Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F07C00A19E11EF986EEB51762E951A.roa
File: 52F07C00A19E11EF986EEB51762E951A.roa (raw, json)
Hash identifier: OqGjMpFn+V6NmJXi2oyE9iA+lTFe7oFRt1p+0NfaNxA=
Subject key identifier: 9B:E7:29:DD:A1:DF:43:98:82:47:BE:15:DF:0E:3E:C9:37:97:85:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CD5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F07C00A19E11EF986EEB51762E951A.roa
Signing time: Wed 13 Nov 2024 09:04:44 +0000
ROA not before: Wed 13 Nov 2024 09:04:40 +0000
ROA not after: Sat 23 Nov 2024 09:04:40 +0000
asID: 39600
IP address blocks: 154.94.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 09:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68821 (0x10cd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 13 09:04:40 2024 GMT
Not After : Nov 23 09:04:40 2024 GMT
Subject: CN=67346bac-b7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:41:28:c0:15:11:30:89:c6:89:e6:80:5e:e6:
fb:6a:67:2d:85:30:3b:e7:83:15:80:67:c7:9d:f0:
a0:d6:2a:96:b2:c3:02:00:98:03:50:ac:d2:70:49:
d3:d3:52:27:17:b3:08:04:95:b3:01:38:65:86:a0:
63:07:29:e0:32:41:40:6e:bc:6e:51:54:ab:2c:58:
db:1e:f2:cf:ba:f2:8f:5f:13:6f:a6:97:3f:26:31:
21:98:43:3c:44:dc:2c:a7:ba:7f:c6:0e:c1:c6:94:
66:a4:04:29:9e:03:f4:f5:b3:57:5e:98:00:5d:32:
a5:b7:7c:09:b0:8b:5f:0c:ba:08:84:7c:0b:ac:f1:
7e:85:7f:f2:dd:29:93:da:39:e4:33:29:a4:d6:a6:
a5:e2:9d:48:18:08:ee:ea:d3:fd:ab:54:1e:16:ec:
88:ae:59:46:4a:f2:da:a7:93:4b:76:1d:b9:be:59:
3e:2e:66:28:69:5b:3f:9e:e9:26:d0:46:2e:f7:7c:
ad:81:00:5a:62:10:a1:71:24:ac:5d:17:ad:10:bf:
a4:e3:28:cc:f7:10:0f:ab:de:80:41:12:ad:40:90:
65:32:ff:c4:c8:a5:8f:22:61:1d:9c:74:ea:28:58:
06:99:9a:6c:fd:e6:91:92:2d:d1:e3:33:6f:61:75:
13:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E7:29:DD:A1:DF:43:98:82:47:BE:15:DF:0E:3E:C9:37:97:85:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52F07C00A19E11EF986EEB51762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.24.0/21
Signature Algorithm: sha256WithRSAEncryption
48:22:bd:38:d4:cd:5a:08:71:75:56:f2:04:dc:e0:2f:1f:da:
bd:b4:c7:84:ad:03:73:fa:ff:1d:7a:e9:2c:f8:17:32:f6:3f:
09:94:5e:86:0a:ab:b1:45:15:29:d2:72:a6:3d:3f:ba:51:ed:
ed:f4:a7:cb:06:d3:b8:1f:d6:0b:20:89:89:50:f0:0b:0a:77:
c6:f0:ba:e4:3e:ad:6e:f2:9f:a7:68:ff:fa:4d:18:9a:94:7c:
48:49:69:25:cf:04:0b:b8:c9:c8:7e:7a:df:3e:09:f5:dc:96:
a5:12:32:a4:e6:07:fd:aa:41:a2:af:31:29:58:7f:de:ba:af:
a8:ad:1a:52:5c:69:15:fa:e4:35:a1:c4:44:5a:f8:9d:d5:2d:
16:cb:bd:98:05:cc:09:d3:cf:db:4e:99:60:3c:8f:c1:03:ab:
92:2d:04:c2:0a:6d:1d:50:c0:f1:aa:4f:45:78:28:36:08:e3:
58:40:29:78:96:ec:a6:28:d0:7d:a0:2c:d5:08:ad:24:c4:84:
bf:ac:e8:da:0b:32:23:7f:be:27:52:27:b9:96:b4:7f:0e:3c:
c8:60:a6:2c:43:64:61:b0:f3:fe:8e:3c:d6:7c:c6:3a:8b:9a:
86:83:9d:6a:34:e2:4c:7f:8d:d7:f7:2c:2d:8e:fb:6d:fe:ac:
c4:a4:43:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQzVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEzMDkwNDQwWhcNMjQxMTIzMDkwNDQwWjAYMRYw
FAYDVQQDEw02NzM0NmJhYy1iN2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwkEowBURMInGieaAXub7amcthTA754MVgGfHnfCg1iqWssMCAJgDUKzS
cEnT01InF7MIBJWzAThlhqBjByngMkFAbrxuUVSrLFjbHvLPuvKPXxNvppc/JjEh
mEM8RNwsp7p/xg7BxpRmpAQpngP09bNXXpgAXTKlt3wJsItfDLoIhHwLrPF+hX/y
3SmT2jnkMymk1qal4p1IGAju6tP9q1QeFuyIrllGSvLap5NLdh25vlk+LmYoaVs/
nukm0EYu93ytgQBaYhChcSSsXRetEL+k4yjM9xAPq96AQRKtQJBlMv/EyKWPImEd
nHTqKFgGmZps/eaRki3R4zNvYXUTkQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJvn
Kd2h30OYgke+Fd8OPsk3l4VTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MkYwN0MwMEExOUUxMUVGOTg2RUVCNTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDml4YMA0GCSqGSIb3DQEB
CwUAA4IBAQBIIr041M1aCHF1VvIE3OAvH9q9tMeErQNz+v8deuks+Bcy9j8JlF6G
CquxRRUp0nKmPT+6Ue3t9KfLBtO4H9YLIImJUPALCnfG8LrkPq1u8p+naP/6TRia
lHxISWklzwQLuMnIfnrfPgn13JalEjKk5gf9qkGirzEpWH/euq+orRpSXGkV+uQ1
ocREWvid1S0Wy72YBcwJ08/bTplgPI/BA6uSLQTCCm0dUMDxqk9FeCg2CONYQCl4
luymKNB9oCzVCK0kxIS/rOjaCzIjf74nUie5lrR/DjzIYKYsQ2RhsPP+jjzWfMY6
i5qGg51qNOJMf43X9ywtjvtt/qzEpENd
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:07 2024 by rpki-client on console-fra.rpki-client.org