Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCAADA45F0511EFAA58E69F762E951A.roa
File: FBCAADA45F0511EFAA58E69F762E951A.roa (raw, json)
Hash identifier: f8QATkoDybf8YATvqwjMFbpvhNloAuTk9WQXlsY/S1Y=
Subject key identifier: A7:8A:52:8B:67:D2:91:2F:BE:B0:4D:BF:A0:FB:A7:D3:26:ED:F9:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E2AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCAADA45F0511EFAA58E69F762E951A.roa
Signing time: Tue 20 Aug 2024 15:07:58 +0000
ROA not before: Tue 20 Aug 2024 15:07:54 +0000
ROA not after: Tue 01 Sep 2026 15:07:54 +0000
asID: 45753
IP address blocks: 154.212.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58026 (0xe2aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 20 15:07:54 2024 GMT
Not After : Sep 1 15:07:54 2026 GMT
Subject: CN=66c4b14d-c77b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:dc:97:39:90:44:41:b5:a8:07:f0:12:2c:
fe:5b:54:34:83:c1:86:64:ee:35:a6:72:d7:fc:ae:
a8:a5:22:b8:79:44:79:f6:75:60:15:90:15:82:8f:
39:19:a9:77:ae:ca:06:a0:e1:91:e0:02:5a:32:85:
ba:7c:3c:19:0c:df:ff:89:9f:e0:6e:4a:b1:9d:ab:
e6:60:18:69:64:3b:1c:9f:21:0e:b0:33:48:c7:0f:
f3:9e:21:22:c0:5d:7e:b4:b7:7e:a6:74:c6:fd:ad:
6d:73:af:55:02:10:66:1d:90:d8:4a:6d:06:0c:c8:
e0:e9:a9:51:73:d3:12:31:e0:ea:40:6a:20:cd:9a:
20:3d:17:80:ef:66:4b:64:36:13:ad:22:1a:7c:a5:
42:54:c9:0b:b9:3c:61:c7:c2:78:14:ad:7a:8e:ba:
a5:a7:a2:00:74:ea:c0:15:4e:72:ef:ae:01:53:da:
c3:31:27:9d:df:c8:7e:4e:de:a1:33:fc:b2:40:e1:
6a:a6:11:07:aa:05:9b:50:b9:ab:13:fc:f1:d9:f0:
e8:16:1e:85:80:2c:62:66:92:71:11:ca:87:7f:6b:
c8:3a:5e:42:0b:65:57:7f:5e:ae:42:8d:fc:5e:7e:
7e:5d:af:85:eb:14:84:ff:76:b4:a9:3e:68:dd:f3:
9c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8A:52:8B:67:D2:91:2F:BE:B0:4D:BF:A0:FB:A7:D3:26:ED:F9:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FBCAADA45F0511EFAA58E69F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.161.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9a:7b:8b:b1:73:17:8d:ab:7e:63:15:a3:07:37:f0:60:f5:
ff:a5:fb:44:d6:e2:4c:50:c8:9a:cf:f4:bb:2a:76:8e:c7:d9:
4f:67:c4:64:8a:0a:a7:e3:5c:f7:84:52:f2:b9:8a:db:b6:a5:
31:44:9e:5c:da:77:cc:f7:fb:a7:ef:bb:36:2c:3c:bf:93:6a:
1e:90:3b:6b:1e:77:e5:06:5e:6e:09:29:bc:b5:b7:6f:02:f7:
2b:fe:a2:5c:1e:e5:78:e0:c3:2d:01:d3:a6:56:bf:fe:a1:7b:
7f:dc:3e:e8:bf:dc:39:bf:b3:f8:3b:3a:bf:3a:97:4a:79:db:
91:03:b2:bf:e9:f2:b3:ed:7a:36:1f:84:ba:a4:65:be:19:17:
40:50:f4:6d:d4:ee:7e:3f:d2:78:1d:6d:ef:57:b0:de:fa:8b:
d4:64:56:48:c6:2d:ac:7e:f6:4e:9a:d3:a3:db:b0:9a:e5:39:
be:18:27:bb:c5:3d:1a:12:d7:65:3e:69:69:62:40:2b:3d:cf:
ba:09:ce:62:ac:aa:96:c2:8e:0f:d9:a1:fb:a8:f7:94:b7:49:
24:ec:9d:e4:42:4d:90:61:28:5f:4e:30:c6:6b:dd:fd:4c:8f:
fa:c9:bd:e7:51:3a:56:f5:1b:40:d2:e6:55:d4:6b:80:ed:bd:
f1:99:96:12
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAOKqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwODIwMTUwNzU0WhcNMjYwOTAxMTUwNzU0WjAYMRYw
FAYDVQQDEw02NmM0YjE0ZC1jNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAr2rclzmQREG1qAfwEiz+W1Q0g8GGZO41pnLX/K6opSK4eUR59nVgFZAV
go85Gal3rsoGoOGR4AJaMoW6fDwZDN//iZ/gbkqxnavmYBhpZDscnyEOsDNIxw/z
niEiwF1+tLd+pnTG/a1tc69VAhBmHZDYSm0GDMjg6alRc9MSMeDqQGogzZogPReA
72ZLZDYTrSIafKVCVMkLuTxhx8J4FK16jrqlp6IAdOrAFU5y764BU9rDMSed38h+
Tt6hM/yyQOFqphEHqgWbULmrE/zx2fDoFh6FgCxiZpJxEcqHf2vIOl5CC2VXf16u
Qo38Xn5+Xa+F6xSE/3a0qT5o3fOcFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKeK
Uotn0pEvvrBNv6D7p9Mm7flAMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GQkNBQURBNDVGMDUxMUVGQUE1OEU2OUY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtShMA0GCSqGSIb3DQEB
CwUAA4IBAQAImnuLsXMXjat+YxWjBzfwYPX/pftE1uJMUMiaz/S7KnaOx9lPZ8Rk
igqn41z3hFLyuYrbtqUxRJ5c2nfM9/un77s2LDy/k2oekDtrHnflBl5uCSm8tbdv
Avcr/qJcHuV44MMtAdOmVr/+oXt/3D7ov9w5v7P4Ozq/OpdKeduRA7K/6fKz7Xo2
H4S6pGW+GRdAUPRt1O5+P9J4HW3vV7De+ovUZFZIxi2sfvZOmtOj27Ca5Tm+GCe7
xT0aEtdlPmlpYkArPc+6Cc5irKqWwo4P2aH7qPeUt0kk7J3kQk2QYShfTjDGa939
TI/6yb3nUTpW9RtA0uZV1GuA7b3xmZYS
-----END CERTIFICATE-----
Generated at Fri Nov 22 11:16:44 2024 by rpki-client on console-fra.rpki-client.org