Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53FA2070278711EE953BC32C4AD9E6FC.roa
File: 53FA2070278711EE953BC32C4AD9E6FC.roa (raw, json)
Hash identifier: hnz8ldTbTWYHEz+Is32k/luW+H4XviMGSo851MsxIjM=
Subject key identifier: D8:C6:28:5D:15:27:50:37:E0:44:30:B7:FA:B3:4A:C1:4D:FE:8C:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 33B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53FA2070278711EE953BC32C4AD9E6FC.roa
Signing time: Fri 21 Jul 2023 05:27:48 +0000
ROA not before: Fri 21 Jul 2023 05:27:44 +0000
ROA not after: Thu 13 Jun 2024 05:27:44 +0000
asID: 7018
IP address blocks: 154.195.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13239 (0x33b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 05:27:44 2023 GMT
Not After : Jun 13 05:27:44 2024 GMT
Subject: CN=64ba1754-2540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:02:e5:b1:5a:d0:3f:36:25:b4:3f:5d:f1:37:
5b:70:fa:28:64:7e:55:ec:ee:7d:60:6d:1a:a3:ff:
48:cd:30:db:f5:6d:15:21:38:92:d5:ce:ea:9b:c5:
ac:5c:5b:80:1c:7e:23:fc:c3:bf:59:9b:42:d1:94:
bd:6c:1c:2f:23:d5:68:11:9c:29:fe:c1:ec:c1:48:
eb:c9:e2:34:79:b2:06:a7:75:0c:57:31:ae:6f:00:
43:96:e8:af:32:63:eb:fb:4d:58:bf:a4:46:c9:79:
91:fd:41:49:3a:01:1d:3b:f7:31:be:f7:2e:63:39:
52:e8:37:b6:dc:13:75:d4:d7:5f:5a:76:cd:b3:7d:
c3:0f:77:12:1c:3c:61:79:dd:73:03:74:c5:f9:3f:
f4:44:f8:79:5d:c6:73:e4:70:a3:95:5d:2e:c0:28:
48:8e:83:d5:75:74:16:72:51:35:c9:0a:98:19:2d:
ac:14:f7:ca:bf:e7:31:01:dd:e9:62:a6:15:db:8f:
c3:91:2a:6d:c2:8b:8d:0c:d2:27:2f:04:eb:a2:33:
68:c1:33:2c:4e:07:d8:5a:e6:25:84:4e:4b:1f:62:
9c:9d:92:1a:fb:4a:2d:61:ac:4d:45:cf:63:6c:f6:
cb:1f:51:2c:14:a4:69:4a:b5:3b:ea:de:55:91:9a:
07:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C6:28:5D:15:27:50:37:E0:44:30:B7:FA:B3:4A:C1:4D:FE:8C:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53FA2070278711EE953BC32C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.32.0/19
Signature Algorithm: sha256WithRSAEncryption
bd:44:bc:45:f6:08:26:d3:e7:93:15:24:07:17:b2:ee:26:0d:
97:38:bf:36:8c:0e:80:d1:75:38:ef:31:b8:a2:e2:f9:1c:b9:
73:42:23:a6:3b:94:7f:21:80:fe:b6:24:fd:44:9e:c2:d3:3a:
36:48:04:c9:e7:10:3b:9d:35:7f:45:6c:ce:1a:ec:c0:02:42:
44:41:46:0a:e1:a2:ec:41:60:de:0e:70:48:00:34:98:47:15:
5e:80:ac:30:7d:25:09:57:01:5c:62:66:a9:3d:ce:b9:d5:13:
c2:8f:f7:db:ba:66:3f:1f:b4:25:7e:99:42:6a:a7:60:f7:b7:
68:81:aa:ab:ea:09:ab:78:ef:83:18:42:cb:e7:a9:20:33:7f:
29:74:86:a9:43:64:a1:b7:26:ac:73:e0:4b:87:1f:77:ef:7e:
4f:6a:c9:ea:1e:5d:96:ca:35:d7:2a:0e:b2:36:a4:c7:d3:55:
81:8b:0d:91:ba:3f:a6:05:d7:f3:2f:f3:22:57:bf:9e:2d:a5:
ea:78:ba:cb:26:d9:73:22:78:10:f2:25:47:e1:35:f1:64:bf:
2e:53:2a:ce:67:aa:79:9c:f4:57:0f:b4:0c:af:40:6f:0e:48:
e6:1a:fa:87:93:80:e0:55:47:8a:06:7f:92:4a:13:0d:14:6f:
e6:9e:77:ce
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICM7cwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzA3MjEwNTI3NDRaFw0yNDA2MTMwNTI3NDRaMBgxFjAU
BgNVBAMTDTY0YmExNzU0LTI1NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDPAuWxWtA/NiW0P13xN1tw+ihkflXs7n1gbRqj/0jNMNv1bRUhOJLVzuqb
xaxcW4AcfiP8w79Zm0LRlL1sHC8j1WgRnCn+wezBSOvJ4jR5sgandQxXMa5vAEOW
6K8yY+v7TVi/pEbJeZH9QUk6AR079zG+9y5jOVLoN7bcE3XU119ads2zfcMPdxIc
PGF53XMDdMX5P/RE+HldxnPkcKOVXS7AKEiOg9V1dBZyUTXJCpgZLawU98q/5zEB
3eliphXbj8ORKm3Ci40M0icvBOuiM2jBMyxOB9ha5iWETksfYpydkhr7Si1hrE1F
z2Ns9ssfUSwUpGlKtTvq3lWRmgcVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU2MYo
XRUnUDfgRDC3+rNKwU3+jNIwHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzUzRkEyMDcwMjc4NzExRUU5NTNCQzMyQzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWawyAwDQYJKoZIhvcNAQEL
BQADggEBAL1EvEX2CCbT55MVJAcXsu4mDZc4vzaMDoDRdTjvMbii4vkcuXNCI6Y7
lH8hgP62JP1EnsLTOjZIBMnnEDudNX9FbM4a7MACQkRBRgrhouxBYN4OcEgANJhH
FV6ArDB9JQlXAVxiZqk9zrnVE8KP99u6Zj8ftCV+mUJqp2D3t2iBqqvqCat474MY
QsvnqSAzfyl0hqlDZKG3Jqxz4EuHH3fvfk9qyeoeXZbKNdcqDrI2pMfTVYGLDZG6
P6YF1/Mv8yJXv54tpep4ussm2XMieBDyJUfhNfFkvy5TKs5nqnmc9FcPtAyvQG8O
SOYa+oeTgOBVR4oGf5JKEw0Ub+aed84=
-----END CERTIFICATE-----
Generated at Fri May 3 04:44:24 2024 by rpki-client on console-fra.rpki-client.org