Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5538BC26A32311EFA9FA1F70762E951A.roa
File: 5538BC26A32311EFA9FA1F70762E951A.roa (raw, json)
Hash identifier: oAjnNcbQBbZERMGhyEhdnc6NE6flNrg77n5rL8JF0Hg=
Subject key identifier: 74:E5:BF:0B:41:CD:31:17:24:AD:C2:70:3D:08:31:E3:49:90:87:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5538BC26A32311EFA9FA1F70762E951A.roa
Signing time: Fri 15 Nov 2024 07:29:22 +0000
ROA not before: Fri 15 Nov 2024 07:29:18 +0000
ROA not after: Thu 12 Dec 2024 07:29:18 +0000
asID: 394432
IP address blocks: 154.196.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68912 (0x10d30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 15 07:29:18 2024 GMT
Not After : Dec 12 07:29:18 2024 GMT
Subject: CN=6736f852-3fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:84:8c:fa:c4:b5:d7:48:c3:79:bf:51:f1:d3:
9a:46:3b:24:ae:75:91:d7:7d:32:7f:84:4c:8a:17:
19:52:c9:b2:5f:f0:41:49:79:d3:ef:d8:78:6a:90:
e9:89:6d:88:91:d8:76:57:ee:e9:47:7e:72:0b:09:
36:5e:f3:f7:41:22:02:1a:f1:b8:2d:53:e2:a2:eb:
f0:74:c6:e9:46:47:32:1e:a7:df:57:68:45:78:b7:
2e:4a:c1:b9:6f:15:f1:75:ba:83:af:62:db:f0:1c:
93:03:d5:6e:2a:73:52:60:89:41:49:d2:c7:0f:80:
00:5a:d3:21:fa:03:f3:5c:6e:b4:02:d3:fc:d9:47:
fb:6b:6b:03:2f:43:8a:a9:55:ff:44:ca:d9:41:be:
fc:02:6a:1a:ca:73:12:ca:fb:10:d7:fa:64:18:8b:
8a:07:56:37:e8:9a:22:b2:20:b6:71:ea:a8:54:e7:
45:d3:a7:6b:71:26:fd:c6:70:e6:7b:86:e6:c6:9a:
7d:e6:90:08:a2:19:a1:10:3f:d7:1f:a0:a3:12:98:
39:47:6a:9b:8d:00:ce:56:db:a4:e5:6b:01:ec:c6:
c1:9d:cd:7f:aa:9b:77:cc:65:3a:23:30:21:6e:40:
48:44:1d:b7:df:b3:14:25:5c:a2:b0:de:69:43:8e:
f0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E5:BF:0B:41:CD:31:17:24:AD:C2:70:3D:08:31:E3:49:90:87:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5538BC26A32311EFA9FA1F70762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:53:50:d9:a0:d8:fe:5a:ec:e6:e2:e4:0b:10:4a:39:3c:a0:
eb:18:42:0b:b3:d6:21:78:38:9b:39:d4:85:b6:ce:f5:3e:af:
87:7d:a9:31:74:32:e6:04:c2:7b:62:2b:a0:03:04:8b:9b:e0:
da:a9:88:5b:f6:9e:93:d5:be:0f:f8:ed:b2:f6:16:da:d8:bf:
55:40:9a:94:b3:e0:a2:64:2b:e0:e2:ba:67:c1:3d:72:6a:45:
5f:a4:c4:ea:f8:6d:fe:c7:f9:d0:6e:4d:bd:6e:40:65:09:63:
f7:0d:15:44:1a:c8:72:72:d9:d8:98:64:3f:f7:ba:f9:ac:61:
29:bf:dd:31:70:80:9e:6f:cb:1e:7d:b5:44:63:b4:b5:a5:26:
48:6a:87:fa:f7:01:77:c6:4e:9c:04:43:42:4c:4b:8d:52:5a:
ee:cf:f6:a7:5f:3e:e0:56:ee:90:47:15:6e:16:b3:7a:c2:34:
66:d8:43:96:de:5d:31:1a:60:c0:6a:e6:fb:9d:31:45:e1:1f:
31:8a:dc:01:4f:f2:90:ee:bf:e2:79:3a:8c:f6:dd:d1:80:e0:
e6:a1:e5:1d:21:30:0e:ec:8c:63:3f:95:b7:13:0b:58:b6:0e:
44:85:b7:79:b2:e5:d7:3a:1f:c0:c6:dc:8b:9d:61:4a:41:bd:
d5:74:4d:87
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ0wMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE1MDcyOTE4WhcNMjQxMjEyMDcyOTE4WjAYMRYw
FAYDVQQDEw02NzM2Zjg1Mi0zZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0oSM+sS110jDeb9R8dOaRjskrnWR130yf4RMihcZUsmyX/BBSXnT79h4
apDpiW2Ikdh2V+7pR35yCwk2XvP3QSICGvG4LVPiouvwdMbpRkcyHqffV2hFeLcu
SsG5bxXxdbqDr2Lb8ByTA9VuKnNSYIlBSdLHD4AAWtMh+gPzXG60AtP82Uf7a2sD
L0OKqVX/RMrZQb78AmoaynMSyvsQ1/pkGIuKB1Y36JoisiC2ceqoVOdF06drcSb9
xnDme4bmxpp95pAIohmhED/XH6CjEpg5R2qbjQDOVtuk5WsB7MbBnc1/qpt3zGU6
IzAhbkBIRB2337MUJVyisN5pQ47wrwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHTl
vwtBzTEXJK3CcD0IMeNJkIcGMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NTM4QkMyNkEzMjMxMUVGQTlGQTFGNzA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsTBMA0GCSqGSIb3DQEB
CwUAA4IBAQBPU1DZoNj+Wuzm4uQLEEo5PKDrGEILs9YheDibOdSFts71Pq+Hfakx
dDLmBMJ7YiugAwSLm+DaqYhb9p6T1b4P+O2y9hba2L9VQJqUs+CiZCvg4rpnwT1y
akVfpMTq+G3+x/nQbk29bkBlCWP3DRVEGshyctnYmGQ/97r5rGEpv90xcICeb8se
fbVEY7S1pSZIaof69wF3xk6cBENCTEuNUlruz/anXz7gVu6QRxVuFrN6wjRm2EOW
3l0xGmDAaub7nTFF4R8xitwBT/KQ7r/ieTqM9t3RgODmoeUdITAO7IxjP5W3EwtY
tg5Ehbd5suXXOh/AxtyLnWFKQb3VdE2H
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:21:52 2024 by rpki-client on console-ams.rpki-client.org