Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9FBA4A4CC11EFB79F925A762E951A.roa
File: 7AB9FBA4A4CC11EFB79F925A762E951A.roa (raw, json)
Hash identifier: 5LyQw2J/XhrwEBb7HR5UBNPn07QE0wdx18hcBHHLxe0=
Subject key identifier: 22:21:3E:1C:04:54:BE:09:4C:49:86:27:FF:58:61:D7:2C:CF:11:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E96
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9FBA4A4CC11EFB79F925A762E951A.roa
Signing time: Sun 17 Nov 2024 10:12:41 +0000
ROA not before: Sun 17 Nov 2024 10:12:38 +0000
ROA not after: Mon 25 Nov 2024 10:12:38 +0000
asID: 5650
IP address blocks: 154.194.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69270 (0x10e96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 10:12:38 2024 GMT
Not After : Nov 25 10:12:38 2024 GMT
Subject: CN=6739c199-ebaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:eb:99:9d:6c:64:45:fe:f6:6e:31:a9:74:a5:
b7:ba:49:f7:ae:f6:2e:91:bb:59:3a:4f:99:63:de:
72:9e:4c:c0:97:c9:06:10:f6:9d:87:f1:ba:a4:5e:
21:f1:65:96:1b:67:24:7e:cc:87:0a:0a:19:66:9e:
3f:dc:72:fc:6f:b5:01:67:aa:79:d1:5a:82:6a:0c:
88:c3:5f:9b:61:61:aa:ed:fd:51:29:cd:be:70:64:
7d:40:86:24:b8:5a:52:2c:55:5c:21:b6:0f:de:46:
2a:fe:65:7c:fb:d5:f5:83:67:3a:b6:c4:f8:0a:50:
a8:6d:75:13:a0:fd:09:19:f4:51:b9:8c:d8:68:c3:
65:13:5d:d6:39:5f:17:d6:24:5b:d8:15:04:7b:7c:
41:e5:91:95:63:af:73:12:c7:05:76:9b:77:0d:4a:
6b:02:30:48:1d:8b:02:5b:cb:db:ce:d6:98:8d:e4:
94:1d:69:cb:b8:ca:d8:4b:47:40:69:b3:ee:5c:ba:
8f:32:f1:cd:8d:fb:81:8a:8f:5b:a2:c0:e2:c3:7b:
a0:e2:8a:f0:6f:34:23:73:43:c8:93:cb:aa:83:1a:
cb:00:fc:3b:de:e6:c9:e3:f1:cb:0a:9f:24:2d:85:
3c:91:1b:20:14:51:c2:5b:0e:d1:c4:2d:3e:f8:ca:
1b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:21:3E:1C:04:54:BE:09:4C:49:86:27:FF:58:61:D7:2C:CF:11:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7AB9FBA4A4CC11EFB79F925A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.20.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:7a:05:9f:cb:c7:c3:fe:48:da:fe:44:f2:58:c4:de:18:50:
b6:60:54:8a:17:ce:59:eb:cd:9b:6d:83:10:6a:10:e7:29:1e:
f9:3c:7c:7f:c5:2b:59:4e:29:67:30:bd:00:b0:10:97:b3:08:
67:b5:4d:97:04:8f:46:80:0c:81:e1:6b:ae:0a:2a:95:8e:dd:
8f:1d:be:28:b7:53:ad:2a:1e:a3:ed:6f:77:4b:b9:9c:00:de:
b9:d6:69:28:4a:96:d4:85:ed:cc:81:2e:2b:f6:47:b6:dc:e2:
55:5d:c8:54:91:65:62:c1:59:33:61:3d:e6:e1:fb:eb:ef:cd:
61:eb:9a:fd:20:5a:3a:07:5b:bf:79:48:62:d4:01:2b:0d:e9:
f5:72:56:23:56:62:cf:5b:0a:e1:b6:44:49:e1:0d:23:4f:e9:
81:a0:c4:53:db:5d:3f:45:bb:59:8a:ce:8e:66:2b:a0:79:51:
24:ad:8d:d2:80:4b:7b:9a:f9:e0:10:c1:1c:16:29:65:50:aa:
0f:69:8e:aa:4b:67:f0:12:b7:e2:bb:f1:97:d6:31:eb:4d:92:
09:a0:9e:5f:82:98:9b:88:e9:7e:02:48:e6:d3:0d:db:62:63:
23:7f:26:ba:78:e5:07:8f:be:4b:14:84:2a:98:e7:d0:5c:dc:
a8:ef:4c:55
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAQ6WMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTE3MTAxMjM4WhcNMjQxMTI1MTAxMjM4WjAYMRYw
FAYDVQQDEw02NzM5YzE5OS1lYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuuuZnWxkRf72bjGpdKW3ukn3rvYukbtZOk+ZY95ynkzAl8kGEPadh/G6
pF4h8WWWG2ckfsyHCgoZZp4/3HL8b7UBZ6p50VqCagyIw1+bYWGq7f1RKc2+cGR9
QIYkuFpSLFVcIbYP3kYq/mV8+9X1g2c6tsT4ClCobXUToP0JGfRRuYzYaMNlE13W
OV8X1iRb2BUEe3xB5ZGVY69zEscFdpt3DUprAjBIHYsCW8vbztaYjeSUHWnLuMrY
S0dAabPuXLqPMvHNjfuBio9bosDiw3ug4orwbzQjc0PIk8uqgxrLAPw73ubJ4/HL
Cp8kLYU8kRsgFFHCWw7RxC0++MobYQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCIh
PhwEVL4JTEmGJ/9YYdcszxHwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QUI5RkJBNEE0Q0MxMUVGQjc5RjkyNUE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsIUMA0GCSqGSIb3DQEB
CwUAA4IBAQCOegWfy8fD/kja/kTyWMTeGFC2YFSKF85Z682bbYMQahDnKR75PHx/
xStZTilnML0AsBCXswhntU2XBI9GgAyB4WuuCiqVjt2PHb4ot1OtKh6j7W93S7mc
AN651mkoSpbUhe3MgS4r9ke23OJVXchUkWViwVkzYT3m4fvr781h65r9IFo6B1u/
eUhi1AErDen1clYjVmLPWwrhtkRJ4Q0jT+mBoMRT210/RbtZis6OZiugeVEkrY3S
gEt7mvngEMEcFillUKoPaY6qS2fwErfiu/GX1jHrTZIJoJ5fgpibiOl+Akjm0w3b
YmMjfya6eOUHj75LFIQqmOfQXNyo70xV
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org