Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53ED710A8DF11EF91BEFB74762E951A.roa
File: B53ED710A8DF11EF91BEFB74762E951A.roa (raw, json)
Hash identifier: cQ4K8ASySZr4kXsJSecyTFUBFwThoZYN6tNSuRy/Z10=
Subject key identifier: 5D:8E:F4:96:93:E8:61:C0:07:40:88:1D:30:32:3F:44:9E:71:18:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011083
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53ED710A8DF11EF91BEFB74762E951A.roa
Signing time: Fri 22 Nov 2024 14:40:24 +0000
ROA not before: Fri 22 Nov 2024 14:40:21 +0000
ROA not after: Tue 03 Dec 2024 14:40:21 +0000
asID: 62240
IP address blocks: 154.194.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Nov 2024 00:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69763 (0x11083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:40:21 2024 GMT
Not After : Dec 3 14:40:21 2024 GMT
Subject: CN=674097d8-69c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0c:81:9c:bf:4a:6e:11:e6:23:f6:78:70:c8:
dd:79:24:22:41:2e:b0:31:32:d1:d4:95:78:a0:9b:
2a:3d:a2:f0:20:92:32:33:c6:c8:f6:55:d1:b1:5f:
9a:98:22:fc:8e:d9:04:ae:6e:ba:bc:4a:6f:da:66:
74:53:2a:e4:4b:0f:cd:47:76:91:e3:ae:ac:ce:bc:
db:c0:9d:07:85:07:43:6c:af:87:d4:5e:d8:cd:bf:
bf:9c:c6:30:ce:42:52:db:f6:62:fa:0f:7f:cc:ad:
39:1c:90:c7:ce:18:e1:88:d4:b3:ed:26:72:e0:3a:
87:3f:e4:f8:0c:c5:74:e0:26:f8:e5:98:f7:25:38:
d8:1a:51:78:00:94:e6:5b:ea:72:a3:ef:bf:fc:94:
1f:25:c3:24:e0:1e:aa:a5:70:70:b4:d5:e5:c9:51:
6f:96:1b:9f:8c:a6:15:6d:67:c1:e7:a5:65:74:08:
22:14:0e:76:e7:bb:f7:7a:2e:cc:5d:2a:d0:fa:71:
37:ad:a8:56:d8:4b:d9:9c:ed:70:9c:22:04:af:4d:
47:f4:68:8b:e2:1e:a6:f6:1c:c2:1c:99:26:99:b2:
38:8e:fc:b9:d7:e0:4c:12:56:e5:97:f9:fc:d4:84:
ec:85:92:ae:27:cc:47:43:6f:34:eb:11:e2:02:05:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:8E:F4:96:93:E8:61:C0:07:40:88:1D:30:32:3F:44:9E:71:18:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53ED710A8DF11EF91BEFB74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.7.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:56:e7:cd:98:cf:42:e0:a0:2f:c4:a4:dc:d8:18:9b:90:c5:
a0:9a:b9:50:a5:c5:07:08:6a:b0:7d:08:88:20:f1:54:c1:1a:
8c:68:76:b4:2f:11:fc:31:a4:e0:34:6a:9f:39:f7:69:9b:26:
54:fb:b2:05:81:a3:f1:c2:ea:de:89:81:df:37:f1:01:17:49:
4b:9a:42:31:2d:5d:ca:a5:c9:dc:73:7f:46:b3:fb:b6:04:7b:
98:83:66:02:db:70:56:1f:84:3e:02:42:23:fd:a4:5f:a7:4b:
18:e7:64:9d:27:b1:2e:e5:73:32:9c:5d:95:62:c3:f3:c5:c7:
2d:ec:14:84:7b:0a:5b:3d:a8:3d:7c:67:a5:ce:00:66:4a:45:
61:bb:cb:e8:be:ba:d3:c1:8e:d3:5f:aa:69:05:d0:44:1f:ea:
13:e2:68:8c:c6:0d:0b:17:62:6c:5f:86:4d:60:2f:d0:f7:f0:
04:cc:3f:20:64:6a:ad:d6:c6:48:83:e6:4b:df:55:c5:25:d8:
24:6b:05:e9:24:a4:ff:13:dd:11:b3:cb:a9:24:f5:17:89:cf:
b3:1d:1c:b0:db:5a:ec:b0:b5:8c:f2:f1:52:de:90:d7:89:88:
f5:5d:f4:db:df:09:fd:99:ee:9d:d6:2c:52:82:e0:6f:46:8c:
61:74:db:3e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARCDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTQ0MDIxWhcNMjQxMjAzMTQ0MDIxWjAYMRYw
FAYDVQQDEw02NzQwOTdkOC02OWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAlgyBnL9KbhHmI/Z4cMjdeSQiQS6wMTLR1JV4oJsqPaLwIJIyM8bI9lXR
sV+amCL8jtkErm66vEpv2mZ0UyrkSw/NR3aR466szrzbwJ0HhQdDbK+H1F7Yzb+/
nMYwzkJS2/Zi+g9/zK05HJDHzhjhiNSz7SZy4DqHP+T4DMV04Cb45Zj3JTjYGlF4
AJTmW+pyo++//JQfJcMk4B6qpXBwtNXlyVFvlhufjKYVbWfB56VldAgiFA5257v3
ei7MXSrQ+nE3rahW2EvZnO1wnCIEr01H9GiL4h6m9hzCHJkmmbI4jvy51+BMElbl
l/n81ITshZKuJ8xHQ2806xHiAgXFPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFF2O
9JaT6GHAB0CIHTAyP0SecRiDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNTNFRDcxMEE4REYxMUVGOTFCRUZCNzQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIHMA0GCSqGSIb3DQEB
CwUAA4IBAQAcVufNmM9C4KAvxKTc2BibkMWgmrlQpcUHCGqwfQiIIPFUwRqMaHa0
LxH8MaTgNGqfOfdpmyZU+7IFgaPxwureiYHfN/EBF0lLmkIxLV3Kpcncc39Gs/u2
BHuYg2YC23BWH4Q+AkIj/aRfp0sY52SdJ7Eu5XMynF2VYsPzxcct7BSEewpbPag9
fGelzgBmSkVhu8vovrrTwY7TX6ppBdBEH+oT4miMxg0LF2JsX4ZNYC/Q9/AEzD8g
ZGqt1sZIg+ZL31XFJdgkawXpJKT/E90Rs8upJPUXic+zHRyw21rssLWM8vFS3pDX
iYj1XfTb3wn9me6d1ixSguBvRoxhdNs+
-----END CERTIFICATE-----
Generated at Sat Nov 23 22:34:31 2024 by rpki-client on console-ams.rpki-client.org