Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DEC6FDCA4BF11EF8ACF6889762E951A.roa
File: 5DEC6FDCA4BF11EF8ACF6889762E951A.roa (raw, json)
Hash identifier: rtz06lp03AoIR06Vqcj/kx5BPuT8T6Rol9aYc1O5uCI=
Subject key identifier: 5E:77:D8:BD:AD:98:3A:EF:23:07:2E:96:C6:27:79:E9:B0:90:83:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DEC6FDCA4BF11EF8ACF6889762E951A.roa
Signing time: Sun 17 Nov 2024 08:38:49 +0000
ROA not before: Sun 17 Nov 2024 08:38:46 +0000
ROA not after: Wed 19 Nov 2025 08:38:46 +0000
asID: 9123
IP address blocks: 154.194.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69222 (0x10e66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 08:38:46 2024 GMT
Not After : Nov 19 08:38:46 2025 GMT
Subject: CN=6739ab99-d3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5b:ce:93:5a:f0:cc:35:3a:38:a8:97:6c:a9:
f6:5c:62:3e:ff:b1:5e:80:c9:97:5e:10:ef:c3:87:
17:52:a4:68:cd:e6:16:ec:52:ac:57:a6:b6:e4:ce:
ad:a1:73:dd:e0:09:0b:82:19:56:37:9c:98:0d:53:
97:b5:e1:95:ce:a7:74:2a:02:60:3b:89:3a:c4:58:
d8:ae:4e:6b:55:45:b1:4c:00:aa:30:ad:e1:ff:32:
8f:8c:5e:78:8b:16:62:41:24:8d:5d:f0:e6:35:f8:
38:d1:de:7b:b0:8a:be:8d:2e:a7:00:ea:af:e1:78:
56:33:c8:4a:1b:18:e3:a3:fe:59:c8:fd:28:9a:a7:
d8:49:22:46:ff:bb:27:dc:77:61:a7:7f:53:7f:1a:
47:b2:d3:cf:c2:7a:05:66:2a:b5:72:29:22:73:c1:
ad:8f:b4:46:8b:ba:5f:e2:1f:84:47:c4:65:83:08:
ab:55:52:b8:19:67:9f:a4:56:ea:d8:97:f5:4a:2b:
43:e3:8a:89:7f:1f:b2:bf:4a:47:38:cb:32:1c:91:
7b:a4:13:db:b0:4e:49:0c:31:f6:4b:78:a5:de:b3:
f2:fc:29:85:57:5a:5a:37:ac:db:77:60:93:07:69:
b4:27:31:e8:9e:08:97:97:4d:35:9f:e3:47:fe:8b:
30:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:77:D8:BD:AD:98:3A:EF:23:07:2E:96:C6:27:79:E9:B0:90:83:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DEC6FDCA4BF11EF8ACF6889762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.53.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e6:59:dc:c0:57:16:47:34:8b:46:6f:d4:21:68:13:ad:95:
b2:d0:35:d3:c1:16:56:4c:0d:4f:38:bf:fb:fa:82:87:70:fc:
c5:95:1e:e8:1a:fb:7e:a2:36:8f:bc:1d:21:b7:a9:3d:a2:e4:
af:e7:3c:60:22:ea:7c:32:bd:8e:93:8e:a5:7a:e5:fb:f5:b3:
fc:bc:5e:f3:7f:eb:4d:c0:96:9b:d4:4a:c9:b7:e5:f6:b0:69:
23:a2:90:38:61:f8:65:eb:fe:c9:07:0b:b2:46:6d:70:fc:4f:
dd:df:5c:76:96:b8:b8:61:93:f1:ac:e8:d3:58:16:d4:6b:fb:
ca:59:04:5a:d6:f5:2f:38:5b:c4:b0:2e:83:a7:bb:89:3b:39:
9c:e7:f3:e9:81:bc:38:8d:6a:7c:9b:43:71:30:0f:16:b3:8e:
7a:46:47:fd:a8:34:8a:05:9e:02:6f:d9:11:e4:6c:73:ca:dd:
28:30:d7:97:0b:26:4b:6e:2a:07:d4:b4:14:b6:af:7c:26:61:
47:e8:21:0a:49:7d:22:68:b6:ce:68:3c:ee:36:19:9d:7e:ea:
10:d2:8f:77:af:b5:dc:68:b4:d7:11:fd:6e:5d:c5:fc:27:60:
13:56:b8:5e:d5:ff:cc:60:82:8e:08:25:6e:ff:eb:0a:1a:06:
98:99:99:b7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ5mMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE3MDgzODQ2WhcNMjUxMTE5MDgzODQ2WjAYMRYw
FAYDVQQDEw02NzM5YWI5OS1kM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxVvOk1rwzDU6OKiXbKn2XGI+/7FegMmXXhDvw4cXUqRozeYW7FKsV6a2
5M6toXPd4AkLghlWN5yYDVOXteGVzqd0KgJgO4k6xFjYrk5rVUWxTACqMK3h/zKP
jF54ixZiQSSNXfDmNfg40d57sIq+jS6nAOqv4XhWM8hKGxjjo/5ZyP0omqfYSSJG
/7sn3Hdhp39TfxpHstPPwnoFZiq1cikic8Gtj7RGi7pf4h+ER8RlgwirVVK4GWef
pFbq2Jf1SitD44qJfx+yv0pHOMsyHJF7pBPbsE5JDDH2S3il3rPy/CmFV1paN6zb
d2CTB2m0JzHongiXl001n+NH/oswAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFF53
2L2tmDrvIwculsYneemwkIMOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81REVDNkZEQ0E0QkYxMUVGOEFDRjY4ODk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI1MA0GCSqGSIb3DQEB
CwUAA4IBAQBO5lncwFcWRzSLRm/UIWgTrZWy0DXTwRZWTA1POL/7+oKHcPzFlR7o
Gvt+ojaPvB0ht6k9ouSv5zxgIup8Mr2Ok46leuX79bP8vF7zf+tNwJab1ErJt+X2
sGkjopA4Yfhl6/7JBwuyRm1w/E/d31x2lri4YZPxrOjTWBbUa/vKWQRa1vUvOFvE
sC6Dp7uJOzmc5/Ppgbw4jWp8m0NxMA8Ws456Rkf9qDSKBZ4Cb9kR5Gxzyt0oMNeX
CyZLbioH1LQUtq98JmFH6CEKSX0iaLbOaDzuNhmdfuoQ0o93r7XcaLTXEf1uXcX8
J2ATVrhe1f/MYIKOCCVu/+sKGgaYmZm3
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:54:24 2024 by rpki-client on console-fra.rpki-client.org