Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C3C0469F7E11EF9C3EB446762E951A.roa
File: 53C3C0469F7E11EF9C3EB446762E951A.roa (raw, json)
Hash identifier: EteVe51LQPxbUauXK2avy5Bhx3J7f5WbwZIha0Ub/6c=
Subject key identifier: DB:2E:32:AB:DF:DC:4A:39:A7:3F:99:F7:47:B7:F7:5C:B5:AA:9E:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010B14
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C3C0469F7E11EF9C3EB446762E951A.roa
Signing time: Sun 10 Nov 2024 16:10:39 +0000
ROA not before: Sun 10 Nov 2024 16:10:36 +0000
ROA not after: Fri 17 Oct 2025 16:10:36 +0000
asID: 137443
IP address blocks: 154.205.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68372 (0x10b14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 10 16:10:36 2024 GMT
Not After : Oct 17 16:10:36 2025 GMT
Subject: CN=6730daff-170f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:2d:c0:5d:a0:80:45:04:0c:13:e1:6f:74:
8b:7e:84:6b:7a:2c:5b:9c:60:91:54:b9:53:9d:a9:
83:ff:60:b1:22:4a:64:39:75:04:c7:76:b9:e8:89:
33:40:49:40:66:3d:55:3f:45:a4:f8:d7:49:19:4a:
57:e5:3d:6d:fa:0c:27:63:a4:d2:f7:e4:2d:5a:26:
75:6b:3e:a5:20:98:49:9d:1d:69:73:f7:cd:e7:b0:
4b:1e:80:21:bd:2a:20:12:7e:d1:28:b0:bd:5d:a0:
be:77:ad:93:e7:bb:c3:6e:8f:63:93:f3:e2:dc:c2:
af:39:5c:92:28:51:f2:f8:c5:26:9f:ac:16:33:f0:
de:76:32:ca:a7:55:22:76:77:5f:bb:96:18:66:60:
f7:db:d7:d1:a3:79:2c:c1:62:56:75:98:74:d2:56:
50:05:a7:ec:3b:fb:fd:9a:de:85:32:4f:94:5b:85:
72:fd:38:96:b4:a1:10:9b:dc:0c:12:89:af:f0:6f:
67:6a:a1:51:36:1b:56:41:f3:cc:3a:5b:df:90:6c:
06:88:96:0d:5b:5d:35:48:66:40:9f:47:38:e1:9a:
76:a9:84:c3:a8:88:19:29:62:e7:ac:09:1b:ad:bc:
83:fb:d0:f6:b2:75:e4:78:b2:63:56:10:57:8d:b7:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2E:32:AB:DF:DC:4A:39:A7:3F:99:F7:47:B7:F7:5C:B5:AA:9E:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C3C0469F7E11EF9C3EB446762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:f6:b4:90:89:36:ff:e1:26:2d:62:4a:18:07:ca:6a:bd:b1:
57:fd:40:5e:07:7e:64:4b:d2:b0:d0:ff:b5:bb:7b:9e:54:0a:
d3:ec:ab:af:66:0e:62:70:75:b6:1c:5b:6a:8f:36:68:7c:c5:
e4:f6:f0:09:d2:9e:c0:79:27:17:d8:72:93:31:67:0a:ed:a6:
ae:c1:24:18:2f:ea:90:3a:36:d1:0d:71:c1:0f:bb:2e:12:f3:
ec:20:ed:e4:ee:7c:68:73:14:ca:e2:df:8e:41:39:a2:72:86:
48:df:98:cc:37:59:6e:0e:3b:b1:c6:ca:f8:d3:a3:54:1f:37:
a6:7a:43:76:51:86:6c:c2:ba:e7:18:1e:5e:2e:b5:1a:78:44:
f0:fe:1d:a1:9f:f7:d0:b9:5e:c5:43:2c:2a:59:1c:c8:6c:0e:
5f:8f:fd:fa:8b:05:4f:17:2b:fe:e2:1f:84:05:f8:fb:c7:e0:
8c:3e:f0:bf:d4:c7:12:66:c8:7b:58:8b:fc:82:fe:2b:8e:84:
be:e7:43:1b:d9:c9:ca:d0:23:68:8a:25:c5:07:9e:e1:ff:0f:
f2:70:3a:2e:51:6d:14:af:33:fe:58:48:24:c4:fc:91:da:af:
4a:2b:65:0a:b3:31:eb:2e:c8:13:f0:b4:4a:89:fb:10:82:a1:
2f:9f:a6:a6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQsUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTEwMTYxMDM2WhcNMjUxMDE3MTYxMDM2WjAYMRYw
FAYDVQQDEw02NzMwZGFmZi0xNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuCYtwF2ggEUEDBPhb3SLfoRreixbnGCRVLlTnamD/2CxIkpkOXUEx3a5
6IkzQElAZj1VP0Wk+NdJGUpX5T1t+gwnY6TS9+QtWiZ1az6lIJhJnR1pc/fN57BL
HoAhvSogEn7RKLC9XaC+d62T57vDbo9jk/Pi3MKvOVySKFHy+MUmn6wWM/DedjLK
p1Uidndfu5YYZmD329fRo3kswWJWdZh00lZQBafsO/v9mt6FMk+UW4Vy/TiWtKEQ
m9wMEomv8G9naqFRNhtWQfPMOlvfkGwGiJYNW101SGZAn0c44Zp2qYTDqIgZKWLn
rAkbrbyD+9D2snXkeLJjVhBXjbfeCQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNsu
Mqvf3Eo5pz+Z90e391y1qp6kMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81M0MzQzA0NjlGN0UxMUVGOUMzRUI0NDY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms0IMA0GCSqGSIb3DQEB
CwUAA4IBAQDU9rSQiTb/4SYtYkoYB8pqvbFX/UBeB35kS9Kw0P+1u3ueVArT7Kuv
Zg5icHW2HFtqjzZofMXk9vAJ0p7AeScX2HKTMWcK7aauwSQYL+qQOjbRDXHBD7su
EvPsIO3k7nxocxTK4t+OQTmicoZI35jMN1luDjuxxsr406NUHzemekN2UYZswrrn
GB5eLrUaeETw/h2hn/fQuV7FQywqWRzIbA5fj/36iwVPFyv+4h+EBfj7x+CMPvC/
1McSZsh7WIv8gv4rjoS+50Mb2cnK0CNoiiXFB57h/w/ycDouUW0UrzP+WEgkxPyR
2q9KK2UKszHrLsgT8LRKifsQgqEvn6am
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:04 2024 by rpki-client on console-ams.rpki-client.org