Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F813610492E211EFAC0E464E762E951A.roa
File: F813610492E211EFAC0E464E762E951A.roa (raw, json)
Hash identifier: JPpdbLTC4meeViYUsfU3IcnVImisFQewlyckHcIjiwY=
Subject key identifier: 77:A0:EA:F6:CC:A5:A0:DC:4F:7B:D2:52:09:16:70:EC:4F:E2:43:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010262
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F813610492E211EFAC0E464E762E951A.roa
Signing time: Fri 25 Oct 2024 15:08:19 +0000
ROA not before: Fri 25 Oct 2024 15:08:16 +0000
ROA not after: Mon 25 Nov 2024 15:08:16 +0000
asID: 5065
IP address blocks: 154.206.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66146 (0x10262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 25 15:08:16 2024 GMT
Not After : Nov 25 15:08:16 2024 GMT
Subject: CN=671bb463-1414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:80:ef:af:fc:df:d4:82:05:a5:46:4b:d2:6b:
e1:68:c9:a2:32:08:b5:fe:cf:d6:5e:ea:7a:38:12:
6e:4d:eb:ab:a4:b0:e0:db:29:aa:a0:64:3d:24:97:
05:31:7c:a1:07:20:b0:f1:a9:e6:73:c7:50:00:7f:
8f:8f:38:41:0f:00:d1:46:dc:4f:94:aa:47:e6:f3:
b4:bf:8f:37:88:8a:7e:68:9e:94:da:6f:7f:6a:f7:
94:c5:30:e6:69:ef:08:65:4c:e9:b2:df:31:47:e3:
0e:1a:24:bf:4e:a2:ad:b4:eb:fe:4d:fc:cd:b5:c4:
06:0b:a5:a3:2b:20:86:64:97:5a:5f:d2:11:19:49:
39:62:2f:ff:51:85:50:d4:06:a0:2c:f2:dc:13:67:
83:4c:ec:68:a3:57:28:55:10:88:e5:3c:3d:0a:a3:
77:66:e1:fe:01:3a:f3:06:4c:53:d2:f9:d8:a3:d8:
a6:50:1c:cd:19:bb:69:be:9e:bf:76:d2:82:30:94:
40:ef:8f:01:87:96:1f:17:f3:61:1a:4b:bf:29:3d:
08:f3:c3:30:75:15:8b:0b:fb:7a:8d:73:35:ed:6a:
62:29:e2:72:b7:30:96:f3:4b:60:66:01:2b:35:46:
83:35:96:cc:b9:11:d4:bb:4e:7e:8a:cc:ea:01:3d:
13:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A0:EA:F6:CC:A5:A0:DC:4F:7B:D2:52:09:16:70:EC:4F:E2:43:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F813610492E211EFAC0E464E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.36.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:e7:e9:20:97:e2:2a:d4:d3:76:9d:3f:30:16:fe:11:16:ae:
84:ac:99:08:2c:9d:89:6a:42:f4:bf:ae:a0:78:34:e1:3e:f7:
56:69:04:fa:48:71:07:72:24:78:50:ec:f5:19:ef:27:53:4d:
e1:67:69:6d:af:b1:88:b2:99:45:67:6c:20:0b:af:1e:0b:39:
72:a9:2d:44:1c:17:72:90:38:e0:f2:86:b2:de:f0:0a:55:62:
76:3f:e8:39:67:00:60:ca:db:4a:5f:59:c0:22:85:5a:dd:70:
b7:d4:2a:d9:98:bb:e7:2b:6d:05:51:a2:89:2b:62:c1:ad:f6:
16:40:1c:be:1e:aa:ce:31:be:34:ee:65:e0:bb:35:cd:4f:fe:
9d:d9:13:fe:ff:7e:97:54:e7:70:8b:a0:ca:78:3e:1a:a8:ad:
ea:b2:7e:f6:6a:d7:97:1c:97:c7:5d:2f:82:4a:a0:da:4f:86:
81:b2:42:2c:79:87:fa:63:bb:9e:32:f6:93:66:a3:f1:c8:86:
48:b5:24:de:6a:96:98:50:9f:27:4b:0e:57:b6:9c:00:4d:5d:
ae:45:7f:e2:ad:ea:1d:6b:fd:d1:eb:2e:05:52:85:e0:6b:cb:
58:bb:c8:ad:10:2b:e1:30:3e:87:a9:ac:c4:a8:62:a1:f4:0e:
53:ba:ed:36
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQJiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMDI1MTUwODE2WhcNMjQxMTI1MTUwODE2WjAYMRYw
FAYDVQQDEw02NzFiYjQ2My0xNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzoDvr/zf1IIFpUZL0mvhaMmiMgi1/s/WXup6OBJuTeurpLDg2ymqoGQ9
JJcFMXyhByCw8anmc8dQAH+PjzhBDwDRRtxPlKpH5vO0v483iIp+aJ6U2m9/aveU
xTDmae8IZUzpst8xR+MOGiS/TqKttOv+TfzNtcQGC6WjKyCGZJdaX9IRGUk5Yi//
UYVQ1AagLPLcE2eDTOxoo1coVRCI5Tw9CqN3ZuH+ATrzBkxT0vnYo9imUBzNGbtp
vp6/dtKCMJRA748Bh5YfF/NhGku/KT0I88MwdRWLC/t6jXM17WpiKeJytzCW80tg
ZgErNUaDNZbMuRHUu05+iszqAT0TVwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHeg
6vbMpaDcT3vSUgkWcOxP4kMCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GODEzNjEwNDkyRTIxMUVGQUMwRTQ2NEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms4kMA0GCSqGSIb3DQEB
CwUAA4IBAQCm5+kgl+Iq1NN2nT8wFv4RFq6ErJkILJ2JakL0v66geDThPvdWaQT6
SHEHciR4UOz1Ge8nU03hZ2ltr7GIsplFZ2wgC68eCzlyqS1EHBdykDjg8oay3vAK
VWJ2P+g5ZwBgyttKX1nAIoVa3XC31CrZmLvnK20FUaKJK2LBrfYWQBy+HqrOMb40
7mXguzXNT/6d2RP+/36XVOdwi6DKeD4aqK3qsn72ateXHJfHXS+CSqDaT4aBskIs
eYf6Y7ueMvaTZqPxyIZItSTeapaYUJ8nSw5XtpwATV2uRX/ireoda/3R6y4FUoXg
a8tYu8itECvhMD6HqazEqGKh9A5Tuu02
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:15 2024 by rpki-client on console-ams.rpki-client.org