Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6940DA60A71E11EFA0C5D569762E951A.roa
File: 6940DA60A71E11EFA0C5D569762E951A.roa (raw, json)
Hash identifier: VX3Cj7lAFRwHvG1i1JoEjYVjkU1HAFgsAygF9BL6UkQ=
Subject key identifier: 7A:7B:A5:11:C1:4E:E9:6D:74:A9:89:AA:1D:CF:30:B7:1F:57:CB:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F51
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6940DA60A71E11EFA0C5D569762E951A.roa
Signing time: Wed 20 Nov 2024 09:04:13 +0000
ROA not before: Wed 20 Nov 2024 09:04:09 +0000
ROA not after: Thu 05 Dec 2024 09:04:09 +0000
asID: 5065
IP address blocks: 154.94.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69457 (0x10f51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 09:04:09 2024 GMT
Not After : Dec 5 09:04:09 2024 GMT
Subject: CN=673da60d-90d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:72:99:59:25:46:9d:27:18:81:e8:6f:08:
2b:08:02:3b:52:db:c0:93:15:33:d6:1c:8d:7a:d5:
38:54:c4:88:df:e4:08:82:05:3f:2b:9d:24:ce:e3:
46:54:9c:0f:9b:78:10:bf:cd:c2:a4:bc:59:d9:bb:
0d:c1:a7:21:f0:e9:23:d2:fe:d1:b7:99:62:d8:1c:
dc:78:8b:d6:40:f6:f0:3f:4f:44:10:3b:89:0c:07:
e9:8d:ed:ae:0a:2d:48:5c:92:6d:a2:5f:33:d0:a8:
53:13:72:65:1e:50:c4:96:51:de:97:9d:3f:d9:95:
08:1e:83:0e:11:73:95:2d:bc:ca:b7:8d:86:28:f3:
08:0c:2f:c8:47:38:21:90:94:10:c2:83:ec:71:a4:
9a:e7:8b:63:a5:77:f7:6c:0d:e0:c8:09:b9:e7:85:
7a:b5:30:ad:7c:17:0d:e5:a4:b9:01:58:85:d8:67:
8a:e2:f6:34:52:4d:2d:f6:6b:d5:5c:97:c6:88:41:
6f:e4:68:3d:2a:7d:da:24:8a:35:6b:bc:f3:b9:54:
f4:58:75:85:af:ee:13:71:3a:59:3e:5d:76:80:35:
85:51:f5:d8:b2:8e:1a:4a:ee:c3:5a:7d:33:ed:c4:
a0:ef:cc:b6:8c:52:10:87:2c:12:5c:9b:4d:e0:88:
80:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:7B:A5:11:C1:4E:E9:6D:74:A9:89:AA:1D:CF:30:B7:1F:57:CB:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6940DA60A71E11EFA0C5D569762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.32.0/24
Signature Algorithm: sha256WithRSAEncryption
83:68:bc:04:12:d3:ad:87:0d:bc:76:e0:42:9b:93:fd:b4:45:
2a:e8:a5:97:80:60:8a:66:fb:22:79:1b:da:fa:d3:78:16:2b:
a3:15:98:20:14:c6:21:c6:83:1f:f9:54:4a:3d:8a:17:5f:a8:
64:c7:18:5c:c1:1c:4f:37:54:28:bb:c2:2a:ec:8d:56:55:96:
45:db:09:14:81:0d:02:58:15:c6:48:f8:07:db:c6:ac:0d:1d:
95:ec:62:82:12:4e:22:28:05:a9:27:aa:f3:46:33:6b:66:4c:
6d:02:47:57:27:37:8c:7c:1a:52:7b:11:db:4f:d4:80:d6:44:
45:64:f8:1e:bf:88:f5:27:83:ea:ba:94:25:21:63:3d:12:c9:
75:92:1f:d6:5d:94:11:7e:a9:8d:90:9a:de:a7:4b:b6:d5:b8:
29:c1:32:dd:9d:e4:e8:59:0f:66:ed:c2:4c:b9:44:36:af:00:
94:00:50:61:b2:92:7c:58:4c:03:22:a6:f6:92:16:19:a5:d8:
74:80:c2:1a:97:e2:65:8f:e4:a2:0e:66:6f:5d:5c:06:eb:61:
44:13:82:e9:69:82:12:5b:b8:fa:4d:f2:ac:d0:6d:0c:db:6f:
6a:c0:42:26:73:04:a7:bb:6d:eb:ff:f4:f0:74:fb:db:ce:3c:
ba:1c:d0:19
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ9RMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIwMDkwNDA5WhcNMjQxMjA1MDkwNDA5WjAYMRYw
FAYDVQQDEw02NzNkYTYwZC05MGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs9tymVklRp0nGIHobwgrCAI7UtvAkxUz1hyNetU4VMSI3+QIggU/K50k
zuNGVJwPm3gQv83CpLxZ2bsNwach8Okj0v7Rt5li2BzceIvWQPbwP09EEDuJDAfp
je2uCi1IXJJtol8z0KhTE3JlHlDEllHel50/2ZUIHoMOEXOVLbzKt42GKPMIDC/I
RzghkJQQwoPscaSa54tjpXf3bA3gyAm554V6tTCtfBcN5aS5AViF2GeK4vY0Uk0t
9mvVXJfGiEFv5Gg9Kn3aJIo1a7zzuVT0WHWFr+4TcTpZPl12gDWFUfXYso4aSu7D
Wn0z7cSg78y2jFIQhywSXJtN4IiA9wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHp7
pRHBTultdKmJqh3PMLcfV8unMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82OTQwREE2MEE3MUUxMUVGQTBDNUQ1Njk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4gMA0GCSqGSIb3DQEB
CwUAA4IBAQCDaLwEEtOthw28duBCm5P9tEUq6KWXgGCKZvsieRva+tN4FiujFZgg
FMYhxoMf+VRKPYoXX6hkxxhcwRxPN1Qou8Iq7I1WVZZF2wkUgQ0CWBXGSPgH28as
DR2V7GKCEk4iKAWpJ6rzRjNrZkxtAkdXJzeMfBpSexHbT9SA1kRFZPgev4j1J4Pq
upQlIWM9Esl1kh/WXZQRfqmNkJrep0u21bgpwTLdneToWQ9m7cJMuUQ2rwCUAFBh
spJ8WEwDIqb2khYZpdh0gMIal+Jlj+SiDmZvXVwG62FEE4LpaYISW7j6TfKs0G0M
229qwEImcwSnu23r//TwdPvbzjy6HNAZ
-----END CERTIFICATE-----
Generated at Sun Nov 24 18:22:40 2024 by rpki-client on console-ams.rpki-client.org