Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B0C64A2311311EF9DF52974762E951A.roa
File: 7B0C64A2311311EF9DF52974762E951A.roa (raw, json)
Hash identifier: WG40UUSKoqzEw1P71XC3XNsyk16QuHlFUi2KqP5Fyx4=
Subject key identifier: ED:DA:6C:89:89:2B:D5:48:1E:89:30:5A:FF:1B:DF:87:68:16:91:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C5A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B0C64A2311311EF9DF52974762E951A.roa
Signing time: Sun 23 Jun 2024 03:48:41 +0000
ROA not before: Sun 23 Jun 2024 03:48:38 +0000
ROA not after: Fri 26 Jul 2024 03:48:38 +0000
asID: 18013
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 30 Jun 2024 00:05:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50601 (0xc5a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 03:48:38 2024 GMT
Not After : Jul 26 03:48:38 2024 GMT
Subject: CN=66779b19-8a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:59:cd:f9:f1:2a:55:b4:c8:49:3b:40:ee:21:
1b:46:82:4f:e9:f4:1b:d2:fc:dd:8b:12:46:56:4f:
4c:f0:fa:a1:b3:a7:31:3c:ef:70:8e:69:01:06:90:
de:02:e5:db:53:2c:50:09:aa:a2:a6:4c:d0:19:e4:
76:b9:5b:89:f3:6d:aa:5a:de:58:a0:7a:e0:cc:c1:
9b:f9:c0:b7:e6:81:6f:61:14:2c:7d:60:86:e4:02:
59:e5:1e:e4:41:c0:f7:b7:df:74:10:68:1a:80:d4:
78:41:13:08:6c:89:23:35:8b:d3:d0:9f:74:30:0e:
c2:e2:fd:67:3c:ef:6f:5e:3c:07:f5:30:aa:82:41:
6d:f7:50:b7:f9:04:a6:eb:56:fd:b3:7d:5e:b8:9c:
71:13:60:d2:87:23:bd:8d:4c:39:18:df:ae:61:0d:
e8:95:1e:f2:ba:59:13:b3:f1:c8:68:7d:96:39:bf:
7a:de:3b:54:f3:11:90:3d:bb:0b:af:7c:b1:0c:17:
2d:fe:f2:99:a6:4a:4e:dc:92:97:77:8e:65:df:22:
c2:2e:32:b7:cc:18:23:92:fc:95:67:06:26:85:a7:
8e:c8:bd:f2:44:ec:d6:08:2f:e2:28:fa:91:98:6f:
61:39:dd:7f:0a:8a:f5:4e:5f:d4:3d:a3:d0:ae:db:
db:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DA:6C:89:89:2B:D5:48:1E:89:30:5A:FF:1B:DF:87:68:16:91:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B0C64A2311311EF9DF52974762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:d6:1c:7d:b8:d3:df:e7:93:7c:04:2b:20:3b:4c:d7:15:ea:
c1:c1:ec:1e:03:69:4c:3b:89:fe:16:ad:4c:84:e5:c8:b8:27:
2e:29:c3:f3:23:ba:bb:e6:ab:c9:0a:53:a9:e7:30:e9:b3:cb:
0e:47:6a:05:f6:20:5c:10:b5:4b:d7:6d:be:5f:b8:50:09:1d:
be:12:88:c7:19:99:ab:1f:2f:3b:3a:5d:e9:d1:f1:05:e6:37:
18:a6:c3:9e:18:dd:4a:2c:b6:ce:75:12:07:10:95:f3:99:02:
d0:05:cc:57:52:ce:c9:41:1c:f1:c7:75:4a:29:83:05:a5:22:
a6:2e:00:22:12:4c:6b:94:19:e9:6b:15:c6:0f:c8:a8:f1:a1:
61:65:b1:e5:79:e3:5c:80:aa:fe:d4:8d:1f:88:be:89:7d:ec:
4a:24:8e:9e:92:77:bd:65:8e:8e:7b:d3:82:0a:c0:8e:41:4e:
86:29:42:41:75:99:5e:b2:51:c7:05:e1:86:3e:f0:92:9b:d7:
59:6a:7f:bd:20:14:74:4c:ff:20:e6:4b:f9:c1:ec:8a:72:f6:
7e:0d:85:da:d9:48:b5:e4:8b:09:c4:7d:9a:ae:6b:f5:62:7b:
82:7b:0a:91:b4:8f:0b:f5:3e:90:4e:6d:dd:0a:0c:94:c6:3c:
cc:be:bd:8e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAMWpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNjIzMDM0ODM4WhcNMjQwNzI2MDM0ODM4WjAYMRYw
FAYDVQQDEw02Njc3OWIxOS04YTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5VnN+fEqVbTISTtA7iEbRoJP6fQb0vzdixJGVk9M8Pqhs6cxPO9wjmkB
BpDeAuXbUyxQCaqipkzQGeR2uVuJ822qWt5YoHrgzMGb+cC35oFvYRQsfWCG5AJZ
5R7kQcD3t990EGgagNR4QRMIbIkjNYvT0J90MA7C4v1nPO9vXjwH9TCqgkFt91C3
+QSm61b9s31euJxxE2DShyO9jUw5GN+uYQ3olR7yulkTs/HIaH2WOb963jtU8xGQ
PbsLr3yxDBct/vKZpkpO3JKXd45l3yLCLjK3zBgjkvyVZwYmhaeOyL3yROzWCC/i
KPqRmG9hOd1/Cor1Tl/UPaPQrtvbOQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO3a
bImJK9VIHokwWv8b34doFpGcMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QjBDNjRBMjMxMTMxMUVGOURGNTI5NzQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmslAMA0GCSqGSIb3DQEB
CwUAA4IBAQAv1hx9uNPf55N8BCsgO0zXFerBweweA2lMO4n+Fq1MhOXIuCcuKcPz
I7q75qvJClOp5zDps8sOR2oF9iBcELVL122+X7hQCR2+EojHGZmrHy87Ol3p0fEF
5jcYpsOeGN1KLLbOdRIHEJXzmQLQBcxXUs7JQRzxx3VKKYMFpSKmLgAiEkxrlBnp
axXGD8io8aFhZbHleeNcgKr+1I0fiL6JfexKJI6ekne9ZY6Oe9OCCsCOQU6GKUJB
dZleslHHBeGGPvCSm9dZan+9IBR0TP8g5kv5weyKcvZ+DYXa2Ui15IsJxH2armv1
YnuCewqRtI8L9T6QTm3dCgyUxjzMvr2O
-----END CERTIFICATE-----
Generated at Fri Jun 28 15:43:55 2024 by rpki-client on console-fra.rpki-client.org