Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DC3DEB6725911EFB531BF71762E951A.roa
File: 5DC3DEB6725911EFB531BF71762E951A.roa (raw, json)
Hash identifier: nutlHFYuVTPNmJlKQJ5qX+DCE3plu+o/8JbEalSjfXA=
Subject key identifier: B7:88:A3:50:9D:43:43:EE:A3:1D:B4:D2:D1:A7:8B:9E:3A:74:EE:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EDEC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DC3DEB6725911EFB531BF71762E951A.roa
Signing time: Sat 14 Sep 2024 05:22:42 +0000
ROA not before: Sat 14 Sep 2024 05:22:39 +0000
ROA not after: Tue 31 Dec 2024 05:22:39 +0000
asID: 17561
IP address blocks: 154.217.80.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60908 (0xedec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 05:22:39 2024 GMT
Not After : Dec 31 05:22:39 2024 GMT
Subject: CN=66e51da2-2654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a0:17:8f:c0:89:8f:26:89:07:8c:b7:6f:27:
ac:02:af:12:95:88:95:19:05:34:61:45:79:27:6d:
d0:fe:38:15:8a:8b:5b:cb:94:25:82:bc:72:0e:37:
4b:ba:01:76:b9:7f:15:91:41:fc:fd:20:de:a5:0c:
fc:25:2f:93:b1:50:02:0b:90:9d:b0:bf:c6:56:dc:
65:b3:e3:a8:a7:da:e5:ca:a1:de:69:d7:78:c6:d7:
0b:97:1e:85:b1:2b:40:4b:36:da:f9:d0:ff:c3:da:
f0:c6:bb:68:0e:7b:53:f1:22:bd:07:8a:b0:49:04:
fb:2d:15:9e:f0:b1:bb:0e:dd:e3:be:88:e0:4c:e7:
32:ac:d9:87:ba:7c:43:63:fc:a3:36:da:6a:64:8c:
df:27:46:05:7b:64:d5:df:e3:c1:42:d9:b8:ee:9e:
8a:9f:6b:4d:61:74:2e:38:d9:15:1f:bc:57:ea:a3:
e5:5c:a9:10:9d:15:c5:55:e1:72:cb:a3:b3:2f:a8:
e7:13:ea:a8:9f:84:9a:67:11:2b:6c:b7:0e:e1:33:
a4:b6:21:b7:ab:2a:41:cc:79:8b:2e:79:54:c1:fc:
c4:e5:59:56:9e:cb:77:d2:2c:56:72:32:a3:ab:f9:
fb:f6:b4:e0:d4:91:83:22:ce:92:e1:9d:f9:19:ae:
00:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:88:A3:50:9D:43:43:EE:A3:1D:B4:D2:D1:A7:8B:9E:3A:74:EE:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DC3DEB6725911EFB531BF71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.80.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:b7:78:b7:16:10:f1:cf:87:7b:e9:b4:9f:55:d3:21:a3:e9:
94:8b:94:03:5c:df:c4:0d:a0:46:d0:59:1f:4d:4c:e1:47:26:
aa:de:74:ce:a8:5a:9a:fa:b1:6b:29:98:8c:e3:ed:a7:79:c5:
3e:c3:47:56:4d:69:a2:89:4a:7d:8f:3b:be:f6:7f:90:9f:3c:
7d:39:04:cc:38:75:bc:15:78:26:1d:b7:67:c6:e7:ec:b8:c6:
5a:47:d7:01:c1:6c:f8:85:6a:44:f3:83:b0:e0:bf:b2:f5:69:
50:96:b5:74:00:4e:bf:44:4a:b7:ea:3f:23:57:91:1b:44:a8:
a8:72:1b:8c:89:fe:05:a4:f5:27:1b:65:89:60:9e:0f:c0:62:
2a:cb:62:e4:6b:8d:43:cc:b1:d0:96:7d:c8:0a:3d:44:ec:f4:
84:83:d9:09:56:cc:97:dc:9a:88:7e:d4:8b:bb:54:64:42:cc:
48:0e:49:79:ee:59:f5:31:af:18:91:e5:8b:f6:00:a3:ca:75:
11:a7:91:5b:f5:71:ec:60:06:ee:76:0b:21:3f:f3:9f:dd:d2:
6d:a0:97:7a:23:8e:17:87:9f:16:74:9b:76:72:c4:75:5e:86:
10:31:31:85:7e:22:34:48:e2:23:80:2f:4b:4e:dc:96:21:90:
e1:cc:f1:47
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAO3sMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE0MDUyMjM5WhcNMjQxMjMxMDUyMjM5WjAYMRYw
FAYDVQQDEw02NmU1MWRhMi0yNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5qAXj8CJjyaJB4y3byesAq8SlYiVGQU0YUV5J23Q/jgViotby5Qlgrxy
DjdLugF2uX8VkUH8/SDepQz8JS+TsVACC5CdsL/GVtxls+Oop9rlyqHeadd4xtcL
lx6FsStASzba+dD/w9rwxrtoDntT8SK9B4qwSQT7LRWe8LG7Dt3jvojgTOcyrNmH
unxDY/yjNtpqZIzfJ0YFe2TV3+PBQtm47p6Kn2tNYXQuONkVH7xX6qPlXKkQnRXF
VeFyy6OzL6jnE+qon4SaZxErbLcO4TOktiG3qypBzHmLLnlUwfzE5VlWnst30ixW
cjKjq/n79rTg1JGDIs6S4Z35Ga4AmQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLeI
o1CdQ0Puox200tGni546dO4QMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81REMzREVCNjcyNTkxMUVGQjUzMUJGNzE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDmtlQMA0GCSqGSIb3DQEB
CwUAA4IBAQArt3i3FhDxz4d76bSfVdMho+mUi5QDXN/EDaBG0FkfTUzhRyaq3nTO
qFqa+rFrKZiM4+2necU+w0dWTWmiiUp9jzu+9n+Qnzx9OQTMOHW8FXgmHbdnxufs
uMZaR9cBwWz4hWpE84Ow4L+y9WlQlrV0AE6/REq36j8jV5EbRKiochuMif4FpPUn
G2WJYJ4PwGIqy2Lka41DzLHQln3ICj1E7PSEg9kJVsyX3JqIftSLu1RkQsxIDkl5
7ln1Ma8YkeWL9gCjynURp5Fb9XHsYAbudgshP/Of3dJtoJd6I44Xh58WdJt2csR1
XoYQMTGFfiI0SOIjgC9LTtyWIZDhzPFH
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:05 2024 by rpki-client on console-ams.rpki-client.org