Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/052EEC26E78711EE9DAA4DBB775412E6.roa
File: 052EEC26E78711EE9DAA4DBB775412E6.roa (raw, json)
Hash identifier: xcOhfI+uVYQXU+3baAYluaTIvUcCS4IHcaxxcVa0KAE=
Subject key identifier: EA:89:DE:97:BA:7C:CC:88:5D:3C:2F:1C:65:40:85:32:84:92:7D:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/052EEC26E78711EE9DAA4DBB775412E6.roa
Signing time: Thu 21 Mar 2024 13:29:19 +0000
ROA not before: Thu 21 Mar 2024 13:29:15 +0000
ROA not after: Tue 23 Apr 2024 13:29:15 +0000
asID: 44559
IP address blocks: 154.210.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 23 Apr 2024 00:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42415 (0xa5af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 13:29:15 2024 GMT
Not After : Apr 23 13:29:15 2024 GMT
Subject: CN=65fc362f-c95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:5e:50:1d:9f:eb:0e:93:10:e7:ba:59:7c:
c8:43:67:8b:01:5d:d3:d6:06:87:a5:64:79:9d:3a:
f9:5a:dc:cd:d7:dd:91:6e:c9:bd:8e:16:25:20:43:
2a:23:60:d6:14:65:5e:01:a6:76:77:70:61:dc:45:
22:6e:24:c7:43:be:7c:35:4a:18:87:b0:11:b5:ea:
4a:6a:0e:ae:2c:ea:24:2d:3c:b4:70:a7:70:d9:06:
19:bb:b0:ea:d1:bd:a2:1f:f4:35:54:19:f5:bf:5f:
ae:83:b9:b7:d7:ec:84:da:5a:57:ac:7f:d6:62:c2:
89:53:d4:ea:8b:7d:fe:3c:45:73:bf:a2:bb:81:c3:
c9:ac:6d:14:84:9a:c9:e4:7c:c5:09:44:65:ed:dd:
f6:b3:ef:39:60:98:54:b0:a3:7a:e9:39:bd:ef:03:
74:cc:d9:b4:5f:3b:81:49:4b:b2:a9:f7:50:40:cf:
8e:3a:87:cd:ae:8c:43:42:0b:bb:03:6a:b0:66:44:
32:b7:61:0b:74:c3:d6:4f:f1:a1:b0:f3:5d:ed:91:
a7:71:6d:62:a2:4c:bd:d2:9b:52:bf:d0:56:85:71:
26:2c:e8:7d:86:33:3a:76:2a:32:86:27:0a:ed:db:
ed:28:98:ae:ab:24:e6:f6:1f:16:52:eb:0c:a1:63:
5a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:89:DE:97:BA:7C:CC:88:5D:3C:2F:1C:65:40:85:32:84:92:7D:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/052EEC26E78711EE9DAA4DBB775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.69.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d0:82:18:a6:48:77:64:29:77:d3:29:b2:46:c8:e3:00:d2:
c5:bb:65:e8:3e:45:80:ea:3d:cd:e9:5d:de:1d:e7:85:72:05:
ec:03:49:03:69:64:2f:92:0a:25:39:c5:87:da:58:10:62:1a:
dd:52:7e:22:d6:87:60:58:81:40:cd:e6:e5:16:f5:9c:4c:b5:
3a:31:4a:28:21:50:14:e9:25:91:56:f1:80:c2:a2:ca:6c:0d:
02:e1:f8:a7:a4:36:db:53:f2:69:b3:41:73:fe:37:9c:0e:0b:
2f:4a:a4:7e:f7:ef:1d:7c:4d:bf:2f:8e:00:ee:70:2f:07:a1:
eb:b6:f9:ca:1e:79:86:05:1c:1d:d7:c9:af:07:d0:4b:0c:95:
f3:84:1c:22:52:02:5f:d7:aa:2f:17:36:83:68:03:be:8c:2d:
8a:21:c7:7c:d2:04:be:70:e6:a1:7a:b9:37:1e:b2:ed:a2:1b:
ad:a2:85:20:dc:2a:a5:07:96:53:2d:46:fc:70:89:e9:5e:14:
d0:22:a9:90:38:8a:f1:87:30:b4:a0:66:ca:8f:63:f0:80:8a:
d9:25:b2:bc:f7:9a:be:1f:38:7c:2b:c1:c3:67:5e:61:b9:a7:
c3:e2:0b:2c:c1:9a:bb:64:74:2b:2f:58:06:83:7f:a4:f8:bd:
e4:2d:97:2a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAKWvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwMzIxMTMyOTE1WhcNMjQwNDIzMTMyOTE1WjAYMRYw
FAYDVQQDEw02NWZjMzYyZi1jOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0XZeUB2f6w6TEOe6WXzIQ2eLAV3T1gaHpWR5nTr5WtzN192Rbsm9jhYl
IEMqI2DWFGVeAaZ2d3Bh3EUibiTHQ758NUoYh7ARtepKag6uLOokLTy0cKdw2QYZ
u7Dq0b2iH/Q1VBn1v1+ug7m31+yE2lpXrH/WYsKJU9Tqi33+PEVzv6K7gcPJrG0U
hJrJ5HzFCURl7d32s+85YJhUsKN66Tm97wN0zNm0XzuBSUuyqfdQQM+OOofNroxD
Qgu7A2qwZkQyt2ELdMPWT/GhsPNd7ZGncW1ioky90ptSv9BWhXEmLOh9hjM6dioy
hicK7dvtKJiuqyTm9h8WUusMoWNaCQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOqJ
3pe6fMyIXTwvHGVAhTKEkn3mMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNTJFRUMyNkU3ODcxMUVFOURBQTREQkI3NzU0MTJFNi5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJFMA0GCSqGSIb3DQEB
CwUAA4IBAQBz0IIYpkh3ZCl30ymyRsjjANLFu2XoPkWA6j3N6V3eHeeFcgXsA0kD
aWQvkgolOcWH2lgQYhrdUn4i1odgWIFAzeblFvWcTLU6MUooIVAU6SWRVvGAwqLK
bA0C4finpDbbU/Jps0Fz/jecDgsvSqR+9+8dfE2/L44A7nAvB6HrtvnKHnmGBRwd
18mvB9BLDJXzhBwiUgJf16ovFzaDaAO+jC2KIcd80gS+cOaherk3HrLtohutooUg
3CqlB5ZTLUb8cInpXhTQIqmQOIrxhzC0oGbKj2PwgIrZJbK895q+Hzh8K8HDZ15h
uafD4gsswZq7ZHQrL1gGg3+k+L3kLZcq
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:12 2024 by rpki-client on console-fra.rpki-client.org