Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF479BA6A26F11EFB460D974762E951A.roa
File: FF479BA6A26F11EFB460D974762E951A.roa (raw, json)
Hash identifier: eKmbKt+PQ0NDG5TCR/EZWZ+NbLdBTO/UHclEWCYcqQ8=
Subject key identifier: 57:35:5F:8F:E7:EC:19:12:50:5F:99:F7:72:56:A9:16:CA:61:71:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D0E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF479BA6A26F11EFB460D974762E951A.roa
Signing time: Thu 14 Nov 2024 10:05:38 +0000
ROA not before: Thu 14 Nov 2024 10:05:34 +0000
ROA not after: Sun 24 Nov 2024 10:05:34 +0000
asID: 151800
IP address blocks: 154.197.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68878 (0x10d0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 14 10:05:34 2024 GMT
Not After : Nov 24 10:05:34 2024 GMT
Subject: CN=6735cb72-e864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:61:f1:87:73:69:80:8d:2e:87:92:20:5d:83:
a1:59:2e:49:a8:f2:38:d5:02:e7:70:2f:8f:b5:02:
60:b5:bd:06:08:e9:ea:ab:8d:14:82:28:ff:a7:b7:
e0:81:4b:ab:42:0d:b4:e2:79:c0:df:8a:a6:50:d5:
21:25:a8:a3:19:2e:78:ed:00:0d:18:22:ca:79:39:
a0:2f:a4:db:ec:e3:97:fa:19:cb:65:f7:42:52:9b:
b9:36:e5:bb:51:69:18:9b:b6:26:b7:6f:eb:aa:f1:
6a:ef:53:0c:14:3a:d9:69:e1:ba:1f:92:99:bb:15:
81:1d:4d:e7:71:02:df:04:d1:f7:5f:9f:90:41:98:
fc:d9:6d:c4:28:85:88:7d:cd:fd:9a:f6:f6:2b:ff:
14:cb:6d:d1:6e:19:92:93:ac:72:38:53:e1:a1:22:
ea:36:1c:1e:29:ce:e9:3f:a9:e5:d2:62:f8:a9:90:
f4:38:7e:86:4e:c7:03:c6:58:e4:78:73:7e:5a:e0:
0c:0a:2a:e2:4c:41:e6:fd:44:0b:0b:39:78:b9:3e:
38:ea:19:a9:f4:47:4e:21:fa:72:72:32:98:45:ff:
dd:fb:4f:eb:0a:df:08:28:4e:d8:fa:53:5a:9a:a7:
78:f8:13:6e:29:6b:72:47:09:2f:23:cf:2f:a0:73:
ad:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:35:5F:8F:E7:EC:19:12:50:5F:99:F7:72:56:A9:16:CA:61:71:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF479BA6A26F11EFB460D974762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.79.0/24
Signature Algorithm: sha256WithRSAEncryption
74:6d:6a:39:d2:e3:b7:3b:9e:c5:d1:fc:fd:d0:bd:ee:7c:14:
21:f5:cf:ec:cc:25:c7:e9:b7:dd:90:29:e3:b3:8f:44:40:7f:
ea:3c:2c:7e:cd:94:90:9a:04:c3:f3:dc:21:44:b8:ee:72:4e:
67:d9:65:c1:07:ba:eb:cd:2e:f0:47:a8:d8:58:61:0a:a7:0a:
94:78:c4:a6:31:d1:b7:17:b9:5f:71:6e:cb:44:b3:8e:0e:0d:
bc:3a:88:52:2d:47:7b:f0:31:a4:5a:aa:7d:97:e6:1b:e0:04:
79:39:24:30:bf:ad:32:02:05:44:98:60:e2:fb:e7:ed:e3:b1:
81:a2:ca:a6:a4:a3:41:5b:6a:82:00:92:f1:19:ad:67:30:31:
c5:75:73:68:f8:35:8c:88:49:7f:1c:50:a3:ea:c0:60:c6:a7:
5d:a5:4e:62:aa:5b:30:d9:b6:5b:6e:c3:9c:0d:25:74:91:19:
55:c7:e3:86:45:9b:46:7c:e5:a7:be:77:61:78:da:f3:b9:01:
55:0a:60:58:fb:36:29:03:ed:a7:5b:10:66:64:2c:54:49:f9:
a6:fb:6b:2f:05:d9:a6:d9:a7:ac:99:08:3f:a0:2a:16:a9:33:
94:13:3e:b1:00:24:de:e7:1c:d9:95:21:bc:6a:93:a1:a4:3c:
07:39:a1:3a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ0OMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE0MTAwNTM0WhcNMjQxMTI0MTAwNTM0WjAYMRYw
FAYDVQQDEw02NzM1Y2I3Mi1lODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz2Hxh3NpgI0uh5IgXYOhWS5JqPI41QLncC+PtQJgtb0GCOnqq40Ugij/
p7fggUurQg204nnA34qmUNUhJaijGS547QANGCLKeTmgL6Tb7OOX+hnLZfdCUpu5
NuW7UWkYm7Ymt2/rqvFq71MMFDrZaeG6H5KZuxWBHU3ncQLfBNH3X5+QQZj82W3E
KIWIfc39mvb2K/8Uy23RbhmSk6xyOFPhoSLqNhweKc7pP6nl0mL4qZD0OH6GTscD
xljkeHN+WuAMCiriTEHm/UQLCzl4uT446hmp9EdOIfpycjKYRf/d+0/rCt8IKE7Y
+lNamqd4+BNuKWtyRwkvI88voHOtewIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFc1
X4/n7BkSUF+Z93JWqRbKYXGiMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRjQ3OUJBNkEyNkYxMUVGQjQ2MEQ5NzQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsVPMA0GCSqGSIb3DQEB
CwUAA4IBAQB0bWo50uO3O57F0fz90L3ufBQh9c/szCXH6bfdkCnjs49EQH/qPCx+
zZSQmgTD89whRLjuck5n2WXBB7rrzS7wR6jYWGEKpwqUeMSmMdG3F7lfcW7LRLOO
Dg28OohSLUd78DGkWqp9l+Yb4AR5OSQwv60yAgVEmGDi++ft47GBosqmpKNBW2qC
AJLxGa1nMDHFdXNo+DWMiEl/HFCj6sBgxqddpU5iqlsw2bZbbsOcDSV0kRlVx+OG
RZtGfOWnvndheNrzuQFVCmBY+zYpA+2nWxBmZCxUSfmm+2svBdmm2aesmQg/oCoW
qTOUEz6xACTe5xzZlSG8apOhpDwHOaE6
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:36 2024 by rpki-client on console-ams.rpki-client.org