Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FBF3098767711EF8272EBB5762E951A.roa
File: 7FBF3098767711EF8272EBB5762E951A.roa (raw, json)
Hash identifier: iW9FNx0HjwoK5YK4n/cTEBUIEjwzrPPOorUqbYzrUyo=
Subject key identifier: 66:EC:B4:2D:86:DD:7A:E6:A1:8E:3A:18:86:82:63:FF:4C:8E:66:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F079
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FBF3098767711EF8272EBB5762E951A.roa
Signing time: Thu 19 Sep 2024 11:08:29 +0000
ROA not before: Thu 19 Sep 2024 11:08:25 +0000
ROA not after: Fri 08 Aug 2025 11:08:25 +0000
asID: 133861
IP address blocks: 154.204.58.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61561 (0xf079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 11:08:25 2024 GMT
Not After : Aug 8 11:08:25 2025 GMT
Subject: CN=66ec062d-283c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:91:fb:ac:07:07:35:32:ee:b9:34:cf:1c:05:
91:cc:dc:ab:8f:9c:20:8a:9a:d4:4d:b6:ef:d7:2c:
f5:6a:d8:06:ef:aa:35:1e:05:12:1a:2f:59:76:6c:
9a:be:e7:08:19:4c:90:79:cb:18:2f:33:a6:5b:e1:
a2:67:f3:6e:1a:9f:4e:b6:98:0d:32:b2:a0:a1:f5:
7c:85:cc:98:19:ec:8c:fd:e1:e9:d7:7f:f1:55:a7:
5f:7d:2f:1a:1e:b8:4d:39:dd:e9:c8:6c:e0:33:d8:
d9:85:70:d2:3e:c2:c0:a0:01:ef:2d:9e:ed:8a:4e:
60:4d:8a:40:19:37:0e:9c:17:c0:ea:96:fa:9f:18:
51:c3:1a:b1:69:75:4a:54:16:a9:7d:4e:a8:4a:0e:
c6:c9:94:55:43:4a:c9:d7:fa:1e:27:e8:7d:77:aa:
f7:e8:98:b4:9f:bd:08:c0:f2:1c:c5:68:89:66:84:
4d:94:99:3b:42:74:4c:0c:89:42:9a:56:86:6f:e9:
51:03:2d:b4:01:22:8e:f1:16:6c:7f:7a:76:e5:50:
26:4d:87:b8:90:10:70:c0:a1:42:2b:07:2c:05:de:
e7:c0:9c:11:6a:66:91:a7:1c:36:2e:66:75:8e:80:
3d:42:4e:de:6b:c0:a1:a3:8c:bd:64:6f:90:a0:1e:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EC:B4:2D:86:DD:7A:E6:A1:8E:3A:18:86:82:63:FF:4C:8E:66:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FBF3098767711EF8272EBB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.58.0/23
Signature Algorithm: sha256WithRSAEncryption
65:26:be:3d:9d:e4:91:20:27:88:8d:5e:ba:09:a4:18:ec:27:
21:f9:6f:b4:1c:44:b9:98:f9:05:f1:12:df:78:59:19:ca:f5:
a9:81:c0:57:f3:83:98:42:38:bf:ea:88:e7:20:68:55:53:04:
e7:de:63:f2:e4:3c:c5:a0:ca:e8:06:00:01:7f:2b:09:5a:c4:
61:9b:63:d7:29:e1:0a:fe:2b:10:33:47:b8:40:6d:13:02:ad:
73:7f:77:bc:0c:15:aa:f8:d5:1f:38:09:cc:da:13:ac:f5:ce:
1d:70:f1:f0:f4:12:ed:94:b1:24:fc:1b:51:f0:d4:4f:84:fd:
20:5a:7d:c8:78:79:3d:e7:30:03:10:52:cc:48:7f:f2:62:0e:
2a:85:8e:14:ce:d1:01:28:fa:54:dc:ac:d0:9b:e9:cc:1d:a0:
f2:d2:01:9e:80:de:11:af:51:ae:8e:a0:d2:2c:60:12:8f:b8:
e2:61:d9:5f:b7:17:1c:32:74:66:0e:6f:16:e6:81:b2:ed:ef:
9a:d1:e7:e6:a3:dd:62:7c:91:c3:90:fb:7c:fe:5b:48:69:75:
60:95:a2:5a:02:a4:52:62:10:4c:7e:49:63:34:a3:e4:60:19:
a8:16:a8:28:a3:82:2e:47:90:2d:c6:d5:0a:b8:c8:d7:be:39:
b3:9f:c4:f4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPB5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE5MTEwODI1WhcNMjUwODA4MTEwODI1WjAYMRYw
FAYDVQQDEw02NmVjMDYyZC0yODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7ZH7rAcHNTLuuTTPHAWRzNyrj5wgiprUTbbv1yz1atgG76o1HgUSGi9Z
dmyavucIGUyQecsYLzOmW+GiZ/NuGp9OtpgNMrKgofV8hcyYGeyM/eHp13/xVadf
fS8aHrhNOd3pyGzgM9jZhXDSPsLAoAHvLZ7tik5gTYpAGTcOnBfA6pb6nxhRwxqx
aXVKVBapfU6oSg7GyZRVQ0rJ1/oeJ+h9d6r36Ji0n70IwPIcxWiJZoRNlJk7QnRM
DIlCmlaGb+lRAy20ASKO8RZsf3p25VAmTYe4kBBwwKFCKwcsBd7nwJwRamaRpxw2
LmZ1joA9Qk7ea8Cho4y9ZG+QoB40WQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGbs
tC2G3XrmoY46GIaCY/9Mjma1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RkJGMzA5ODc2NzcxMUVGODI3MkVCQjU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsw6MA0GCSqGSIb3DQEB
CwUAA4IBAQBlJr49neSRICeIjV66CaQY7Cch+W+0HES5mPkF8RLfeFkZyvWpgcBX
84OYQji/6ojnIGhVUwTn3mPy5DzFoMroBgABfysJWsRhm2PXKeEK/isQM0e4QG0T
Aq1zf3e8DBWq+NUfOAnM2hOs9c4dcPHw9BLtlLEk/BtR8NRPhP0gWn3IeHk95zAD
EFLMSH/yYg4qhY4UztEBKPpU3KzQm+nMHaDy0gGegN4Rr1GujqDSLGASj7jiYdlf
txccMnRmDm8W5oGy7e+a0efmo91ifJHDkPt8/ltIaXVglaJaAqRSYhBMfkljNKPk
YBmoFqgoo4IuR5AtxtUKuMjXvjmzn8T0
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:13 2024 by rpki-client on console-fra.rpki-client.org