Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A53583AC768811EF8A5A429F762E951A.roa
File: A53583AC768811EF8A5A429F762E951A.roa (raw, json)
Hash identifier: dDt+FQz6HshmnIS7H7vPSQEKMyaLgu2QzVmhwfLLZ0I=
Subject key identifier: DA:5E:24:2D:63:EE:27:CB:1E:50:C0:89:68:F3:2F:E4:DA:ED:9B:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F091
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A53583AC768811EF8A5A429F762E951A.roa
Signing time: Thu 19 Sep 2024 13:11:13 +0000
ROA not before: Thu 19 Sep 2024 13:11:10 +0000
ROA not after: Fri 08 Aug 2025 13:11:10 +0000
asID: 133861
IP address blocks: 154.204.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61585 (0xf091)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 13:11:10 2024 GMT
Not After : Aug 8 13:11:10 2025 GMT
Subject: CN=66ec22f1-0e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8e:0b:26:42:c0:80:49:72:9d:8d:21:fb:db:
03:b3:81:24:5a:d6:3f:3a:ec:b7:2e:d0:8e:28:96:
8c:51:93:6a:d6:fe:f8:2a:45:ad:0a:c0:fd:29:bb:
9d:28:07:6b:21:0c:8d:2e:c7:21:5a:42:bd:24:d1:
25:b3:37:17:15:64:1d:8f:ab:d5:99:f1:4c:c6:f5:
dd:82:6a:ee:e5:f5:f5:0e:36:a0:05:50:73:88:8d:
fd:23:35:6e:14:93:87:3a:42:13:f6:6b:37:de:e8:
ab:fb:39:a6:16:6d:ea:ab:9f:b8:aa:9c:41:97:78:
32:e8:e3:c3:01:48:c3:2a:05:f4:91:db:63:8a:d1:
e5:aa:70:b7:80:3b:d8:d4:4e:3c:aa:d6:ee:83:f3:
fb:30:92:09:43:b9:85:fe:05:9a:64:19:5f:60:51:
bf:84:27:94:c4:c8:96:37:85:6c:b3:0d:ee:bc:7f:
7e:75:4a:82:fc:ff:e5:07:fb:fd:cc:ea:63:40:bd:
5c:39:d3:9d:b8:4f:aa:12:af:ce:41:43:1f:92:09:
2c:8c:e3:45:22:3e:e6:d5:fa:45:1c:e4:8f:02:5e:
ba:da:8f:34:c6:95:b6:e0:5d:04:fa:9c:44:e6:80:
35:2c:e3:14:2e:0f:3e:dc:f5:2a:2c:6d:17:15:c3:
5c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5E:24:2D:63:EE:27:CB:1E:50:C0:89:68:F3:2F:E4:DA:ED:9B:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A53583AC768811EF8A5A429F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.44.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:17:6c:88:53:2a:ef:48:d7:c6:16:05:b8:28:23:c3:af:a3:
82:53:cc:dc:de:43:0c:4c:c2:fb:c2:0a:6c:3e:f9:4c:8a:70:
7b:85:00:93:34:46:c5:94:77:46:ba:54:11:c6:09:41:81:37:
f1:ce:b6:ba:6b:cc:a1:a1:7c:e9:64:4a:45:b5:33:d9:ca:0a:
0d:c7:14:3a:b7:01:d6:da:a8:6a:ba:2d:9a:bf:be:67:27:0d:
1a:3d:f9:f1:2c:bd:05:3d:06:19:bb:2f:ef:ef:66:da:f9:d3:
39:4b:7b:ed:c3:37:50:6c:db:99:db:e9:90:b0:43:eb:a9:99:
fa:8f:b3:58:df:a5:f2:5d:59:04:f4:05:6c:d5:00:21:3e:4e:
99:8c:2e:90:9e:1e:25:c8:3d:0b:a1:23:fb:43:f7:2e:88:f3:
68:12:54:92:d1:3a:ef:a5:e9:ef:e3:f1:30:9c:23:09:d7:f5:
22:f2:7f:ab:23:fd:51:f2:89:0a:39:dd:02:c0:9f:49:38:49:
a0:71:1d:71:e6:32:7c:86:e1:24:1d:f1:3d:b7:6a:8f:02:ea:
ac:c3:9c:7f:45:71:64:e8:58:9b:2a:c6:10:f7:50:ce:5a:12:
e7:fa:f7:c9:39:61:6b:c2:a5:2b:36:f2:f9:55:38:c6:81:e0:
6f:0e:13:1d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAPCRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwOTE5MTMxMTEwWhcNMjUwODA4MTMxMTEwWjAYMRYw
FAYDVQQDEw02NmVjMjJmMS0wZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq44LJkLAgElynY0h+9sDs4EkWtY/Ouy3LtCOKJaMUZNq1v74KkWtCsD9
KbudKAdrIQyNLschWkK9JNElszcXFWQdj6vVmfFMxvXdgmru5fX1DjagBVBziI39
IzVuFJOHOkIT9ms33uir+zmmFm3qq5+4qpxBl3gy6OPDAUjDKgX0kdtjitHlqnC3
gDvY1E48qtbug/P7MJIJQ7mF/gWaZBlfYFG/hCeUxMiWN4Vssw3uvH9+dUqC/P/l
B/v9zOpjQL1cOdOduE+qEq/OQUMfkgksjONFIj7m1fpFHOSPAl662o80xpW24F0E
+pxE5oA1LOMULg8+3PUqLG0XFcNcEwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNpe
JC1j7ifLHlDAiWjzL+Ta7ZtIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNTM1ODNBQzc2ODgxMUVGOEE1QTQyOUY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmswsMA0GCSqGSIb3DQEB
CwUAA4IBAQDAF2yIUyrvSNfGFgW4KCPDr6OCU8zc3kMMTML7wgpsPvlMinB7hQCT
NEbFlHdGulQRxglBgTfxzra6a8yhoXzpZEpFtTPZygoNxxQ6twHW2qhqui2av75n
Jw0aPfnxLL0FPQYZuy/v72ba+dM5S3vtwzdQbNuZ2+mQsEPrqZn6j7NY36XyXVkE
9AVs1QAhPk6ZjC6Qnh4lyD0LoSP7Q/cuiPNoElSS0Trvpenv4/EwnCMJ1/Ui8n+r
I/1R8okKOd0CwJ9JOEmgcR1x5jJ8huEkHfE9t2qPAuqsw5x/RXFk6FibKsYQ91DO
WhLn+vfJOWFrwqUrNvL5VTjGgeBvDhMd
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:18 2024 by rpki-client on console-fra.rpki-client.org