Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C0CE98725811EF9E18466A762E951A.roa
File: 53C0CE98725811EF9E18466A762E951A.roa (raw, json)
Hash identifier: TXm+i7KWhgtybcV6BSxR0IoEMOQG0rukyQAKBAYjhv0=
Subject key identifier: 14:BF:38:9D:0C:FE:37:11:77:49:5C:68:16:25:BA:B5:39:1A:25:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EDDE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C0CE98725811EF9E18466A762E951A.roa
Signing time: Sat 14 Sep 2024 05:15:16 +0000
ROA not before: Sat 14 Sep 2024 05:15:13 +0000
ROA not after: Tue 31 Dec 2024 05:15:13 +0000
asID: 17561
IP address blocks: 154.217.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60894 (0xedde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 05:15:13 2024 GMT
Not After : Dec 31 05:15:13 2024 GMT
Subject: CN=66e51be4-ed48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:eb:4e:eb:dd:f5:30:82:0a:bc:f3:74:fa:05:
10:57:ed:73:69:f4:c8:20:30:42:aa:64:3b:c4:91:
a1:e6:fe:cf:f7:bd:d3:14:b2:af:13:22:5f:73:eb:
cc:a1:46:1e:76:09:53:00:18:a3:9d:35:3f:71:b7:
2d:b4:ae:04:dc:f1:f4:ef:1d:29:0f:dd:28:24:f7:
ef:0d:01:2d:09:85:96:f7:46:0d:35:59:a8:27:8e:
dc:07:fa:e6:d8:e5:c8:8c:db:17:6c:13:2c:70:86:
bf:be:d2:e7:f9:ee:1c:04:8b:f0:b0:ad:c0:73:61:
79:41:14:62:cf:f3:5b:f3:e7:cc:cd:a9:34:9f:fb:
ce:53:59:11:63:96:c6:58:0c:7e:9e:cd:5b:da:7d:
30:fe:94:0a:bd:16:60:d2:b4:0e:95:d9:1d:83:02:
3c:77:61:ce:a8:59:61:08:26:ea:be:9f:ad:7d:85:
0d:32:ce:39:00:cb:3b:4e:ba:46:4b:bb:a1:ab:4a:
00:eb:b5:d9:ec:13:86:1b:d3:b5:65:cf:1a:bc:97:
25:fd:69:5f:6a:a4:3d:ff:c1:d0:68:ce:cb:ca:3e:
00:75:52:c2:5b:9c:62:97:85:52:c6:36:e9:3d:00:
af:93:80:a3:94:59:31:86:e4:1b:ff:c2:ca:ba:a8:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BF:38:9D:0C:FE:37:11:77:49:5C:68:16:25:BA:B5:39:1A:25:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C0CE98725811EF9E18466A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.144.0/20
Signature Algorithm: sha256WithRSAEncryption
46:ca:b5:59:29:d9:0b:c0:15:b4:f4:d0:46:de:c7:46:c6:c5:
53:47:34:25:74:32:e2:f1:20:ba:dd:c7:1b:ac:4b:0d:05:c8:
e9:d8:f0:90:20:ab:8c:37:51:a1:79:39:55:44:c4:6d:8d:bf:
45:ba:4e:d4:1f:9a:67:32:00:57:ad:2a:ea:7f:2c:cf:a8:96:
72:0b:8f:ad:14:ec:98:e6:11:1c:bd:ec:dc:4b:44:d6:f4:fa:
10:25:b0:6a:a7:67:fd:2b:11:64:b4:31:26:d8:6c:6d:b6:04:
92:3f:c8:4e:0a:53:42:25:52:81:ff:6c:02:58:b3:52:06:bd:
d7:87:d3:3f:ae:05:af:0e:b1:a2:9b:d3:de:5f:45:38:7b:07:
b2:3e:d8:c0:4a:c7:68:55:e5:8f:19:fb:d4:27:e5:a0:fe:47:
d8:48:50:90:df:f0:11:e4:f0:00:94:38:03:c7:ec:3f:b5:dc:
c1:8c:48:0e:69:03:9a:d4:7d:39:84:3a:b3:78:67:e8:18:8e:
1a:92:1b:89:dd:c8:bb:d5:d1:fe:31:29:df:da:05:d1:13:37:
34:9a:90:5b:1c:a5:fb:e9:ae:70:04:08:80:dd:ea:14:53:ae:
13:65:83:69:13:1d:32:a1:16:e0:4e:50:39:7c:41:82:08:ea:
ef:7e:91:3f
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO3eMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE0MDUxNTEzWhcNMjQxMjMxMDUxNTEzWjAYMRYw
FAYDVQQDEw02NmU1MWJlNC1lZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxOtO6931MIIKvPN0+gUQV+1zafTIIDBCqmQ7xJGh5v7P973TFLKvEyJf
c+vMoUYedglTABijnTU/cbcttK4E3PH07x0pD90oJPfvDQEtCYWW90YNNVmoJ47c
B/rm2OXIjNsXbBMscIa/vtLn+e4cBIvwsK3Ac2F5QRRiz/Nb8+fMzak0n/vOU1kR
Y5bGWAx+ns1b2n0w/pQKvRZg0rQOldkdgwI8d2HOqFlhCCbqvp+tfYUNMs45AMs7
TrpGS7uhq0oA67XZ7BOGG9O1Zc8avJcl/WlfaqQ9/8HQaM7Lyj4AdVLCW5xil4VS
xjbpPQCvk4CjlFkxhuQb/8LKuqjycQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBS/
OJ0M/jcRd0lcaBYlurU5GiXnMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81M0MwQ0U5ODcyNTgxMUVGOUUxODQ2NkE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEmtmQMA0GCSqGSIb3DQEB
CwUAA4IBAQBGyrVZKdkLwBW09NBG3sdGxsVTRzQldDLi8SC63ccbrEsNBcjp2PCQ
IKuMN1GheTlVRMRtjb9Fuk7UH5pnMgBXrSrqfyzPqJZyC4+tFOyY5hEcvezcS0TW
9PoQJbBqp2f9KxFktDEm2GxttgSSP8hOClNCJVKB/2wCWLNSBr3Xh9M/rgWvDrGi
m9PeX0U4eweyPtjASsdoVeWPGfvUJ+Wg/kfYSFCQ3/AR5PAAlDgDx+w/tdzBjEgO
aQOa1H05hDqzeGfoGI4akhuJ3ci71dH+MSnf2gXREzc0mpBbHKX76a5wBAiA3eoU
U64TZYNpEx0yoRbgTlA5fEGCCOrvfpE/
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org