Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B672935CA8DE11EF997F566E762E951A.roa
File: B672935CA8DE11EF997F566E762E951A.roa (raw, json)
Hash identifier: otrLv81oeb0Y5pDDxOWJJBRzuuZG05+sRYBbKCGSMi0=
Subject key identifier: 7B:9D:42:25:BC:16:61:F8:89:76:7A:52:CA:DE:9C:5C:D5:7C:6F:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011077
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B672935CA8DE11EF997F566E762E951A.roa
Signing time: Fri 22 Nov 2024 14:33:17 +0000
ROA not before: Fri 22 Nov 2024 14:33:13 +0000
ROA not after: Tue 03 Dec 2024 14:33:13 +0000
asID: 149513
IP address blocks: 154.201.94.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 26 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69751 (0x11077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 22 14:33:13 2024 GMT
Not After : Dec 3 14:33:13 2024 GMT
Subject: CN=6740962d-51ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:11:93:6a:b8:5f:09:15:a4:1a:cd:2a:0c:
bb:af:52:33:de:10:8e:ba:e3:ee:ab:3a:e5:b3:45:
f9:7b:ef:7e:69:36:a5:3f:a3:66:71:fd:57:db:bf:
45:ab:b3:9b:b5:94:85:82:07:f6:6e:59:aa:5c:b1:
32:72:36:3e:e1:ed:33:03:6d:04:a6:d3:6d:39:b5:
df:80:8d:37:aa:b3:0e:55:92:1d:64:da:03:ae:92:
c1:23:b6:fc:09:84:fd:c7:22:e8:1e:d6:5a:13:c9:
16:84:3b:11:62:a8:0b:d2:36:2c:c8:55:9e:93:8c:
2f:3e:24:da:df:4a:5a:a9:e9:97:63:0a:68:c1:c6:
35:78:0f:83:1f:d3:8e:fc:e5:21:13:b5:8b:ed:ae:
69:e1:73:c4:63:8a:d7:1d:a1:21:94:eb:c2:ff:71:
09:ac:9a:f0:f7:63:7b:b1:23:f7:b1:2f:75:63:69:
15:d4:07:5c:2a:ce:6b:de:f2:cd:77:6c:0e:ef:7d:
a5:16:99:b2:ae:2d:57:91:86:4c:81:12:c6:3a:ad:
93:71:a6:1c:20:e6:e1:8c:bd:80:7e:ae:39:27:79:
3a:55:11:e9:28:54:6f:cd:51:ba:02:21:31:74:65:
52:15:23:21:7c:e1:40:d3:ae:d1:57:d2:82:f2:50:
e9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9D:42:25:BC:16:61:F8:89:76:7A:52:CA:DE:9C:5C:D5:7C:6F:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B672935CA8DE11EF997F566E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.94.0/23
Signature Algorithm: sha256WithRSAEncryption
63:41:a6:47:6b:c7:38:a4:37:8d:01:b4:26:c8:ec:0a:f8:b6:
e0:23:ef:fc:59:27:8b:34:21:e6:6d:87:d7:45:dc:ce:fd:7a:
04:f2:23:82:79:b7:ba:c0:e2:25:d8:2a:c4:81:0b:aa:6f:95:
5e:8e:56:98:b7:3b:82:9c:24:d2:76:cd:7d:a5:fe:bf:0e:4b:
42:a4:78:2c:ad:9e:0f:9f:8f:dc:a0:d7:17:3f:21:80:cd:1c:
13:d5:01:de:02:e0:5d:fd:35:f4:d9:e3:db:f5:87:07:4f:cb:
fe:60:a5:24:f7:15:30:ee:4b:66:8d:be:6b:06:b1:17:7c:5e:
cd:9b:5f:21:ac:9e:f9:2c:94:66:b3:f1:bd:82:07:64:75:84:
68:9c:c8:28:3b:b2:83:49:5f:78:61:83:4b:46:31:6a:61:08:
6a:e1:32:66:ba:26:58:ac:5f:10:95:cf:32:30:3b:58:44:7d:
fb:ca:34:a5:0b:65:f6:1f:90:bf:5c:c8:17:4d:1d:38:5e:c1:
1c:e9:9a:c9:62:e0:22:32:d9:12:74:05:24:be:71:a6:b6:ef:
07:a4:07:30:fe:19:2e:9e:54:cd:7c:2f:ea:9a:c9:50:40:9f:
11:c6:8f:6f:5d:c2:50:85:af:8e:f2:7a:be:3b:65:50:13:fe:
f7:0d:7e:d4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARB3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMTIyMTQzMzEzWhcNMjQxMjAzMTQzMzEzWjAYMRYw
FAYDVQQDEw02NzQwOTYyZC01MWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArmwRk2q4XwkVpBrNKgy7r1Iz3hCOuuPuqzrls0X5e+9+aTalP6Nmcf1X
279Fq7ObtZSFggf2blmqXLEycjY+4e0zA20EptNtObXfgI03qrMOVZIdZNoDrpLB
I7b8CYT9xyLoHtZaE8kWhDsRYqgL0jYsyFWek4wvPiTa30paqemXYwpowcY1eA+D
H9OO/OUhE7WL7a5p4XPEY4rXHaEhlOvC/3EJrJrw92N7sSP3sS91Y2kV1AdcKs5r
3vLNd2wO732lFpmyri1XkYZMgRLGOq2TcaYcIObhjL2Afq45J3k6VRHpKFRvzVG6
AiExdGVSFSMhfOFA067RV9KC8lDpbwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHud
QiW8FmH4iXZ6UsrenFzVfG8dMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNjcyOTM1Q0E4REUxMUVGOTk3RjU2NkU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmsleMA0GCSqGSIb3DQEB
CwUAA4IBAQBjQaZHa8c4pDeNAbQmyOwK+LbgI+/8WSeLNCHmbYfXRdzO/XoE8iOC
ebe6wOIl2CrEgQuqb5VejlaYtzuCnCTSds19pf6/DktCpHgsrZ4Pn4/coNcXPyGA
zRwT1QHeAuBd/TX02ePb9YcHT8v+YKUk9xUw7ktmjb5rBrEXfF7Nm18hrJ75LJRm
s/G9ggdkdYRonMgoO7KDSV94YYNLRjFqYQhq4TJmuiZYrF8Qlc8yMDtYRH37yjSl
C2X2H5C/XMgXTR04XsEc6ZrJYuAiMtkSdAUkvnGmtu8HpAcw/hkunlTNfC/qmslQ
QJ8Rxo9vXcJQha+O8nq+O2VQE/73DX7U
-----END CERTIFICATE-----
Generated at Sun Nov 24 02:36:44 2024 by rpki-client on console-fra.rpki-client.org