqgtk
gI1o+Bmpk7YH0kcgiVdyfVbPe///VfT4H8Zxv0c9oxhuTIkipnBGeeO31V/NVeT2
svbhJ2xxnIr+WGOtN+DZp+ntPY+WVKM50bGvs4S377eaNil+QEPsgP6da9X16b91
IkfLGQdE9HuAc5fxKrpZCbLq7W38Wu2/
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:54 2024 by rpki-client on console-fra.rpki-client.org