Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/75D45A244FC511EEA3EDD8174AD9E6FC.roa
File: 75D45A244FC511EEA3EDD8174AD9E6FC.roa (raw, json)
Hash identifier: AJ4mpEAFqwRW0zNhqToyH/o3VDekL5cnxNgO66h89sY=
Subject key identifier: 7A:07:40:68:F8:7D:35:8E:44:C1:66:0F:1E:D5:3F:74:63:35:C6:09
Certificate issuer: /CN=F367D0C5AF/serialNumber=569245EDF8EF53DD25E0095A12485B170F10EC3E
Certificate serial: F6
Authority key identifier: 56:92:45:ED:F8:EF:53:DD:25:E0:09:5A:12:48:5B:17:0F:10:EC:3E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VpJF7fjvU90l4AlaEkhbFw8Q7D4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/75D45A244FC511EEA3EDD8174AD9E6FC.roa
Signing time: Sun 10 Sep 2023 10:33:20 +0000
ROA not before: Sun 10 Sep 2023 10:33:16 +0000
ROA not after: Thu 10 Sep 2026 10:33:16 +0000
asID: 37284
IP address blocks: 154.127.64.0/20 maxlen: 27
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/VpJF7fjvU90l4AlaEkhbFw8Q7D4.crl
rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/VpJF7fjvU90l4AlaEkhbFw8Q7D4.mft
rsync://rpki.afrinic.net/repository/afrinic/VpJF7fjvU90l4AlaEkhbFw8Q7D4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246 (0xf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367D0C5AF/serialNumber=569245EDF8EF53DD25E0095A12485B170F10EC3E
Validity
Not Before: Sep 10 10:33:16 2023 GMT
Not After : Sep 10 10:33:16 2026 GMT
Subject: CN=64fd9b70-75f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a3:50:40:d5:19:18:22:45:c6:82:18:ac:1c:
0c:84:82:e8:2a:a2:55:a7:47:80:05:37:d3:57:4a:
f1:b3:41:40:43:58:ba:d2:4d:c6:83:19:0c:4d:35:
e5:f1:dc:ca:0e:d3:45:b3:7e:bd:be:9a:c7:23:20:
8a:bd:6e:6c:38:da:20:80:da:77:64:4b:54:92:ef:
3e:e6:3d:65:47:d3:3c:be:a5:5a:43:81:6a:6c:83:
4e:51:1e:4b:b9:3c:28:e7:0b:52:cf:aa:66:24:98:
eb:16:4e:f8:16:7e:c7:a0:ca:28:eb:fd:11:be:c0:
ad:a2:f5:8a:7d:e8:c8:f3:fe:a7:12:b7:f7:39:11:
d1:02:c5:c4:95:32:c1:88:30:4c:b1:52:a7:8a:83:
87:77:e1:d4:1f:c7:e4:32:84:ef:ac:58:57:8e:0a:
49:29:5b:b6:4c:50:e5:14:03:20:41:94:e6:5f:c7:
e2:1b:95:91:46:0e:a5:9a:89:0e:4b:fe:e6:12:ed:
68:2e:67:43:7a:3a:9a:48:5f:31:74:ac:44:79:a0:
70:7d:c6:b7:bf:35:4a:f0:60:48:70:81:90:e0:d5:
40:51:bd:26:9a:79:93:d0:ed:3a:b3:e9:e1:73:12:
1e:58:be:14:ef:0e:ed:77:4a:7b:ff:e7:97:d9:d4:
5e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:07:40:68:F8:7D:35:8E:44:C1:66:0F:1E:D5:3F:74:63:35:C6:09
X509v3 Authority Key Identifier:
keyid:56:92:45:ED:F8:EF:53:DD:25:E0:09:5A:12:48:5B:17:0F:10:EC:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/VpJF7fjvU90l4AlaEkhbFw8Q7D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VpJF7fjvU90l4AlaEkhbFw8Q7D4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367D0C5/29E381AEA48911ED81691E87F1222468/75D45A244FC511EEA3EDD8174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:d3:b3:33:55:8a:40:8d:41:b2:40:cf:03:5e:08:7e:3d:a3:
