Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A0B8CFEA44211EFB37D2B6D762E951A.roa
File: 5A0B8CFEA44211EFB37D2B6D762E951A.roa (raw, json)
Hash identifier: 72SPZHY50El97yIthfLvYRPGNbRwogOKNWxA8PkOuJc=
Subject key identifier: 98:AC:43:B4:B1:7A:18:58:08:E1:96:7A:C4:9C:65:1F:7A:83:3F:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010DCB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A0B8CFEA44211EFB37D2B6D762E951A.roa
Signing time: Sat 16 Nov 2024 17:43:56 +0000
ROA not before: Sat 16 Nov 2024 17:43:52 +0000
ROA not after: Sun 12 Jul 2026 17:43:52 +0000
asID: 55967
IP address blocks: 154.85.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69067 (0x10dcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 16 17:43:52 2024 GMT
Not After : Jul 12 17:43:52 2026 GMT
Subject: CN=6738d9dc-f72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:18:78:a5:e8:6e:61:00:b6:61:4a:2d:66:2e:
0d:5a:f2:63:71:41:ee:e1:45:28:e0:6e:2e:12:4c:
c7:48:43:f1:53:63:0f:8a:d5:e5:1f:d3:84:22:cc:
be:83:dc:24:d7:c1:9a:b8:43:f8:5a:f1:37:de:0a:
40:19:2d:b3:a8:8d:87:58:17:f1:63:b8:27:ab:dd:
2d:91:19:de:5c:8b:e0:29:e8:1c:09:20:81:ee:75:
2f:72:89:15:08:6b:02:5a:d7:94:c6:de:03:a1:c3:
c2:9c:3b:51:76:da:73:3c:7a:92:89:15:3d:17:29:
3d:6d:be:c8:ad:3d:6f:fe:3c:20:d3:ae:98:ef:f7:
20:c7:7f:2d:10:18:c1:57:6c:f3:62:07:79:86:a5:
2d:62:c7:7e:b2:24:0c:f4:f1:85:3f:bd:54:46:6a:
02:a9:76:cd:0a:77:76:ce:f3:69:29:99:58:bd:e7:
cb:8a:d3:8e:1b:8e:e2:c8:d8:af:cf:42:34:91:d5:
57:12:3e:9e:32:49:c3:14:d3:a3:2b:16:e2:ec:c0:
5a:41:c8:ed:8c:cd:41:a3:de:52:c0:2c:52:f0:d7:
76:65:05:f8:59:8b:a4:72:49:04:92:2a:89:99:f6:
df:3b:97:39:41:7a:b4:d5:16:49:2e:0e:f1:2a:b0:
ec:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AC:43:B4:B1:7A:18:58:08:E1:96:7A:C4:9C:65:1F:7A:83:3F:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A0B8CFEA44211EFB37D2B6D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.48.0/21
Signature Algorithm: sha256WithRSAEncryption
98:43:ed:de:90:43:17:ac:a1:2c:2e:72:19:86:84:7b:47:2b:
b9:77:af:59:9b:60:bc:4a:36:c4:60:c1:6e:7e:cc:a9:3e:af:
df:e3:a2:dd:01:92:65:34:9d:d9:96:5b:9b:59:59:35:6b:31:
bf:0c:19:52:45:2e:c6:bf:61:42:58:9f:0a:01:b5:72:01:9a:
8c:78:cb:59:34:c1:c4:a0:ce:74:b6:a4:6d:6c:26:8f:a7:14:
e4:07:92:48:65:8b:8e:56:38:24:20:99:94:be:12:51:62:e3:
e5:21:30:fa:c2:1c:c6:32:8d:47:ad:c9:c0:10:3f:7a:3d:7e:
8f:fc:3a:3e:98:91:80:27:8b:f4:35:d7:1b:87:a9:e7:bf:c4:
5e:1d:c8:dc:86:21:dc:a7:83:a8:f5:54:a5:fa:aa:21:e9:08:
dc:96:ba:94:6b:77:bd:ce:b9:ac:ce:cd:68:6e:cf:15:b0:c2:
8c:47:bc:3a:58:78:87:b9:7c:72:2b:9e:7d:3e:e6:bd:50:2f:
f3:d4:99:fc:f8:ea:78:8b:a8:1e:22:04:56:d8:09:41:7d:5d:
ca:ac:2b:13:ea:a4:0d:37:ae:67:b6:4b:21:9c:34:55:ed:10:
56:d7:d9:eb:13:5a:c9:41:f3:1a:c9:04:eb:de:8e:f5:a4:5c:
9e:9b:dc:83
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ3LMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE2MTc0MzUyWhcNMjYwNzEyMTc0MzUyWjAYMRYw
FAYDVQQDEw02NzM4ZDlkYy1mNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAshh4pehuYQC2YUotZi4NWvJjcUHu4UUo4G4uEkzHSEPxU2MPitXlH9OE
Isy+g9wk18GauEP4WvE33gpAGS2zqI2HWBfxY7gnq90tkRneXIvgKegcCSCB7nUv
cokVCGsCWteUxt4DocPCnDtRdtpzPHqSiRU9Fyk9bb7IrT1v/jwg066Y7/cgx38t
EBjBV2zzYgd5hqUtYsd+siQM9PGFP71URmoCqXbNCnd2zvNpKZlYvefLitOOG47i
yNivz0I0kdVXEj6eMknDFNOjKxbi7MBaQcjtjM1Bo95SwCxS8Nd2ZQX4WYukckkE
kiqJmfbfO5c5QXq01RZJLg7xKrDs2wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJis
Q7SxehhYCOGWesScZR96gz9LMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QTBCOENGRUE0NDIxMUVGQjM3RDJCNkQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmlUwMA0GCSqGSIb3DQEB
CwUAA4IBAQCYQ+3ekEMXrKEsLnIZhoR7Ryu5d69Zm2C8SjbEYMFufsypPq/f46Ld
AZJlNJ3ZllubWVk1azG/DBlSRS7Gv2FCWJ8KAbVyAZqMeMtZNMHEoM50tqRtbCaP
pxTkB5JIZYuOVjgkIJmUvhJRYuPlITD6whzGMo1HrcnAED96PX6P/Do+mJGAJ4v0
Ndcbh6nnv8ReHcjchiHcp4Oo9VSl+qoh6QjclrqUa3e9zrmszs1obs8VsMKMR7w6
WHiHuXxyK559Pua9UC/z1Jn8+Op4i6geIgRW2AlBfV3KrCsT6qQNN65ntkshnDRV
7RBW19nrE1rJQfMayQTr3o71pFyem9yD
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:31 2024 by rpki-client on console-fra.rpki-client.org