Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/705A9F64A71B11EF8A20AB58762E951A.roa
File: 705A9F64A71B11EF8A20AB58762E951A.roa (raw, json)
Hash identifier: SWuOq4XgT3KXrEuePpaIClyBX+JfDtbb9zUXGqsobRw=
Subject key identifier: 9F:F4:89:43:EA:B0:22:A4:33:1F:FE:AB:A7:0A:42:B0:BB:56:C5:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F2D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/705A9F64A71B11EF8A20AB58762E951A.roa
Signing time: Wed 20 Nov 2024 08:42:56 +0000
ROA not before: Wed 20 Nov 2024 08:42:52 +0000
ROA not after: Thu 05 Dec 2024 08:42:52 +0000
asID: 5065
IP address blocks: 154.94.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69421 (0x10f2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 20 08:42:52 2024 GMT
Not After : Dec 5 08:42:52 2024 GMT
Subject: CN=673da110-919d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:68:b8:54:4d:b7:8e:d7:6c:11:65:f4:e5:6e:
f4:ed:69:21:c4:f9:22:80:6e:52:14:88:ba:80:6e:
b1:93:4d:55:0c:38:ff:fa:f6:8c:e3:a7:79:a5:4f:
48:78:f9:16:96:55:5a:2e:45:65:10:f7:0d:1c:0f:
76:6e:4d:da:7b:00:bd:44:ab:cb:76:f5:11:d2:f3:
c6:f5:0a:e8:54:90:f8:a1:19:ab:d1:d2:bd:be:e3:
40:1c:64:52:e5:28:84:ad:ef:8b:5e:43:2c:4a:42:
05:c9:fa:7f:2c:d9:a4:db:80:0f:e0:d4:46:9d:01:
1b:85:a9:f2:86:a1:f0:a1:3a:8a:fb:d0:36:40:62:
53:a2:3c:e9:73:26:9d:d4:68:65:c0:b3:7e:26:f6:
79:3f:c3:7f:2a:6b:2e:1e:4c:4f:1e:b1:2c:d8:a8:
ed:f6:ad:48:9b:df:49:77:82:80:c1:f9:64:5a:32:
b4:e0:9a:8a:7c:54:95:04:c9:ff:c4:54:b5:c4:ae:
f4:f9:71:a9:75:6d:af:e3:97:d7:61:61:8f:db:8d:
05:b3:14:5a:95:63:4d:f8:14:70:be:80:f9:67:0e:
ff:f0:fa:7f:38:41:b5:de:e4:97:f7:c4:4e:51:d3:
e5:21:eb:12:87:64:99:e2:bc:23:30:1c:1e:20:e2:
5a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F4:89:43:EA:B0:22:A4:33:1F:FE:AB:A7:0A:42:B0:BB:56:C5:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/705A9F64A71B11EF8A20AB58762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.60.0/24
Signature Algorithm: sha256WithRSAEncryption
94:2d:18:4a:0e:c2:77:7d:1b:a7:ed:99:fe:b5:a6:89:aa:65:
63:01:0b:6d:28:af:f4:36:4f:23:3d:ed:fa:a8:e2:bf:94:33:
37:71:85:9d:6c:b5:76:8d:d5:7b:65:4e:98:88:47:e9:49:f8:
4c:bc:f6:72:d0:53:77:7a:5c:1d:61:6f:09:a5:3d:f5:a7:f1:
ae:a5:2c:0b:08:dd:92:8d:1f:6a:f7:7e:0b:50:b7:2c:bf:22:
9d:4a:e2:fa:56:17:29:23:93:44:06:b7:ea:6a:b2:f2:71:d9:
53:a2:7f:17:27:c3:c9:a6:46:9b:d5:fc:be:65:2a:bb:98:56:
50:e0:d7:2f:38:1e:11:5f:4d:59:2e:87:d7:6d:8a:88:84:af:
07:a8:71:0d:b0:ed:19:d4:cb:d8:98:c5:20:76:07:a7:27:c2:
a0:d6:06:48:a9:5f:b7:c5:48:06:4c:e2:72:9c:53:e5:56:31:
b1:14:55:fe:d5:57:9b:94:0e:ff:59:c2:12:0e:77:99:09:02:
90:44:5d:9e:79:b1:0f:36:d7:d4:34:8d:9b:e7:92:19:bd:e7:
0f:ad:b5:7d:a8:f4:7d:4c:4a:a6:40:96:62:4a:7d:80:f8:cc:
b3:2c:2e:bb:f9:52:32:d0:61:41:5d:27:08:1e:4f:ba:d7:dc:
45:8d:15:b0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ8tMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIwMDg0MjUyWhcNMjQxMjA1MDg0MjUyWjAYMRYw
FAYDVQQDEw02NzNkYTExMC05MTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArmi4VE23jtdsEWX05W707WkhxPkigG5SFIi6gG6xk01VDDj/+vaM46d5
pU9IePkWllVaLkVlEPcNHA92bk3aewC9RKvLdvUR0vPG9QroVJD4oRmr0dK9vuNA
HGRS5SiEre+LXkMsSkIFyfp/LNmk24AP4NRGnQEbhanyhqHwoTqK+9A2QGJTojzp
cyad1GhlwLN+JvZ5P8N/KmsuHkxPHrEs2Kjt9q1Im99Jd4KAwflkWjK04JqKfFSV
BMn/xFS1xK70+XGpdW2v45fXYWGP240FsxRalWNN+BRwvoD5Zw7/8Pp/OEG13uSX
98ROUdPlIesSh2SZ4rwjMBweIOJa+QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJ/0
iUPqsCKkMx/+q6cKQrC7VsUwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MDVBOUY2NEE3MUIxMUVGOEEyMEFCNTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml48MA0GCSqGSIb3DQEB
CwUAA4IBAQCULRhKDsJ3fRun7Zn+taaJqmVjAQttKK/0Nk8jPe36qOK/lDM3cYWd
bLV2jdV7ZU6YiEfpSfhMvPZy0FN3elwdYW8JpT31p/GupSwLCN2SjR9q934LULcs
vyKdSuL6VhcpI5NEBrfqarLycdlTon8XJ8PJpkab1fy+ZSq7mFZQ4NcvOB4RX01Z
LofXbYqIhK8HqHENsO0Z1MvYmMUgdgenJ8Kg1gZIqV+3xUgGTOJynFPlVjGxFFX+
1VeblA7/WcISDneZCQKQRF2eebEPNtfUNI2b55IZvecPrbV9qPR9TEqmQJZiSn2A
+MyzLC67+VIy0GFBXScIHk+619xFjRWw
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:43 2024 by rpki-client on console-ams.rpki-client.org