Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F53E3E74CF11EFAD2E7F51762E951A.roa
File: 44F53E3E74CF11EFAD2E7F51762E951A.roa (raw, json)
Hash identifier: r8zvMsCvR9KgE0DyY+fy+nz27iclB81RFVi0jtRf/eI=
Subject key identifier: 5C:8A:77:6D:2F:EE:5B:3D:48:C1:B8:F5:72:19:74:EE:EC:0B:C5:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F00E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F53E3E74CF11EFAD2E7F51762E951A.roa
Signing time: Tue 17 Sep 2024 08:31:44 +0000
ROA not before: Tue 17 Sep 2024 08:31:40 +0000
ROA not after: Sat 30 Nov 2024 08:31:40 +0000
asID: 138152
IP address blocks: 154.94.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61454 (0xf00e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 08:31:40 2024 GMT
Not After : Nov 30 08:31:40 2024 GMT
Subject: CN=66e93e6f-6cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b4:30:21:10:ea:29:b1:73:75:ac:bb:0f:60:
23:b6:73:ea:34:c1:b4:8d:f5:ae:a7:67:ef:e5:78:
c5:ac:d3:b5:b9:6d:ee:0e:bb:85:91:3a:56:62:03:
ea:c8:d2:93:54:25:ed:3e:d0:aa:13:6e:5c:3c:61:
67:3b:4b:63:59:a1:f6:db:3b:07:fb:d6:62:18:9a:
c9:bc:4f:93:cb:94:bf:a0:57:47:eb:16:5e:59:94:
14:aa:c4:e5:16:78:e5:e9:43:ce:c2:9e:03:0e:1e:
9a:60:18:07:33:17:38:15:31:c1:07:c4:c1:63:ae:
f3:0b:d0:db:d1:ac:92:2f:6c:a1:83:d4:20:9f:80:
e1:e9:30:54:fc:24:7e:83:04:55:ad:12:fc:27:4f:
21:81:ee:4a:7e:b2:cc:75:f5:23:f2:09:bf:39:dc:
09:0e:ad:18:26:32:e7:50:d2:f2:88:d1:1c:29:8b:
57:41:6a:de:74:26:ca:57:1c:1d:c6:9e:e9:31:64:
dd:87:07:4d:dc:53:19:25:c9:b8:7a:24:c4:fb:2a:
38:40:98:37:f8:17:08:a8:bb:5f:79:ca:88:6b:17:
7a:82:e4:d9:cc:a9:ff:8e:6b:83:0c:65:e0:45:78:
48:89:d6:cd:39:8d:f3:c5:24:87:b3:62:30:29:5b:
de:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:8A:77:6D:2F:EE:5B:3D:48:C1:B8:F5:72:19:74:EE:EC:0B:C5:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44F53E3E74CF11EFAD2E7F51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.7.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b1:a6:8f:22:03:d0:5f:02:c3:4a:25:c9:22:12:97:fd:00:
14:14:54:54:4c:05:f7:f6:d5:2a:28:e5:5d:1b:2b:2a:c7:26:
09:d2:32:f0:cc:81:8a:83:21:8a:e0:02:09:20:63:c8:8e:43:
c5:62:93:0f:ca:76:16:d0:2d:7b:85:82:04:77:39:81:8c:ff:
5d:48:45:be:0e:4d:2a:3b:88:49:45:87:32:89:e3:a5:ed:bb:
8a:29:8b:a5:dd:88:fc:28:af:a0:a7:b0:0c:e2:0f:38:f7:51:
2e:90:44:9b:1c:69:f9:83:27:46:f4:6d:db:05:12:b4:7b:60:
cb:1b:dd:03:f6:aa:a6:b8:b5:01:68:93:b4:7f:aa:8c:83:f0:
12:ca:9d:77:89:9d:40:2c:ca:29:8e:ad:80:9a:50:9c:a0:37:
11:38:f1:77:be:c0:ce:1a:b9:c5:9b:77:78:18:08:07:3e:9f:
47:35:32:b7:89:8f:f3:e2:16:d8:46:7b:50:d5:27:1f:50:a8:
29:da:7f:b5:73:58:a9:2b:ab:c5:3d:04:85:05:cf:7f:d9:bd:
b8:88:4a:50:25:80:89:e5:07:b9:26:52:0c:8d:e7:6b:a9:ec:
51:c7:62:ab:6a:2a:01:1c:a0:82:c0:78:1c:e1:2a:2d:2e:a4:
76:cc:8d:76
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPAOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE3MDgzMTQwWhcNMjQxMTMwMDgzMTQwWjAYMRYw
FAYDVQQDEw02NmU5M2U2Zi02Y2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvbQwIRDqKbFzday7D2AjtnPqNMG0jfWup2fv5XjFrNO1uW3uDruFkTpW
YgPqyNKTVCXtPtCqE25cPGFnO0tjWaH22zsH+9ZiGJrJvE+Ty5S/oFdH6xZeWZQU
qsTlFnjl6UPOwp4DDh6aYBgHMxc4FTHBB8TBY67zC9Db0aySL2yhg9Qgn4Dh6TBU
/CR+gwRVrRL8J08hge5KfrLMdfUj8gm/OdwJDq0YJjLnUNLyiNEcKYtXQWredCbK
Vxwdxp7pMWTdhwdN3FMZJcm4eiTE+yo4QJg3+BcIqLtfecqIaxd6guTZzKn/jmuD
DGXgRXhIidbNOY3zxSSHs2IwKVveQQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFyK
d20v7ls9SMG49XIZdO7sC8VbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80NEY1M0UzRTc0Q0YxMUVGQUQyRTdGNTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4HMA0GCSqGSIb3DQEB
CwUAA4IBAQBbsaaPIgPQXwLDSiXJIhKX/QAUFFRUTAX39tUqKOVdGysqxyYJ0jLw
zIGKgyGK4AIJIGPIjkPFYpMPynYW0C17hYIEdzmBjP9dSEW+Dk0qO4hJRYcyieOl
7buKKYul3Yj8KK+gp7AM4g8491EukESbHGn5gydG9G3bBRK0e2DLG90D9qqmuLUB
aJO0f6qMg/ASyp13iZ1ALMopjq2AmlCcoDcROPF3vsDOGrnFm3d4GAgHPp9HNTK3
iY/z4hbYRntQ1ScfUKgp2n+1c1ipK6vFPQSFBc9/2b24iEpQJYCJ5Qe5JlIMjedr
qexRx2KraioBHKCCwHgc4SotLqR2zI12
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:05 2024 by rpki-client on console-fra.rpki-client.org