Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B54458A4C411EF8B5C4DA7762E951A.roa
File: 67B54458A4C411EF8B5C4DA7762E951A.roa (raw, json)
Hash identifier: BLS+4odBoo38vx1BhfsHQANXeTzKjtm61GcH9agc7SA=
Subject key identifier: A3:A3:23:D5:4D:B4:C1:D3:2B:83:88:F8:52:72:BC:0D:4C:7D:E6:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B54458A4C411EF8B5C4DA7762E951A.roa
Signing time: Sun 17 Nov 2024 09:14:53 +0000
ROA not before: Sun 17 Nov 2024 09:14:50 +0000
ROA not after: Mon 25 Nov 2024 09:14:50 +0000
asID: 135423
IP address blocks: 154.205.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69234 (0x10e72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 09:14:50 2024 GMT
Not After : Nov 25 09:14:50 2024 GMT
Subject: CN=6739b40d-7b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e3:8c:52:d3:d5:5a:de:41:1f:f7:ac:97:50:
ba:1e:81:6f:5e:87:5f:e3:74:d0:7f:be:02:6d:cd:
bd:86:58:24:b4:9e:d4:74:04:1a:a3:20:46:46:a6:
4d:3e:e5:9c:a2:97:cb:bd:0a:c3:66:47:df:2e:b4:
f3:cb:39:c0:00:cd:ec:be:50:f3:67:62:04:07:15:
4f:05:a9:b2:ed:b6:c0:48:f6:54:e4:38:a0:a7:c2:
b9:bd:70:55:09:da:d7:ff:2c:8c:e9:d8:87:5c:cb:
27:76:09:16:d4:9a:36:41:9a:51:f6:a5:0c:c0:17:
6c:f6:64:16:9d:fe:2a:5c:0d:78:03:b6:12:71:58:
74:04:1c:87:7d:ca:af:b4:5c:8c:e8:ed:b5:d0:a3:
f4:a8:0f:6f:14:9a:82:b9:a9:b2:85:c0:9c:41:6f:
66:28:fe:26:5d:8f:54:8e:5d:c0:c2:00:48:69:00:
96:7b:47:d6:5e:56:d2:07:9a:15:a3:3c:eb:c2:42:
13:ca:21:b5:0a:88:72:20:c8:3d:c4:e3:6a:07:28:
f2:43:21:c0:57:6c:85:c6:3b:03:62:9a:45:52:0b:
39:37:43:39:06:05:e5:04:39:5a:51:10:e5:d7:1a:
1d:ba:12:01:f5:51:2a:c3:24:f0:af:05:7d:79:1e:
e2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A3:23:D5:4D:B4:C1:D3:2B:83:88:F8:52:72:BC:0D:4C:7D:E6:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B54458A4C411EF8B5C4DA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.20.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:ae:30:cc:42:1e:0c:50:5e:7e:ad:04:bc:3d:f0:1c:d6:d4:
7d:ef:e3:17:3f:51:08:46:b4:7b:78:16:67:84:47:c5:76:f9:
7b:7f:4b:b5:54:69:10:34:6e:58:1f:95:31:65:81:3e:43:66:
6a:dc:9b:62:67:92:5d:03:2e:57:c3:81:f7:f0:22:1d:1a:3d:
fd:26:60:6b:5f:5b:96:9a:99:2f:74:72:5e:4d:2a:09:b1:7c:
99:a9:08:3c:5e:8b:b1:ba:b5:fc:23:e4:b6:b9:d5:dc:56:ff:
41:c7:aa:2b:8a:e3:a4:a8:23:b0:eb:2c:48:e3:2a:c6:67:fe:
e5:d6:6b:0c:c9:8c:61:65:72:f6:56:92:7f:af:55:d0:5a:94:
e3:25:4f:7c:35:5c:ee:7f:b5:9f:2b:5d:43:69:b1:c0:12:15:
d9:a6:04:a9:80:95:48:ee:21:ad:ab:34:a5:28:23:f5:0d:3c:
f2:55:1c:cb:5c:e9:d9:f9:46:db:43:f2:fb:7a:99:52:25:a9:
a1:0e:ca:51:33:5b:f3:82:9c:2c:6e:2f:4c:e6:5a:47:5f:d1:
5d:8f:14:e4:f8:ad:da:a1:3b:89:09:73:13:f3:3f:6c:a0:09:
28:3a:39:f2:2b:6a:96:7f:c1:e4:90:72:c5:e5:d7:8f:80:bf:
6e:7b:d5:ec
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ5yMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE3MDkxNDUwWhcNMjQxMTI1MDkxNDUwWjAYMRYw
FAYDVQQDEw02NzM5YjQwZC03YjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAteOMUtPVWt5BH/esl1C6HoFvXodf43TQf74Cbc29hlgktJ7UdAQaoyBG
RqZNPuWcopfLvQrDZkffLrTzyznAAM3svlDzZ2IEBxVPBamy7bbASPZU5Digp8K5
vXBVCdrX/yyM6diHXMsndgkW1Jo2QZpR9qUMwBds9mQWnf4qXA14A7YScVh0BByH
fcqvtFyM6O210KP0qA9vFJqCuamyhcCcQW9mKP4mXY9Ujl3AwgBIaQCWe0fWXlbS
B5oVozzrwkITyiG1CohyIMg9xONqByjyQyHAV2yFxjsDYppFUgs5N0M5BgXlBDla
URDl1xoduhIB9VEqwyTwrwV9eR7iiQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKOj
I9VNtMHTK4OI+FJyvA1Mfea2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82N0I1NDQ1OEE0QzQxMUVGOEI1QzREQTc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCms0UMA0GCSqGSIb3DQEB
CwUAA4IBAQBOrjDMQh4MUF5+rQS8PfAc1tR97+MXP1EIRrR7eBZnhEfFdvl7f0u1
VGkQNG5YH5UxZYE+Q2Zq3JtiZ5JdAy5Xw4H38CIdGj39JmBrX1uWmpkvdHJeTSoJ
sXyZqQg8XouxurX8I+S2udXcVv9Bx6oriuOkqCOw6yxI4yrGZ/7l1msMyYxhZXL2
VpJ/r1XQWpTjJU98NVzuf7WfK11DabHAEhXZpgSpgJVI7iGtqzSlKCP1DTzyVRzL
XOnZ+UbbQ/L7eplSJamhDspRM1vzgpwsbi9M5lpHX9FdjxTk+K3aoTuJCXMT8z9s
oAkoOjnyK2qWf8HkkHLF5dePgL9ue9Xs
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:33:28 2024 by rpki-client on console-fra.rpki-client.org