Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/562CEB129B7011EF93E52CBE762E951A.roa
File: 562CEB129B7011EF93E52CBE762E951A.roa (raw, json)
Hash identifier: j2OdaqlS7XrL4C5HNFoz2uH7bgLt3RYG5K+LcMwI7N8=
Subject key identifier: 78:59:5B:D9:2C:88:81:DD:62:FF:6F:21:3C:BA:F4:60:42:4F:8E:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/562CEB129B7011EF93E52CBE762E951A.roa
Signing time: Tue 05 Nov 2024 12:20:26 +0000
ROA not before: Tue 05 Nov 2024 12:20:22 +0000
ROA not after: Mon 13 Jan 2025 12:20:22 +0000
asID: 5065
IP address blocks: 154.93.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67503 (0x107af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 5 12:20:22 2024 GMT
Not After : Jan 13 12:20:22 2025 GMT
Subject: CN=672a0d8a-b599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a1:18:22:6a:c0:4e:cc:fc:9c:96:05:5e:7b:
48:7e:59:f4:4e:c3:6f:8b:1f:0c:5c:e1:34:a4:e8:
d0:6c:84:00:c6:63:22:e5:6f:4e:0c:a5:0c:e7:45:
b0:42:b9:fe:db:ed:48:11:e9:06:77:a9:09:5f:86:
ee:73:f9:84:b1:54:65:24:9c:bd:00:00:86:e7:f2:
f1:5f:7b:bb:e2:6f:26:7f:16:46:41:f9:5f:b9:c1:
cd:84:53:cc:c3:fe:02:29:e8:b8:4b:05:86:81:8f:
1f:ef:36:b7:01:02:4e:9c:dd:11:d6:d8:06:c9:d4:
dc:b9:92:aa:8e:79:1e:7a:28:ae:75:f3:5a:53:a8:
70:60:92:87:f9:be:b5:b7:35:44:06:e8:d9:71:12:
2b:7e:f9:a5:32:82:1f:39:e3:d8:b2:3b:62:f1:ef:
e4:a2:3e:cd:37:71:6b:72:6a:71:b8:e8:e0:e8:3c:
d0:9a:27:f3:b2:f8:be:c2:31:8c:a1:15:d3:0f:75:
a1:bb:62:be:d2:05:24:ee:b0:aa:55:75:ff:94:e3:
27:6b:c9:e8:30:da:d9:d7:fa:dd:9d:42:11:68:be:
54:f9:3b:5e:ad:40:f8:b1:7e:d0:0a:b3:0f:17:3a:
0d:94:c0:bc:d4:df:62:5a:57:cf:5b:87:77:ea:4b:
4d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:59:5B:D9:2C:88:81:DD:62:FF:6F:21:3C:BA:F4:60:42:4F:8E:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/562CEB129B7011EF93E52CBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.16.0/22
Signature Algorithm: sha256WithRSAEncryption
25:c9:3d:91:f5:ed:87:7c:a5:c8:5e:65:83:25:a8:ce:37:26:
60:ff:14:20:5a:d8:6c:a6:9b:90:bf:5a:f4:a3:5f:7c:8e:6a:
9c:c0:84:ed:7c:ac:63:8b:f1:bb:34:78:f0:03:62:34:57:c1:
cf:f3:34:9b:26:9e:b5:fe:10:40:81:b7:a6:33:c6:da:d0:e1:
d6:9c:ee:19:e8:a7:5d:42:80:14:f1:9d:eb:e7:9e:a0:39:de:
56:b8:be:bb:d7:92:e3:cf:c2:5a:38:95:33:8a:0e:62:19:bc:
7a:93:c0:79:21:10:9c:fe:18:e5:2f:e5:33:5b:ee:a0:1e:f6:
60:79:3c:61:81:7d:6d:16:71:ea:32:b6:17:00:5e:18:57:f5:
2c:c6:d0:72:0e:b2:16:5e:43:f3:5f:5e:e4:72:a4:00:a4:0f:
30:57:ad:89:ed:cd:04:4c:d3:06:34:c5:75:c5:9a:23:6b:1b:
cc:f7:76:d9:30:86:4d:01:04:e3:70:3e:19:39:1e:66:dd:3c:
6f:ab:13:59:be:e7:57:25:2e:b2:53:2d:9b:ae:88:18:42:81:
26:a0:3a:92:f3:7c:bb:e5:e8:a6:c2:04:eb:7c:3d:40:fc:e9:
e6:1d:49:16:7b:7f:ba:f6:71:83:e1:e3:51:a8:c1:97:56:36:
1e:c4:1a:3e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQevMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTA1MTIyMDIyWhcNMjUwMTEzMTIyMDIyWjAYMRYw
FAYDVQQDEw02NzJhMGQ4YS1iNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt6EYImrATsz8nJYFXntIfln0TsNvix8MXOE0pOjQbIQAxmMi5W9ODKUM
50WwQrn+2+1IEekGd6kJX4buc/mEsVRlJJy9AACG5/LxX3u74m8mfxZGQflfucHN
hFPMw/4CKei4SwWGgY8f7za3AQJOnN0R1tgGydTcuZKqjnkeeiiudfNaU6hwYJKH
+b61tzVEBujZcRIrfvmlMoIfOePYsjti8e/koj7NN3FrcmpxuOjg6DzQmifzsvi+
wjGMoRXTD3Whu2K+0gUk7rCqVXX/lOMna8noMNrZ1/rdnUIRaL5U+TterUD4sX7Q
CrMPFzoNlMC81N9iWlfPW4d36ktNVQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHhZ
W9ksiIHdYv9vITy69GBCT45aMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NjJDRUIxMjlCNzAxMUVGOTNFNTJDQkU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCml0QMA0GCSqGSIb3DQEB
CwUAA4IBAQAlyT2R9e2HfKXIXmWDJajONyZg/xQgWthsppuQv1r0o198jmqcwITt
fKxji/G7NHjwA2I0V8HP8zSbJp61/hBAgbemM8ba0OHWnO4Z6KddQoAU8Z3r556g
Od5WuL6715Ljz8JaOJUzig5iGbx6k8B5IRCc/hjlL+UzW+6gHvZgeTxhgX1tFnHq
MrYXAF4YV/UsxtByDrIWXkPzX17kcqQApA8wV62J7c0ETNMGNMV1xZojaxvM93bZ
MIZNAQTjcD4ZOR5m3TxvqxNZvudXJS6yUy2brogYQoEmoDqS83y75eimwgTrfD1A
/OnmHUkWe3+69nGD4eNRqMGXVjYexBo+
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:47 2024 by rpki-client on console-fra.rpki-client.org