Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F7DAAFC768711EFBA629798762E951A.roa
File: 5F7DAAFC768711EFBA629798762E951A.roa (raw, json)
Hash identifier: lfVbfHNtzXeP3NZR6IKruJZfRbXK3qpqybKomjBEiHQ=
Subject key identifier: DB:A6:B8:44:B3:B6:61:30:02:E8:BC:0F:77:0D:DF:96:86:8C:44:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F083
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F7DAAFC768711EFBA629798762E951A.roa
Signing time: Thu 19 Sep 2024 13:02:07 +0000
ROA not before: Thu 19 Sep 2024 13:02:03 +0000
ROA not after: Fri 08 Aug 2025 13:02:03 +0000
asID: 133199
IP address blocks: 154.204.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61571 (0xf083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:02:03 2024 GMT
Not After : Aug 8 13:02:03 2025 GMT
Subject: CN=66ec20cf-07bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5c:59:44:c5:71:4c:3e:1a:a3:64:ef:c9:bd:
df:90:4d:a4:41:37:5e:53:62:98:1d:d8:5e:db:0c:
65:a5:6c:ce:89:f4:b5:9c:85:4e:da:c5:87:a2:b1:
92:1d:21:29:9b:f3:a0:e4:a1:2a:88:18:21:d4:47:
9e:e7:a2:b6:84:7f:49:11:bc:bc:b2:5c:32:b2:88:
19:f9:d9:c6:42:79:d6:9e:fd:0d:1f:e2:c7:3b:45:
40:70:39:be:15:7f:28:a2:82:9c:ad:53:36:64:5f:
ae:21:da:62:38:75:69:d6:7b:c7:4b:33:05:62:f2:
e0:ad:8e:66:ed:56:82:53:38:b7:28:8f:7f:b9:4c:
dc:49:44:0c:9e:f8:fc:e0:77:8e:fc:80:ad:72:b6:
41:f6:ec:e6:46:4a:db:9b:d1:3c:fb:b0:54:c4:23:
4a:40:de:b8:1a:cb:d1:1e:ad:c1:cf:31:63:4b:d2:
71:65:ab:ed:3c:f0:0e:05:d0:fd:95:98:6f:df:47:
9c:42:9d:1a:b6:0b:e9:81:88:ad:89:82:71:38:3f:
96:bf:a2:70:dc:dd:ac:08:bc:33:88:61:9e:9c:e2:
08:95:0c:81:d6:8f:6c:59:41:47:95:6c:30:38:3f:
cb:1e:a1:38:d8:b1:59:21:c8:5e:ec:ee:aa:32:df:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A6:B8:44:B3:B6:61:30:02:E8:BC:0F:77:0D:DF:96:86:8C:44:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F7DAAFC768711EFBA629798762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.52.0/24
Signature Algorithm: sha256WithRSAEncryption
61:49:02:02:bb:af:4b:f0:a2:e0:0e:79:01:fd:ff:21:bf:48:
56:c1:be:3b:a9:2a:0e:ab:6f:98:b0:2a:62:5f:79:ce:71:c1:
71:9f:e8:1d:35:1c:3e:99:35:32:d4:8d:45:cd:75:b7:7b:43:
64:ed:59:22:8b:21:da:5d:d5:9f:e3:8a:61:1c:c1:0e:ad:dc:
d2:43:83:2e:59:7a:54:cd:77:0c:ff:e5:f0:8e:30:25:a4:96:
8c:41:61:88:cb:f7:cd:0b:89:57:4e:52:ca:1f:d6:24:17:16:
00:a6:d0:e8:64:e3:63:5f:a6:82:9c:c0:0f:a5:d5:4e:0c:01:
82:ae:b2:31:0d:eb:22:34:49:ff:8d:0e:c8:aa:86:81:97:f8:
60:bf:99:78:20:54:45:88:6c:8f:24:ce:4d:e3:21:b2:79:b0:
a1:7b:07:a7:68:e3:98:59:b8:76:77:a7:82:82:36:67:8d:4c:
5e:9e:ad:d7:b3:ce:52:70:00:57:db:d4:ed:93:d0:66:a3:9f:
dc:78:c6:74:47:3f:1b:61:8a:5e:98:48:64:44:d7:09:29:69:
4f:c8:bf:d1:4e:43:5d:81:90:1b:fd:f9:01:a2:d1:fc:8e:5d:
de:42:47:2d:d7:1d:83:7a:24:bc:69:d6:e3:6d:3f:99:7d:2c:
22:1b:02:18
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPCDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE5MTMwMjAzWhcNMjUwODA4MTMwMjAzWjAYMRYw
FAYDVQQDEw02NmVjMjBjZi0wN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwFxZRMVxTD4ao2Tvyb3fkE2kQTdeU2KYHdhe2wxlpWzOifS1nIVO2sWH
orGSHSEpm/Og5KEqiBgh1Eee56K2hH9JEby8slwysogZ+dnGQnnWnv0NH+LHO0VA
cDm+FX8oooKcrVM2ZF+uIdpiOHVp1nvHSzMFYvLgrY5m7VaCUzi3KI9/uUzcSUQM
nvj84HeO/ICtcrZB9uzmRkrbm9E8+7BUxCNKQN64GsvRHq3BzzFjS9JxZavtPPAO
BdD9lZhv30ecQp0atgvpgYitiYJxOD+Wv6Jw3N2sCLwziGGenOIIlQyB1o9sWUFH
lWwwOD/LHqE42LFZIche7O6qMt8JlwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNum
uESztmEwAui8D3cN35aGjETQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81RjdEQUFGQzc2ODcxMUVGQkE2Mjk3OTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsw0MA0GCSqGSIb3DQEB
CwUAA4IBAQBhSQICu69L8KLgDnkB/f8hv0hWwb47qSoOq2+YsCpiX3nOccFxn+gd
NRw+mTUy1I1FzXW3e0Nk7VkiiyHaXdWf44phHMEOrdzSQ4MuWXpUzXcM/+XwjjAl
pJaMQWGIy/fNC4lXTlLKH9YkFxYAptDoZONjX6aCnMAPpdVODAGCrrIxDesiNEn/
jQ7IqoaBl/hgv5l4IFRFiGyPJM5N4yGyebChewenaOOYWbh2d6eCgjZnjUxenq3X
s85ScABX29Ttk9Bmo5/ceMZ0Rz8bYYpemEhkRNcJKWlPyL/RTkNdgZAb/fkBotH8
jl3eQkct1x2DeiS8adbjbT+ZfSwiGwIY
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:04:06 2024 by rpki-client on console-ams.rpki-client.org