2e:e2:12:2f:62:cc:03:22:ad:41:a7:fc:36:3e:0b:03:0e:e9:
c1:24:e0:b8:4d:a5:6e:d6:82:79:03:dd:26:30:c6:d4:90:15:
77:9c:74:20:7f:fd:03:fc:7e:d8:ae:f1:c2:41:cc:34:c9:d8:
74:88:e0:a2:1b:a7:b6:8a:40:5f:65:64:16:8e:ba:2f:35:f5:
b6:d5:ac:a9:24:90:f5:90:f9:00:a8:bb:2b:8d:07:16:fe:fe:
93:15:88:19:40:3d:b2:a8:52:78:5c:9e:de:bc:02:d1:35:84:
24:5a:c5:e0:a9:97:2a:cd:e5:be:cc:20:1d:68:89:d7:19:e2:
69:6f:aa:b3:33:e8:40:ee:d7:2d:0a:60:21:1f:f1:5c:59:16:
90:c5:e0:28:06:82:bb:e1:bd:e7:32:9b:b6:72:cb:47:93:e8:
c9:3c:fb:65:0e:4b:f0:3a:d8:ac:1d:99:6b:f3:fd:27:91:8d:
03:f8:ab:84:f8:29:cc:bc:d7:25:94:51:1e:03:d3:47:db:d7:
34:42:4e:66:6c:8d:0d:3f:e8:b7:c9:19:9d:21:3e:29:ed:87:
d2:24:9a:3c:e2:75:ce:72:4b:7f:cf:50:15:11:b3:63:71:24:
61:88:92:4c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
N0QwQzVBRjExMC8GA1UEBRMoNTY5MjQ1RURGOEVGNTNERDI1RTAwOTVBMTI0ODVC
MTcwRjEwRUMzRTAeFw0yMzA5MTAxMDMzMTZaFw0yNjA5MTAxMDMzMTZaMBgxFjAU
BgNVBAMTDTY0ZmQ5YjcwLTc1ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDko1BA1RkYIkXGghisHAyEgugqolWnR4AFN9NXSvGzQUBDWLrSTcaDGQxN
NeXx3MoO00Wzfr2+mscjIIq9bmw42iCA2ndkS1SS7z7mPWVH0zy+pVpDgWpsg05R
Hku5PCjnC1LPqmYkmOsWTvgWfsegyijr/RG+wK2i9Yp96Mjz/qcSt/c5EdECxcSV
MsGIMEyxUqeKg4d34dQfx+QyhO+sWFeOCkkpW7ZMUOUUAyBBlOZfx+IblZFGDqWa
iQ5L/uYS7WguZ0N6OppIXzF0rER5oHB9xre/NUrwYEhwgZDg1UBRvSaaeZPQ7Tqz
6eFzEh5YvhTvDu13Snv/55fZ1F7zAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUegdA
aPh9NY5EwWYPHtU/dGM1xgkwHwYDVR0jBBgwFoAUVpJF7fjvU90l4AlaEkhbFw8Q
7D4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdEMEM1LzI5RTM4MUFFQTQ4OTExRUQ4MTY5MUU4N0YxMjIyNDY4L1ZwSkY3
Zmp2VTkwbDRBbGFFa2hiRnc4UTdENC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1ZwSkY3Zmp2VTkwbDRBbGFFa2hiRnc4UTdENC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdEMEM1LzI5RTM4MUFFQTQ4OTExRUQ4MTY5MUU4N0Yx
MjIyNDY4Lzc1RDQ1QTI0NEZDNTExRUVBM0VERDgxNzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBASaf0AwDQYJKoZIhvcNAQEL
BQADggEBAE7TszNVikCNQbJAzwNeCH49oy7iEi9izAMirUGn/DY+CwMO6cEk4LhN
pW7WgnkD3SYwxtSQFXecdCB//QP8ftiu8cJBzDTJ2HSI4KIbp7aKQF9lZBaOui81
9bbVrKkkkPWQ+QCouyuNBxb+/pMViBlAPbKoUnhcnt68AtE1hCRaxeCplyrN5b7M
IB1oidcZ4mlvqrMz6EDu1y0KYCEf8VxZFpDF4CgGgrvhvecym7Zyy0eT6Mk8+2UO
S/A62KwdmWvz/SeRjQP4q4T4Kcy81yWUUR4D00fb1zRCTmZsjQ0/6LfJGZ0hPint
h9Ikmjzidc5yS3/PUBURs2NxJGGIkkw=
-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:56 2024 by rpki-client on console-fra.rpki-client.org