Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AE65D43AA311EFBA489290762E951A.roa
File: 57AE65D43AA311EFBA489290762E951A.roa (raw, json)
Hash identifier: 2KBT6D+fXVD34Id/qcqzf0tOisdhVbIugbUnFf6cBnQ=
Subject key identifier: 00:54:EC:EE:E8:1B:59:A8:81:81:FB:FD:E6:FC:9C:C2:9D:A8:93:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: CD84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AE65D43AA311EFBA489290762E951A.roa
Signing time: Fri 05 Jul 2024 07:51:10 +0000
ROA not before: Fri 05 Jul 2024 07:51:06 +0000
ROA not after: Tue 07 Jan 2025 07:51:06 +0000
asID: 63199
IP address blocks: 154.223.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52612 (0xcd84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 07:51:06 2024 GMT
Not After : Jan 7 07:51:06 2025 GMT
Subject: CN=6687a5ee-f0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:59:f6:3e:40:d4:9e:51:a6:ca:09:f0:d6:
f0:30:2f:a0:e5:2b:24:ec:26:2a:88:bf:ae:4e:88:
0a:02:24:15:7c:03:62:95:b7:57:41:2f:65:98:cd:
9c:2f:a9:4a:b7:ce:36:59:06:c3:c3:50:d7:17:43:
40:4e:42:bc:5e:b3:e6:36:d2:87:90:9a:05:ba:92:
59:cf:36:e2:cb:be:a9:26:29:25:6c:d2:3b:30:5b:
e2:ed:ff:00:8c:a7:79:90:af:8d:d3:7f:25:50:f8:
a0:2d:7c:cb:a3:bf:8e:61:1d:65:52:a6:d9:ba:a6:
81:2e:e0:fb:2a:5b:41:20:f6:be:45:42:73:78:56:
c7:c5:9b:52:0f:6c:9b:0d:f5:0d:9f:09:d0:07:c8:
d3:24:a4:9e:45:6d:16:97:77:74:68:d4:97:b9:09:
18:6a:c9:ca:02:96:37:6d:56:4d:b4:b0:fe:9c:c9:
d2:2c:ae:46:b6:5c:82:1e:e8:dd:8b:4d:7c:69:de:
4a:42:06:94:6f:e3:5f:f9:db:0a:06:a5:82:b3:82:
81:74:18:48:9a:30:44:8a:e5:46:ff:1d:6a:86:2b:
98:32:74:37:15:1d:11:3b:9f:ab:c2:f7:0a:44:fe:
51:13:c4:54:d8:51:2e:4b:1e:17:a7:10:af:4c:89:
4f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:54:EC:EE:E8:1B:59:A8:81:81:FB:FD:E6:FC:9C:C2:9D:A8:93:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57AE65D43AA311EFBA489290762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.88.0/23
Signature Algorithm: sha256WithRSAEncryption
60:ec:6f:88:58:16:49:2d:f8:70:4f:e8:12:35:30:2c:1a:69:
a2:cf:6f:21:ca:94:74:1a:24:e5:31:21:a1:20:1a:54:ba:d7:
7b:80:91:1d:f4:04:32:1d:bf:f4:33:be:5a:34:e4:62:6c:8d:
83:11:67:05:84:4e:6d:12:ff:4c:1f:77:53:bc:4c:d3:d5:7e:
cd:b8:7f:d8:6b:ca:a6:e4:35:68:5a:a8:ee:4f:36:83:1f:0b:
c8:78:27:b7:3e:79:9c:1c:b1:f6:f6:9e:8f:89:cd:0e:f3:97:
31:b2:75:ac:71:1f:09:4d:f4:30:9b:9d:47:ac:2e:4e:9b:bd:
7c:3a:dc:33:c8:46:d7:fc:d4:5b:99:f9:78:68:c2:da:1a:ea:
62:0a:b9:44:bf:d0:2c:4e:f5:db:a2:4f:17:3f:e2:26:a5:24:
74:a0:74:5a:64:73:0a:bc:8e:ad:c3:37:45:f0:2f:32:0b:bd:
8b:4f:dd:1c:cb:f7:fc:15:83:d4:78:72:b2:72:22:01:9a:01:
cb:a8:3b:46:8a:dc:9a:86:93:11:4f:54:15:41:68:a6:ae:cb:
f4:91:db:5c:dc:1c:a1:b1:ff:de:cd:5a:6d:ea:83:21:4b:c7:
bc:0b:1c:04:a0:51:4d:61:52:2d:2a:d5:a2:6f:50:7e:be:a8:
36:ac:50:db
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAM2EMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNzA1MDc1MTA2WhcNMjUwMTA3MDc1MTA2WjAYMRYw
FAYDVQQDEw02Njg3YTVlZS1mMGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvatZ9j5A1J5RpsoJ8NbwMC+g5Ssk7CYqiL+uTogKAiQVfANilbdXQS9l
mM2cL6lKt842WQbDw1DXF0NATkK8XrPmNtKHkJoFupJZzzbiy76pJiklbNI7MFvi
7f8AjKd5kK+N038lUPigLXzLo7+OYR1lUqbZuqaBLuD7KltBIPa+RUJzeFbHxZtS
D2ybDfUNnwnQB8jTJKSeRW0Wl3d0aNSXuQkYasnKApY3bVZNtLD+nMnSLK5GtlyC
Hujdi018ad5KQgaUb+Nf+dsKBqWCs4KBdBhImjBEiuVG/x1qhiuYMnQ3FR0RO5+r
wvcKRP5RE8RU2FEuSx4XpxCvTIlPdwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFABU
7O7oG1mogYH7/eb8nMKdqJPkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81N0FFNjVENDNBQTMxMUVGQkE0ODkyOTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmt9YMA0GCSqGSIb3DQEB
CwUAA4IBAQBg7G+IWBZJLfhwT+gSNTAsGmmiz28hypR0GiTlMSGhIBpUutd7gJEd
9AQyHb/0M75aNORibI2DEWcFhE5tEv9MH3dTvEzT1X7NuH/Ya8qm5DVoWqjuTzaD
HwvIeCe3PnmcHLH29p6Pic0O85cxsnWscR8JTfQwm51HrC5Om718OtwzyEbX/NRb
mfl4aMLaGupiCrlEv9AsTvXbok8XP+ImpSR0oHRaZHMKvI6twzdF8C8yC72LT90c
y/f8FYPUeHKyciIBmgHLqDtGityahpMRT1QVQWimrsv0kdtc3Byhsf/ezVpt6oMh
S8e8CxwEoFFNYVItKtWib1B+vqg2rFDb
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org